It looks like you're new here. If you want to get involved, click one of these buttons!
\\i3xPlo1t~Mag4zin3
If you want to do it in PDF do it in word or publisher first and then print to pdf using cutepdf... just a suggestion.
http://www.cutepdf.com/Products/CutePDF/writer.asp
It's free and all you do is install and then when you want to print it you select to print the document as usual and select cutepdf from the printer selection. Click ok and it'll allow you to choose where you save the pdf.
Contents:
0x03..Intro.......................................
0x04..History of iExploit.........................
0x05..Plans for the Future........................
Issue 001
~Foreword
Hello readers, welcome to the first ever issue of
X-PloitZine, what will hopefully be a very successful series of dedicated hacking, programming and technolust. This hackerzine, will contain news, events and competitions from iExploit itself, with cash prizes, memberships and even hardware to be won. We have a large section of the mag every month dedicated to purely expanding your memory, featuring exclusive papers, tutorials and proof of concept exploits made solely by the iExploit members. The mag will contain logical challenges for you to spend your time on when offline, as well as special columns written by the iExploit members, such as monthly reviews of the activities in the forum, member of the month, hacker of the month and a lot more. Before we get started, let me state, I am not Shakespeare, do not expect correct spelling throughout the whole issue.
Secondly, i hope you like the layout and style we have chosen, this may change depending on popular demand, but i think it is pretty good.
Before we start, can I thanks the following people for helping me put this mag together.
Xinapse
ChronicCommand
Semtex
Rx
~History of iExploit
iExploit banded together at the end of February 2010, by the name of “bytesecurity.net†found by Xinapse, along with the help of nextlive and infamous.
Originally, set out as an Ethical Hacking Website/Forum, funded by the teaching Xinapse offered to now, well over 50 aspiring hackers. Before too long bytesecurity changed to “Firewire-Security.com†due to an existing company named bytesecurity, that may cause problems for us. From here we recruited the aid of Gameover and George. George, although not into “hacking†proved an invaluable member, pushing Firewire forward with new ideas, who then became admin, through two promotions from Xinapse. Early on iExploit suffered major downtime issues, and we have changed host five separate times, (i wouldn’t be surprised if we changed host again) although this time we are looking for a VPS/dedi server rather than shared hosting.
A lot has happened in the short time iExploit has been around, probably too much to list here, however i will try cut it short to the interesting parts.
After a few staff changes, (and another name change Firewire to iExploit.org) iExploit is growing rapidly again, with the staff chroniccommand and gameover. Still suffering mild patches of downtime, however this isn’t affecting the dedication of our members too much.
~Plans for the Future
I have great ambition for iExploit to go far, and grow hugely, although chronic has recommended we have a small community, as they tend to work better, i believe with the right staff we can make a large community work without any essence of skiddieness. The worst thing i would want is to become another Hackforums, a nazi regime based on rep, postcount, membership date and your ability to use a RAT. So back to iExploit, we have hacking challenges up which will grow and grow as more logical, and interesting challenges are coded. I also expect to see some wargames, capture the flags and pentest labs set up for you to break into, or not as the case may be. As the website grows, iExploit will have more and more features added, such as radio interviews and podcast, in addition to the already popular iExploitTube youtube channel. In the future im sure the members here will come up with some great exploits and releases, and hopefully some community projects for you all to work on.
However at the moment i am looking for a dedicated staff team, and growth in the forum and hacking challenges, as well as finding time to make new video tutorials for the Youtube.
~Xinapse – My Background
Every issue, we will be having an exclusive article dedicated to a certain member, to explain more about themselves, and how they got into the art of hacking. However as this is the first issue you lucky guys will get one for each of our staff.
I got into hacking and coding at the age of 12/13, after seeing the epic film hackers, the one featuring Angelina Jolie, although the film obviously doesn’t show much actual hacking, the it was the culture that brought me into to it, so i signed up on some hacking forums and found myself lucky to get in with some very knowledgeable people, and became part of two of the best hacking communities i have known (both run by girls, strange that), however both of these have disbanded now. Since then i have just been reading and practicing techniques i have learnt, being mainly a web app specialist, in the last year I have broadened my skills to a wider range of attacks.
[----------------------------------]
Memory basics
By Chroniccommand
iExploit
[----------------------------------]
Intro
To many people who are computer illiterate, the computer is a magical like machine that preforms tasks at relatively fast pace. To the aspiring hacker, we want to know how something works. After all, 80 - 90 percent of hacking / /exploitation // whatever you want to call \"hacking\", is learning how something works. The rest is being able to preform it. So to learn how something works, we read about it and absorb the information given.
