Differences
This shows you the differences between two versions of the page.
|
cns:lectures:lecture-04 [2014/10/23 09:47] razvan.deaconescu |
cns:lectures:lecture-04 [2019/10/27 12:31] (current) razvan.deaconescu |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== Lecture 04 - The Stack. Buffer Management ====== | + | ====== Lecture 04 - Exploiting. Shellcodes ====== |
| - | *[[http://elf.cs.pub.ro/cns/res/lectures/lecture-04.pdf | Slides]] | + | * [[http://elf.cs.pub.ro/cns/res/lectures/04-exploiting-handout.pdf|Slides]] |
| - | ***Keywords**: address space, stack, push, pop, stack frame, call stack, stack trace, ''call'', ''ret'', buffer, allocation, buffer overflow, return address, NOP sled, shellcode | + | * **Keywords**: bugs, vulnerabilities, exploit, shellcode, shellcode construction, shellcode triggering, shellcode placing, syscall, null, stack buffer overflow |
| <html> | <html> | ||
| - | <iframe src="http://docs.google.com/viewer?url=http://elf.cs.pub.ro/cns/res/lectures/lecture-04.pdf&embedded=true" width="600" height="470" style="border: none;"></iframe> | + | <center> |
| + | <iframe src="https://docs.google.com/viewer?url=http://elf.cs.pub.ro/cns/res/lectures/04-exploiting-handout.pdf&embedded=true" width="600" height="470" style="border: none;"></iframe> | ||
| + | </center> | ||
| </html> | </html> | ||
| + | ===== Demos ===== | ||
| + | |||
| + | For obtaining the [[http://elf.cs.pub.ro/cns/res/lectures/04-exploiting-demo.zip|demo archive]], run the following commands: | ||
| + | <code bash> | ||
| + | wget http://elf.cs.pub.ro/cns/res/lectures/04-exploiting-demo.zip | ||
| + | unzip 04-exploiting-demo.zip | ||
| + | cd 04-exploiting-demo/ | ||
| + | </code> | ||
| + | |||
| + | /* | ||
| + | |||
| + | ====== Lecture 04 - Processes. Dynamic Analysis. GDB ====== | ||
| + | |||
| + | * [[https://elf.cs.pub.ro/cns/res/lectures/lecture-04.pdf|Slides]] | ||
| + | * **Keywords**: static analysis, dynamic analysis, process, blackbox, profiling, debugging, fuzzing, strace / ltrace, lsof / pmap, perf, GDB, LLDB, JTAG, breakpoint, ''info'', ''examine'', ''ni'', ''si'', ''backtrace'', ''up'', ''down'', ''write'', ''searchmem'', dynamic linking, dynamic loading, lazy binding, trampoline, PLT, GOT | ||
| + | |||
| + | <html> | ||
| + | <center> | ||
| + | <iframe src="https://docs.google.com/viewer?url=https://elf.cs.pub.ro/cns/res/lectures/lecture-04.pdf&embedded=true" width="600" height="470" style="border: none;"></iframe> | ||
| + | </center> | ||
| + | </html> | ||
| + | |||
| + | */ | ||
