Writing Buffer Overflow Exploits using BackTrack

I have been writing a number of tutorials on my blog about how to create buffer overflow exploits using BackTrack.

I posted the links to parts one and two on the old forums, and I just finished part three, so I decided to post links to all three parts here.

I will update this post with more links when I write further entries.

Part One: A Simple Windows Stack Based Buffer Overflow
Part Two: A Windows Stack Based SEH Buffer Overflow
Part Three: A Windows Stack Based SEH Buffer Overflow with Character Translation
Part Four: A Windows Use After Free Heap Corruption Exploit
Part Five: A Windows Stack Based Overflow using an Egghunter and a Conditional Jump


Update: Added link to part four.
Update: Added link to part five.

Great

Thanks for ur hardwork

Super :) Thanks !

Awesome Tutorials.

Thanks, I hope your efforts are recognised :D

Very nice! Easy to understand and very well presented. I like your style. :)

Great organization keep up the great work!http://www.backtrack-linux.org/forum...ons/icon14.gif
Thumbs uphttp://www.backtrack-linux.org/forums/images/icons/icon10.gif
Talking

Update: Added link to Part Four, A Windows Heap Corruption Exploit.

This reproduces the Internet Explorer Aurora '0 day' exploit, used (allegedly) by the Chinese to hack Google.

It can be viewed here.

First, @lupin: I thank you again for these awesome materials!

Second, to anyone considering taking PWB and/or CTP, I find lupin's tutorials an Excellent supplementary source of info.

@lupin
These Tutorials are great. Read the first two and just now finished the first one. Thank you for posting them!:cool:

Update: Added link to Part Five, Uses an Egghunter, and a conditional jump to get around bad character limitations.

It can be viewed here.