C – Page 14 – WindowsTechs.com

code and memory safety issues

Posted on August 18, 2021 by Bella

I’m preparing for a computer security exam, and I found this question in previous exams

To create an authentication program, we write a check_auth function as
follows:
int check_auth(char *password) {
int auth_flag = 0;
size_t n… Continue reading code and memory safety issues→

Buffer overread

Posted on August 13, 2021 by Mohammed Abdu

I am trying to understand buffer overread in my course in school. This code is an example from one of the lectures where buffer overread can be a problem. However, I do not understand how buffer overread can occur in this code.
In my knowl… Continue reading Buffer overread→

Stack Smashing Short Problem

Posted on August 12, 2021 by Travis Taylor

I want to exploit this code vulnerability and get it to launch me into a shell with privilege access. I’m guessing I need to "push" bob from its current address to address 0x41414142 using the "gets" function. I can onl… Continue reading Stack Smashing Short Problem→

Exploting a Stack Buffer Overflow vulnerability to get privilege access to system

Posted on August 12, 2021 by Travis Taylor

I am trying to complete a buffer overflow challenge. The code I am trying to exploit is below. I can only use the command line in a Linux environment.
I understand that writing more than 100 characters into "userString" will star… Continue reading Exploting a Stack Buffer Overflow vulnerability to get privilege access to system→

Trouble understanding buffer overflow to print a string

Posted on August 10, 2021 by n0unc3

I have the following program:
#include<stdio.h>

int main() {
int i=0;
foo();
printf("Hello there!");
func();
}

int foo(void) {
char str[14];
strncpy(str,"General Kenobi", 14)
prin… Continue reading Trouble understanding buffer overflow to print a string→

How to see what functions can be hijacked when abusing LD_PRELOAD?

Posted on July 31, 2021 by John Zhau

Given a binary and looking to abuse LD_PRELOAD (privilege escalation or persistence), what’s a good way to list what functions can be hijacked when running the binary? Are there functions that should (almost) always be good hijacking candi… Continue reading How to see what functions can be hijacked when abusing LD_PRELOAD?→

C++ obfuscation: indirect communication between code segments?

Posted on July 26, 2021 by Tyson

I’m trying to figure out a way to set a value somewhere and read it later in a completely indirect manner, to the point where someone who’s debugging the (disassembled) area of code where the value is read would have no simple way of knowi… Continue reading C++ obfuscation: indirect communication between code segments?→

why is the certificate in mbedtls unknown

Posted on July 18, 2021 by stdcerr

I’m working on a client application that will connect to an FTPS server (vsftpd) to download files.
Now, I have ca-cert, cert and key files all setup to work with curl like:
curl -3 -k -v –ftp-ssl –tlsv1.2 –ftp-ssl-reqd –ftp-pasv –ver… Continue reading why is the certificate in mbedtls unknown→

Segfault after reaching system

Posted on July 1, 2021 by nickelpro

I’m doing a pretty bog-standard return-to-libc attack and I’m in a bit of a pickle.
I first got the entire attack working with my local version of libc, then I used the version of libc provided by the challenge to work out the offsets on t… Continue reading Segfault after reaching system→

Rust/C++ interop in the Android Platform

Posted on June 8, 2021 by Google

Posted by Joel Galenson and Matthew Maurer, Android Team One of the main challenges of evaluating Rust for use within the Android platform was ensuring we could provide sufficient interoperability with our existing codebase. If Rust is to meet its goal… Continue reading Rust/C++ interop in the Android Platform→