Installing build-essentials in CentOS (make, gcc, gdb)

Posted on March 18, 2012 by sean • Posted in Administration, Linux, Programming • Tagged build-essentials, centos, debian, development, gcc, gdb, kernel-devel, kernel-headers, make, tools, ubuntu • 4 Comments

Once upon a time I was a very avid desktop user of Ubuntu Linux. As a software developer, I would usually need the standard build tools installed on my machine.

Installing build tools in Debian/Ubuntu

In Debian/Ubuntu, you can install the typical build tools by installing the package build-essentials, which is just a pseudo-package that downloads all the popular development packages:

# apt-get install build-essentials

Installing build tools in CentOS

Since I prefer CentOS as my server platform, I also occasionally need to install packages using yum.

To install the common build tools using yum in CentOS you’ll want to install the group package “Development Tools”, which is similar to build-essentials in Debian/Ubuntu flavors of linux. You’ll probably also want to install kernel-devel and kernel-headers if they’re not already installed:

# yum groupinstall "Development Tools"
# yum install kernel-devel kernel-headers

This should give you a copy of make, gcc, gdb, and all those other tools you were looking for.

Happy hacking!

Testing Shellcode on a Non-Executable Stack or Heap

Posted on August 21, 2011 by sean • Posted in Linux, Programming, Security • Tagged 64-bit, amd, anonymous memory map, assembling, assembly, buffer, buffer overflow primer, c, eip, evp, execstack, fun and profit, gcc, gdb, hackers, hacking, heap, heap overflow, instruction pointer, intel, linux, nx bit, oscp, overflow, pentesting with backtrack, pointer, pointers, propolice, ret, return-to-libc, rip, segfault, segmentation fault, shell, shellcode, smashing the stack, ssp, stack, stack overflow, x86, xdbit • 1 Comment

If you’re learning about buffer overflows and shellcode, chances are you’re exploiting some stack-based vulnerabilities. If you’re like me you might also find that when you compile your programs they have stack execution disabled by default. So instead of getting excited as you see your shellcode blissfully running after smashing the stack, you might just see this instead:

Program received signal SIGSEGV, Segmentation fault.
0x0000000000601018 in shellcode ()

“Noooo! You can’t do this to me! I want to write exploits!”

Ok.. calm down.. we just need to turn on stack execution when compiling.

Continue reading →

Examining a Buffer Overflow in C and assembly with gdb

Posted on August 20, 2011 by sean • Posted in Linux, Programming, Security • Tagged 64-bit, addq, as, assembling, assembly, assembly primer for hackers, base pointer, buffer, buffer overflow primer, c, data, debugging, ebp, eip, fun and profit, functions, gas, gdb, getinput, gets, hackers, hacking, instruction pointer, int, leave, linux, main, movl, movq, oscp, overflow, pentesting with backtrack, pointer, pointers, popq, printf, pushq, puts, rbp, registers, ret, rip, root, segfault, segmentation fault, shell, smashing the stack, stabs, stack, stack overflow, string, strings, text, ub3r 1337, ub3r h4x0r, vivek ramachandran, x86 • 5 Comments

Welcome University of Maryland students! Thanks for visiting!

I’ve now finished Vivek Ramachandran’s Assembly Primer for Hackers and I’ve decided to move on to his Buffer Overflow Primer. I’ve exploited basic buffer overflows before, but I think going through his videos will give me more perspective now that I’ve brushed up on assembly.

In this article I’ll be stepping through the program in Vivek’s first video and providing some additional tips and tricks that I find useful when reviewing the program in gdb. I’m also on a 64-bit machine, so things are a bit different in gdb for me than they are in the video. Therefore it’s better that I write up my own explanations as I grasp the material so when I review later it will be more clear.

Continue reading →

Examining the Stack to Debug Segfaults with gdb

Posted on August 19, 2011 by sean • Posted in Linux, Programming, Security • Tagged 64-bit, addq, as, assembling, assembly, assembly primer for hackers, base pointer, data, debugging, ebp, eip, fun and profit, functions, gas, gdb, hackers, hacking, instruction pointer, int, linux, movl, movq, oscp, pentesting with backtrack, pointer, pointers, popq, pushq, rbp, registers, rip, segfault, segmentation fault, smashing the stack, stabs, stack, string, strings, text, x86 • 1 Comment

Earlier, while writing my compare strings method, I made a mistake in the code and came across a segmentation fault. Based on how the program executed I was pretty sure of approximately where the error was occurring, but rather than go and find the mistake I thought it would be a lot more useful to step through the program in the debugger and examine the problem that way. By doing this I’ll make it easier for myself to debug similar (more complex) problems in the future.

