Collaborate Disseminate
So, I’m trying to exploit this program that has a buffer overflow vulnerability to get/return a password behind a locked .txt contains the password. I shouldn’t need to use GDB for this.
vuln.c //no edits
#include <stdio… Continue reading Buffer overflow attack, getting password from locked text file
I generally zero out memory the moment it’s served its usefulness, but only with heap-allocated chunks. Is it a sin (or overkill) to do the same with arguments and stack values? Thanks in advance.
Edit:
Here’s an example of what I mean… Continue reading Is zeroing out values on the stack and arguments overkill?
Why to exploit LD_PRELOAD like is shown here https://touhidshaikh.com/blog/?p=827 in the .c file the first instruction is unsetenv(LD_PRELOAD)? Is it a routine action which all shared libraries do? Or what? I’ve tried to run … Continue reading Why in LD_PRELOAD exploit we call unsetenv(LD_PRELOAD)?
I wanted to exploit this code using format string vulnerability:
int jackpot;
void fmt_str(void)
{
char buf[128];
puts(“Give me a string to print”);
read(0, buf, 128);
printf(buf);
printf(“jackpot @ %p … Continue reading Format String Vulnerability – Can’t read an address from stdin with read() in C
I’m trying to exploit the following code with a buffer overflow and make it run the overflowed function:
#include <string.h>
#include <stdio.h>
void overflowed() {
printf(“%s\n”, “Execution Hijacked”… Continue reading Problem with overwriting the return address (buffer overflow)
#include <stdio.h>
int main() {
int secretInts[] = {13, 98, 4, 21};
int publicInts[] = {1,2,3,4,5,6,7,8,9};
int input, i=0;
printf(“Enter the number of intergers you want to view: “);
scanf_s(“%d”, … Continue reading Which line in this code is the source of an information disclosure vulnerability? why? how can it be fixed?
I am implementing a C++ server with a mariadb backend. I have to access my database and I do so using the mariadbpp (its c++ connector). Though I can use mysql_config_editor and store the passwords in an (encrypted) .cnf file, mariadbpp’s … Continue reading Is it secure to store my mysql password in a const std::string?
Over at $DAYJOB’s blog I’ve queued up a post that shows how to use our new opendata🔗 package to work with our Open Data portal’s API. I’m not super-sure when it’s going to be posted so keep an RSS reader fixed on h… Continue reading Quick Hit: Speeding Up a Slow/Mundane Task with a Little Rcpp
Is there a way to make a process hidden without using any Administrator-level priviledges? I am building an antivirus which I want to protect from malware’s actions, such as ending the process, or even detecting it. BTW, the … Continue reading How to hide a process in Windows?
As a layperson reading about some branches of mathematics, it often seems like mathematicians are just people who really like to create and solve puzzles. And, knowing that computer science shares a lot of its fundamentals with mathematics, we can assume that most computer scientists are also puzzle-solvers as well. This latest project from [tom7] shows off his puzzle creating and solving skills with a readable file which is also a paper, which is also a compiler for C programs, which can also play music.
[tom7] started off with the instruction set for the Intel 8086 processor. Of the instructions …read more