80 likes | 243 Views
Project 1 . RueiMin Jiang. What U Will Learn . 1. shellcoding 2. windows API 3. how to use linux system call 4. some basic socket programming. Project Goal. Describe in this link: http://in1.csie.ncu.edu.tw/~ hsufh /COURSES/FALL2012/security_project1.html. Project Detailed.
E N D
Project 1 RueiMin Jiang
What U Will Learn • 1. shellcoding • 2. windows API • 3. how to use linux system call • 4. some basic socket programming
Project Goal • Describe in this link: • http://in1.csie.ncu.edu.tw/~hsufh/COURSES/FALL2012/security_project1.html
Project Detailed • The MBC (Mission Briefing Code) need to be written in shellcode format. • Operating System Platform: • Linux • Windows • If you can write a program that will help u generate shellcode, what would be a bonus.
Some Hints • Most Operating System enable ASLR by default. • Linux: • System Call • Disable ASLR by yourself. • Windows: • LoadLibraryA() • GetProcAddress()
Grading Policy • Total 120 Points • Operating System is Linux : up to 80 • With System Call : up to 80 • With Function Call : up to 80 • Operating System is Windows: • With Static Function Address : up to 80 • With Dynamic Function Address : up to 90 • Bonus: 30 points • According to your answer to TA’s questions.
Reference Material • http://www.hick.org/code/skape/papers/win32-shellcode.pdf • http://insecure.org/stf/smashstack.html • http://www.vividmachines.com/shellcode/shellcode.html • http://msdn.microsoft.com/en-us/library/windows/desktop/hh920509%28v=vs.85%29 • http://msdn.microsoft.com/en-us/library/windows/desktop/ms680547%28v=vs.85%29.aspx • http://mike820324.blogspot.tw/search/label/shell%20code
Keyword • Shellcode • Position Independent Code • PEB(Process Entry Block)