Premium Only Content

10: Bypassing Stack Canaries (leak + write) - Buffer Overflows - Intro to Binary Exploitation (Pwn)
10th video from the "Practical Buffer Overflow Exploitation" course covering the basics of Binary Exploitation. NX and stack canaries are enabled this time, so we'll use a printf() format string vulnerability leak the stack canary, allowing us to overwrite it with the expected value. We'll use checksec, ghidra, pwndbg and pwntools! Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #BinaryExploitation #BufferOverflow #BinExp #RE #Pwn #PwnTools
Find the binary files, source code and scripts to go with the series @ https://github.com/Crypto-Cat/CTF/tree/main/pwn/binary_exploitation_101
↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23
↢Binary Exploitation / Reverse Engineering↣
Pwn.College: https://pwn.college
How2Heap: https://github.com/shellphish/how2heap
NightMare: https://guyinatuxedo.github.io
Ir0nstone: https://ir0nstone.gitbook.io/notes/types/stack
PinkDraconian: https://www.youtube.com/playlist?list=PLeSXUd883dhjmKkVXSRgI1nJEZUDzgLf_
More: https://github.com/Crypto-Cat/CTF#readme
↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html
PwnTools: https://github.com/Gallopsled/pwntools-tutorial
CyberChef: https://gchq.github.io/CyberChef
HackTricks: https://book.hacktricks.xyz/exploiting/linux-exploiting-basic-esp
GTFOBins: https://gtfobins.github.io
Decompile Code: https://www.decompiler.com
Run Code: https://tio.run
↢Chapters↣
Start: 0:00
Basic File Checks: 0:25
Review Source Code: 2:06
Disassemble with Ghidra: 3:05
Outline Attack (Canary Leak + Write): 3:56
Fuzz Printf Format Vuln for Canary: 5:23
Locating Canaries with GDB-PwnDbg: 6:42
PwnTools Exploit Script: 10:37
Additional Pwn/CTF Resources: 12:57
End: 14:38
-
28:08
Scary Mysteries
19 hours ago5 TERRIFYING Mysteries That Remain UNSOLVED
65.2K6 -
3:19:32
FreshandFit
7 hours agoPop The Balloon Girl Exposed?!
225K64 -
2:03:12
Badlands Media
11 hours agoBaseless Conspiracies Ep. 140: Benghazi Whistleblower Nick Noe - Part 2
89.1K38 -
3:06:47
Laura Loomer
8 hours agoEP131: Zohran Mamdani's Radical Roots EXPOSED
41.8K27 -
2:42:53
TimcastIRL
9 hours agoDOJ Drops MASSIVE Epstein COVER UP, Says There's NO CLIENT LIST | Timcast IRL
242K162 -
54:25
Inverted World Live
8 hours agoThe JFK Assassination and How the CIA Made the Zapruder Film | Ep. 70
35.5K11 -
10:11:25
SpartakusLIVE
15 hours ago$18,000 2v2 WZ Total Frenzy Tournament || #1 Comp Champ is BACK
92.5K4 -
8:11
MattMorseTV
1 day ago $18.18 earnedMacron just SURRENDERED.
81.6K99 -
1:35:03
Glenn Greenwald
11 hours agoTrump DOJ: There's Nothing to the Epstein Story; State Dept: Syria's Al-Qaeda are No Longer "Terrorists;" Trump & Lula Exchange Barbs Over Brazil | SYSTEM UPDATE #482
171K151 -
2:18:39
We Like Shooting
21 hours ago $7.90 earnedWe Like Shooting 618 (Gun Podcast)
48.5K