Skip to content

codecorrect/Vulnserver-Fuzzer-Lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
1_fuzzer.py
1_fuzzer.py
 
 
2_eip_hunter.py
2_eip_hunter.py
 
 
3_shellcode.py
3_shellcode.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Final Project files for Cybersecurity Bootcamp. Ran against VulnServer running on a Windows server to find a buffer overflow in the VulnServer program.

1_Fuzzer.py is used to send increasingly longer data til VulnServer crashes, that gives us the ballpark of the characters needed for the overflow.

2_eip_hunter.py is used to send a nonrepeating string to the server to see what pattern is written into the EIP (in the debugger on the Windows Server). This will give us our buffer size.

3_shellcode.py is the final buffer overflow exploit. After the buffer is the memory address of a command in the VulnServer DLL that will redirect execution back into the current stack frame. Then it includes a NOP sled for variability of the Stack Pointer. Finally it executes a payload that generates a reverse TCP shell.

For a detailed overview of this project, view the Google Slides Presentation and the Video Walkthrough.

These are for study only, do not use on a system that you don't own or have permission to do this to.

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages