Practical Win32 and UNICODE exploitation
- Type
- Video
- Tags
- exploiting, Windows
- Authors
- Felix 'FX' Lindner
- Event
- Chaos Communication Congress 20th (20C3) 2003
- Indexed on
- Mar 27, 2013
- URL
- http://ftp.ccc.de/congress/2003/video/20C3-538-Practical_WIN32_and_Unicode_exploitation.mov
- File name
- 20C3-538-Practical_WIN32_and_Unicode_exploitation.mov
- File size
- 183.3 MB
- MD5
- fd5456b78f82dadbdc26dbdb8042fb84
- SHA1
- 9898f6521c8fb7a5578ce925ae1275f79663761c
The talk could also be called "Lessons learned when the Cisco guys went to Windows land", because there are a number of things quite different in Windows land compared to other environments. One of these things is the frequent use of wide characters and the annoying difficulties that arise from that, including return addresses of 0x00410041. Technically, the speech covers stack based buffer overflows in Win32 applications and services where the buffer content consists of wide characters. Techniques for finding return addresses as well as practical wide character shellcodes (so-called venetian shell code) will be discussed. There will also be some side notes on ASCII based overflows and format string vulnerabilities. This talk is to provide the intermediate hacker with a few more usefull tricks for her/his sleeve, so don't expect any TESO-like magic. Of course, Phenoelit would not dare to show up without some entertaining examples of software engineering, this time comming from Walldorf/Germany.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
