Collaborate Disseminate
I have been learning and implementing Process Hollowing attacks, and even after I got the thing work, I have some questions.
Why aren’t we building the IAT when we load our injected PE? All we do is copy the headers and the sections, fix … Continue reading Process hollowing and the Import Address Table
Is there a simple C library or function to programmatically generate a self-signed certificate in C on Ubuntu? Of course, one can execute a simple system("….") call to execute a CLI. I am looking for a native, small, stand-alo… Continue reading Independent C library or function (on Linux) to programmatically generate a self-signed certificate [closed]
I am a beginner in pen testing. I tried syn flooding port 80 of victim but intrestingly attacking machine froze few mins after the attack. I tried it twice and both the times attacking machine froze.Why did it happen? Also I want to know i… Continue reading Does syn flooding affect attacking machine? [closed]
I have Samsung Galaxy Tab which runs Android 8.1. I recently came upon this vulnerability – CVE-2019-2107 (https://www.cvedetails.com/cve/CVE-2019-2107/) which apparently allows for remote code execution. I wanted to test this out on my ta… Continue reading RCE for CVE-2019-2107 on Android 8.1 [closed]
I am on Kali 2020.1, 64 bit. The source code is as follows:
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/stat.h>
#include “hacking.h”
#include <unistd.h>
#include <stdlib.h>
… Continue reading Why do I get a segmentation fault in the exploit_notesearch program from “Hacking: The Art of Exploitation”? [closed]
Look, I’ve been there too. First the project just prints debug information for a human in nice descriptive strings that are easy to understand. Then some tool needs to log a sensor value so the simple debug messages gain structure. Now your debug messages {{look like : this}}. This is …read more
Can’t one just implement a malloc/calloc wrapper that adds the returned pointer address to a global hash table prior to returning, and then a free wrapper that checks for the presence of the pointer in the table prior to freeing (returning… Continue reading Is it trivial to protect from double free just by LD_PRELOADing a custom malloc/calloc and free?
I am thinking of running my C++ Linux application via a mounted tmpfs. The idea is to have application client running in the embedded Linux platform and download the main application from a secure server into tmpfs with its necessary file… Continue reading Does running a sensitive application in tmpfs provides enough protection against application theft in my use case?
Older Android devices can be had for a song, and in many cases are still packing considerable computational power. With built in networking, a battery, and a big touch screen, they could easily take the place of a Raspberry Pi and external display in many applications. As it so happens, …read more
Continue reading Writing Android Apps in C, no Java Required
I wonder what’s the difference between:
struct A
{
struct B{};
};
and:
struct A{};
struct B:A{};