xpsp2_2k3_heap_exploitation - HeapOverflow Computer Security Community & Forums : Heap Overflow.com

HeapOverflow Computer Security Community & Forums : Heap Overflow.com

		HeapOverflow Computer Security Community & Forums : Heap Overflow.com > Computer Security: Discussions > Applications, Tools & Papers
xpsp2_2k3_heap_exploitation

Mark Forums Read

Notices

Welcome to you visitor! This community is mainly dedicated to the computer and security, if you're looking for DFind scanner or others exploits codes you will find them into the Projects section, feel free to start Blogging and remember to always keep an eye and start talking about security Advisories & public Exploits.

Applications, Tools & Papers Discuss about security applications, tools, papers, etc...

xpsp2_2k3_heap_exploitation

This is a discussion on "xpsp2_2k3_heap_exploitation" within the Applications, Tools & Papers part of the Computer Security: Discussions section; Originally Posted by conover The presentation material was never formally released, but it was presented at SyScan in Dec 2004 this basic presentations will helps you to understand how is working the heap protection on the recent windows os and ...

Reply

Page 1 of 2

1

#1 (permalink)

Old

09-06-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 27

Posts: 592

Blog Entries: 3

Thanks: 18

Thanked 7 Times in 7 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

xpsp2_2k3_heap_exploitation

Quote:

Originally Posted by conover

The presentation material was never formally released, but it was presented at SyScan in Dec 2004

this basic presentations will helps you to understand how is working the heap protection on the recent windows os and will spot out some tricks to bypass it.

Content:

~/sample_exploit.w2k_to_xpsp1/
Chunk_On_Lookaside_Overwrite.txt
Cookie_Check_Disassembly.txt
Defeat_Safe_Unlink.c
Defeat_Safe_Unlinking.txt
Heap_Corruption_Disassembly.txt
LowFragHeap_Key_Disassembly.txt
Safe_Unlink_Check.txt
Windows Heap Exploitation.ppt
XPSP2_ChunkOnLookaside_Overwrite.c

Attached Files

sh0k.zip (244.7 KB, 199 views)

Reply With Quote

Sponsor

Advertiser

#2 (permalink)

Old

09-06-05

Guest

Posts: n/a

Default

ANYONE who wants to learn heap management and heap overflows should read this.
ESPECIALLY if they want technique's on getting past XP2 protection.

Reply With Quote

#3 (permalink)

Old

09-06-05

iNFERiON is offline

Junior Member

Join Date: Jun 2005

Posts: 2

Thanks: 0

Thanked 0 Times in 0 Posts

Rep Power: 5

iNFERiON is on a distinguished road

Default

This here sounds interesting, I'll have a look at the docs, thanks for sharing this.

Reply With Quote

#4 (permalink)

Old

11-06-05

hc

hc is offline

Junior Member

Join Date: Jun 2005

Posts: 10

Thanks: 1

Thanked 1 Time in 1 Post

Rep Power: 7

hc is on a distinguished road

Default

thx class sonds good will read it

Reply With Quote

#5 (permalink)

Old

13-06-05

DyNaMiTe is offline

Junior Member

Join Date: Jun 2005

Posts: 2

Thanks: 0

Thanked 0 Times in 0 Posts

Rep Power: 5

DyNaMiTe is on a distinguished road

Default

Those are really hot pack

we need read those Many thanks and awesome as always class101 !!

Reply With Quote

#6 (permalink)

Old

13-06-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 27

Posts: 592

Blog Entries: 3

Thanks: 18

Thanked 7 Times in 7 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

thanx firstly to matthew conover for posting this on fulldisclosure when it was required

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote

#7 (permalink)

Old

21-06-05

blufox

Guest

Posts: n/a

Default

tnx,i download this ..very nice

Reply With Quote

#8 (permalink)

Old

21-06-05

hx

hx is offline

Member

Join Date: Jun 2005

Location: Australia

Posts: 37

Thanks: 0

Thanked 2 Times in 2 Posts

Rep Power: 12

hx is on a distinguished road

Default

Great stuff!

Now this is stuff ANYONE smart sho9uld be bloodywell reading!
Thankyou for providing this package, awesome stuff, although alot is familiar to me, it may show newcomers to security exploitatin/pen testing, that is not always about "hacking and getting shells", its sometimes about securing your OWN SH*T!
When people realise this, maybe they wont find themselves having silly dcom135 port attacks etc.. hehe.. silly silly people who dont secure.. read this stuff, understand why.. this site has many good ones, but sofar 2 standout, and i think your coework is FINE and i will not even speak of coompiling, i saw one nonsense post on that and wouldnt dare ! ha.
I suggest, if your here and asking stuff like what headers etc you need,sdk etc... go home, buy a book, or restart and leave.. as your useless, and no one will respect you for asking craps like this.. these guys are suppling GREAT materials to learn from, go break others balls on compiling.. and anyhow, its not hard if your a TRUE coder and have experience..
i hope some new people like me, will look at the BBS as i do, with respect,these guys are going outta theyre way, and for me, its to secure ME

thanks again class101/hats for quality work!

Reply With Quote

#9 (permalink)

Old

21-06-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 27

Posts: 592

Blog Entries: 3

Thanks: 18

Thanked 7 Times in 7 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

hehe no pb, welcome on the forum anyway

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote

#10 (permalink)

Old

21-06-05

Guest

Posts: n/a

Default

The presentation is great, however I plan to create a more complete essay on the subject whenever time allows. Watch out for it!

Reply With Quote

Sponsor

Advertiser

Reply

Page 1 of 2

1

« - | about sniffer »

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On

heapoverflow.com - SEOmeter SEO tools

Locations of visitors to this page

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47