Exploit Development 2: SEH buffer overflow

This time we’re going to take a closer look at SEH (Structured Exception Handling) based exploits. Setup Compile the executable and library with the following options set: Analysis The idea is basically to overwrite the pointer to the exception handler and make it point to your injected shellcode. After an exception is triggered the hijacked … More Exploit Development 2: SEH buffer overflow

Exploit Development 1: EIP buffer overflow

In this post we’re going to look at an EIP based buffer overflow. We will exploit a small example C++ program. Setup The following setup will be used: Windows XP SP3 English (32bit) VC++ 14 runtime WinDbg 6.12 as post mortem debugger Immunity Debugger 1.73/1.85 (with pvefindaddr and mona plugins) Dependency Walker 2.2.6000 Windows 10 … More Exploit Development 1: EIP buffer overflow