| 基于堆栈的Windows Shellcode编写方法研究 |
| |
| 引用本文: | 迟强,罗红,乔向东.基于堆栈的Windows Shellcode编写方法研究[J].计算机工程与设计,2010,31(6). |
| |
| 作者姓名: | 迟强 罗红 乔向东 |
| |
| 作者单位: | 空军工程大学,电讯工程学院,陕西,西安,710077 |
| |
| 摘 要: | 为更好地理解与防范缓冲区溢出攻击,对Windows平台下Shellcode的编写、提取技术及验证方法进行了研究.从概念出发,理清了Shellcode与Exploit的区别,分析了Shellcode的工作原理,介绍了利用Shellcode所需的3个步骤.在实验的基础上,总结了Shellcode的编写方法及提取技术,最后给出了验证Shellcode有效性的方法.
|
| 关 键 词: | 缓冲区溢出 堆栈 反汇编 |
Method research of writing Windows Shellcode based on stack |
| |
| CHI Qiang,LUO Hong,QIAO Xiang-dong.Method research of writing Windows Shellcode based on stack[J].Computer Engineering and Design,2010,31(6). |
| |
| Authors: | CHI Qiang LUO Hong QIAO Xiang-dong |
| |
| Affiliation: | CHI Qiang,LUO Hong,QIAO Xiang-dong(College of Telecommunication Engineering,Air Force Engineering University,Xi\'an 710077,China) |
| |
| Abstract: | To understand and prevent buffer overflow exploit better, the method of writing and validating Shellcode is researched.Firstly, the difference between Shellcode and Exploit is analyzed after introducing the concept.Secondly, the principle of Shellcode and the three steps of exploiting Shellcode are illustrated.Thirdly, based on many experiments, several methods of writing and extracting Shellcode are summarized.Finally, a few measures of validating Shellcode are presented. |
| |
| Keywords: | Shellcode Windows buffer overflow Shellcode Windows stack disassemble |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
