So currently I am trying to complete Offensive Pentesting path on Tryhackme…sabai topics complete gare but aile Buffer Overflow Explolitation ma topic ma puge….3 din vayo try gareko kei ni bujina concept nai…youtube ma videos haru ni here….wlakthroughs/writeups pani here concept grasp garnai sakina…like procedure k ho approach etc etc…
So please guide me
Oks if you are trying then it will definitely come up something good , buffer overflow basically meaning overflowing the buffer of the stack where user input is stored. If there is function to get user input like gets,read,scanf then they are mostly vulnerable to buffer overflow if size of buffer is not allocated . Then you can supply many junks of bytes to corrupt memory like if buffer is in the address @rbp-0x50 then you should supply payload = b”A” * 0x50 to overflow the buffer and 0x8 bytes to overflow rbp register itself because after buffer rbp register is alligned and after rbp there is instruction pointer rip where return addresses are passed.
Here you can see stack canary which basically prevents from buffer overflow and you have to overwrite the stack canary with its own value.
If you are still confused then check my blog about binary exploit and reverse engineering in here
And also DM me i have completed that room
thank you brother🥰
anytime bro 😃