* Stack based overflows (direct RET overwrite) :
(Tutorial Part 1)
http://www.corelan.be:8800/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/
* Jumping to shellcode :
(Tutorial Part 2)
http://www.corelan.be:8800/index.php/2009/07/23/writing-buffer-overflow-exploits-a-quick-and-basic-tutorial-part-2/
* Stack based overflows - SEH
(Tutorial Part 3)
http://www.corelan.be:8800/index.php/2009/07/25/writing-buffer-overflow-exploits-a-quick-and-basic-tutorial-part-3-seh/
In case some of you missed it - I published 2 articles on the Offensive Security Blog (last one was published a few hours ago), explaining the process of building a (not so typical) SEH based exploit for a QuickZip 0day vulnerability.
Part 1 : http://www.offensive-security.com/blog/vulndev/quickzip-stack-bof-0day-a-box-of-chocolates/
Part 2 : http://www.offensive-security.com/blog/vulndev/quickzip-stack-bof-a-box-of-chocolates-part-2/
Enjoy !
Corelanc0d3r
Tech Gyan - Mozilla Firefox Internals & Attack Strategies
Tool Gyan - FireCAT
Mom's Guide - Being Invisible on the Internet
Legal Gyan - The Information Technology Rules, 2011
Command Line Gyan - Configuring Apache SSL
Matriux Vibhag - Introduction Part 2
Poster of the month - Happy and Safe Surfing.
Thanks,
Abhijeet Patil
ClubHack Magazine
> * Stack based overflows (direct RET overwrite) :
> (Tutorial Part 1)
> http://www.corelan.be:8800/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/
>
> * Jumping to shellcode :
> (Tutorial Part 2)
> http://www.corelan.be:8800/index.php/2009/07/23/writing-buffer-overflow-exploits-a-quick-and-basic-tutorial-part-2/
>
> * Stack based overflows - SEH
> (Tutorial Part 3)
> http://www.corelan.be:8800/index.php/2009/07/25/writing-buffer-overflow-exploits-a-quick-and-basic-tutorial-part-3-seh/
