堆利用 (135-305)
该模块是整个课程中最庞大的一部分,系统学习堆内存管理机制和各种堆利用技术
堆利用基础
- 堆溢出(Heap Overflow)
- 重复释放 (Double Free)
- 使用已释放的内存 (Use-After-Free, UAF)
- 未初始化的指针(Uninitialized Pointer)
- 堆块重叠(Heap Block Overlapping)
高级技术
- fastbin attack
- tcache attack
- Unsorted Bin into Stack
- Large Bin Attack
House of 系列
- house of spirit
- house of einherjar
- house of force
- house of lore
- house of orange
- house of rabbit
- house of roman
- house of pig
- house of banana
- house of emma
- house of kiwi
- house of husk
- house of corrosion
- house of storm
- house of atum
- House of IO
- House of apple1 2 3
- house of gods...