Sorry to post so many requests in one night. Anyone wanna take the time to show me in realtime (not real life, mind you; realtime) how to find and code my own buffer overflow exploits. I know a little ASM, obviously need to learn more. But I learn best kinestetically, and therefore would like to know anyone interested in teaching a newcomer. I've tried basic stuff like overflowing strcpy in windows (for the use of softice debugger) and can get arbitrary code on the stack. I just need a little guidance and someone to help streamline my method. :)

Once again, anyone interested?

--red0x

http://insecure.org has some interesting reading

anyone interested in some hands on teaching? Reading is all good, but it doesn't give the full idea.

anyone?

There is a new hack on win nt/2k/xp dealing with printers... yeah there have been a lot as of late. default setup comes with this vuln and you need to turn some stuff off by hand...

there is a c script called jill.c

there are two lines in there that cause the script to not work. find what those are. then look at the code and see how its written.

it will compile with the the fucked up lines... then if you sorta get the format try porting it to java or something...

love,
simon

try that jill.c on that box that c0nver9 setup... but try to port the code to something else so its not so lame just running a script.

yes... please do I am NOT going to change my config to try an bypass your doing so.. I'd rather see it happen and know that there's something else I need to modify in the box setup on each def install

I already tried jill on converg's box: it didn't work. I have hacked win2k before with jill.c, with *no* modifications and it works. I know how to code, thats not what i need to learn. how do i find and write my own buffer overflows?

--red0x

Really? the xor'ed line for port and address '^=9595xxxx' didn't cause any problems?

I haven't used that... only looked at it.

could that be a substitution for htons(port), because you have to put the port number into network alignment. Also, maybe i got a different version than you? I got one off securityfocus, and another off packetstorm..

--red0x

All I want to say.

Do you want to really understand buffer overflows?
If your answer to the above is yes.

learn ASSEMBLY

Trying to learn, but we have no classes at my school. Anyone want to lend some resources? I assume code.box.sk has at least a few links. I will start out, but where do i go from there?

--red0x

I am intending to write an assembly course myself over the vacation. If that happens I will tell you where to find the notes.

Later
Xp0nential
Nothing is relative, the way we look at things is relative

that would be awesome.

--red0x

a couple of links for you to check out:

http://www.osdata.com/topic/language/asm/asmintro.htm
http://www.cs.wpi.edu/~jburge/courses/c01/cs2011/
http://www.stanford.edu/class/cs110/
http://birch.eecs.lehigh.edu/csc209/
http://www.ee.mtu.edu/faculty/rmkieckh/cla/3170/II-1-assembl.pdf
http://cs-www.bu.edu/faculty/snyder/cs210/Chapter6.pdf <--- you have to type the links to this page manually.... in Chapter6.pdf change the 6 ... it goes from 6->29 , 29 being the last chapter
http://chortle.ccsu.edu/AssemblyTutorial/tutorialContents.html
http://www.cs.uakron.edu/~margush/306/ppt/01_intro.ppt

.......... continues............

http://thsun1.jinr.ru/~alvladim/man/asm.html#2.3.2
http://heather.cs.ucdavis.edu/~matloff/50/LinuxAssembly.html

http://webster.cs.ucr.edu/Page_asm/ArtOfAsm.html
http://asmjournal.freeservers.com/
http://www.int80h.org/bsdasm/
http://developer.apple.com/techpubs/mac/PPCNumerics/PPCNumerics-145.html
http://linuxassembly.org/
http://linuxassembly.org/linasm.html
http://www.linuxdoc.org/HOWTO/Assembly-HOWTO/




of course go to the USenet Archive at www.deja.com
and look for asm
you should get two mailing lists. one of them is comp.lang.asm.x86
the other one is alt.lang.asm

did I say couple of links?
well I lied
*evil* grin
Xp0nential

hahaha this is pretty good... little bit of reading, I'd say

http://www.linuxfocus.org/English/November2001/article203.shtml


notice Part 3 is about buffer overflow.
But you would want to read all the parts they seem very interesting.

also http://www.hert.org/papers/format.html
in general http://www.linuxsecurity.com is a site to browse a bit and read when you can
later
Xp0nential