SIL765: Network & System Security
Home
–
Course Description
–
Administrivia
–
Reading List
–
Schedule
–
Lab
– #
PPTs
–
Other Links
-->
Heap spraying --- in depth
MALLOC DES-MALEFICARUM (phrack BlackAngel)
Ben Hawkes Vista Heap Attacks
good overview of heap layout/attack vectors and recipes as he calls them to setup your heap state.
Low Fragmentation Heap by Chris Valasek
given in Argentina at ektoparty? Same one was delivered at Blackhat USA 2010
Advanced Doug lea’s malloc exploits Phrack
Max’s Vudoo Paper in Phrack
Dion Blazakis JIT Spraying
Filling Adobe’s Heap
good overview on how to fillup the heap with data in different programs. Not limited to adobe nor javascript.
Once upon a free(), Phrack
Heap Feng Shui by Alexander Sotirov
Great talk on heap techniques and he releases his heaplib.js code to manipulate the heap in javascript.
HeapDraw
visualization tool for seeing the output of memory allocations in your target application.
Heap Massage by Gera
Yet another free()
article at phrack
Sean Heelan TCMalloc Scripts
importance of scripts and heap information
Reliable windows heap exploits
Double free vulnerabilities
Huku’s phrack article on another free()
Runtime detection of heap overflows
Heaps About Heaps by Insomniac Security
Fuzzing
Fuzzing - making software dumber
Fuzzing and Testing