Peter Van Eeckhoutte's Blog

:: [Knowledge is not an object, it´s a flow] ::

Posts Tagged ‘include’

Exploit writing tutorial part 4 : From Exploit to Metasploit – The basics

August 12th, 2009 |

Author: Peter Van Eeckhoutte

Viewed 13,129 time(s) |

Add this post to Your Favorite Posts

In the first parts of the exploit writing tutorial, I have discussed some common vulnerabilities that can lead to 2 types of exploits : stack based buffer overflows (with direct EIP overwrite), and stack based buffer overflows that take advantage of SEH chains. In my examples, I have used perl to demonstrate how to build a working exploit. Obviously, writing exploits is not limited to perl only. I guess every programming language could be used to write exploits… so you can just pick the one that you are most familiar with. (python, c, c++, C#, etc) Despite the fact that these custom written exploits will work just fine, it may be nice to be able to include your own exploits in the metasploit framework in order to take advantage of some of the unique metasploit features. So …

– Read more »

Posted in 001_Security, Exploit Writing Tutorials, Exploits |

Tags: buffer, check, custom vulnserver, encoder, exe, exe windows, exploit, exploit custom, Exploits, include, initialize, metasploit, meterpreter, module, msf, msf exploit, msf/core, offset, payload, port, print, rb, require, ruby, shellcode, socket, vulnserver, windows, windows system |

Meet me at Brucon 2010

Meet me at Brucon 2010 !

Peter says:

« All of the info and all tools on this blog are free. Keeping this blog in the air is quite expensive.
So if you like what I do and want to show your respect for my work, please consider donating (use the Donate link above)

There is no way I can keep this site up and running without your help.

»     ...     « If you have enjoyed a certain post or like one of my tools, don't forget to vote/rate it !

»     ...     « If you have questions about certain posts, content or tools published on this website, then please use the forums to post questions. Don't write your questions in the Comments section.

»     ...     « If you want to be the first to know about new posts/tools/tutorials on this blog, then subscribe to the mailinglist. Use the 'Subscribe to updates via email' link below (in the Stay posted section)

»

Categories