Binary Exploitation
Binary Exploitation
| Praktika | 6 SWS / 10,0 ECTS (Kursbeschreibung) |
| Veranstalter: | Julian Kirsch |
| Zeit und Ort: | Mi, 14:00 – 15:30 Uhr, 01.05.013 |
| Beginn: | 2017-04-26 |
Die Veranstaltung wird in Deutsch gehalten
Additional Information:Here
Termine
- 23.01.2017, 15:15 Uhr: Kick-Off meeting in Room 01.08.033 [slides]
Registration
Please solve a qualification task if you want to participate in the course. Send the solution via e-mail to the advisors and dont forget to register for the course in the matching system. Details can be found in the slides of the kickoff-meeting.
Current standings for the 17s qualifier (2017-02-08 23:51): 11/14
Inhalte
- Analyseprogramme
- Kontrollflussänderung druch Bufferoverflows
- Grundlagen Stack-based buffer overflows und Shellcodeausführung
- Fortgeschritte Exploittechniken zur Umgehung von Stackoverflow-Schutzmechanismen
- Grundlagen Heap-based buffer overflows und Shellcodeausführung
- Fortgeschritte Exploittechniken zur Umgehung von Heapoverflow-Schutzmechanismen
Vorkenntnisse
Grundlagenwissen über Betriebssysteme, C und Linux.
Literatur
 |
IT-Sicherheit: Konzepte, Verfahren, Protokolle Claudia Eckert, 9. Auflage, De Gruyter, 2014. |
 |
Hacking: The Art of Exploitation |
 |
Exploiting Software: How to break code G. Hoglund und G. McGraw, Addison-Wesley, 2004. |
Links
- Aleph One. "Smashing The Stack For Fun And Profit." Phrack 49. 1996.
http://www.phrack.org/issues.html?id=14&issue=49 - klog. "The Frame Pointer Overwrite." Phrack 55. 1999.
http://www.phrack.org/issues.html?issue=55&id=8 - Nergal. "The advanced return-into-lib(c) exploits: PaX case study." Phrack 58. 2001.
http://www.phrack.org/issues.html?issue=58&id=4 - Bulba and Kil3r. "Bypassing Stackguard and Stackshield". Phrack 56. 2000.
http://www.phrack.org/issues.html?issue=56&id=5 - Michael Kaempf. "Vudo - An object superstitiously believed to embody magical powers."
Phrack 57. 2001.
http://www.phrack.org/issues.html?issue=57&id=8 - Anonymous. "Once upon a free()." Phrack 57. 2001.
http://www.phrack.org/issues.html?issue=57&id=9 - jp. "Advanced Doug lea's malloc exploits." Phrack 61. 2003.
http://www.phrack.org/issues.html?issue=61&id=6 - Phantasmal Phantasmagoria. "Malloc Maleficarum". Buqtraq. 2005.
http://www.packetstormsecurity.org/papers/attack/MallocMaleficarum.txt - blackngel. "MALLOC DES-MALEFICARUM." Phrack 66. 2009.
http://www.phrack.org/issues.html?issue=66&id=10