Sec Armour, profile picture
Uploaded bySec Armour
PPTX, PDF985 views

Buffer Overflow by SecArmour

The document discusses buffer overflow attacks used to execute malicious code with unauthorized privileges, manipulating the process stack layout. It explains the mechanics of shellcode, its role in exploiting programs, and highlights prevention strategies such as stack guards and non-executable stacks. Additionally, it emphasizes the importance of security measures against such vulnerabilities in both local and remote contexts.

Embed presentation

Downloaded 15 times
SECURITY BEYOND COMPARE
Buffer Overflow  Technique to force execution of malicious code with unauthorized privileges – launch a command shell – search local disk or network for sensitive data – register with command and control network as a zombie  Can be applied both locally and remotely  Attack technique is independent of machine  architecture and operating system  Can be tricky to execute, but extremely effective
Layout Of Stack  Grows from high-end address to low-end address (buffer grows from low-end address to high-end address);  Return Address- When a function returns, the instructions pointed by it will be executed;  Stack Frame pointer(esp)- is used to reference to local variables and function parameters.
Layout of the Virtual Space of a Process The layout of the virtual space of a process in Linux
Example low-end address esp int cal(int a, int b) { int c; c = a + b; return c; } int main () { int d; d = cal(1, 2); printf("%dn", d); return; } c ebp previous ebp retaddr(0x0804822) a(1) b(2) Stack high-end address
Shell code  Shellcode is defined as a set of instructions which is injected and then is executed by an exploited program;  Shellcode is used to directly manipulate registers and the function of a program;  Most of shellcodes use system call to do malicious behaviors;  System calls is a set of functions which allow you to access operating system-specific functions such as getting input, producing output, exiting a process;
How to prevent stack buffer overflow?  Stack Guard  In a stack , a canary word is placed after return address whenever a function is called;  The canary will be checked before the function returns. If value of canary is changed , then it indicates an malicious behavior. Local Variables Lower address Old Base Pointer Canary Value ReturnAddres Arguments Higher address Unix Stack Frame
Cont.  Non-Executable stack;  Return-to-libc exploitation might occur  Randomization.
Buffer Overflow by SecArmour
Buffer Overflow by SecArmour

More Related Content

PDF
The Casting Demonstrator. Using the Raspberry Pi for graphics and simulated f...
byInfinIT - Innovationsnetværket for it
 
PPTX
0.5mln packets per second with Erlang
byMaxim Kharchenko
 
PPTX
Memory reference
byrajshreemuthiah
 
PPTX
System design uml
bykeerthisudha
 
PPTX
Compiler design
byShashwat Shriparv
 
PPTX
Stack & heap
byShajahan T S Shah
 
PPTX
Presentation Virus (salami attack and trojan horse)
bysiti zulaikha
 
PPTX
Computer viruses
bytejaspaliya
 
The Casting Demonstrator. Using the Raspberry Pi for graphics and simulated f...
byInfinIT - Innovationsnetværket for it
 
0.5mln packets per second with Erlang
byMaxim Kharchenko
 
Memory reference
byrajshreemuthiah
 
System design uml
bykeerthisudha
 
Compiler design
byShashwat Shriparv
 
Stack & heap
byShajahan T S Shah
 
Presentation Virus (salami attack and trojan horse)
bysiti zulaikha
 
Computer viruses
bytejaspaliya
 

Viewers also liked

PPT
Virus
byMukul Kumar
 
PPTX
Virus (Trojan Horse and Salami Attack)
byAbdulkarim Zakaria
 
PPTX
An Introduction of SQL Injection, Buffer Overflow & Wireless Attack
byTechSecIT
 
PPTX
Buffer overflow
byEvgeni Tsonev
 
PPTX
Window architecture
byIGZ Software house
 
PPT
Trojan Horse Presentation
byikmal91
 
Virus
byMukul Kumar
 
Virus (Trojan Horse and Salami Attack)
byAbdulkarim Zakaria
 
An Introduction of SQL Injection, Buffer Overflow & Wireless Attack
byTechSecIT
 
Buffer overflow
byEvgeni Tsonev
 
Window architecture
byIGZ Software house
 
Trojan Horse Presentation
byikmal91
 

Similar to Buffer Overflow by SecArmour

PDF
Low Level Exploits
byhughpearse
 
PDF
Buffer Overflows in cybersecurity notes .pdf
byavinashspider018
 
PPTX
antoanthongtin_Lesson 3- Software Security (1).pptx
by23162024
 
PDF
Unix executable buffer overflow
byAmmarit Thongthua ,CISSP CISM GXPN CSSLP CCNP
 
