All Questions

4 questions

1vote

1answer

468views

Developing MIPS exploit in python memory address getting parse as a value [closed]

I am trying to develop an exploit in python. but I am not able to write an proper exploit. Below are the scenarios were i am facing problem. below is the HTTP request which occurs the crash POST /cgi-...

Security Beast

asked Jun 8, 2018 at 10:19

2votes

1answer

3kviews

stdin does not wait for next input after ROP chain

I was trying to exploit a vulnerability in a ctf but I can not make fgets() reopen stdin to put my second stage ROP chain. I am using pwntool but the problem is more socket oriented. I recreated ...

ItsYou

asked Apr 5, 2018 at 16:54

3votes

0answers

842views

Bypass DEP using NtSetInformationProcess on last Windows XP SP3 Pro update

Following the example of corelan team ROP version 2 (I was able to perform version 1): https://www.corelan.be/index.php/2010/06/16/exploit-writing-tutorial-part-10-chaining-dep-with-rop-the-rubikstm-...

Lucian Nitescu

1,920

asked Sep 6, 2017 at 0:16

2votes

2answers

4kviews

Python exploit question?

Can someone please explain how and why this struct.pack code is used in the below exploit? I'm trying to understand how it triggers the vulnerability. I understand the buffer overflow aspect, I'm ...

nanotechz9l

asked Feb 28, 2014 at 6:56

Stack Exchange Network

All Questions

Developing MIPS exploit in python memory address getting parse as a value [closed]

stdin does not wait for next input after ROP chain

Bypass DEP using NtSetInformationProcess on last Windows XP SP3 Pro update

Python exploit question?

Hot Network Questions

All Questions

Related Tags