06.20
Hi all
In june-9-2009 i had a presentation and workshop about defeating windows memory protections at 1st Iranian Conference on Cyberspace Security Incidents and Vulnerabilities ( IR CERT ) . in that training i introduce Iranian security professionals how operation systems protect users against software vulnerabilities .i discuss about software security flaws such as Stack/Heap base buffer overflow,Format string ,etc … .then i explained how they happen an how an attacker can abuse this vulnerabilities.after that ,we take look at OS protection mechanisms and how we can use of those weaknesses to defeating some of OS PM . discussed protections are :
- Guard Stack ( a.k.a /GS )
Data Execution Prevention ( a.k.a DEP or /NXCOMPAT )
Safe SEH Table ( a.k.a /SafeSEH )
SEH Overwrite Protection ( a.k.a SEHOP )
Address Space Layout Randomization ( a.k.a ASLR or /DYNAMICBASE )
all the exploits tested on Microsoft Windows XP Professional 5.1.2600 Service Pack 3 Build 2600 and one on Microsoft® Windows Vista™ UltimateVersion 6.0.6001 Service Pack 1 Build 6001 , so i think it will work on you box , just change the ret addr .
btw, you can download slides and sploits that i wrote and used in workshop from here : Slides,Sploit.
/* forgive me for my horrible english 
if you find any mistake or any question, just mail me :)
have good exploitation ( Shahriyar Jalayeri a.k.a Snake ) */
yo, it was great
congratulation !
/aMIr
Well done
You must have been crazy after this session , cus of the reason you know for sure