From d59888f45fdb591821e2f9a792a69cf097d7de03 Mon Sep 17 00:00:00 2001 From: acevest Date: Thu, 9 Apr 2015 19:59:08 +0800 Subject: [PATCH] ... --- learn/test/overflow/of.1.c | 43 +++++++++++++++++++++++++++++++++ tools/hack/netpeeper/http.c | 2 ++ tools/hack/netpeeper/main.c | 4 +++ tools/hack/netpeeper/netpeeper | Bin 12012 -> 0 bytes 4 files changed, 49 insertions(+) create mode 100644 learn/test/overflow/of.1.c delete mode 100755 tools/hack/netpeeper/netpeeper diff --git a/learn/test/overflow/of.1.c b/learn/test/overflow/of.1.c new file mode 100644 index 0000000..7974a0c --- /dev/null +++ b/learn/test/overflow/of.1.c @@ -0,0 +1,43 @@ +/* + * ------------------------------------------------------------------------ + * File Name: of.1.c + * Author: Zhao Yanbai + * Thu Apr 9 18:50:29 2015 + * Description: + * gcc of.1.c -fno-stack-protector + * ------------------------------------------------------------------------ + */ +#include +#include + +const char *pwd = "1234"; + +int of(const char *s) +{ + int r = 0xFEDCBA98; + char buf[8]; + + r = strcmp(pwd, s) == 0 ? 1 : 0; + + __builtin___strcpy_chk(buf, s, 1000); + + return r; +} + +int main(int argc, char *argv[]){ + + char buf[256]; + + scanf("%s", buf); + + if(of(buf)) + { + printf("SUCC: %s\n", buf); + } + else + { + printf("FAIL: %s\n", buf); + } + + return 0; +} diff --git a/tools/hack/netpeeper/http.c b/tools/hack/netpeeper/http.c index 80226aa..282a9a8 100644 --- a/tools/hack/netpeeper/http.c +++ b/tools/hack/netpeeper/http.c @@ -41,6 +41,8 @@ void http_callback(struct tcp_stream *ts) { int i; + printf("sssss\n"); + // data receive from client if(ts->server.count_new) { printf("HTTP FROM Client\n"); diff --git a/tools/hack/netpeeper/main.c b/tools/hack/netpeeper/main.c index 632effb..2bf8438 100644 --- a/tools/hack/netpeeper/main.c +++ b/tools/hack/netpeeper/main.c @@ -95,11 +95,15 @@ int main(int argc, char *argv[]){ nids_params.device = argv[1]; nids_params.promisc = 1; + printf("init....\n"); nids_init(); + printf("register tcp....\n"); nids_register_tcp(tcp_callback); + printf("nids run....\n"); nids_run(); + printf("exit....\n"); return 0; } diff --git a/tools/hack/netpeeper/netpeeper b/tools/hack/netpeeper/netpeeper deleted file mode 100755 index 834bed95849fcc6a3590fe757740cf57aab52551..