没有合适的资源?快使用搜索试试~ 我知道了~
资源推荐
资源详情
资源评论
Sumário
OSED Notes by Joas Antonio and Alex ..................................................................................... 1
Laboratory ..................................................................................................................................... 3
X86 Architecture ........................................................................................................................... 3
CPU Register ............................................................................................................................... 10
General Purpose Registers .......................................................................................... 15
eax ...................................................................................................................................... 15
ebx ...................................................................................................................................... 15
ecx....................................................................................................................................... 15
edx ...................................................................................................................................... 16
esi ........................................................................................................................................ 16
edi ....................................................................................................................................... 16
ebp ...................................................................................................................................... 16
esp ...................................................................................................................................... 16
Special Purpose Registers ............................................................................................ 16
eip ....................................................................................................................................... 16
flags .................................................................................................................................... 17
Introduction Windows Debugger ............................................................................................... 17
Windows Register ....................................................................................................................... 32
Controlling Execution with Windbg ........................................................................................... 38
Stack Based Buffer Overflow ...................................................................................................... 40
Data Execution Prevention ................................................................................................... 112
Address Space Layout Randomization ................................................................................. 113
Control Flow Guard .............................................................................................................. 115
Stack Buffer Overflow - Jumping Shellcode ............................................................................. 120
SEH Buffer Overflow ................................................................................................................. 160
Finding Bad Characters ......................................................................................................... 205
IDA Pro ...................................................................................................................................... 238
Windows ASLR Bypass .............................................................................................................. 256
Egg Hunters ............................................................................................................................... 265
Introduction to the Win32 Egghunter .................................................................................. 290
SEH Buffer Overflow EggHunter ........................................................................................... 308
Shellcode ................................................................................................................................... 335
Shellcode Encode and Decode ............................................................................................. 406
Creating Shellcode Encoded ................................................................................................. 418
DEP Bypass ................................................................................................................................ 429
Overwriting EIP ......................................................................................................................... 457
ASLR Bypass .............................................................................................................................. 496
Return Oriented Programming ................................................................................................ 499
Rop Chain .............................................................................................................................. 505
Rop Decode ........................................................................................................................... 591
Reversing Engineering .............................................................................................................. 591
Reverse Engineering with Immunity Debugger ................................................................... 596
Reverse Engineering with GDB............................................................................................. 597
Assembly and C/C++ Courses ................................................................................................... 608
Study Material – OSED ............................................................................................................. 609
Laboratory
https://github.com/CyberSecurityUP/Buffer-Overflow-Labs
https://github.com/firmianay/Life-long-Learner/blob/master/SEED-labs/buffer-overflow-
vulnerability-lab.md
https://github.com/Jeffery-Liu/Buffer-Overflow-Vulnerability-Lab
https://github.com/tecnico-sec/Buffer-Overflow
https://github.com/epi052/osed-scripts
Advantech WebAccess webvrpcs.exe
Sync Breeze Enterprise 10.0.28
Intelligent Management Center (iMC)
SLMail 5.5
X86 Architecture
What Does x86 Architecture Mean?
The x86 architecture is an instruction set architecture (ISA) series for computer processors.
Developed by Intel Corporation, x86 architecture defines how a processor handles and
executes different instructions passed from the operating system (OS) and software programs.
The “x” in x86 denotes ISA version.
Techopedia Explains x86 Architecture
Designed in 1978, x86 architecture was one of the first ISAs for microprocessor-based
computing. Key features include:
Provides a logical framework for executing instructions through a processor
Allows software programs and instructions to run on any processor in the Intel 8086 family
Provides procedures for utilizing and managing the hardware components of a central
processing unit (CPU)
The x86 architecture primarily handles programmatic functions and provides services, such as
memory addressing, software and hardware interrupt handling, data type, registers and
input/output (I/O) management.
