ROP - Return Oriented Programming

rop.md

CyberSecurity Related Links

General Resources

• https://book.hacktricks.xyz
• https://ir0nstone.gitbook.io/notes/binexp/stack/return-oriented-programming/exploiting-calling-conventions
• https://guyinatuxedo.github.io/index.html
  • https://guyinatuxedo.github.io/15-partial_overwrite/hacklu15_stackstuff/index.html
• https://8ksec.io/blog/
  • https://8ksec.io/arm64-reversing-and-exploitation-part-4-using-mprotect-to-bypass-nx-protection-8ksec-blogs/
• https://insecure.org
• https://github.com/tmpout
• https://gabb4r.gitbook.io/oscp-notes - Book/Notes for OSCP
• https://monosource.gitbooks.io/radare2-explorations/content/
• https://book.rada.re
• https://www.youtube.com/watch?v=fNzpcB7ODxQ - YT video on Ethical Hacking
• https://tmpout.sh/ - Tmp0ut Magazine (ELF, PE32/PE32+ ...)
• https://rclone.org/ - Tool for clonning remote systems

RE - Reverse Engineering

• https://s0cm0nkey.gitbook.io/s0cm0nkeys-security-reference-guide/dfir-digital-forensics-and-incident-response/binary-analysis-reverse-engineering - large number of links to other resources
• https://www.youtube.com/watch?v=8rLhX_v66O4 - Analyzing Binaries with Radare2
• https://www.youtube.com/watch?v=d4Pgi5XML8E - RE with Ghidra #1
• https://github.com/mytechnotalent/Reverse-Engineering - A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit/64-bit ARM and embedded RISC-V architectures.
• https://0xinfection.github.io/reversing/ - RE for Everyone
• https://github.com/wtsxDev/reverse-engineering - tools list

ROP - Return Oriented Programming

References:

• https://ctf101.org/binary-exploitation/return-oriented-programming/
• https://www.ired.team/offensive-security/code-injection-process-injection/binary-exploitation/rop-chaining-return-oriented-programming
• https://developer.arm.com/documentation/102433/0200/Return-oriented-programming
• https://www.infosecinstitute.com/resources/hacking/return-oriented-programming-rop-attacks/
• https://hovav.net/ucsd/dist/rop.pdf
• https://ctf101.org/cryptography/what-are-block-ciphers/
• https://en.wikipedia.org/wiki/Return-oriented_programming
• https://book.hacktricks.xyz/binary-exploitation/rop-return-oriented-programing

Techniques

• https://fasterthanli.me/series/making-our-own-executable-packer

Linux Hardening

• https://book.hacktricks.xyz/linux-hardening/linux-privilege-escalation-checklist
• https://training.hacktricks.xyz/courses/arte
• https://github.com/peass-ng/PEASS-ng/tree/master/linPEAS

Windows

• https://hshrzd.wordpress.com/pe-bear/
• https://hasherezade.github.io
• https://hshrzd.wordpress.com
• https://institute.sektor7.net/view/courses/red-team-operator-malware-development-essentials/214144-portable-executable/624071-pe-bear-looking-inside

Other

• https://arxiv.org - open to public collection of the scientific publications
• https://doc.rust-lang.org/book/