ROP

You get the idea right! We are going to enumerate all the ROP-Gadgets and then chain them together to craft our API call which will in turn disable DEP and allow us to execute our second stage payload

参考：http://www.fuzzysecurity.com/tutorials/expDev/7.html

ROP的利用分为两个阶段，首先关闭DEP；然后，进行第二阶段的正常的shellcode执行。

posted @ 2014-07-10 14:31 Daniel King 阅读(228) 评论(0) 编辑收藏举报

指间灵动，快码加编

刷新页面返回顶部

Daniel King

淡泊明志，宁静致远

ROP