Title: 02.Stack smashing(64bit) & Return-to-user(ret2usr)  
Author: Lazenca.0x0 Jan 29, 2019
Last Changed by: Lazenca.0x0 Jun 29, 2020
Tiny Link: (useful for email) https://www.lazenca.net/x/bACHAQ
Export As: Word · PDF  
Incoming Links
TechNote (2)
    Page: 02.Segregation of kernel memory from userspace memory(x86's SMEP/SMAP, ARM's PXN/PAN)
    Page: 01.Kernel Address Space Layout Randomization (KASLR)
Hierarchy
Parent Page
    Page: 03.Linux Kernel Exploitation Tutorial
Labels
Global Labels (1)
Recent Changes
Time Editor  
Jun 29, 2020 08:09 Lazenca.0x0 View Changes
Jun 15, 2020 15:52 Lazenca.0x0 View Changes
Apr 23, 2019 10:24 Lazenca.0x0 View Changes
Apr 09, 2019 09:47 Lazenca.0x0 View Changes
Mar 05, 2019 08:37 Lazenca.0x0  
Outgoing Links
External Links (22)
    https://www.felixcloutier.com/x86/swapgs
    https://en.wikipedia.org/wiki/X86_memory_segmentation#Later…
    vectorlinux.com/news/kernel-exploit
    https://www.lazenca.net/pages/viewpage.action?pageId=237897…
    https://en.wikipedia.org/wiki/General_protection_fault
    https://elixir.bootlin.com/linux/v4.4/source/arch/x86/entry…
    https://booksite.elsevier.com/samplechapters/9781597494861/…
    https://wiki.osdev.org/X86-64
    https://www.lazenca.net/pages/viewpage.action?pageId=237897…
    https://cturt.github.io/ps4-3.html
    https://github.com/ctf-wiki/ctf-wiki/blob/master/docs/pwn/l…
    sec-redclub.com/archives/636/
    https://wiki.kldp.org/KoreanDoc/html/EmbeddedKernel-KLDP/ap…
    https://www.lazenca.net/pages/viewpage.action?pageId=237897…
    https://github.com/bash-c/pwn_repo/blob/master/QWB2018_core…
    https://xz.aliyun.com/t/2054
    https://www.lazenca.net/pages/viewpage.action?pageId=237897…
    https://www.coursehero.com/file/p46216j/C0000102h-KernelGSb…
    https://elixir.bootlin.com/linux/v4.4/source/arch/x86/entry…
    https://wiki.osdev.org/MSR
    https://blackperl-security.gitlab.io/blog/2018/05/14/2018-0…
    m4x.fun/post/linux-kernel-pwn-abc-1/