Basics
You must remember that at the very core of our computers, lye's a basic calculator. Yes, a calculator. The ones we use to preform basic math such as 2 + 2 or to right the word \"hello\" in numbers like we all did in fifth grade. So memory is just bytes of storage our computer's can hold. Said memory is usually accessed by the memories address. If you run a 32 bit machine, there are 4,294,967,296 possible addresses for your computers memory. That's a lot of addresses! In programming, when you create a variable you are storing its value in a memory address. The memory address is then called when you need to use it. And of course there are pointers. Pointers are special variable types to store addresses of memory that references to other memory addresses. Memory cannot actually be moved(This means variables, bytes, addresses etc..). But it can be copied. A new block of memory addresses needs to be created before the address can be copied. This can create some memory leaks and problems. But pointers can solve this problem. Pointers are assigned a large memory block, then the four byte pointer is passed around.
Memory in programming
So I will be using C for this section of the guide, but this pertains to all programming languages. In programming // scripting languages you can declare things such as constants, characters, integers, floats, doubles etc..
Here is what some declarations look like in the C programming languages.
Code:
int one; //Create the integer of one
float flt; //Create the float variable of flt
char *str //Create a character of str
This is declaring a float, integer and a character to be used in C later on. We can set the variables later on like
one = 2;
But one is not equal to two 0.o Anyway, moving on. There is another term you must known with memory, little endian. It's an order meaning the least significant bye is first in the stack. Bytes are stored in 4 byte reverse words like integers.
Memory segmentation
So another thing crucial to memory is the five different segments involved. These segments are:
text
data
stack
bss
heap
[Text segment]
Also sometimes referred to as the code segment. Assembled machine code is stored in this segment of memory. Statements are non-linear in this section. You must also know what the EIP is. The EIP is the Extended Instruction Pointer. This points to the next memory segment to be executed. When a program is first executed the EIP is the first memory address to be read. The processor then does a loop until finished.
1.)Read the instruction that EIP is pointing to.
2.)Add the byte-length of the instruction to EIP.
3.)Execute the instruction that was read in step 1.
Then continues to step one. This is what we call a loop. The EIP can call different instructions such as jump(JMP) then the EIP address is changed. Additionally, the text segment is read only, so you can’t write to it(Normally). But in an overflow such as Heap OverFlows, Stack OverFlows, etc.. you can exploit the EIP and all other memory addresses to perform commands written in shell code.
[Data + BSS]
The data and BSS sections store global variables. Data is filled with strings and constants etc.. and BSS section has uninitialized counterparts.
[Heap]
The heap segment is used for all other program variables. The heap isn't of one size, unlike the stack. So size can be adjusted as fit. All memory is allocated and kept my algorithms
[Stack]
The stack segment holds and stores function. For more information on the stack segment and all about the stack please look at my \"All about the stack\" paper. My paper includes functions of the stack, order of the stack etc..
I hope this simple but informative paper helped you a bit on the basics of memory, the functions, what it does etc..
--Chroniccommand
/*X-Ploit mag
Made this back in may time when we had plans to make one before, so a lot is outdated, incorrect or just plain bad grammer :L
Contents:
0x03..Intro.......................................
0x04..History of iExploit.........................
0x05..Plans for the Future........................
Issue 001
~Foreword
Hello readers, welcome to the first ever issue of
X-PloitZine, what will hopefully be a very successful series of dedicated hacking, programming and technolust. This hackerzine, will contain news, events and competitions from iExploit itself, with cash prizes, memberships and even hardware to be won. We have a large section of the mag every month dedicated to purely expanding your memory, featuring exclusive papers, tutorials and proof of concept exploits made solely by the iExploit members. The mag will contain logical challenges for you to spend your time on when offline, as well as special columns written by the iExploit members, such as monthly reviews of the activities in the forum, member of the month, hacker of the month and a lot more. Before we get started, let me state, I am not Shakespeare, do not expect correct spelling throughout the whole issue.
Secondly, i hope you like the layout and style we have chosen, this may change depending on popular demand, but i think it is pretty good.
Before we start, can I thanks the following people for helping me put this mag together.
Xinapse
ChronicCommand
Semtex
Rx
~History of iExploit
iExploit banded together at the end of February 2010, by the name of “bytesecurity.net†found by Xinapse, along with the help of nextlive and infamous.
Originally, set out as an Ethical Hacking Website/Forum, funded by the teaching Xinapse offered to now, well over 50 aspiring hackers. Before too long bytesecurity changed to “Firewire-Security.com†due to an existing company named bytesecurity, that may cause problems for us. From here we recruited the aid of Gameover and George. George, although not into “hacking†proved an invaluable member, pushing Firewire forward with new ideas, who then became admin, through two promotions from Xinapse. Early on iExploit suffered major downtime issues, and we have changed host five separate times, (i wouldn’t be surprised if we changed host again) although this time we are looking for a VPS/dedi server rather than shared hosting.
A lot has happened in the short time iExploit has been around, probably too much to list here, however i will try cut it short to the interesting parts.
After a few staff changes, (and another name change Firewire to iExploit.org) iExploit is growing rapidly again, with the staff chroniccommand and gameover. Still suffering mild patches of downtime, however this isn’t affecting the dedication of our members too much.
