[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] ROP 101 Blog

To: Full Disclosure <fulldisclosure@xxxxxxxxxxxx>
Subject: [FD] ROP 101 Blog
From: Craig Young <vuln-report@xxxxxxxxx>
Date: Wed, 24 Jun 2015 11:07:41 -0400

Hi List,

FYI - This is a post for the n00bs in the audience.  If you already know
how to chain together gadgets to form a ROP chain and get a shell, this
post is not for you.

I know there are some on the list who could benefit by a better
understanding of ROP so:
http://www.tripwire.com/state-of-security/off-topic/vert-vuln-school-return-oriented-programming-rop-101/

The target binary/VM as well as some other info is available from the
VulnHub page:
https://www.vulnhub.com/entry/rop-primer-02,114/

Slides from the BSides London workshop are here:
https://speakerdeck.com/barrebas/rop-primer

Best Regards,
Craig Young
Security Researcher, Tripwire VERT
@CraigTweets

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] Haka v0.3.0 release
Next by Date: [FD] Securing SAP Systems from XSS vulnerabilities Part 2: Defense for SAP NetWeaver ABAP
Previous by thread: [FD] Haka v0.3.0 release
Next by thread: [FD] Securing SAP Systems from XSS vulnerabilities Part 2: Defense for SAP NetWeaver ABAP
Index(es):
- Date
- Thread