dep – Page 3 – WindowsTechs.com

Using .data segment for Code Execution with DEP Enable

Posted on July 11, 2017 by NetSec

Sorry if this seems like a silly question. I am working on practicing backdooring applications for a cert I am working on, and one of the methods is to use existing code caves. The issue is, these caves are often found in the… Continue reading Using .data segment for Code Execution with DEP Enable→

Using .data segment for Code Execution with DEP Enable

Posted on July 11, 2017 by NetSec

Google Patches Critical ‘Broadpwn’ Bug in July Security Update

Posted on July 6, 2017 by Tom Spring

The July Android Security Bulletin patches 11 critical remote-code execution bugs including one dubbed ‘Broadpwn’ that impacts both Android and iOS devices. Continue reading Google Patches Critical ‘Broadpwn’ Bug in July Security Update→

RE: Is Enabling DEP (Data Execution Prevention) For All Programs Worth the Risks?

Posted on May 15, 2017 by wfredsr

In the previous question “Is Enabling DEP (Data Execution Prevention) Worth the Risks?”

For All Programs”, my question is:

Is Disabling DEP (Data Execution Prevention) For ANY Program worth the risks? Specifically, I’m look… Continue reading RE: Is Enabling DEP (Data Execution Prevention) For All Programs Worth the Risks?→

Security Analyst Summit 2017 Day One Recap

Posted on April 3, 2017 by Chris Brook

Mike Mimoso and Chris Brook recap the first day of this year’s Security Analyst Summit, including Mark Dowd’s memory corruption bug keynote, the digital archeology around Moonlight Maze, ATM hacking, and the Lazarus APT. Continue reading Security Analyst Summit 2017 Day One Recap→

Firefox 52 Expands Non-Secure HTTP Warnings, Enables SHA-1 Deprecation

Posted on March 8, 2017 by Chris Brook

The latest version of Firefox expands non-secure HTTP warnings, enables SHA-1 deprecation by default, and removes support for NPAPI. Continue reading Firefox 52 Expands Non-Secure HTTP Warnings, Enables SHA-1 Deprecation→

How to bypass DEP and ASLR at the same time?

Posted on January 2, 2017 by freedom2

I have read some articles about bypassing DEP and ASLR , but it seems that they bypass ASLR and DEP by using the instructions in the modules not applying ASLR.But how to bypass ASLR and DEP in the modules applying both this … Continue reading How to bypass DEP and ASLR at the same time?→

ROP – pop eax, ret gadget doesn’t work

Posted on December 3, 2016 by cc315

I am building a ROP chain for a security challenge. I have a problem in my ROP chain. I found some interesting gadgets with ropshell.com, and they seem to work pretty well except one. Indeed I follow the stack pointer on gdb … Continue reading ROP – pop eax, ret gadget doesn’t work→

SEH overwrite attack details

Posted on November 30, 2016 by Infinite

If there are canaries on stack, why does not the exception handler check the integrity of canaries? Why does it continue executing a manipulated exception handler?

Will corrupting a canary trigger an exception? Is this a common way to tri… Continue reading SEH overwrite attack details→

Compiling a buffer overflow example in modern Linux?

Posted on September 15, 2015 by B-MO

I’m trying to compile a simple buffer overflow example on a Debian i386 VM. The executable builds ok, but EIP does not get overwritten correctly despite being supplied a sufficiently large input to overflow the buffer and overwrite the pu… Continue reading Compiling a buffer overflow example in modern Linux?→