Questions about this topic? Sign up to ask in the talk tab.

Search results

From NetSec
Jump to: navigation, search

  • Classes/Logs/2012/September/21/00-01
    00:42:54 <hatter> these buffers are usually adjacent in some way in memory, either with a predictable offset, within the same stack segment, or a mixt ...sequence of data that forms a logical chain of functional programming with address indexing
    10 KB (1,417 words) - 03:22, 21 September 2012
  • Classes/Logs/2012/September/19/00-01
    <m4> a register is basically a location where a small amount of memory can be stored <m4> that eip holds the memory address of the current instruction that is being executed
    15 KB (2,829 words) - 01:53, 20 September 2012
  • Shellcode/Appendix
    jmp inject_loop #places shellcode into mmap() memory push %eax #pushes mmap memory address and returns to it
    36 KB (5,340 words) - 20:07, 25 May 2013
  • Classes/Logs/2012/September/20/02-03
    ...06:05 <@rorschach> ok, so a traced process can have it's memory read, it's memory can be written to freely, signals can be caught, the registers can be read 06:15 <@rorschach> addr is the address to be read / written from in requests that it's relevant, when it's not, se
    13 KB (1,669 words) - 21:50, 20 September 2012
  • Shellcode/Loaders
    ...command line argument and passing it to freshly allocated executable [[ram|memory space]]. This article examines the construction of such a loader for [[Lin === Executable memory allocation with mmap() ===
    9 KB (1,318 words) - 03:18, 25 April 2013
  • Shellcode/Environment
    lea -1(%rip), %rax ; the %rax register now contains the address of `pc'. ...er overflow]], assuming that the nop sled does not modify the stack, the [[memory addresses|pointer]] to the beginning of the executing code is at -0x8(%rsp)
    6 KB (947 words) - 03:32, 25 April 2013
  • Shellcode/Dynamic
    ...he ''_world'' label and never returns. This is how the [[memory addresses|address]] of ''invoke_function'' is stored in the %rcx register, allowing developer ...place the absolute address to the string table into %rax and the absolute address to the dynamic symbol table into %rbx.
    15 KB (2,316 words) - 03:35, 25 April 2013
  • Shellcode/Parsing
    ...the runtime linker must be able to parse the library and return the memory address/pointer for the start of any given function. ...ithin the run-time environment and calls already existing functions out of memory. This will save the programmer time and size, and potentially even allow t
    7 KB (1,026 words) - 03:27, 25 April 2013
  • DDoS Attacks/takedowns/Krashed
    tn.read_until("Configuring from terminal, memory, or network [terminal]?", timeout=2) ...in enumerate(ips): # if there is a letter in the IP, resolve it to an IP address
    18 KB (1,097 words) - 04:40, 20 November 2012
  • Shellcode/Alphanumeric
    The steps taken in order to obtain the address to the beginning of the [[shellcode]] in only [[Alphanumeric_shellcode|alph The most recently returned-from [[return address]] is then moved into ''%rsi'' through the use of an ''[[xor]]'' mov emulati
    24 KB (3,808 words) - 03:31, 25 April 2013
  • Shellcode/Null-free
    ...urn address]] is successfully overwritten, the program [[ROP|returns to an address]] controlled by the attacker -- forcing the processor to execute the code w ...address]] to be overwritten. When the [[return address]] is changed to an address outside the context of the [[application|application's]] ability to access,
    27 KB (4,175 words) - 17:40, 16 May 2013

View (previous 20 | next 20) (20 | 50 | 100 | 250 | 500)

Retrieved from "http://nets.ec/Special:Search"