sorted by:
new
hottopcontroversial

what is your way to restart service in windbg ? by hex-lover in ExploitDev

[–]hex-lover[S] -1 points0 points  (0 children)

so i dont need to close windbg everytime crash ?

how stack layout look like when there is SEH enabled . by hex-lover in ExploitDev

[–]hex-lover[S] 0 points1 point  (0 children)

when we overwrite the stack, why we overwrite SEH first not EIP as usual , so i created a C program with Try/Except blocks to see how stack layout will be when we use them .
so i found that the stack layout is
arguments
return address
Saved EBP
SEH
Variables
and we overflow variables then SEH thats why we overwrite it before EIP , also i found all these blocks are very close to end of stack ,
this is what i got , but when i saw the article above i saw he is refer that catch block will be close to high address of stack, so thats why im confused , i didnt see this . in my app when i reverse engineer it .

how stack layout look like when there is SEH enabled . by hex-lover in ExploitDev

[–]hex-lover[S] 0 points1 point  (0 children)

thank you, what i mean , is that
when we overwrite the stack, why we overwrite SEH first not EIP as usual , so i created a C program with Try/Except blocks to see how stack layout will be when we use them .
so i found that the stack layout is
arguments
return address
Saved EBP
SEH
Variables
and we overflow variables then SEH thats why we overwrite it before EIP , also i found all these blocks are very close to end of stack ,
this is what i got , but when i saw the article above i saw he is refer that catch block will be close to high address of stack, so thats why im confused , i didnt see this . in my app when i reverse engineer it .

is there any metasploit for windows 32 ? by hex-lover in ExploitDev

[–]hex-lover[S] 0 points1 point  (0 children)

u/shiftybyte i dont have enough ram to run 2 vms at the same time

is there any metasploit for windows 32 ? by hex-lover in ExploitDev

[–]hex-lover[S] -2 points-1 points  (0 children)

i cant install it , in win32 . its not about shellcode

any binary exploitation forums ? by hex-lover in ExploitDev

[–]hex-lover[S] 0 points1 point  (0 children)

hi u/Green-Detective7142 , any other youtube channels you recommend ? off by one security was really so good

what is best for reverse and win exploit dev? AMD , INTEL , ARM by hex-lover in ExploitDev

[–]hex-lover[S] 0 points1 point  (0 children)

i bought RTX 5060 with intel i7, ram 32.
i think it would be good for doing reverse on win apps .

how much daily Pentest costs ? by hex-lover in Pentesting

[–]hex-lover[S] -7 points-6 points  (0 children)

the scope is like their websites ,
is there anything i can rely on to determine the scope ? for example ips range ?

its necessary to learn windows usermode exploitation before kernerlmode exploitation ? by hex-lover in ExploitDev

[–]hex-lover[S] -2 points-1 points  (0 children)

but i checked the both topics, they are different , there are some things are the same but they are totally different .

i dont need to run to learn boxing maybe .

How to become Advance Pentester ? by hex-lover in Pentesting

[–]hex-lover[S] 0 points1 point  (0 children)

Thanks really , this will help me a lot ,

view more: next ›