BASIC Buffer Overflow | Ryan's CTF [13] Everyday I'm Bufferin

Рет қаралды 45,471

5 жыл бұрын

If you would like to support me, please like, comment & subscribe, and check me out on Patreon: / johnhammond010
E-mail: johnhammond010@gmail.com
PayPal: paypal.me/johnhammond010
GitHub: github.com/JohnHammond
Site: www.johnhammond.org
Twitter: / _johnhammond

Пікірлер: 45

@singularity1130 5 жыл бұрын

Watching your buffer overflow has explained more than the hours of theoretical videos I've watched... Thank you.

@cwlancaster979 3 жыл бұрын

Exactly this.

@georgebas1605 Жыл бұрын

@@cwlancaster979 approve

@ryananicholson 5 жыл бұрын

Ive never seen a BO explained in less than 10 mins... Great job!

@nullnitro6061 2 жыл бұрын

kek, that's john

@memomemo2256 5 жыл бұрын

Actually this the best simple detailed explanation for BoF I had ever seen ! Good job

@_JohnHammond 5 жыл бұрын

Thanks so much, I appreciate all the kind words! Thanks for watching!

@mucktheman2720 5 жыл бұрын

Good work with the quick and easy to follow explanation of a buffer overflow. I've seen them explained in so many different ways and this was concise and to the point. Great work John!

@_JohnHammond 5 жыл бұрын

Hey thank you, I am really happy to hear that! :D I appreciate the kind words, thanks again!

@Sunfyre0x0 3 жыл бұрын

Hands down best BoF video to the point I've come across! You sir are a savior. Thank you

@iainkay3630 2 жыл бұрын

Love this. So simple yet so effective. Whilst consuming most of the videos explaining this topic I am left thinking I wish there was a 3x or 4x speed. Not with this though. Thanks for a super quick explanation of how to get to it, in this example at least and actually get the overflow done.

@L0wLevel01 4 жыл бұрын

that is actually fantastic, Prof. Hammond !

@electrokid9492 3 жыл бұрын

@John Hammond really love you and your content

@sandra8139 Жыл бұрын

I am see that is trying to be myself and is not has been watched at 4 times in this subscription and membership I joined in the last couple of days alone thanks John

@6cylbmw 4 жыл бұрын

Awesome explanation. Thank you!

@allenxd 3 жыл бұрын

im struggling with bof but damn this made it look easy. thanks!

@risingofmars1859 2 жыл бұрын

Nice video and well explained..

@constantinenabruk1199 5 жыл бұрын

Amaizing, why others cant explain the bufferoverflows like you? you make this so easy... hours of theory for nothing, in less than 10 minutes you explained id...

@jovi___ 3 жыл бұрын

Thank You!

@Arteko77 5 жыл бұрын

Good to know another way to solve this CTF. I've used objdump and found how many bytes is allocating for buffer.

@ShubhamPatil-wk4yv 5 жыл бұрын

WOWW just wow!!

@OthmanAlikhan Жыл бұрын

Thanks for the video =)

@sanr6838 4 жыл бұрын

This is the best example I have seen for a BO

@_JohnHammond 4 жыл бұрын

Thank you so much, and thanks for watching!

@marcovalentinoalvarado3290 2 жыл бұрын

Is it possible to use GDB there and find the specific size of the buffer to avoid doing trial and error trying to find where the buffer is overflowed?

@Akshay1165 2 жыл бұрын

Wooh!!! Thanks

@kubertultd1198 5 жыл бұрын

better way to learn BOF is just watching CTF videos :D . tks for making this

@_JohnHammond 5 жыл бұрын

Thanks for the kind words! :D

@paul2240 Жыл бұрын

banger video

@mikee. 5 жыл бұрын

Ugh, I was so close to solving it myself...

@poluefemus 6 ай бұрын

oh that was easier than i thought lol

@andrewchiang3139 4 жыл бұрын

tysm

@Ricjamz Жыл бұрын

like the title a alot

@yottaoctet 6 ай бұрын

Pourquoi n'avons nous pas besoin d'instruction JMP ou CALL ?

@temingtiong8071 5 жыл бұрын

Can anyone explain to me about the 0x0804853b and ;\x85\x04\x08 ? What are they called and what are they used for ?

@ryananicholson 5 жыл бұрын

It's the address of the start of the secretFunction. John is overflowing the buffer and overwriting the return address on the stack so that the program, instead of simply exiting, returns to the secretFunction. The reason ';\x85\x04\x08' is used is because this system is little-endian (en.wikipedia.org/wiki/Endianness#Little-endian tldr: bytes are in reverse order). The ';' may throw you, but that's simply bash printing the actual ASCII value of '3b' (man7.org/linux/man-pages/man7/ascii.7.html). Hope that helps!