PPTX
Buffer overflow attacks
byKapil Nagrale
 
PDF
Buffer overflow tutorial
byhughpearse
 
ODP
Introduction to Binary Exploitation
byCysinfo Cyber Security Community
 
PPTX
Control hijacking
byPrachi Gulihar
 
PDF
TDOH x 台科 pwn課程
byWeber Tsai
 
PDF
Null bufferoverflow
byAbhinav Chourasia, GMOB
 
PPTX
Operating system enhancements to prevent misuse of systems
byDayal Dilli
 
PDF
Buffer overflow Attacks
byCysinfo Cyber Security Community
 
PDF
Buffer Overflow Attacks
bysecurityxploded
 
PPTX
Software to the slaughter
byQuinn Wilton
 
PDF
Exploitation Crash Course
byUTD Computer Security Group
 
PPTX
Linux binary analysis and exploitation
byDharmalingam Ganesan
 
PDF
Davide Berardi - Linux hardening and security measures against Memory corruption
bylinuxlab_conf
 
PPT
Dau Hoang - Buffer Overflows 8980 for Stu
byQueenNicki1
 
PDF
[ENG] Hacktivity 2013 - Alice in eXploitland
byZoltan Balazs
 
PPTX
ETCSS: Into the Mind of a Hacker
byRob Gillen
 
Low Level Exploits
byhughpearse
 
Buffer Overflows in cybersecurity notes .pdf
byavinashspider018
 
antoanthongtin_Lesson 3- Software Security (1).pptx
by23162024
 
Unix executable buffer overflow
byAmmarit Thongthua ,CISSP CISM GXPN CSSLP CCNP
 
Buffer overflow attacks
byKapil Nagrale
 
Buffer overflow tutorial
byhughpearse
 
Introduction to Binary Exploitation
byCysinfo Cyber Security Community
 
Control hijacking
byPrachi Gulihar
 
TDOH x 台科 pwn課程
byWeber Tsai
 
Null bufferoverflow
byAbhinav Chourasia, GMOB
 
Operating system enhancements to prevent misuse of systems
byDayal Dilli
 
Buffer overflow Attacks
byCysinfo Cyber Security Community
 
Buffer Overflow Attacks
bysecurityxploded
 
Software to the slaughter
byQuinn Wilton
 
Exploitation Crash Course
byUTD Computer Security Group
 
Linux binary analysis and exploitation
byDharmalingam Ganesan
 
Davide Berardi - Linux hardening and security measures against Memory corruption
bylinuxlab_conf
 
Dau Hoang - Buffer Overflows 8980 for Stu
byQueenNicki1
 
[ENG] Hacktivity 2013 - Alice in eXploitland
byZoltan Balazs
 
ETCSS: Into the Mind of a Hacker
byRob Gillen
 

Recently uploaded

PDF
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
final.pdf
byomarbishtawi04
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
PPTX
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
PDF
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
Workflow and decision Automation with Flowable
bychakib ch
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
final.pdf
byomarbishtawi04
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 

Buffer Overflow by SecArmour

  • 1.
  • 3.
    Buffer Overflow  Techniqueto force execution of malicious code with unauthorized privileges – launch a command shell – search local disk or network for sensitive data – register with command and control network as a zombie  Can be applied both locally and remotely  Attack technique is independent of machine  architecture and operating system  Can be tricky to execute, but extremely effective
  • 4.
    Layout Of Stack Grows from high-end address to low-end address (buffer grows from low-end address to high-end address);  Return Address- When a function returns, the instructions pointed by it will be executed;  Stack Frame pointer(esp)- is used to reference to local variables and function parameters.
  • 5.
    Layout of theVirtual Space of a Process The layout of the virtual space of a process in Linux
  • 6.
    Example low-end address esp int cal(int a,int b) { int c; c = a + b; return c; } int main () { int d; d = cal(1, 2); printf("%dn", d); return; } c ebp previous ebp retaddr(0x0804822) a(1) b(2) Stack high-end address
  • 10.
    Shell code  Shellcodeis defined as a set of instructions which is injected and then is executed by an exploited program;  Shellcode is used to directly manipulate registers and the function of a program;  Most of shellcodes use system call to do malicious behaviors;  System calls is a set of functions which allow you to access operating system-specific functions such as getting input, producing output, exiting a process;
  • 13.
    How to preventstack buffer overflow?  Stack Guard  In a stack , a canary word is placed after return address whenever a function is called;  The canary will be checked before the function returns. If value of canary is changed , then it indicates an malicious behavior. Local Variables Lower address Old Base Pointer Canary Value ReturnAddres Arguments Higher address Unix Stack Frame
  • 14.
    Cont.  Non-Executable stack; Return-to-libc exploitation might occur  Randomization.