Description:
Welcome to Part 6 of the Exploit Research Megaprimer.
Please begin this series by watching Part 1, if you have not already done so!We have covered Buffer Overflows in-depth! Now let us move on to more interesting topics! The next couple of videos will be SEH based exploitation. SEH stands for Structured Exception Handler, and is a software system for dispatching and handling exceptions on Windows.
Using an overflow attack, it is possible to get control of the SEH and in the process pwn the system. In this first video of the SEH series, I will introduce you to the basics of exception handling, exception handlers, handler linked lists, how an SEH chain gets created at runtime, registration of handlers, role of the stack in SEH, default handler by the OS, implementation of SEH in Visual C++ and take a demo to understand these concepts.
Hope you enjoy this video! Please do leave your comments behind.
Tags: basics ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Comments:
Great information as always! The Picture in Picture isn't distracting at all. Thank you.
never read a better explanation of how seh i pushed onto the stack. can only agree with jrstore.
@jrstore @Jan Thanks! Well I will make more PiP's then :)
This has been by far the best SEH explanation I have seen. Keep up the great work Vivek!
These series are so important to me. thanks for all Vivek. i will hold my breath until your next upload. plz add new content soon.
Totally agree.. Thanks Vivek, your site is a great resource :]
What a good stuff are here, I never dreamed having this kind of explanations, a perfect mix between full background and applied knowledge.
Thank you so much for taking your precious time doing this. Its really appreciated! =) PiP rock btw.
thank you
Thanks Vivek. Awesome as always. I read somewhere that exception handler pointers are no longer stored on stack on Win 7 64 bit ?. Is this valid on 64 bit windows?
Thank you, Vivek. Explanation is straightforward and clear. Keep it up!