Continue reading →

Data Types and Moving Data in Assembly

Posted on August 19, 2011 by sean • Posted in Linux, Programming, Security • Tagged as, assembling, assembly, assembly primer for hackers, bss, data, data types, debugging, df, df flag, gas, gdb, hackers, hacking, heap, linux, lods, memory, mov, movb, moving, movl, movs, movw, oscp, pentesting with backtrack, pointer, pointers, registers, stack, stos, text, vivek ramachandran, x86 • Leave a comment

I’m still following the Assembly Primer for Hackers from Vivek Ramachandran of SecurityTube in preparation for Penetration Testing with BackTrack. In this review I’ll cover data types and how to move bytes, numbers, pointers and strings between labels and registers.

Continue reading →

Reviewing Debugging with gdb

Posted on August 18, 2011 by sean • Posted in Linux, Programming, Security • Tagged as, assembling, assembly, assembly primer for hackers, debugging, gas, gdb, hackers, hacking, int, ld, linking, linux, memory, oscp, pentesting with backtrack, registers, stabs, stack, sysadmin, toor, variables, virtual memory, vivek ramachandran, x86 • Leave a comment

As you may have noticed, I’m preparing to become an OSCP. In addition to brushing up on assembly, I’ll also be stepping through the debugger.

Let’s review gdb and go over some tips to make sure the course work becomes smooth sailing. This is primarily an introduction to general use of gdb, but there are a few tips and tricks as well.

Continue reading →

Reviewing Assembly

Posted on August 18, 2011 by sean • Posted in Linux, Programming, Security • Tagged 0x80, as, assembling, assembly, assembly primer for hackers, bss, data, debugging, exit, gas, gdb, hackers, hacking, heap, int, ld, linking, linux, memory, movl, oscp, pentesting with backtrack, registers, stabs, stack, system call, text, virtual memory, vivek ramachandran, x86 • Leave a comment

Assembly is a language I’ve dabbled in for years, but never really pressed myself to become fluent in. I understand the basics of memory layout and the general idea of how to program in assembly, but I’ve never fully applied these skills in the security realm. In preparation for Penetration Testing with BackTrack, I’ll be reviewing assembly language from the ground up to ensure I’m at maximum potential going into the study course.

To review assembly I’ll primarily be following the Assembly Primer for Hackers from Vivek Ramachandran of SecurityTube. I’ve been through several of these lessons before and they’re very easy to follow for someone who has previous Linux and programming experience but would like a thorough introduction to assembly. What I’ll be doing here is documenting simple tips that will help me later. Hopefully this will become a useful study guide and cheat-sheet for both assembly and gdb (the GNU debugger).

Continue reading →

Installing Backtrack in VirtualBox

Posted on August 17, 2011 by sean • Posted in Administration, Linux, Security • Tagged as, assembling, assembly, assembly primer for hackers, backtrack, ceh, gas, gdb, hackers, hacking, linux, oscp, pentesting with backtrack, root, security, sysadmin, toor, virtualbox • Leave a comment

For a long time now I’ve been considering security training. I feel like it would really polish my current abilities and help me overcome some artificial learning plateaus. There are plenty of options available, but the two that I hear the most about are the Certified Ethical Hacker (CEH) program and the Offensive Security Certified Professional (OSCP) program. After doing some research it looks like OSCP is far more hands-on and well worth its price tag ($750 minimum for 30-days access to the lab; price goes up if you need more lab time). To be honest, it seems like CEH is a bit of a joke to real security professionals; perhaps it’s more useful to those with an interest in security but little experience.

In preparation for the Pentesting with Backtrack course (the course you take before applying for the OSCP exam), I’ll be installing Backtrack 5 in VirtualBox. Continue reading to learn how.

Continue reading →

Tech Blog is Tech

Exploring technology in the modern world

Tag Archives: gdb

Installing build-essentials in CentOS (make, gcc, gdb)

Installing build tools in Debian/Ubuntu

Installing build tools in CentOS

Testing Shellcode on a Non-Executable Stack or Heap

“Noooo! You can’t do this to me! I want to write exploits!”

Examining a Buffer Overflow in C and assembly with gdb

Examining the Stack to Debug Segfaults with gdb

Data Types and Moving Data in Assembly

Reviewing Debugging with gdb

Reviewing Assembly

Installing Backtrack in VirtualBox