Make your own free website on Tripod.com
 
BASIC TEXTS
Smashing The Stack For Fun And Profit
Aleph One
Phrack Magazine 49, Fall 1997 
English     Español Source
This is "the text".
Stack Overlflows exploits on LINUX/BSDOS/FREEBSD/SUNOS/SOLARiS/HP-UX
Plasmoid
THC Magazine #3, 1996
English Español
Good text.
Stack Smashing Vulnerabilities in the UNIX Operating System
Smith,Nathan P.
May 7, 1997 
Text File
Good.
Advanced buffer overflow exploit.
Taeho Oh
http://ohhara.4dl.com/ 
English    Español
.
How to write Buffer Overflows
Mudge
Lopht November 1995
HTML
Good text.
Overflowing Buffers.
David LeBlanc
June 2000
HTML
-
buffer overflows for the kidz (x86 platforms)
teleh0r@doglover.com
http://teleh0r.cjb.net
EnglishEspañol
-
how to code stack based exploits
dethy@synnergy.net
March 2000
Text
-

 
Compromised - Buffer-Overflows, from Intel to SPARC Version 8
Mudge
Lopht October 1996 
PDF
Good text.

 
BUFFEROVERFLOWS 
Lamagra
http://bounce.to/unah16
Text File
.
Writing buffer overflow exploits - a tutorial for beginners 
Mixter
-
Text File
Security under Linux : the Buffer Overflow Problem
Willy Tarreau
November 1997
HTML files
-
Buffer Overruns, whats the real story? 
Lefty
-
Text File

Windows
The Tao of Windows Buffer Overflow 
DilDog [cDc]
http://www.cultdeadcow.com/cDc_files/cDc-351/ 
HTML Files
Good.
Win32 Buffer Overflows (Location, Exploitation and Prevention).
dark spyrit (Barnaby Jack)
Phrack Magazine 55(15), May 2000 
Text File
Good text.
WindowsNT Buffer Overflow's From Start to Finish
Jason Jordan
-
Text File
Good text.
Windows NT Buffer Overruns
David Litchfield (Mnemonix) 
1999
HTML RAS Buffer Overrun Exploit and Tutorial
HTML Winhlp32 Buffer Overrun Exploit and Analysis 
Examples.
Avoiding Buffer Overruns with String Safety
David LeBlanc
June 2000
HTML
-

More Specific Texts
Heap:
Klog  -  The Frame Pointer Overwrite.
dark spyrit (Barnaby Jack)
Phrack Magazine 55(8), May 2000 
English  Español
Good text.
Heap Overflows.
Matt Conover(Shok) & w00w00 Security Team
January 1999   http://www.w00w00.org/articles.html 
TextSource Files
Good
__atexit in memory bugs
Pascal Bouchareine
Bugtraq, December 2000
Text
Specific proof of concept with statically linked binaries and heap overflows.
 Overwriting the .dtors section.
Juan M. Bello Rivas
Text
 This paper presents a concise explanation of a technique to gain control of a C program's flow of execution given that it has been compiled with gcc. This text assumes that the reader is familiar with general overflow
techniques and the ELF format.
The OMEGA project finished
Lamagra
http://bounce.to/unah16
Text File
How to call system() to execute a shell exploiting a buffer overflow.
Buffer overflow exploit in the alpha linux.
Taeho Oh
http://ohhara.4dl.com/ 
English   Español
m68k buffer overflows 
Lamagra
http://bounce.to/unah16
English
Linux ppc overflowding.
Local root exploit in LBNL traceroute. (wrong call to free bug)
Michel "MaXX" Kaempf
November 2000 
Text
Example of exploiting incorrect calls to free() bugs to execute arbitrary code.

Shellcode Programming
Programming a shellcode in SCO 
Renegade Master
-
HTML
-
PPC shellcode
palante
1999
Text
-
Writing Mips/Irix Shellcode
Scut/teso
Phrack Magazine 56(15), Janary 2000 
Text

Others..
Study says "buffer overflow" is most common security bug
Festa, Paul 
[CNET News.com], November 1999
HTML
Not Technical.
Are buffer-overflow security exploits really Intel and OS makers fault?
Bruce Parens and other people comments 
TECHNOCRAT.NET, July 28 2000 
http://technocrat.net/964824712/
Intresting discussion
Unix, Linux computers vulnerable to damaging new attacks?
Stephen Shankland 
CNET News.com September 2000
Not technical. Format bugs, unix locale bug.

Updated December 2000
http://julianor.tripod.com
Juliano Rizzo jrz@mail.ru
Buenos Aires, Argentina