help@cyb4rgeek.xyz

+1 (512) 588 6950

Part

Home/Tag: Part
The toddler’s introduction to Heap exploitation (Part 1)
The toddler’s introduction to Heap exploitation (Part 1) bez0x January 16, 2023

The toddler’s introduction to Heap exploitation (Part 1)

In my introductory post I had been talking about dynamic memory allocation and I referenced various solutions that are used to tackle this problem. In this post I am going to fo

Read More
The toddler’s introduction to Heap exploitation, Overflows (Part 3)
The toddler’s introduction to Heap exploitation, Overflows (Part 3) bez0x January 16, 2023

The toddler’s introduction to Heap exploitation, Overflows (Part 3)

In the previous parts (1, 2) of these posts I had been discussing about the heap structure and I went through some basic concepts, in order to build a better background for this

Read More
The toddler’s introduction to Heap Exploitation, FastBin Dup to Stack (Part 4.1)
The toddler’s introduction to Heap Exploitation, FastBin Dup to Stack (Part 4.1) bez0x January 16, 2023

The toddler’s introduction to Heap Exploitation, FastBin Dup to Stack (Part 4.1)

While I’ve started these posts with a “stick to the basics” mindset, I always end up with a gap on every post, which is a fact that forces me to write some more. This is a

Read More
The toddler’s introduction to Heap exploitation, Use After Free & Double free (Part 4)
The toddler’s introduction to Heap exploitation, Use After Free & Double free (Part 4) bez0x January 16, 2023

The toddler’s introduction to Heap exploitation, Use After Free & Double free (Part 4)

This post is part of a series of articles related to x64 Linux Binary Exploitation techniques. Following up from my previous posts, we’ve started by exploring simple stack cor

Read More
The toddler’s introduction to Heap Exploitation, FastBin Dup Consolidate (Part 4.2)
The toddler’s introduction to Heap Exploitation, FastBin Dup Consolidate (Part 4.2) bez0x January 16, 2023

The toddler’s introduction to Heap Exploitation, FastBin Dup Consolidate (Part 4.2)

In this post we are going to trigger a FastBin consolidation which we are going to combine with a double free vulnerability (dup) in order to return a pointer to an already allo

Read More
The toddler’s introduction to Heap exploitation (Part 2)
The toddler’s introduction to Heap exploitation (Part 2) bez0x January 16, 2023

The toddler’s introduction to Heap exploitation (Part 2)

In my last post I had been talking about the heap structure in the context of the ptmalloc allocator. I went through some basic concepts, like the arena, the sub-heaps and the c

Read More