vailixi Posted September 18, 2015 Posted September 18, 2015 (edited) How does one find the memory location or address space of a program or library? What is egg hunting? So if you are looking for an exploitable bug do you pretty much brute force the memory with some code we want to run?Somebody explained this to me a while back but I only partially understood what was going on. So if there's some buggy code like a character array and it is a certain size like 50 so anything 51+ is written to another memory space. How do I find that array in memory and write to it? Edited September 18, 2015 by vailixi Quote
hexophrenic Posted September 18, 2015 Posted September 18, 2015 With a debugger...immunity, ida, etc. Quote
fugu Posted September 19, 2015 Posted September 19, 2015 you might consider looking at a linux distro DVL (en.wikipedia.org/wiki/Damn_Vulnerable_Linux). it intentionally is designed to be hacked and has some demos on things like bof, etc. It is quite old so im sure there are newer defenses that this won't cover (ASLR, NX, ROP) but it might be a good start if thats what your looking for. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.