"analysis Of The Exploitation Processes"

Full Version: "analysis Of The Exploitation Processes"

GovernmentSecurity.org > The Archives > Exploit Articles

twistedps

Jun 2 2004, 02:26 AM

Was looking thru some sites today and came upon this pdf, seems very cool since it goes over many exploitation methods...
Big thanks to Covert Systems Research for releasing this!

QUOTE

Table of Contents:
~~~~~~~~~~~~~~~~~~
I. Forward
II. Types of Vulnerabilities
a: Stack overwrite
b: Heap overwrite
c: Function pointer overwrite
d: Format string
III. Exploitation Methods
a: Stack exploitation
b: Heap exploitation
c: Function pointer exploitation
d: Format string exploitation
e: Return-to-libc exploitation
IV. Summary
V. References

http://www.packetstormsecurity.org/papers/...xploitation.pdf

edit:
looking at their site, and they have a lot of cool exploitation papers on the site too:
http://www.covertsystems.org/archives/exploit.html

qcred11

Jun 2 2004, 02:57 AM

Wow, nice one. Very good collection. Worth to read.
Thanks

tweakz20

Jun 2 2004, 07:46 PM

just read it, it just gives a very basic overview of how an exploit works.... i thought it was kind of a waste of time

Tacreno

Jun 2 2004, 08:03 PM

I found this quite interesting, I know my c++ pretty well and wanna learn to write some sploits this summer

thanks for the read dude

twistedps

Jun 2 2004, 10:51 PM

QUOTE (tweakz20 @ Jun 2 2004, 07:46 PM)

just read it, it just gives a very basic overview of how an exploit works.... i thought it was kind of a waste of time

i found it to be an enlightening read for the person who is interested in overflows and exploits but hasnt had expirence with assembly and debugging, so they dont know where to start. Most overviews out there start off where you have to have at least an understanding of certain levels of material.

tweakz20

Jun 3 2004, 08:35 PM

they don't EXPLAIN the shell code, touch base on any world examples (or even test programs), do anything with the internet, and doesn't describe ASM codes OR C++ codes they're using... it kind of let me down.. how is that going to help you write anything?! lol

twistedps

Jun 3 2004, 08:43 PM

how would you write it without knowing what to write about?

tweakz20

Jun 3 2004, 08:44 PM

exactly.

passi

Jun 4 2004, 12:21 AM

thanks! i searched for something like this

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.