video thumbnail 10:32
The Heap: dlmalloc unlink() exploit - bin 0x18

2016-11-15

[public] 26.2K views, 657 likes, 3.00 dislikes audio only

An introduction on how to abuse Heap metadata to redirect program execution. dlmalloc unlink() heap exploit to redirect code execution.

heap3: https://exploit.education/protostar/heap-three/

Once upon a free() - phrack: http://phrack.org/issues/57/9.html

-=[ 🔴 Stuff I use ]=-

→ Microphone:* https://geni.us/ntg3b

→ Graphics tablet:* https://geni.us/wacom-intuos

→ Camera#1 for streaming:* https://geni.us/sony-camera

→ Lens for streaming:* https://geni.us/sony-lense

→ Connect Camera#1 to PC:* https://geni.us/cam-link

→ Keyboard:* https://geni.us/mech-keyboard

→ Old Microphone:* https://geni.us/mic-at2020usb

US Store Front:* https://www.amazon.com/shop/liveoverflow

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow

→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/

→ Website: https://liveoverflow.com/

→ Subreddit: https://www.reddit.com/r/LiveOverflow/

→ Facebook: https://www.facebook.com/LiveOverflow/

-=[ 📄 P.S. ]=-

All links with "*" are affiliate links.

LiveOverflow / Security Flag GmbH is part of the Amazon Affiliate Partner Programm.

#BinaryExploitation #HeapOverflow


allocate a chunk of a certain size
/youtube/video/HWhzH--89UQ?t=61.238998
set the one address to the global offset table
/youtube/video/HWhzH--89UQ?t=435.82999
take care of the string copy of the middle chunk
/youtube/video/HWhzH--89UQ?t=479.84
copy the string representation of the shellcode
/youtube/video/HWhzH--89UQ?t=562.13