Buffer Overflow Attacks: Detect, Exploit, PreventThe SANS Institute maintains a list of the "Top 10 Software Vulnerabilities." At the current time, over half of these vulnerabilities are exploitable by Buffer Overflow attacks, making this class of attack one of the most common and most dangerous weapon used by malicious attackers. This is the first book specifically aimed at detecting, exploiting, and preventing the most common and dangerous attacks. Buffer overflows make up one of the largest collections of vulnerabilities in existence; And a large percentage of possible remote exploits are of the overflow variety. Almost all of the most devastating computer attacks to hit the Internet in recent years including SQL Slammer, Blaster, and I Love You attacks. If executed properly, an overflow vulnerability will allow an attacker to run arbitrary code on the victim’s machine with the equivalent rights of whichever process was overflowed. This is often used to provide a remote shell onto the victim machine, which can be used for further exploitation. A buffer overflow is an unexpected behavior that exists in certain programming languages. This book provides specific, real code examples on exploiting buffer overflow attacks from a hacker's perspective and defending against these attacks for the software developer.
|
Contents
3 | |
25 | |
Chapter 3 Writing Shellcode | 55 |
Chapter 4 Win32 Assembly | 117 |
Section 1 Case Studies Case Study 11 FreeBSD NN Exploit Code | 133 |
Chapter 5 Stack Overflows | 161 |
Chapter 6 Heap Corruption | 229 |
Chapter 7 Format String Attacks | 273 |
Chapter 8 Windows Buffer Overflows | 317 |
Section 2 Case Studies Case Study 21 cURL Buffer Overflow on Linux | 359 |
Chapter 9 Finding Buffer Overflows in Source | 403 |
Section 3 Case Studies Case Study 31 InlineEgg I | 455 |
Appendix A The Complete Data Conversion Table | 477 |
Appendix B Useful Syscalls | 485 |
489 | |
Other editions - View all
Common terms and phrases
allocated Application Defense argc arguments argv array assembly code attacker badfile bin/sh buffer overflows bugs calling printf chapter char characters closesocket MySock CodeAssure compiler create decoder define Dump error Example execute execve exit exploit code Figure file descriptor Flawfinder format string bugs format string vulnerabilities FreeBSD heap heap overflows Hello implementation input instruction kernel ktrace language Linux loop malloc memory Microsoft mov byte ptr movl nasm NULL byte objdump offset output overwrite overwritten payload pointer port Prexis printf processor push eax pushl remote result s-proc Segmentation fault sendfile server setuid shell shellcode sizeof sock socket source code specifiers stack frame stack overflows static stdout stored strcpy strlen strncat stroat struct system call target tion variable void Windows write WSACleanup
Popular passages
Page vi - Foster is a seasoned speaker and has presented throughout North America at conferences, technology forums, security summits, and research symposiums with highlights at the Microsoft Security Summit...
References to this book
Information Security Management Handbook, Sixth Edition Harold F. Tipton,Micki Krause Limited preview - 2007 |