목록Security (21)
Zer0 day
Cross-Compiler & Remote Debugging with gdb on Linux1. Installing Cross-Compiler for MIPS, ARM, PPC, etc... 12345678910sudo apt-get install -y gcc-multilib-arm-linux-gnueabisudo apt-get install -y gcc-multilib-arm-linux-gnueabihfsudo apt-get install -y gcc-multilib-mips-linux-gnusudo apt-get install -y gcc-multilib-mips64-linux-gnuabi64sudo apt-get install -y gcc-multilib-mips64el-linux-gnuabi64s..
보호되어 있는 글입니다.
SigReturn Oriented ProgrammingThis time I gonna post about SROP on x86, x86-64 linux(ubuntu). When i solved pwnable.kr 'unexploitable' challenge, there are over 2-way solutions. one is SROP(original intend) and another is ROP. So, i just decided to post 'SROP' tech. Surely there are differences, ROP and SROP. In short, when doing SROP, all we need is 'int 0x80;ret' and control of eax gadgets lik..
Return Oriented ProgrammingThis time i gonna introduce about ROP attack(Return Oriented Programming). Before doing ROP, there are prior knowledges. 'RTL Chaining', 'GOT Overwrite/Dereference', 'Gadget', etc... - RTL Chaining'RTL Chaining' means continuously executed RTL. By using pop-..-ret gadget, function's arguments will be popped by 'pop' and next function will be executed by 'ret'. and goin..