H e s s a m x !

BOF exploit in the Alpha Linux

hessamx — Thu, 07 Dec 2006 15:12:56 +0000

There are many exploit code of buffer overflow. However, almost all codes works well only in the intel x86 linux. This paper will attempt to explain how you exploit same bug in the alpha linux. Read this paper in securiteam.com

Advanced malloc exploits

hessamx — Thu, 07 Dec 2006 15:05:12 +0000

This article explains what several techniques that allow more generic and reliable exploitation of processes that provide us with the ability to overwrite an almost arbitrary 4 byte value at any location.
read this paper in Phrack.org

Microsoft Anti-Cross site scripting Library

hessamx — Thu, 07 Dec 2006 13:54:38 +0000

Cross-site scripting (XSS) attacks exploit vulnerabilities in Web-based applications that fail to properly validate and/or encode input that is embedded in response data. Malicious users can then inject client-side script into response data causing the unsuspecting user’s browser to execute the script code. The script code will appear to have originated from a trusted-site and may be able to bypass browser protection mechanisms such as security zones. See This Library in microsoft.

Exploiting with linux-gate.so.1

hessamx — Thu, 07 Dec 2006 13:32:28 +0000

linux-gate.so.1 not a dynamically loaded library but a dynamically shared object (DSO).This article explains what linux-gate.so.1 how it can be useful for exploits and can byppasing some protections.this is pretty good for Buffer Overflow Exploits.
you can read this paper here.

return-into-libc Papers

hessamx — Thu, 07 Dec 2006 13:24:05 +0000

return-into-libc is very useful method for exploiting .this is a method of exploiting a buffer overflow on a system that has a non-executable stack (like linux).

The advanced return-into-lib(c) exploits
Exploitation - returning into libc
c0ntex - return to libc