Lernkarten

Karten 11 Karten
Lernende 0 Lernende
Sprache English
Stufe Universität
Erstellt / Aktualisiert 24.06.2019 / 24.06.2019
Lizenzierung Keine Angabe
Weblink
Einbinden
0 Exakte Antworten 11 Text Antworten 0 Multiple Choice Antworten
Fenster schliessen

What is a remote exploit?

Attacking an application on another computer, via the network

Fenster schliessen

In what can local remote payloads be hidden in?

Local: Payloads can be in:

  • Program arguments
  • File
  • Environment variable
  • etc..

Remote:

  • Packatets
  • Data sent to server
Fenster schliessen

How do you establish a direct connection  to an exploited server?

`

Lizenzierung: Keine Angabe
Fenster schliessen
Lizenzierung: Keine Angabe

How does a revershell work?

Fenster schliessen

How is connection reuse doen schematic?

Lizenzierung: Keine Angabe
Fenster schliessen

How does a deamon work?

WTF is this fork()?

  • Create an exact copy of the current process
    • Dublicate memory pages as COW (copy on write)
  • If return value == 0: Your are in child
  • If return value > 0: Your are the parent

WTF are sockets?

  • "Bidirectional pipes"
  • Pipe: read(), write()
  • Or: An integer which represents a pipe
    • Pretty much like file descriptors (read/write into a file)
  • Child processes inherits sockets of parent
  • Processes write/read to socket
    • OS makes sute it transports it to the other sie (TCP/IP and stuff)
Fenster schliessen

What is a zombie process <defunct>?

A zombie is a child, whose parent did not check their status after it died or was killed.

Fenster schliessen

What if the parent of child dies?

When the parent of a child dies, the child gets adopted by init (pid1)