Nytro Posted January 4, 2019 Report Posted January 4, 2019 http://www.blackhat.com/presentations... https://sourceware.org/glibc/wiki/Mal... http://homes.soic.indiana.edu/yh33/Te... http://homes.soic.indiana.edu/yh33/Te... Understanding the heap by breaking it: http://www.blackhat.com/presentations... https://tc.gtisc.gatech.edu/cs6265/20... https://sourceware.org/glibc/wiki/Mal... https://sploitfun.wordpress.com/2015/... http://liveoverflow.com/binary_hacking/ Cool little demos and subsections Understanding heap exploitation http://www.mathyvanhoef.com/2013/02/u... Heap and Exploits of Heap: http://security.cs.rpi.edu/courses/bi... Malloc Internals http://sourceware.org/glibc/wiki/Mall... Exploiting Use After Free https://0x00sec.org/t/heap-exploitati... https://sploitfun.wordpress.com/2015/... https://sploitfun.wordpress.com/2015/... 1 Quote
Nytro Posted January 4, 2019 Author Report Posted January 4, 2019 Nu doar asta, mai multe detalii despre implementare si cum se poate exploata. 1 Quote
gigiRoman Posted January 5, 2019 Report Posted January 5, 2019 9 hours ago, Nytro said: Nu doar asta, mai multe detalii despre implementare si cum se poate exploata. Cred ca astea sunt cateva dintre cauzele pentru care astia mari(Microsoft) se dau de ceasul mortii ca programatorii sa invete (doar) limbaje de nivel inalt. 1 Quote
Nytro Posted January 5, 2019 Author Report Posted January 5, 2019 Da, insa flexibilitatea si mai ales viteza de executie a limbajelor low level va fi intotdeauna la baza alegerilor facute pentru multe proiecte, ca browserele. Insa exista tendinta de a incerca lucruri noi, cun ar fi Rust (la Mozilla). Parca. Quote
