Partial Return Address Overwrite - Exploit Dev 10

Channel:
United States Guided Hacking
Subscribers:
178,000
Published on ● Video Link: https://www.youtube.com/watch?v=fqsSAqbNFfo


Duration: 10:41
3,523 views
0

🔥 Learn How to Bypass ASLR using a partial RET overwrite
👨‍💻 Buy Our Courses: https://guidedhacking.com/register/
💰 Donate on Patreon:   / guidedhacking  
❤️ Follow us on Social Media: https://linktr.ee/guidedhacking

🔗 Article Link: https://guidedhacking.com/threads/bin...

🔗 Exploit Education: https://exploit.education/phoenix/sta...

📜 Video Description:
Bypassing ASLR without leaking a memory address? By utilizing a partial instruction pointer overwrite this exploitation technique becomes possible. What do we mean by that? We are talking about overwriting a portion of the return address.

So far, the goal every time was to completely overwrite the return address, which led to full control over the instruction pointer (EIP/RIP, depending on the architecture) when writing binary exploits.

Alternatively, one could also overwrite just parts of the return address, leading to partial control over the instruction pointer.

There are two reasons why an attacker might do this:
1) Because of limitations, controlling the whole RIP is impossible.
2) There is no info leak that could be used to bypass ASLR

Interestingly, different technologies or architectures use different kinds of endianness in certain situations. Modern computers use little-endian when working e.g. with memory and CPU registers. Because of that, a buffer long enough to exploit a buffer overflow will first overwrite the "last" byte of the return address.

📝 Timestamps:
0:00 Analyzing Source Code
1:27 Partial RET Overwrite Explained
2:14 GDB Setup and Analysis
3:27 Join GuidedHacking.com
3:57 Return Instructions
4:50 Target Address Identification
6:11 Base Pointer Adjustment
7:00 Writing the Exploit Script
8:16 Exploit Execution & Results

✏️ Tags:
#exploitdevelopment #bufferoverflow #reverseengineering
partial ret overwrite
guidedhacking
exploit dev
partial return address overwrite
exploit development
partial return overwrite
buffer overflow
partial ret overwrites
exploit development course
partial return overwrites
partial return address overwrites
guided hacking
buffer overflows
binary exploitation
ethical hacking
exploit development tutorial
binary exploitation tutorial
binary exploit development



Other Videos By Guided Hacking


2024-04-25Kernel Driver Meme #kernel #anticheat #gamehacking
2024-04-17Learn Assembly for Game Hacking
2024-04-08pay cheat facts #gamehacking #malwareanalysis #anticheat
2024-04-01Kernel Game Hacking #gamehacking
2024-03-27How to Learn Game Hacking
2024-03-20Anti-Debug with Structured Exception Handling + Trap Flag
2024-02-14Simple JavaScript Aimbot - HTML5 Game Hacking
2024-02-03Rust-Lang Game Hacking - Internal Cheat on MacOS
2024-01-13MacOS Game Hacking In Rust-Lang
2023-12-22Writing Exploits for IoT N-Days?? Zyxel CVE-2023-35138
2023-12-15Partial Return Address Overwrite - Exploit Dev 10
2023-11-25Vuln Research in VIDEO GAMES?!?!
2023-11-18WTF is Egg Hunter Shellcode? - Exploit Dev 11
2023-11-11How to Detect Threads & Bypass Anti-Cheat Detection
2023-11-07Squally - The Game That Teaches Assembly
2023-10-31Frida Hooking Tutorial - Android Game Hacking
2023-10-28Linux Buffer Overflow - Exploit Development 9
2023-10-24Easy JSON ImGui Config Files for Hack Menus
2023-10-18Time Based Anti-Debug Techniques
2023-10-10Z3 Explained - Satisfiability Modulo Theories & SMT Solvers
2023-10-02How to Bypass Anti-Cheat for MODERN Game Hacking!


Tags:
guidedhacking
exploit dev
exploit development
partial ret overwrite
partial return overwrite
partial return address overwrite
partial ret overwrites
partial return overwrites
partial return address overwrites
guided hacking
buffer overflow
exploit development course
reverse engineering
binary exploitation
ethical hacking
exploit development tutorial
binary exploitation tutorial
binary exploit development