Classified by bit amount, the x86 architecture is implemented in multiple microprocessors,
including 8086, 80286, 80386, Core 2, Atom and the Pentium series. Additionally, other
microprocessor manufacturers, like AMD and VIA Technologies, have adopted the x86
architecture.
https://www.techopedia.com/definition/5334/x86-architecture
The Intel x86 processor uses complex instruction set computer (CISC) architecture, which
means there is a modest number of special-purpose registers instead of large quantities of
general-purpose registers. It also means that complex special-purpose instructions will
predominate.
The x86 processor traces its heritage at least as far back as the 8-bit Intel 8080 processor.
Many peculiarities in the x86 instruction set are due to the backward compatibility with that
processor (and with its Zilog Z-80 variant).
Microsoft Win32 uses the x86 processor in 32-bit flat mode. This documentation will focus only
on the flat mode.
Registers
The x86 architecture consists of the following unprivileged integer registers.
eax
Accumulator
ebx
Base register
ecx
Counter register
edx
Data register - can be used for I/O port access and arithmetic functions
esi
Source index register
edi
Destination index register
ebp
Base pointer register
esp
Stack pointer
All integer registers are 32 bit. However, many of them have 16-bit or 8-bit subregisters.
ax
Low 16 bits of eax
bx
Low 16 bits of ebx
cx
Low 16 bits of ecx
dx
Low 16 bits of edx
si
Low 16 bits of esi
di
Low 16 bits of edi
bp
Low 16 bits of ebp
sp
Low 16 bits of esp
al
Low 8 bits of eax
ah
High 8 bits of ax
bl
Low 8 bits of ebx
bh
High 8 bits of bx
cl
Low 8 bits of ecx
ch
High 8 bits of cx
dl
Low 8 bits of edx
dh
High 8 bits of dx
Operating on a subregister affects only the subregister and none of the parts outside the
subregister. For example, storing to the ax register leaves the high 16 bits of the eax register
unchanged.
When using the ? (Evaluate Expression) command, registers should be prefixed with an "at"
sign ( @ ). For example, you should use ? @ax rather than ? ax. This ensures that the debugger
recognizes ax as a register rather than a symbol.
However, the (@) is not required in the r (Registers) command. For instance, r ax=5 will always
be interpreted correctly.
Two other registers are important for the processor's current state.
eip
instruction pointer
flags
flags
The instruction pointer is the address of the instruction being executed.
剩余611页未读,继续阅读
资源评论
网络研究观
- 粉丝: 7211
- 资源: 2314
上传资源 快速赚钱
- 我的内容管理 展开
- 我的资源 快来上传第一个资源
- 我的收益 登录查看自己的收益
- 我的积分 登录查看自己的积分
- 我的C币 登录后查看C币余额
- 我的收藏
- 我的下载
- 下载帮助
最新资源
- 基于javaweb的超市订单和收银管理系统源码+数据库脚本+说明文档(毕业设计).zip
- Scratch 街机游戏:极限街机.sb3
- Java项目-基于Springboot+Vue的心灵治愈交流平台的设计与实现(源码+万字LW+部署视频+代码讲解视频+全套软件)
- Java项目-基于Springboot+Vue的滴答拍摄影项目的设计与实现(源码+万字LW+部署视频+代码讲解视频+全套软件)
- btstack协议栈实战篇-GATT Device Information Service Client
- Java项目-基于Springboot+Vue的酒店管理系统的设计与实现(源码+万字LW+部署视频+代码讲解视频+全套软件)
- 基于Javascript的微信小程序-麻将馆预约小程序,前后端完整代码+源代码+文档说明+安装手册.zip
- 基于BP神经网络的机械臂动力学模型系统辨识
- 基于 SpringCloud 开发的校园招聘平台(PPT+ 开发文档 + 数据库文件 + 源码)
- Java项目-基于Springboot+Vue的小区物业管理系统的设计与实现(源码+万字LW+部署视频+代码讲解视频+全套软件)
资源上传下载、课程学习等过程中有任何疑问或建议,欢迎提出宝贵意见哦~我们会及时处理!
点击此处反馈
安全验证
文档复制为VIP权益,开通VIP直接复制
信息提交成功