-
Posts
879 -
Joined
-
Last visited
-
Days Won
24
Posts posted by neox
-
-
Salutare la toti de mult nu am mai intrat pe forum si am fost activ dar acum am un pic de timp :) si m-am gandit sa mai postez si eu ceva.
O zi buna va doresc.
Buffer Overflow Attack in PDF ShapingUp.
- 1
- 13
-
- 2
-
https://www.udemy.com/linux-made-easy-with-hands-on-training/?couponCode=LINUXMADEEASY4U
https://www.udemy.com/giac-certified-incident-handler-practice-tests-for-2017/?couponCode=FRZFKNKJR29515
https://www.udemy.com/linux-made-easy-with-hands-on-training/?couponCode=LINUXMADEEASY4U
https://www.udemy.com/redhat-certified-system-administrator-rhcsa-practice-tests/?couponCode=FZDFZG5495555- 1
-
https://www.udemy.com/seo-training-link-building-backlinks-and-keyword-research/?couponCode=FREENOW
https://www.udemy.com/insider-secrets-from-an-ethical-hacker-on-internet-safety/?couponCode=ISUFULLPROMO2017
https://www.udemy.com/python-complete/?couponCode=FREEFB4250 Free Coupons Udemy Courses
https://justpaste.it/1c5r5Nu garantez că toate 250 cursuri sunt la liber dar gasiți voi ceva ce va interesează.
- 1
- 7
-
-
On 24.8.2017 at 10:27 PM, zeropoint said:
A reusit cineva sa il modifice fara eroare?
Ce eroare primesti?
-
https://www.udemy.com/security-certification-cryptography-domain-deep-dive
https://www.udemy.com/security-certification-app-data-and-host-security
https://www.udemy.com/security-certification-threats-and-vulnerabilities-domain
https://www.udemy.com/windows-server-2012-r2-installation-and-configuration/?couponCode=FREESERVER2012- 1
-
https://www.udemy.com/hey-siri-whats-new-on-macos-sierra/?couponCode=UDEMYSTUD
https://www.udemy.com/real-world-hacking-penetration-testing/?couponCode=HACKFREE
https://www.udemy.com/youtubeforbusiness101/?couponCode=YOUTUBEMARKETINGTHKU
https://www.udemy.com/boost-adsense-profits-on-existing-site-by-30/?couponCode=REVIEWCOPY10K
https://www.udemy.com/try-angularjs/?couponCode=CFENOV2016
https://www.udemy.com/css-course/?couponCode=100_OFF
https://www.udemy.com/learning-c-language/?couponCode=BBHFPROMO
https://www.udemy.com/data-structure-and-algorithms-analysis/?couponCode=83476537845- 6
-
Hello @Tiza to make pdf exploits or other format you need to know basic exploit development and you need strong knowledge Inside the PDF File Format.
Top 10 PDF reader like Adobe, Foxit, Nitro etc.. is easy to crash but it's hard to jump in Dll library. Many Dll modules are Rebase or full with bad bits and can not execute shellcode.But it is not impossible if you have time and patience.
a little demo for you 4 pdf programs for example.
- 2
-
https://www.udemy.com/make-me-an-iphone-app-developer-beginner-series/?couponCode=UDEMYSTUDIOFREE
https://www.udemy.com/virtualbox-advanced-features-and-practical-use/?couponCode=TWFR59
https://www.udemy.com/master-color-in-photoshop-cc/?couponCode=LAUNCH_00
https://www.udemy.com/sumome-make-your-website-highly-professional-attractive-and-social/?couponCode=HAPPY2017
https://www.udemy.com/a-to-z-ethical-hacking-course/?couponCode=FREE_FOR_FEW_DAYS- 1
-
https://www.udemy.com/videoeditingwithcamtasiastudio/?couponCode=FREE4YOU
https://www.udemy.com/adobe-illustrator-how-to-draw-squared-animals-icons/?couponCode=JANFREE
https://www.udemy.com/the-complete-instagram-marketing-course/?couponCode=LIMITEDX
https://www.udemy.com/selenium-webdriver-with-java/?couponCode=YEAR2017
https://www.udemy.com/sonyvegasprovideoediting/?couponCode=BANGLADESH- 2
-
https://www.udemy.com/ios-10-bootcamp-swift-objective-c-tutorial/?couponCode=IOS10LIMITEDD
https://www.udemy.com/kali-linux-hacking/?couponCode=BESTBLACKHAT
https://www.udemy.com/the-ethical-hacking-starter-kit-/?couponCode=2000FREE
https://www.udemy.com/penetration-testing/?couponCode=WOO052816
https://www.udemy.com/androidcourse/?couponCode=ANDROIDFREE
https://www.udemy.com/the-complete-jenkins-course-for-developers-and-devops/?couponCode=FR0002
- 6
-
CompTIA A+ Certification Preparation: Learn the Basics of IT - Instructed by CyberTraining 365, Samy Mkacher
https://www.udemy.com/comptia-aplus-certification-prep/?couponCode=APLUSFREEPASSCompTIA Network+ Cert (N10-006): Full Course
Von Jason Dion, Cybersecurity Expert (CISSP, CEH, Security+, Network+, A+)
https://www.udemy.com/comptia-network-cert-n10-006-full-course/?couponCode=BLACKHAT2016
https://www.udemy.com/comptia-network-cert-n10-006-full-course/?couponCode=UDEMYSTUDIO2016Learn How to Fix Wi-Fi, Computer, and Networking problems!
https://www.udemy.com/learn-how-to-fix-wi-fi-computer-and-networking-problems/?couponCode=GIFT001- 2
-
-
Buffer Overflow Attacks Explained: Saved Return Pointer Overwrite
In today’s Whiteboard Wednesday, David Maloney, Senior Security Researcher at Rapid7, will discuss buffer overflow attacks.
