stack overflow – WindowsTechs.com

Can’t print hexadecimal formatted address in buffer overflow

Posted on April 30, 2024 by CJG

I’m trying to overwrite the return address caused by a buffer overflow. I’ve already calculated the distance between the buffer and the return address. The address that I want to jump to is 0x00005555555314 but every time I try to use \x14… Continue reading Can’t print hexadecimal formatted address in buffer overflow→

How to return to main after performing stack buffer overflow

Posted on March 16, 2024 by user88178

#include <stdio.h>
#include <stdlib.h>

void reading();
void reading_hexa(char*);
void secret();

int main()
{
reading();
printf("Input done\n");
exit(0);
}

void reading() {
char buf[16];
reading_… Continue reading How to return to main after performing stack buffer overflow→

Even though the $rax and $rbp-8 is eq it’s taking the jne path

Posted on September 14, 2023 by NobinPegasus

Here’s the C code:
#include<stdio.h>

int main(int argc, char **argv){
char a[100];
char *b;

printf("Welcome to SUST Dungeon Fellow Hacker!\n");
scanf("%s", &a);
if(b=="chiching&q… Continue reading Even though the $rax and $rbp-8 is eq it’s taking the jne path→

Does VxWorks has a stack canary mechanism?

Posted on July 31, 2023 by Moshe D

I’m trying to understand if VxWorks has the ability to support stack canary protection. I couldn’t find any info on that.

Continue reading Does VxWorks has a stack canary mechanism?→

bufferoverflow chars gets replaced on stack [closed]

Posted on June 21, 2023 by atcheckmate

So I try to understand stack based buffer-overflow but now I am stuck. This is the vulnerable function (32 bit ELF).
int test(char* input)
{
char buf[100];
printf("Buffer is at %p\n", &buf); // leak helper
strcpy(… Continue reading bufferoverflow chars gets replaced on stack [closed]→

Hackaday Links: December 11, 2022

Posted on December 12, 2022 by Dan Maloney

“They paved paradise and put up a parking lot.” That might be stretching things a bit, especially when the “paradise” in question is in New Jersey, but there’s a move …read more Continue reading Hackaday Links: December 11, 2022→

Is Stack Exchange immune to DDoS and DoS attacks?

Posted on October 19, 2022 by anon

I have heard that DDoS and DoS attacks work most of the time and that they are used when SQL insertion and other methods fail. I know Stack Exchange has a lot of programmers, and that they have this stack which deals with such things. What… Continue reading Is Stack Exchange immune to DDoS and DoS attacks?→

Why are stack canaries not enabled by default on GCC?

Posted on October 12, 2022 by vy32

I’m trying to understand why stack canaries are not enabled by default. It makes sense to me that they should be, given the interest in security? https://stackoverflow.com/questions/49693870/stack-canaries-can-be-disabled-by-compiler/49694… Continue reading Why are stack canaries not enabled by default on GCC?→

Unable to take control of RIP register

Posted on October 7, 2022 by KmerPadreDiPdor

I am currently following "Hacking: The Art of Exploitation", and I am stuck.
I am trying to fully understand the stack overflow vulnerability.
In the book, the process of overflowing is shown using a x86 architecture, I have a x6… Continue reading Unable to take control of RIP register→

Popular business web apps fail to implement critical password requirements

Posted on July 20, 2022 by Help Net Security

Specops Software released new research finding cybersecurity weaknesses in business web apps including Shopify, Zendesk, Trello, and Stack Overflow. Amid a wave of cybersecurity incidents related to the COVID-19 pandemic, remote work, and nation-state … Continue reading Popular business web apps fail to implement critical password requirements→