Collaborate Disseminate
I’m currently trying out a simple format string vuln exploit. The target program looks like this:
int main(int argc, char *argv[])
{
char buffer[1024];
strncpy(buffer, argv[1], sizeof(buffer));
printf(buffer);
… Continue reading Shellcode as part of format string buffer
I’m exploiting a buffer overflow in C to execute arbitrary code, but the shellcode I’m using crashes when it encounters the opcode 0x57.
The BOF is created by a scanf, which puts the input in a buffer. My BOF already correct… Continue reading Shellcode using Intel 86_64’s opcode 0x57 crashes
Okay, so I am developing a kernel module that does kernel mode hooking to hook APIs and modify some values. But is there anyway I could tell if what program called a specific API? Say a program from user-land calls NtQuerySys… Continue reading How to find out what program called an API in windows?
C is the most perfect language and it will run on anything. It will even run on a computer without a CPU.
The computer in question here is the Gigatron, a fully-functional ‘home computer’ the likes of which you would find in the late 70s and early 80s, complete with …read more
I’m talking about the overflow flag that is used in some architectures like x86:
https://en.wikipedia.org/wiki/Overflow_flag
why aren’t operating systems using this overflow flag to stop integer overflows?
what is the usag… Continue reading If x86 architecture has overflow flag in the CPU, then why can’t we use it to detect integer overflows in C binaries?
Every 3 seconds, the Server sends the Client a command to ask for data, e.g., through a single letter “R” or “r” (request).
In C program run on visual Studio 2019
I am trying to figure out how to write a plugin in ettercap which modifies the payload of a packet. I have a vm with a simply python socket server and a simply python client on the ettercap machine. Once a second it just send… Continue reading ettercap packet modification
I have a simple C program that asks for two inputs
I’m trying to overflow them so that I can access a shell, but I’m not sure what I need to do to access the shell.
I can overflow them to just print out the wrong values or g… Continue reading How to make a buffer overflow run shell? [on hold]
If you keep up with the field of web development, you may have heard of WebAssembly. A relatively new kid on the block, it was announced in 2015, and managed to garner standardised support from all major browsers by 2017 – an impressive feat. However, it’s only more recently that …read more
Continue reading WebAssembly: What Is It And Why Should You Care?
I’m trying to communicate in https with a server using WinInet (from the Win32 API).
Here is a very minimalist code :
HINTERNET ses = InternetOpenA(“test”,INTERNET_OPEN_TYPE_DIRECT,NULL,NULL,0) ;
HINTERNET con = InternetCon… Continue reading Client authentication (certificate + private key) using WinInet