All Questions

3 questions

2votes

1answer

365views

How to exploit buffer overflow without space after return address?

I'm working on a binary exploitation challenge where the target (ELF/x86_64) has stack canaries, NX and PIE enabled. It implements a simple forking TCP server. After a connection is established, it ...

hackedd

asked Jun 9, 2019 at 9:29

8votes

2answers

870views

When is memory allocation/layout deterministic?

I'm trying to learn about buffer overflow attacks, both on the stack and on the heap. However, I'm confused about when it's possible to determine the address of the buffer. The classic "Smashing the ...

lily

asked Feb 4, 2015 at 2:11

3votes

1answer

2kviews

Bypass Full ASLR+DEP exploit mitigation

Let's assume that a vulnerabled process is set up with an ASLR and DEP against all the imported modules used in this process and there is no way to find a module that is aslr free.. More over, the ...

JDeff

asked Nov 1, 2014 at 15:58

Stack Exchange Network

All Questions

How to exploit buffer overflow without space after return address?

When is memory allocation/layout deterministic?

Bypass Full ASLR+DEP exploit mitigation

Hot Network Questions

All Questions

Related Tags