Announcement

Collapse
No announcement yet.

Another boring thread for newbies (BoF)

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Another boring thread for newbies (BoF)

    Sorry to post so many requests in one night. Anyone wanna take the time to show me in realtime (not real life, mind you; realtime) how to find and code my own buffer overflow exploits. I know a little ASM, obviously need to learn more. But I learn best kinestetically, and therefore would like to know anyone interested in teaching a newcomer. I've tried basic stuff like overflowing strcpy in windows (for the use of softice debugger) and can get arbitrary code on the stack. I just need a little guidance and someone to help streamline my method. :)

    Once again, anyone interested?

    --red0x

  • #2
    http://insecure.org has some interesting reading
    if it gets me nowhere, I'll go there proud; and I'm gonna go there free.

    Comment


    • #3
      Hands on

      anyone interested in some hands on teaching? Reading is all good, but it doesn't give the full idea.

      anyone?

      Comment


      • #4
        There is a new hack on win nt/2k/xp dealing with printers... yeah there have been a lot as of late. default setup comes with this vuln and you need to turn some stuff off by hand...

        there is a c script called jill.c

        there are two lines in there that cause the script to not work. find what those are. then look at the code and see how its written.

        it will compile with the the fucked up lines... then if you sorta get the format try porting it to java or something...

        love,
        simon
        "I'm not a robot like you. I don't like having disks crammed into me... unless they're Oreos, and then only in the mouth."

        Comment


        • #5
          try that jill.c on that box that c0nver9 setup... but try to port the code to something else so its not so lame just running a script.
          "I'm not a robot like you. I don't like having disks crammed into me... unless they're Oreos, and then only in the mouth."

          Comment


          • #6
            yes... please do I am NOT going to change my config to try an bypass your doing so.. I'd rather see it happen and know that there's something else I need to modify in the box setup on each def install
            if it gets me nowhere, I'll go there proud; and I'm gonna go there free.

            Comment


            • #7
              jill.c

              I already tried jill on converg's box: it didn't work. I have hacked win2k before with jill.c, with *no* modifications and it works. I know how to code, thats not what i need to learn. how do i find and write my own buffer overflows?

              --red0x

              Comment


              • #8
                Really? the xor'ed line for port and address '^=9595xxxx' didn't cause any problems?

                I haven't used that... only looked at it.
                "I'm not a robot like you. I don't like having disks crammed into me... unless they're Oreos, and then only in the mouth."

                Comment


                • #9
                  could that be a substitution for htons(port), because you have to put the port number into network alignment. Also, maybe i got a different version than you? I got one off securityfocus, and another off packetstorm..

                  --red0x

                  Comment


                  • #10
                    buffer overflows

                    All I want to say.

                    Do you want to really understand buffer overflows?
                    If your answer to the above is yes.

                    learn ASSEMBLY
                    ----------------------------------------------------------------
                    "Everything that's countable doesn't necessarily count. What counts isn't necessarily countable."
                    Albert Einstein

                    Comment


                    • #11
                      Trying to learn, but we have no classes at my school. Anyone want to lend some resources? I assume code.box.sk has at least a few links. I will start out, but where do i go from there?

                      --red0x

                      Comment


                      • #12
                        assembly

                        I am intending to write an assembly course myself over the vacation. If that happens I will tell you where to find the notes.

                        Later
                        Xp0nential
                        Nothing is relative, the way we look at things is relative
                        ----------------------------------------------------------------
                        "Everything that's countable doesn't necessarily count. What counts isn't necessarily countable."
                        Albert Einstein

                        Comment


                        • #13
                          that would be awesome.

                          --red0x

                          Comment


                          • #14
                            a couple of links for you to check out:

                            http://www.osdata.com/topic/language/asm/asmintro.htm
                            http://www.cs.wpi.edu/~jburge/courses/c01/cs2011/
                            http://www.stanford.edu/class/cs110/
                            http://birch.eecs.lehigh.edu/csc209/
                            http://www.ee.mtu.edu/faculty/rmkiec...-1-assembl.pdf
                            http://cs-www.bu.edu/faculty/snyder/cs210/Chapter6.pdf <--- you have to type the links to this page manually.... in Chapter6.pdf change the 6 ... it goes from 6->29 , 29 being the last chapter
                            http://chortle.ccsu.edu/AssemblyTuto...lContents.html
                            http://www.cs.uakron.edu/~margush/306/ppt/01_intro.ppt

                            .......... continues............

                            http://thsun1.jinr.ru/~alvladim/man/asm.html#2.3.2
                            http://heather.cs.ucdavis.edu/~matlo...xAssembly.html

                            http://webster.cs.ucr.edu/Page_asm/ArtOfAsm.html
                            http://asmjournal.freeservers.com/
                            http://www.int80h.org/bsdasm/
                            http://developer.apple.com/techpubs/...erics-145.html
                            http://linuxassembly.org/
                            http://linuxassembly.org/linasm.html
                            http://www.linuxdoc.org/HOWTO/Assembly-HOWTO/




                            of course go to the USenet Archive at www.deja.com
                            and look for asm
                            you should get two mailing lists. one of them is comp.lang.asm.x86
                            the other one is alt.lang.asm

                            did I say couple of links?
                            well I lied
                            *evil* grin
                            Xp0nential
                            ----------------------------------------------------------------
                            "Everything that's countable doesn't necessarily count. What counts isn't necessarily countable."
                            Albert Einstein

                            Comment


                            • #15
                              hahaha this is pretty good... little bit of reading, I'd say
                              if it gets me nowhere, I'll go there proud; and I'm gonna go there free.

                              Comment

                              Working...
                              X