Exploit-tech

Hi, I am Lazneca.0x0

These files are the example files used at "https://www.lazenca.net/display/TEC/06.Exploit+tech". I hope that I will be able to use the text that I wrote and these files to help people who are new to Hacking's exploit technology to understand the technology a little easier.

All my writings are written in Korean. If someone can translate the contents on my site in English. Please help me.

Site

• Web site : https://www.lazenca.net/
• Facebook: https://www.facebook.com/Lazenca.0x0/

Linux Kernel exploitation Tutorial.

• Linux Kernel exploitation Tutorial

Tutorial list

01.Shellcode

• 01.The basics technic of Shellcode
• 02.Create a shellcode that executes "/bin/sh"
• 03.Bind Shellcode
• 04.Reverse Shellcode
• 05.Pwntools Shellcode(Shellcraft)

02.Return to Shellcode

03.RTL(Return to libc)

• 01.RTL(Return to Libc) - x86
• 02.RTL(Return to Libc) - x64

04.Frame faking(Fake ebp)

05.Frame Pointer Overwrite

• 01.Frame Pointer Overwrite(One-byte Overflow) - x86
• 02.Frame Pointer Overwrite(One-byte Overflow) - x64

06.ROP(Return Oriented Programming)

• 01.ROP(Return Oriented Programming)-x86
• 02.ROP(Return Oriented Programming)-x64
• 03.ROP(Return Oriented Programming) - mmap, mprotect

07.SROP(Sigreturn-oriented programming)

• 01.SROP(Sigreturn-oriented programming) - x86
• 02.SROP(Sigreturn-oriented programming) - x64

08.BROP(Blind Return Oriented Programming)

09.Race condition

10.One-gadgets(feat. PLT/GOT overwrite)

11.Heap Spray

12.Heap Feng Shui

13.JOP(Jump-Oriented Programming)

14.Return-to-csu(__libc_csu_init)

• 01.Return-to-csu (feat.JIT ROP) - x64
• 02.Return-to-csu(feat.Return-to-vuln, Just-In-Time Code Reuse) - x64

15.Return-to-dl-resolve

• 01.Return-to-dl-resolve - x86
• 02.Return-to-dl-resolve - x64(feat.Return-to-csu)

16.Stack pivot