|
The Art of Writing Shellcode
|
|
Hits: 16 |
|
Date added: 02/03/2006 |
|
|
|
|
|
|
|
|
Introduction to Local Stack Overflow v2.5
|
|
Hits: 16 |
|
Date added: 04/07/2006 |
|
Get basic knowledge of memory analysis and be able to control his flow to execute
arbitrary code. |
|
|
|
|
|
|
Local Stack Overflow (Advcanced Module) v2.1
|
|
Hits: 17 |
|
Date added: 02/18/2006 |
|
Execute code when the stack has enable to don't execute code.
Execute code when buffer isn't big enough for the shellcode. |
|
|
|
|
|
|
Format Strings v2.5
|
|
Hits: 17 |
|
Date added: 04/05/2006 |
|
This paper will show how the code can be vulnerable against format strings
attacks and how to execute arbitrary code. |
|
|
|
|
|
|
Writing anti-IDS shellcode
|
|
Hits: 18 |
|
Date added: 01/27/2006 |
|
Author:
In the last few weeks i had made an intensive study of Intrusion -
Detection Systems like snort. I found that several ways of escaping from
being detected while checking for vulnerable CGI's were already made by
RFP (rfp@wiretrip.net). Also many other common intrusion tactics like
port-scanning was also escaped by using stealth-scanners like nmap. But
I noticed that the IDS had also checked for a person trying to remotely
buffer overflow a daemon. When I searched through the net for anti-IDS
tactics for escaping form being tracked, I found none. So i decided to
do a bit of thinking :). |
|
|
|
