Download E-books A Bug Hunter's Diary: A Guided Tour Through the Wilds of Software Security PDF

By Tobias Klein

"This is among the finest infosec books to come back out within the final numerous years."
–Dino Dai Zovi, info safety Professional

"Give a guy an take advantage of and also you make him a hacker for an afternoon; train a guy to use insects and also you make him a hacker for a lifetime."
–Felix 'FX' Lindner

Seemingly uncomplicated insects could have drastic results, permitting attackers to compromise platforms, increase neighborhood privileges, and differently wreak havoc on a system.

A computer virus Hunter's Diary follows safeguard specialist Tobias Klein as he tracks down and exploits insects in a number of the world's preferred software program, like Apple's iOS, the VLC media participant, net browsers, or even the Mac OS X kernel. during this distinctive account, you will see how the builders answerable for those flaws patched the bugs—or did not reply in any respect. As you persist with Klein on his trip, you will achieve deep technical wisdom and perception into how hackers technique tricky difficulties and adventure the genuine joys (and frustrations) of malicious program hunting.

Along the way in which you will find out how to:

  • Use field-tested recommendations to discover insects, like selecting and tracing consumer enter facts and opposite engineering
  • Exploit vulnerabilities like NULL pointer dereferences, buffer overflows, and kind conversion flaws
  • Develop facts of inspiration code that verifies the protection flaw
  • Report insects to proprietors or 3rd social gathering brokers

A malicious program Hunter's Diary is filled with real-world examples of weak code and the customized courses used to discover and attempt insects. no matter if you are looking insects for enjoyable, for revenue, or to make the realm a more secure position, you will study helpful new talents via having a look over the shoulder of a pro trojan horse hunter in action.

Show description

Read or Download A Bug Hunter's Diary: A Guided Tour Through the Wilds of Software Security PDF

Similar Computer Science books

Programming Massively Parallel Processors: A Hands-on Approach (Applications of GPU Computing Series)

Programming vastly Parallel Processors discusses simple recommendations approximately parallel programming and GPU structure. ""Massively parallel"" refers back to the use of a big variety of processors to accomplish a suite of computations in a coordinated parallel means. The e-book information numerous concepts for developing parallel courses.

Distributed Computing Through Combinatorial Topology

Disbursed Computing via Combinatorial Topology describes options for interpreting dispensed algorithms in line with award successful combinatorial topology examine. The authors current a superior theoretical origin proper to many genuine platforms reliant on parallelism with unpredictable delays, reminiscent of multicore microprocessors, instant networks, disbursed platforms, and web protocols.

TCP/IP Sockets in C#: Practical Guide for Programmers (The Practical Guides)

"TCP/IP sockets in C# is a superb publication for somebody attracted to writing community functions utilizing Microsoft . internet frameworks. it's a distinctive mixture of good written concise textual content and wealthy conscientiously chosen set of operating examples. For the newbie of community programming, it is a solid beginning publication; nonetheless pros reap the benefits of very good convenient pattern code snippets and fabric on subject matters like message parsing and asynchronous programming.

Additional info for A Bug Hunter's Diary: A Guided Tour Through the Wilds of Software Security

Show sample text content

Osx_gdb. patch patching dossier gdb/doc/stabs. texinfo patching dossier gdb/fix-and-continue. c patching dossier gdb/mach-defs. h patching dossier gdb/macosx/macosx-nat-dyld. h patching dossier gdb/mi/mi-cmd-stack. c I used the subsequent instructions to construct the mandatory libraries: linux$ su Password: linux# pwd /home/tk/gdb-292/src linux# cd readline linux# . /configure; make linux# cd .. /bfd linux# . /configure --target=i386-apple-darwin --program-suffix=_osx; make; → make set up linux# cd .. /mmalloc linux# . /configure; make; make set up linux# cd .. /intl linux# . /configure; make; make set up linux# cd .. /libiberty linux# . /configure; make; make set up linux# cd .. /opcodes linux# . /configure --target=i386-apple-darwin --program -suffix=_osx; make; → make set up to construct the debugger itself, i wished to repeat a few header records from the XNU kernel resource code to the contain listing of the Linux host: linux# cd /home/tk linux# tar -zxvf xnu-792. thirteen. eight. tar. gz linux# cp -R xnu-792. thirteen. 8/osfmk/i386/ /usr/include/ linux# cp -R xnu-792. thirteen. 8/bsd/i386/ /usr/include/ cp: overwrite `/usr/include/i386/Makefile'? y cp: overwrite `/usr/include/i386/endian. h'? y cp: overwrite `/usr/include/i386/exec. h'? y cp: overwrite `/usr/include/i386/setjmp. h'? y linux# cp -R xnu-792. thirteen. 8/osfmk/mach /usr/include/ I then commented a few typedefs within the new _types. h dossier to prevent compile-time conflicts (see line 39, strains forty three to forty nine, and contours seventy eight to 81): linux# vi +38 /usr/include/i386/_types. h [.. ] 38 #ifdef __GNUC__ 39 // typedef __signed char __int8_t; forty #else /* ! __GNUC__ */ forty-one typedef char __int8_t; forty two #endif /* ! __GNUC__ */ forty three // typedef unsigned char __uint8_t; forty four // typedef brief __int16_t; forty five // typedef unsigned brief __uint16_t; forty six // typedef int __int32_t; forty seven // typedef unsigned int __uint32_t; forty eight // typedef lengthy lengthy __int64_t; forty nine // typedef unsigned lengthy lengthy __uint64_t; .. seventy eight //typedef union { seventy nine // char __mbstate8[128]; eighty // lengthy lengthy _mbstateL; /* for alignment */ eighty one //} __mbstate_t; [.. ] I extra a brand new comprise to the dossier /home/tk/gdb-292/src/gdb/macosx/i386-macosx-tdep. c (see line 24): linux# vi +24 /home/tk/gdb-292/src/gdb/macosx/i386-macosx-tdep. c [.. ] 24 #include 25 #include "defs. h" 26 #include "frame. h" 27 #include "inferior. h" [.. ] ultimately, I compiled the debugger with the subsequent instructions: linux# cd gdb-292/src/gdb/ linux# . /configure --target=i386-apple-darwin --program-suffix=_osx --disable-gdbtk linux# make; make set up After the compilation accomplished, I ran the hot debugger as root in order that the mandatory directories will be created below /usr/local/bin/: linux# cd /home/tk linux# gdb_osx -q (gdb) give up After that, the debugger used to be prepared. Step four: organize the Debugging surroundings I unpacked the downloaded Kernel Debug equipment disk photograph dossier (dmg) below Mac OS X, transferred the documents according to scp to the Linux host, and named the listing KernelDebugKit_10. four. eight. I additionally copied the XNU resource code into the hunt direction of the debugger: linux# mkdir /SourceCache linux# mkdir /SourceCache/xnu linux# mv xnu-792.

Rated 4.35 of 5 – based on 33 votes