Partial Return Address Overwrite - Exploit Dev 10

Sdílet
Vložit
  • čas přidán 27. 08. 2024
  • 🔥 Learn How to Bypass ASLR using a partial RET overwrite
    👨‍💻 Buy Our Courses: guidedhacking....
    💰 Donate on Patreon: / guidedhacking
    ❤️ Follow us on Social Media: linktr.ee/guid...
    🔗 Article Link: guidedhacking....
    🔗 Exploit Education: exploit.educat...
    📜 Video Description:
    Bypassing ASLR without leaking a memory address? By utilizing a partial instruction pointer overwrite this exploitation technique becomes possible. What do we mean by that? We are talking about overwriting a portion of the return address.
    So far, the goal every time was to completely overwrite the return address, which led to full control over the instruction pointer (EIP/RIP, depending on the architecture) when writing binary exploits.
    Alternatively, one could also overwrite just parts of the return address, leading to partial control over the instruction pointer.
    There are two reasons why an attacker might do this:
    1) Because of limitations, controlling the whole RIP is impossible.
    2) There is no info leak that could be used to bypass ASLR
    Interestingly, different technologies or architectures use different kinds of endianness in certain situations. Modern computers use little-endian when working e.g. with memory and CPU registers. Because of that, a buffer long enough to exploit a buffer overflow will first overwrite the "last" byte of the return address.
    📝 Timestamps:
    0:00 Analyzing Source Code
    1:27 Partial RET Overwrite Explained
    2:14 GDB Setup and Analysis
    3:27 Join GuidedHacking.com
    3:57 Return Instructions
    4:50 Target Address Identification
    6:11 Base Pointer Adjustment
    7:00 Writing the Exploit Script
    8:16 Exploit Execution & Results
    ✏️ Tags:
    #exploitdevelopment #bufferoverflow #reverseengineering
    partial ret overwrite
    guidedhacking
    exploit dev
    partial return address overwrite
    exploit development
    partial return overwrite
    buffer overflow
    partial ret overwrites
    exploit development course
    partial return overwrites
    partial return address overwrites
    guided hacking
    buffer overflows
    binary exploitation
    ethical hacking
    exploit development tutorial
    binary exploitation tutorial
    binary exploit development

Komentáře •

Další v pořadí
Automatické přehrávání
WTF is Egg Hunter Shellcode? - Exploit Dev 118:54WTF is Egg Hunter Shellcode? - Exploit Dev 11
WTF is Egg Hunter Shellcode? - Exploit Dev 11Guided Hacking
zhlédnutí 3,9K
Python Pwntools Hacking: ret2libc GOT & PLT44:49Python Pwntools Hacking: ret2libc GOT & PLT
Python Pwntools Hacking: ret2libc GOT & PLTJohn Hammond
zhlédnutí 47K
Buffer Overflow Hacking Tutorial (Bypass Passwords)55:39Buffer Overflow Hacking Tutorial (Bypass Passwords)
Buffer Overflow Hacking Tutorial (Bypass Passwords)David Bombal
zhlédnutí 73K
TOHLE JSTE O V HLAVĚ NEVĚDĚLI #zajimavosti #insideout00:34TOHLE JSTE O V HLAVĚ NEVĚDĚLI #zajimavosti #insideout
TOHLE JSTE O V HLAVĚ NEVĚDĚLI #zajimavosti #insideoutLůk
zhlédnutí 303K
7 Nejhorších Katastrof v Česku20:567 Nejhorších Katastrof v Česku
7 Nejhorších Katastrof v ČeskuBige
zhlédnutí 225K
video VS backstage 😁🍎00:13video VS backstage 😁🍎
video VS backstage 😁🍎Andrey Grechka
zhlédnutí 26M
Cola + Mentos = Exploze00:12Cola + Mentos = Exploze
Cola + Mentos = Exploze Dodo dva
zhlédnutí 236K
C++ Call Game Functions12:44C++ Call Game Functions
C++ Call Game FunctionsTreckStrend
zhlédnutí 10K
When RESTful architecture isn't enough...21:02When RESTful architecture isn't enough...
When RESTful architecture isn't enough...Dreams of Code
zhlédnutí 272K
Hacker101 - JavaScript for Hackers (Created by @STOKfredrik)24:17Hacker101 - JavaScript for Hackers (Created by @STOKfredrik)
Hacker101 - JavaScript for Hackers (Created by @STOKfredrik)HackerOne
zhlédnutí 925K
How the Best Hackers Learn Their Craft42:46How the Best Hackers Learn Their Craft
How the Best Hackers Learn Their CraftRSA Conference
zhlédnutí 2,6M
you need to stop using print debugging (do THIS instead)7:07you need to stop using print debugging (do THIS instead)
you need to stop using print debugging (do THIS instead)Low Level Learning
zhlédnutí 430K
Learn Assembly for Game Hacking15:17Learn Assembly for Game Hacking
Learn Assembly for Game HackingGuided Hacking
zhlédnutí 27K
Hack your brain with Obsidian.md11:53Hack your brain with Obsidian.md
Hack your brain with Obsidian.mdNo Boilerplate
zhlédnutí 1,9M
Master Pointers in C: 10X Your C Coding!14:12Master Pointers in C: 10X Your C Coding!
Master Pointers in C: 10X Your C Coding!Dave's Garage
zhlédnutí 300K
Gender reveal 🤰🩵 #hannahstocking #shorts00:10Gender reveal 🤰🩵 #hannahstocking #shorts
Gender reveal 🤰🩵 #hannahstocking #shortsHannah Stocking
zhlédnutí 2,4M
The First Time You Say ' Mom ' #shortsfeed #funny00:27The First Time You Say ' Mom ' #shortsfeed #funny
The First Time You Say ' Mom ' #shortsfeed #funnyMiniMoochi
zhlédnutí 23M
SKRYTÝ TALENT MMA ZÁPASNÍKA 😆🫃🏻00:20SKRYTÝ TALENT MMA ZÁPASNÍKA 😆🫃🏻
SKRYTÝ TALENT MMA ZÁPASNÍKA 😆🫃🏻OKTAGON MMA
zhlédnutí 139K
video VS backstage 😁🍎00:13video VS backstage 😁🍎
video VS backstage 😁🍎Andrey Grechka
zhlédnutí 26M
Chelsea gym be like.. 😅⚽️00:20Chelsea gym be like.. 😅⚽️
Chelsea gym be like.. 😅⚽️Celine Dept
zhlédnutí 6M
248 lízátek za 2 500 korun! 😝00:16248 lízátek za 2 500 korun! 😝
248 lízátek za 2 500 korun! 😝Tary
zhlédnutí 267K
Underwater Challenge 😱00:37Underwater Challenge 😱
Underwater Challenge 😱Topper Guild
zhlédnutí 37M
How I Did The SELF BENDING Spoon 😱🥄 #shorts00:19How I Did The SELF BENDING Spoon 😱🥄 #shorts
How I Did The SELF BENDING Spoon 😱🥄 #shortsWian
zhlédnutí 37M