The FBI MoneyPak virus is a form of ransomware that tricks unsuspecting victims into paying large sums of money ($200 at the time of this article's writing).
Sunday, November 18, 2012
Friday, November 2, 2012
A walkthrough for io.smashthestack.org Level 1
Hello, in this tutorial I will show you how to defeat the security in the first level of the smashthestack io servers. The program which we will be exploiting is set to always be run by the level2 user. What this means is that if we are logged into a lower level account (level1) this program will be run in a process with higher privileges than our own. So, if we can hijack the process, we can use it to retrieve the password for level2 from a new shell and therefore gain permanent access to the account. This level is particularly easy because the program will automatically spawn a shell for you. In most cases it's not this simple and will require using a buffer overflow to inject code into the process in order to achieve the desired effect.
Subscribe to:
Comments (Atom)