SIL765: Network & System Security : Other Links
Heap spraying --- in depth
- MALLOC DES-MALEFICARUM (phrack BlackAngel)
- Ben Hawkes Vista Heap
Attacks
good overview of heap layout/attack vectors and recipes as he calls them to setup your heap state.
- Low Fragmentation Heap by Chris Valasek
given
in Argentina at ektoparty? Same one was delivered at Blackhat USA 2010
- Advanced Doug lea’s malloc exploits Phrack
- Max’s Vudoo Paper in Phrack
- Dion Blazakis JIT Spraying
- Filling Adobe’s Heap
good
overview on how to fillup the heap with data in different programs. Not
limited to adobe nor javascript.
- Once upon a free(), Phrack
- Heap Feng Shui by Alexander Sotirov
Great
talk on heap techniques and he releases his heaplib.js code to manipulate
the heap in javascript.
- HeapDraw
visualization
tool for seeing the output of memory allocations in your target application.
- Heap Massage by Gera
- Yet another free()
article
at phrack
- Sean Heelan TCMalloc Scripts
importance
of scripts and heap information
- Reliable windows heap exploits
- Double free vulnerabilities
- Huku’s phrack article on another free()
- Runtime detection of heap overflows
- Heaps About Heaps by Insomniac Security
Fuzzing
- Fuzzing - making software dumber
- Fuzzing and Testing