代码空间


摘要(Abstract)

、主要术语 Binary:由编译类语言生成的可执行程序 Vulnerability:Binary中包含的可被利用的Bug Exploit:借助Vulnerability来劫持Binary控制流的、经过特殊构造的数据 0day:可被exploit的位置Vulnerability Pwn:发现Vulnerability以及开发exploit的工作 二、目的: 获取shell 获取计算机上的敏感信息 上串并安装Malware 对计算机实施破坏 三、根本原因: (1)通道问题: 计算机中数据和控制通道隔离性差 存在从数据通道信息转移到控制通道的可能 (2)逻辑问题 对边界条件的检查不完善 对内存管理不善 逻辑不严谨或太复杂 四、分类: Stack-Based Heap-Based Integer Issue Pointer Issue Format Strig Vulnerability Race Condition 五、基础知识(Knowledge Base) ELF:linux中可执行文件 PE:windows下可执行文件 --------------------- 作者:tata_qing 来源:CSDN 原文:https://blog.csdn.net/q664609859/article/details/75994612 版权声明:本文为博主原创文章,转载请附上博文链接!


主题(Topic)
cwe 二进制漏洞 Binary vulnerability
cwe-502 src 安全协议 Internet Firewall Secure Transport Protocol Intranet security Security Protocol Reverse crack 逆向破解 TLS 分布式拒绝服务 DDoS 内网安全 安全传输协议 网络防火墙
cwe password-hash buffer-overflow angular2-cli security-scanner self-modifying binary-analysis ifs app-certification-kit lsb mips bits patch fluorinefx OCaml fseek alivepdf nativelibrary static-analyzer one-time-pad pycrypto lab-color-space windows-applications owasp exploit asn.1 binaries setuid trojan xauth directory-traversal program-analysis modular-arithmetic fuzzer linux-privilege-escalation amf bap discovery travis-ci

cwe-117 cwe-22 cwe-256 cwe-306 cwe-428 cwe-77 cwe-discovery cweb cweb-programs cwebp cwei cwex2013 node-cwebp 502-bad-gateway-please-shutdown
项目(Project)
SunnyCapt/pwndb mh0x/cwetree nanjizhiyin/cwedoc abhishek47kashyap/WPI-RBE-coursework monobuild/cwe scottbrown/cwe romualdvilletet/cwe OWASP/cwe-sdk-javascript janvanmansum/apache-jetty9-502-error gosaliajigar/CustomizingMINIX3 OWASP/cwe-tool jawariaalvi32/IPT-502-Lab Whamo12/fetch-cwe-list settintotrieste/Victoria-2-Cold-War-Enhancement-Mod-CWE PrinzEugn/Mark-SODA-502-Methods jmfuchs/aws-cwe-quick-reference Xrayez/godot-vector-resource victorinoxying/CodeCheckTool hstojic/HintonNowlan1987_replication cagandhi/Signature-Detection-Verification talent518/threadfpm sayaliwalke30/Stocks-Analysis-and-Prediction fkie-cad/cwe_checker tinyhttpd kac89/vulnrepo gongzhen/Tinyhttpd Kerwong/tinyhttpd Chrome Platform Status

CSS usage metrics > animated properties > timeline

Percentages are the number of times (as the fraction of all animated properties) this property is animated.

 " class="topic-tag topic-tag-link"> mhowerton91/history