basics-of-pwn

My course work about basic binary exploitation.

Table of Contents

• Memory layout of the process
• ELF and its key things
  • ELF format
  • Features of ELF
• Vulnerabilities types
  • Buffer overflow
    • Structure within the stack
    • Exploitation
    • Vulnerable code
  • Stack overflow
    • Jump to an arbitrary address
    • Shellcode writing
    • Exploitation
    • NOP chain
    • pwntools
  • Format string vulnerability
    • View vulnerability
    • Format string specifiers
    • Read arbitrary data
    • Jump to an arbitrary address
    • Writing in several stages
    • Exploitation
  • [Heap overflow]
• [Security techniques]
  • [Non-Executable Stack(NX)]
  • [Address Space Layout Randomization(ASLR)]
  • [Stack canary]
  • [Position Independent Executable(PIE)]
  • [Relocation Read-Only]

Resources

ELF

• wiki
• pdf book

syscalls tables

• x86 syscalls table
• x86-64 syscalls talbe

gef

• docs
• repo

gdb

• unset environement

pwntools

• docs
• repo

Format string

• stanford pdf