NTU Computer Security Fall 2019 - 台大计算机安全
担任台大大助教,与三周Pwn 课程讲师。
课程内容
Week 1: Binary Exploitation - Basic
- Slide: speakerdeck.com/yuawn/binary-exploitation-basic
- Video: youtu.be/U8N6aE-Nq-Q
- Lab:
- bof
- stack buffer overflow, overwrite return address
- orw
- seccomp filter syscall, shellcode
- Homework:
- Casino
- oob array access, GOT hijacking, shellcode
Week 2: Binary Exploitation
- Slide: speakerdeck.com/yuawn/binary-exploitation
- Video: youtu.be/5D7tvxpSUUM
- Lab:
- ROP
- ret2plt
- Practice using plt functions
- ret2libc
- information leak, bypass ASLR, practice ret2libc technique
- Homework:
- Casino++
- oob array access, GOT hijacking, leak libc, ret2libc hijack plt function to system()
Week 3: Heap Exploitation
- Slide: speakerdeck.com/yuawn/heap-exploitation
- Video: youtu.be/rMqvL9j0QaM
- Lab:
- UAF
- Practice using UAF to leak address and exploit.
- Note
- double free, fastbin attack
- T-Note
- Homework:
- Election
- stack pivoting, ret2csu csu gadget
- Note++
- off-by-one null byte overflow, fastbin dup, forge chunk size to leak libc, overwrite __malloc_hook, one gadget
课程题目challenges
- 各week 中
src底下为题目原始码 - 各week 中
exp底下为答案解法exploits
环境environment
- OS: ubuntu 18.04
- GCC: gcc (Ubuntu 7.4.0-1ubuntu1~18.04.1) 7.4.0
Build
cd week1 # week2 week3
docker-compose up -d
Compile (如需自行重编题目binary)
sudo apt install libseccomp-dev
make
