Skip to content

Latest commit

 

History

History

05-unused

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
.gitignore
.gitignore
 
 
.record.sh
.record.sh
 
 
05-unused.cast
05-unused.cast
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
hello.s
hello.s
 
 
inject.py
inject.py
 
 
victim.c
victim.c
 
 

README.md

Unused code region overwrite

The files in this directory demonstrates an injection technique writing the shellcode in unused executable memory regions of the C library of a target process.

  • hello.s contains the shellcode that will be injected into the process. It coordinates with the loader to run the payload inside a thread and run control transparently. The payload simply prints Hello World!\n in a loop.

  • victim.c is a simple program that prints it's pid and sleeps for a second, in a loop.

  • ptrace.py contains the shellcode injection program. It takes the shellcode to inject and the target process's pid as its arguments.

Example usage

# build everything
make

# run victim program
./victim

# in another terminal
python3 inject.py ./hello $(pgrep victim)