.

[Article]-Smashing The Modern Stack For Fun And Profit

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Sat Mar 24, 2007 5:17 pm

[Article]-Smashing The Modern Stack For Fun And Profit

Everyone at EH-Net... please give a round of applause to our newest writer, Craig Heffner. He not only took on one of the more popular articles in hacking history, but he will also tackle the topic of much debate here in our community - programming. He will begin to contribute many more articles on coding from an ethical hackers perspective.

Welcome aboard Craig.

By Craig J. Heffner 

When it comes to buffer overflows, 'Smashing The Stack For Fun And Profit' by Aleph One is still the first resource many people are directed towards, and for good reason; it is thorough, well written, and chock-full of examples. However, the GNU C Compiler (gcc) has evolved since 1998, and as a result, many people are left wondering why they can't get the examples to work for them, or if they do get the code to work, why they had to make the changes that they did. Having these same problems myself, and being unable to find an updated version of Aleph One's document on the web, I set out to identify the source of these variations on my own.

I have taken the liberty of writing this paper to share my findings with others who are experiencing the same problems I did, but it is meant only to be a modern supplement to Aleph One's paper. You should read Smashing The Stack first, as it is assumed that you understand the concepts and code presented there, as well as some standard buffer overflow techniques.


Permanent link:
[Article]-Smashing The Modern Stack For Fun And Profit

Enjoy,
Don
CISSP, MCSE, CSTA, Security+ SME
<<

LSOChris

Post Sat Mar 24, 2007 8:10 pm

Re: [Article]-Smashing The Modern Stack For Fun And Profit

you guys are in store for some great stuff from Craig.  he has been a friend of LSO for a bit and everything he contributes is always first class.

welcome Craig!
<<

heffnercj

EH-Net Columnist
EH-Net Columnist

Posts: 69

Joined: Thu Mar 15, 2007 2:45 pm

Post Sat Mar 24, 2007 10:05 pm

Re: [Article]-Smashing The Modern Stack For Fun And Profit

Thanks Don and Chris, glad to finally be getting off my butt and putting some content up here.  ;D I should have some ASM/C programming stuff up in not too long!
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Sat Mar 24, 2007 11:13 pm

Re: [Article]-Smashing The Modern Stack For Fun And Profit

I'm excited as well. BTW - submitted to digg:

http://www.digg.com/security/Smashing_T ... d_Profit_2

Don
CISSP, MCSE, CSTA, Security+ SME
<<

slimjim100

User avatar

EH-Net Columnist
EH-Net Columnist

Posts: 385

Joined: Wed Nov 08, 2006 12:50 pm

Location: Atlanta

Post Mon Mar 26, 2007 1:59 pm

Re: [Article]-Smashing The Modern Stack For Fun And Profit

heffnercj,

            Nice paper! Also Dugg :)

Brian
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP

Return to /root

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software