Binary Exploit Development - SEH Based Overflow

Channel:
United States Guided Hacking
Subscribers:
178,000
Published on ● Video Link: https://www.youtube.com/watch?v=LzK9dM_K-FI


Duration: 10:17
7,232 views
0

Part 2 of our Binary Exploit Development Tutorial Series. We'll be showing you how to exploit a SEH based overflow. SEH is a Structed Exception Handler. A SEH based overflow is a buffer overflow that results in the hijacking of execution via a SEH chain.

Support us on GH: https://guidedhacking.com/register/
Support us on Patreon:   / guidedhacking  
Support us on YT:    / @guidedhacking  

This video was made by nop

SEH Based Overflow Article
https://guidedhacking.com/threads/bin...

Learn about the Windows Structured Exception Handler, as well as space restrictions and how to exploit and overcome them in the second part of the binary exploitation course. SEH based overflows are an alternative to direct return address overwrites and are considered to be more reliable but also require slightly more knowledge about exploit development and Windows internals.

Welcome to the 2nd part of my binary exploitation series. Next to a direct return address overwrite (which we exploited in part 1) the SEH chain can also be used to obtain control over the execution flow of a program and execute arbitrary code.

What is a Structured Exception Handler?​
What happens when your program does something it should definitely not do? Should the program just exit, should a message appear or should your computer turn off? An exception is an additional method to divert code flow when an exception occurs, that don't fall under normal error checking logic.

Structured Exception Handling is Microsoft's specific method of handling both software & hardware exceptions

Are these types of exceptions vulnerable? Not in themselves, no. But can you use a buffer overflow to overwrite part of SEH? Indeed you can, as you will find out in the video below. An SEH chain (linked list) exists on the stack for each thread, with pointers to each exception handler ( it's just a function pointer, not complicated). Overwriting one of these function pointers? Or the function itself? That's what we're doing in a SEH buffer overflow.

Stay tuned for more new videos in our Binary Exploit Development series.

Follow us on Facebook : http://bit.ly/2vvHfhk
Follow us on Twitter : http://bit.ly/3bC7J1i
Follow us on Twitch : http://bit.ly/39ywOZ2
Follow us on Reddit : http://bit.ly/3bvOB57
Follow us on GitHub : http://bit.ly/2HoNXIS
Follow us on Instagram : http://bit.ly/2SoDOlu

SoundFX and Music provided by:
Epidemic Sound https://epidemicsound.com
Zapsplat https://www.zapsplat.com
Audio Blocks https://www.audioblocks.com

tags:
SEH Based Overflow
exploit development tutorial
binary exploitation tutorial
SEH buffer overflow
exploit development
buffer overflow
binary exploitation

What is a buffer overflow?
What is a Structured Exception Handler?
What is a SEH based buffer overflow?
How does a Structured Exception Handler work?
#exploitdevelopment #reverseengineering #bufferoverflow



Other Videos By Guided Hacking


2022-11-18CrashedTech Malware Analysis - Reversing a Loader
2022-11-15The GH Unreal Engine Dumper
2022-11-11Where to Download New Malware Samples
2022-11-01Top 5 Best Ida Pro Plugins For Malware Analysis
2022-10-25VFlooder Malware Analysis - VirusTotal Flooder
2022-10-14Cobalt Strike - XSS Exploit Explained - CVE-2022-39197
2022-10-11KLBanker String Decryption With Python - Malware Analysis
2022-10-07PINCE Tutorial - Linux Cheat Engine Alternative
2022-10-03Exploit Development 3 - Writing an Exploit Stager
2022-09-23Top 5 Malware Analysis Websites
2022-09-20Binary Exploit Development - SEH Based Overflow
2022-09-09What is the Windows API? What is Windows.h?
2022-09-06VKeylogger Analysis - Reversing & Fixing Imports
2022-09-02Binary Exploit Development Tutorial - Simple Buffer Overflow
2022-08-17How to Setup a Virtual Machine for Malware Analysis
2022-08-10BlackNET C2 Communications with FakeNet-NG
2022-08-02Paradies Clipper - Crypto Jacker Malware Analysis
2022-07-20Introduction to Git Repos
2022-04-12How To Update Broken Cheat Engine Table Scripts | GH210
2022-02-02Intro to Complex Cheat Engine Scripts | GH209
2022-01-18Defense Boost with Integers in Cheat Engine Tutorial | GH208


Tags:
SEH Based Overflow
SEH buffer overflow
binary exploit development
binary exploitation
binary exploitation tutorial
buffer overflow
exploit
exploit development
exploit development tutorial
guidedhacking
remote code execution