David will walk you through a buffer overflow exploit called “saved return pointer overwrite” to show you specifically how buffer overflow attacks work.
Watch this week’s Whiteboard Wednesday to learn more.
https://www.rapid7.com/resources/videos/buffer-overflow-exploit-explained.jsp
Mitigating Buffer Overflow Attacks with Stack Cookies
In today’s Whiteboard Wednesday, David Maloney, Senior Security Researcher at Rapid7, will share a technique to help mitigate buffer overflow attacks.
In a previous Whiteboard Wednesday, we explained how buffer overflow attacks work. This week, we are going to explain how to help mitigate buffer overflow vulnerabilities with stack cookies.
Watch this week’s Whiteboard Wednesday to learn more.
https://www.rapid7.com/resources/videos/mitigating-buffer-overflow-attacks-with-stack-cookies.jsp
Exploit Explained: Structured Exception Handler Overwrite
In today’s Whiteboard Wednesday, David Maloney, Sr. Security Engineer at Rapid7, will talk about structured exception handler overwrite vulnerabilities and how they work.
Watch this week’s Whiteboard Wednesday to learn more.
https://www.rapid7.com/resources/videos/structured-exception-handler-overwrite-explained.jsp
SEHOP: Mitigating Structured Exception Handler Overwrite Vulnerabilities
In today’s Whiteboard Wednesday, David Maloney, Sr. Security Researcher at Rapid7, will discuss how SEHOP can help you mitigate structured exception handler overwrite vulnerabilities.
https://www.rapid7.com/resources/videos/mitigating-seh-overwrites-with-sehop.jsp
Exploit Explained: Return Oriented Processing (ROP)
In today’s Whiteboard Wednesday, David Maloney, Sr. Security Researcher at Rapid7, will discuss the ROP exploit technique for buffer overflow vulnerabilities.
https://www.rapid7.com/resources/videos/rop-exploit-explained.jsp
Mitigating Return Oriented Processing (ROP) Vulnerabilities
In today’s Whiteboard Wednesday, David Maloney, Sr. Security Researcher at Rapid7, will discuss the ROP exploit technique for buffer overflow vulnerabilities and how to mitigate these security issues.
- 3
-
Cursuri Linux facute foarte frumos limba Engleza si Germana
LPI10144 Videos | Durata 412:06 minLPI10234 Videos | Durata 451:32 min- 4
-
Advanced Metasploit course is on YouTube!
- 3
-
Video este interesant cu privire la Zero days .
https://www.youtube.com/watch?time_continue=20&v=4BTTiWkdT8Q- 1
-
We aggregate, promote and provide tutorials and information on hundreds of "Hacking Tools".
- 1
-
Majoritatea exploiturilor de genul acesta sunt gasite pe o durata mai lunga.
De exemplu daca tipul lucreaza intr-o companie IT il foloseste exploitul pentru demo (Instruire interna sau Instruire $) pe urma il face public.
-
Este interesant exploitul.
https://www.exploit-db.com/exploits/38319/
https://youtu.be/vIslLJYvnaM
https://www.exploit-db.com/exploits/38361/
Video : https://youtu.be/h976wFlHGw4 -
Da si mie imi place
kali linux 2.0 install GoTTY
nano /etc/apt/sources.list
deb http://security.debian.org/ stable/updates main contrib non-free
deb http://security.debian.org/ testing/updates main contrib non-freeservice postgresql start
msfdb init
apt-get update
apt-get install golang
mkdir /root/gocode
export GOPATH=/root/gocode/
go get github.com/yudai/gotty
gocode/bin/gotty
gocode/bin/gotty -a 127.0.0.1 -w msfconsole
127.0.0.1:8080
-
Quick and dirty Metasploit Console web terminal:
GoTTY - Share your terminal as a web application.
-
O poza face cat 1000 de cuvinte.
ti-ai facut cont pe rst ca sa postezi asa ceva ? poze cu minori,probleme personale,si alte balarii.
Cu ce esti tu mai bun ca ei?Voi meritati internet cu portia, prea multa libertate pe net strica .
Buffer Overflow Attack in PDF ShapingUp.
in Reverse engineering & exploit development
Posted
Este un Buffer Overflow în pdf software, dar bineînțeles a durat mai mult ca în video pana am exploatat vulnerabilitatea.
Pasul unul care este cel mai greu, este sa modifici pdf în asa fel încât sa se prăbușească și crash-ul să îl conduci pană poti executa codul shell.
în video era deja despărțit pdf-ul iar in kali convertez pdf iinteriorul in Hex code si pe urma e tipic Buffer Overflow.