$Id: README,v 1.3 2004/02/02 19:31:54 raptor Exp $ abo-exploits.tgz - advanced buffer overflows study Copyright (c) 2003 Marco Ivaldi Package contents: . ./CREDITS information about the authors ./README this file ./abo01 ./abo01/abo1-ex.c abo1.c exploit #1 (aleph1 technique) ./abo01/abo1-ex2.c abo1.c exploit #2 (envp technique) ./abo01/abo1-ex3.c abo1.c exploit #3 (argv technique) ./abo01/abo1-ex4.c abo1.c exploit #4 (ptrace() technique) ./abo01/abo1-ex5.c abo1.c exploit #5 (return-into-libc) ./abo01/abo1-ex6.c abo1.c exploit #6 (return-into-libc #2) ./abo01/abo1-ex7.pl abo1.c exploit #7 (return-into-libc in perl) ./abo01/abo1-ex8.pl abo1.c exploit #8 (return-into-libc in perl #2) ./abo01/abo1.c abo1.c vulnerable code ./abo02 ./abo02/abo2-ex.txt abo2.c exploit discussion ./abo02/abo2.c abo2.c vulnerable code ./abo03 ./abo03/abo3-ex.pl abo3.c exploit #1 (written in perl) ./abo03/abo3-ex2.c abo3.c exploit #2 (return to system in GOT) ./abo03/abo3-ex3.c abo3.c exploit #3 (envp technique) ./abo03/abo3.c abo3.c vulnerable code ./abo04 ./abo04/abo4-ex.pl abo4.c exploit #1 (written in perl) ./abo04/abo4-ex2.c abo4.c exploit #2 (return to system in GOT) ./abo04/abo4-ex3.c abo4.c exploit #3 (envp technique) ./abo04/abo4.c abo4.c vulnerable code ./abo05 ./abo05/abo5-ex.c abo5.c exploit #1 (.dtors technique) ./abo05/abo5-ex2.c abo5.c exploit #2 (exit technique) ./abo05/abo5-ex3.c abo5.c exploit #3 (__deregister_frame_info technique) ./abo05/abo5.c abo5.c vulnerable code ./abo06 ./abo06/abo6-ex.c abo6.c exploit (env technique) ./abo06/abo6.c abo6.c vulnerable code ./abo07 ./abo07/abo7-ex.c abo7.c exploit (for new compilers!) ./abo07/abo7.c abo7.c vulnerable code ./abo08 ./abo08/abo8-ex.txt abo8.c exploit discussion ./abo08/abo8.c abo8.c vulnerable code ./abo09 ./abo09/abo9+mod-ex.c abo9.c (modified) exploit (heap unlink technique) ./abo09/abo9+mod.c abo9.c (modified) vulnerable code ./abo09/abo9-ex.c abo9.c exploit (heap unlink technique + gets) ./abo09/abo9.c abo9.c vulnerable code ./abo10 ./abo10/abo10+mod-ex.c abo10.c (modified) exploit #1 (heap unlink + __dereg) ./abo10/abo10+mod-ex2.c abo10.c (modified) exploit #2 (heap unlink + .dtors) ./abo10/abo10+mod.c abo10.c (modified) vulnerable code ./abo10-ex.c abo10.c exploit #1 (heap unlink + __dereg) ./abo10-ex2.c abo10.c exploit #2 (heap unlink + .dtors) ./abo10.c abo10.c vulnerable code