15 Commits

Author	SHA1	Message	Date
h3xduck	e881502ffa	Now control flow is redirected back to the syscall after running the shared library constructor instead of skipping it	2022-04-09 14:17:09 -04:00
h3xduck	036585371c	Added pdf with temporary documentation	2022-04-08 05:30:43 -04:00
h3xduck	621e42e2e8	Changed shellcode to include backup of registers and stuck. Now prevents stack smashing detection via the stack canaries	2022-04-07 19:47:53 -04:00
h3xduck	be5605db5f	Introduced shellcode and finished code cave writing and injection. RELRO working	2022-04-07 11:54:24 -04:00
h3xduck	3455b80010	Merge branch 'injection' of https://github.com/h3xduck/TFG into injection. Messed up with branches, clearing up	2022-04-07 07:14:54 -04:00
h3xduck	3438f5846f	Finished injection module at userspace using /proc/<pid>/maps, enables to overwrite the GOT section with RELRO activated	2022-04-07 07:11:28 -04:00
h3xduck	e6ddb3373e	Finished injection module at userspace using /proc/<pid>/maps, enables to overwrite the GOT section with RELRO activated	2022-04-05 20:21:59 -04:00
h3xduck	96cfda8c1f	Finished RELRO adaptation.	2022-04-04 18:04:34 -04:00
h3xduck	748062f464	Adapted memory analysis to larger memory addresses inside the virtual address space. Solved bugs and others, adapting code for RELRO.	2022-04-04 17:07:45 -04:00
h3xduck	8f28c3a883	Updated helpers and added resources to help with lib injection	2022-03-24 15:40:05 -04:00
h3xduck	9dff5e71dc	Included offset and extraction of interesting functions	2022-03-17 21:41:40 -04:00
h3xduck	0fbcb8bdf7	Fixed probe not probing correct syscall entry	2022-03-17 19:36:25 -04:00
h3xduck	fcf43ff180	Finished extraction of return address from the stack, and libc syscall adress	2022-03-17 19:32:32 -04:00
h3xduck	9647972531	Finished extraction of stack return address	2022-03-17 13:18:19 -04:00
h3xduck	671e2d671d	Added extraction of original jump instruction and opcodes	2022-03-15 18:36:59 -04:00