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 12012 zcmeHNe{37o9sfMrY11^VlQm`S2CFFz>dJ6hXh$i8#iW7DNL#OI7@~xWbGam@j_uiJ zH7Q7hnGCGVBihi`O-$P#Y|^Gq>VT!F{Ajk8Y(pD#6@!XFn=xR{T39=2Rr-V8^nLf9 zeZHn0DAN9!zmo5LKkvQokN3Uro!`6nUOn@{`Pl$-1A{IA3jkEj0*2rN(P97!096eJ zZg0A~Y4avtT|}%1O;4m}xr_8{X}W7maUU*URa__WYyf2dW{GB1HS~U?(ATMNWjVOM zB_srJ>?w2yJQ%b?RZSYH&SbvIsV_Ls(s#G$A+e-#p|9W{=~H|4NL)|wxD}6gm(cf9 zp@1;OJx>?-rzMR7E$9y;-dQUX;)Q{C8GQ3wV7Ado|rA|F3?vc{97bs2uok2zUm@B>&|$OF z>jS0$bX*Den3WqeX5}iN55SWv0L25$1rQW+Edc+KNqUax9dj{Sv;w$lnnsc(*DC?k zrILxdNVv1EYar4k`hFJRer$U6X7^<$zj*E&JFfiMo&yiQhm{e=8&wv>X^D z|AVC1Mg$v#PJ8}awqsf-!aazDJEP&Qq<@wFy4C)!fk?Ph=pgyEMe=h1%$ZJJH~g#e zvKPwH-C>0>N5Y+PEfn_$@*dUqU z?rq$vB7DB1dxWx%R2C37Tq)&r{eTN&^oy>xRs7)Y)qbBZJ;w=tl*+wWcSFb_J} zSF}C!cc%=UGUh46`{=K#eNr<`vwi;vwU2vlK>Or%B*<}VP|2K4Kga(fjWtTP{*f{u z_b3@2evYJb4-|Msdzw0u4kdk{d~5sUB-!HZ{t>P(@YTSbfi11dL&vKaV1=S(xc1kx zfaYP(G9}Y=n2+;CdST_hK)Q#z zdq54jlWq!T>RKgRKkkvCI_T!1n()X_(Ok?5Rc<|m@tc|sr>c~P4v=eG1NQ{(4XEw= zbKBj3cgcEOJbqUd;z#3a4K`;^HD^pETfd#`&2a&HpJe1p?p8OD*`GdZ8lR*4biO6? zuiRZ!ca(>To1C0W&JLG7Q$|I(lC57yYUowFm)>Z$o*%e?5lKb)C9`EwJ_LVs0p3w} zdaBL1#ydKeo@((9QDS&U?_lZEx2Nv+j^5!)pKeZ-H*2Sq%+X_^^i*3)_l`EQ^i*r= z9`9(QD?PROS#lw@al_Clqj}Y#Rlh&BQ0A9+w8ou2r;N6pSDcSn1ZXUZz8o-`L zSN&s4fCtyqKe_;T@P_o%rUy5trxtpLcw&n{wolIg$TaydS!&04<6<`6IKYm@>qnLV zsqnG2^_c}gszYS4$Xt=NPoFo<^ir^HH0vLu zz|1dn|HDV7X|?Y!N_uT7L@diju`+jA3zLH&dqfq*Wl6fUJ0bn1OIslm>Mfss**F3@G z`{!lk-#=MdN$;Phtoq{j&)0Y+)BERs%b~ZKe5lTxGfmr_J$BACKf(LQtUcrc%-YxZ z^>uzd%&%|q>s$PKgkLB4^&NhFmtWuKSGqT5?LYYSIKO_#rywoaE81K@pw+BxqGzU; z-iVX$o2J=IQ_IP>h@%P4ePHBJR7yeTTSj z689tGzE0dPiR&kBjJPOquMyWp+`GixZJK8Be`8x~(`Fxnf!0}LAmRXMwSgcauU|LgjXOV5jS>$oTnitwkfX?HxNZBw=0ZE8;{l<2}>&J@H(toANFk%(iYfi~l;&F{`| zv`bH5aH7x^iRIElI2txEg2YN$kNkdPlh8CxWwfTlrlyHN?k?v49LiI{bgQ`Vh zNu5Bjra{&FEzNh;G^pL%6Jdk5bksDc^x24d_0}|~@kBUkbQ6jbN*PJw`)eB1q><1< zNnPvXZVWO})tjIWj|v#Ibs5Rm#RsU*PQuc#Af}=W6>49vs`u+!%FxwbJw)M2bsKS2 z!$7aW%O_a4FGLml7}uaiVm)|=h5A%26p3_(v~Bo1GqiXC9%m`~;DwW{FBFdA6pP2= z*Q*-NGX62k#lNSi{NvZRnbh$;=Em+SxUst$MO}WC@3NPaT*djPxTep)-NN3murIN+|KFbfmEt@559Rm;mhvAr|8~*7B(t7Qk{#n1 z`TNN?UTyE2zle5u-j4REs9iq4X9bq;gL$+8ZF^oW7g#=Tet~8DSIc%Wo<@OXeA;Ax zkw2R3FXDNh!18%Wxp@xckH$UXz&~){pE&R?2Y$+d_ga`j$LS>pKIFjfIq*L%ocHhF z4*Zb=yZPy!LVvFVf7*eUIq;<~xL=!*3epgR$|r2LS(Q~G=QT8so1q=9A_mo( z651_UHPRH#6lZ9PtB66hCY^RuR*f`8`>!(#9%+cdnilg(EzMSEsFSORLAB40Y57o? z9IMvcSmje=ni$W}B3BWEYR$3j@v>@UywquC`o(VYEXsGkAg7A&^fakZe1E37fqckL zw=VR1+He(?9z|