Difference between revisions of "Buffer Overflow"
(Eine kleine Einleitung...) |
|||
(11 intermediate revisions by 7 users not shown) | |||
Line 1: | Line 1: | ||
+ | Ein Buffer Overflow, ein Pufferüberlauf, tritt auf, wenn zu viele Daten in einen zu klein dimensionierten Speicherbereich geschrieben oder unsichere Bibliotheksfunktionen genutzt werden. | ||
+ | |||
==Links== | ==Links== | ||
===Stack-based Buffer Overflows=== | ===Stack-based Buffer Overflows=== | ||
− | :* Buffer Overflows Demystified: http://www. | + | :* Buffer Overflows Demystified: http://www.enderunix.org/documents/eng/bof-eng.txt |
− | :* Smashing the stack for fun and profit | + | :* Smashing the stack for fun and profit : http://www.phrack.org/phrack/49/P49-14 |
− | :* Smashing the stack for fun and profit | + | :* Smashing the kernel stack for fun and profit : http://www.phrack.org/phrack/60/p60-0x06.txt |
===Heap-based Buffer Overflows=== | ===Heap-based Buffer Overflows=== | ||
Line 11: | Line 13: | ||
:* http://www.phrack.org/show.php?p=57&a=8 | :* http://www.phrack.org/show.php?p=57&a=8 | ||
:* http://www.phrack.org/show.php?p=57&a=9 | :* http://www.phrack.org/show.php?p=57&a=9 | ||
− | :* http://www. | + | :* http://www.secinf.net/uplarticle/1/heaptut.txt |
===Shellcode=== | ===Shellcode=== | ||
Line 21: | Line 23: | ||
===Assembler=== | ===Assembler=== | ||
− | :* How do I write "hello, world" in FreeBSD assembler: http:// | + | :* How do I write "hello, world" in FreeBSD assembler: http://user.nj.net/~tms/hello.html || UP! |
:* The Art of Assembly Language: http://webster.cs.ucr.edu/ | :* The Art of Assembly Language: http://webster.cs.ucr.edu/ | ||
− | :* http://www.freebsd.org/doc/en_US.ISO8859-1/books/developers-handbook/x86.html | + | :* http://www.freebsd.org/doc/en_US.ISO8859-1/books/developers-handbook/x86.html |
+ | :* http://asm.sourceforge.net/resources.html#docs | ||
===Weiteres=== | ===Weiteres=== | ||
Line 45: | Line 48: | ||
:* binary editor: http://biew.sourceforge.net/ | :* binary editor: http://biew.sourceforge.net/ | ||
:* ht editor: http://hte.sf.net/ | :* ht editor: http://hte.sf.net/ | ||
− | :* | + | :* inline-assembly für python: http://oss.coresecurity.com/projects/inlineegg.html |
+ | |||
+ | [[Category:Hacks]] |
Latest revision as of 16:18, 7 August 2008
Ein Buffer Overflow, ein Pufferüberlauf, tritt auf, wenn zu viele Daten in einen zu klein dimensionierten Speicherbereich geschrieben oder unsichere Bibliotheksfunktionen genutzt werden.
Contents
Links
Stack-based Buffer Overflows
- Buffer Overflows Demystified: http://www.enderunix.org/documents/eng/bof-eng.txt
- Smashing the stack for fun and profit : http://www.phrack.org/phrack/49/P49-14
- Smashing the kernel stack for fun and profit : http://www.phrack.org/phrack/60/p60-0x06.txt
Heap-based Buffer Overflows
Shellcode
- ia64 shellcode: http://www.phrack.org/show.php?p=57&a=5
- Multi-platform shellcode: http://www.phrack.org/show.php?p=57&a=14
- Shellcode für verschiedene Unices entwickeln: http://lsd-pl.net/unix_assembly.html
Assembler
- How do I write "hello, world" in FreeBSD assembler: http://user.nj.net/~tms/hello.html || UP!
- The Art of Assembly Language: http://webster.cs.ucr.edu/
- http://www.freebsd.org/doc/en_US.ISO8859-1/books/developers-handbook/x86.html
- http://asm.sourceforge.net/resources.html#docs
Weiteres
- InsecureProgramming?: http://community.core-sdi.com/~gera/InsecureProgramming
- http://community.corest.com/~juliano/
- Secure Programming: http://www.freebsd.org/doc/en_US.ISO8859-1/books/developers-handbook/secure.html
- http://www.hackersplayground.org/papers.html
- http://www.theta44.org/main.html
- Das Sicherheitsloch Buffer-Overflows und wie man sich davor schützt http://www.heise.de/ct/01/23/216/
Workshopfolien
- die Folien vom ersten Vortrag findet man fier: http://untergrund.bewaff.net/~chris/BO_1.pdf
- und vom zweiten: http://untergrund.bewaff.net/~chris/BO_2.pdf
t00lZ
- elf shell: http://www.devhell.org/~mayhem/projects/elfsh/
- bastard disassembler: http://bastard.sourceforge.net/
- binary editor: http://biew.sourceforge.net/
- ht editor: http://hte.sf.net/
- inline-assembly für python: http://oss.coresecurity.com/projects/inlineegg.html