|
Exploiting This section contains vulnerable progs, which all can be exploited with basic knowledge of buffer overflows/insecure coding, unix and c programming. Your "quest", if you like, is to read the "Description" and try to figure out an exploit by yourself; "Exploit" is a possible solution. All progs here were coded on FreeBSD, so change the shellcode if you have another *nix. I'd like to add more examples like formatstrings, heap overflows, off-by-one, etc. so if you like to, send me your own "quest" (vulnprog + exploit) with exact description and i will add them here. Meanwhile check out http://community.core-sdi.com/~gera/InsecureProgramming/ for more advanced examples (no solutions provided, if your write some send them to me and i will add the solutions to my section linking the actual "quest" on his site). |
||
| Understanding the Stack int_array.c | Description | Exploit |
| Understanding the Stack char_array.c | Description | Exploit |
| Exploiting sprintf.c on FreeBSD (sprintf) | Description | Exploit |
| Exploiting rendate.c on FreeBSD (strcpy) | Description | Exploit |
| Exploiting directory.c on FreeBSD (strcpy) | Description | Exploit |
| Exploiting gets.c on FreeBSD (gets) | Description | Exploit |
| Exploiting getchar.c on FreeBSD (getchar) | Description | Exploit |
| Exploiting scanf.c on FreeBSD (scanf) | Description | Exploit |
| Exploiting "victim.c" on FreeBSD (strcpy) | Description | Exploit |
| Exploiting "race1.c" on FreeBSD (race condition) | Description | Exploit |
|
Shellcodes Shellcodes for Unix Just fetch the tarball from LSD (Last Stage of Delirium - to give proper credit), since there website went offline i have a copy here |