~Plans for the Future
I have great ambition for iExploit to go far, and grow hugely, although chronic has recommended we have a small community, as they tend to work better, i believe with the right staff we can make a large community work without any essence of skiddieness. The worst thing i would want is to become another Hackforums, a nazi regime based on rep, postcount, membership date and your ability to use a RAT. So back to iExploit, we have hacking challenges up which will grow and grow as more logical, and interesting challenges are coded. I also expect to see some wargames, capture the flags and pentest labs set up for you to break into, or not as the case may be. As the website grows, iExploit will have more and more features added, such as radio interviews and podcast, in addition to the already popular iExploitTube youtube channel. In the future im sure the members here will come up with some great exploits and releases, and hopefully some community projects for you all to work on.
However at the moment i am looking for a dedicated staff team, and growth in the forum and hacking challenges, as well as finding time to make new video tutorials for the Youtube.
~Xinapse – My Background
Every issue, we will be having an exclusive article dedicated to a certain member, to explain more about themselves, and how they got into the art of hacking. However as this is the first issue you lucky guys will get one for each of our staff.
I got into hacking and coding at the age of 12/13, after seeing the epic film hackers, the one featuring Angelina Jolie, although the film obviously doesn’t show much actual hacking, the it was the culture that brought me into to it, so i signed up on some hacking forums and found myself lucky to get in with some very knowledgeable people, and became part of two of the best hacking communities i have known (both run by girls, strange that), however both of these have disbanded now. Since then i have just been reading and practicing techniques i have learnt, being mainly a web app specialist, in the last year I have broadened my skills to a wider range of attacks.
[----------------------------------]
Memory basics
By Chroniccommand
iExploit
[----------------------------------]
Intro
To many people who are computer illiterate, the computer is a magical like machine that preforms tasks at relatively fast pace. To the aspiring hacker, we want to know how something works. After all, 80 - 90 percent of hacking / /exploitation // whatever you want to call \"hacking\", is learning how something works. The rest is being able to preform it. So to learn how something works, we read about it and absorb the information given.
Basics
You must remember that at the very core of our computers, lye's a basic calculator. Yes, a calculator. The ones we use to preform basic math such as 2 + 2 or to right the word \"hello\" in numbers like we all did in fifth grade. So memory is just bytes of storage our computer's can hold. Said memory is usually accessed by the memories address. If you run a 32 bit machine, there are 4,294,967,296 possible addresses for your computers memory. That's a lot of addresses! In programming, when you create a variable you are storing its value in a memory address. The memory address is then called when you need to use it. And of course there are pointers. Pointers are special variable types to store addresses of memory that references to other memory addresses. Memory cannot actually be moved(This means variables, bytes, addresses etc..). But it can be copied. A new block of memory addresses needs to be created before the address can be copied. This can create some memory leaks and problems. But pointers can solve this problem. Pointers are assigned a large memory block, then the four byte pointer is passed around.
Memory in programming
So I will be using C for this section of the guide, but this pertains to all programming languages. In programming // scripting languages you can declare things such as constants, characters, integers, floats, doubles etc..
Here is what some declarations look like in the C programming languages.
Code:
int one; //Create the integer of one
float flt; //Create the float variable of flt
char *str //Create a character of str
This is declaring a float, integer and a character to be used in C later on. We can set the variables later on like
one = 2;
But one is not equal to two 0.o Anyway, moving on. There is another term you must known with memory, little endian. It's an order meaning the least significant bye is first in the stack. Bytes are stored in 4 byte reverse words like integers.
Memory segmentation
So another thing crucial to memory is the five different segments involved. These segments are:
text
data
stack
bss
heap
[Text segment]
Also sometimes referred to as the code segment. Assembled machine code is stored in this segment of memory. Statements are non-linear in this section. You must also know what the EIP is. The EIP is the Extended Instruction Pointer. This points to the next memory segment to be executed. When a program is first executed the EIP is the first memory address to be read. The processor then does a loop until finished.
1.)Read the instruction that EIP is pointing to.
2.)Add the byte-length of the instruction to EIP.
3.)Execute the instruction that was read in step 1.
Then continues to step one. This is what we call a loop. The EIP can call different instructions such as jump(JMP) then the EIP address is changed. Additionally, the text segment is read only, so you can’t write to it(Normally). But in an overflow such as Heap OverFlows, Stack OverFlows, etc.. you can exploit the EIP and all other memory addresses to perform commands written in shell code.
[Data + BSS]
The data and BSS sections store global variables. Data is filled with strings and constants etc.. and BSS section has uninitialized counterparts.
[Heap]
The heap segment is used for all other program variables. The heap isn't of one size, unlike the stack. So size can be adjusted as fit. All memory is allocated and kept my algorithms
[Stack]
The stack segment holds and stores function. For more information on the stack segment and all about the stack please look at my \"All about the stack\" paper. My paper includes functions of the stack, order of the stack etc..
I hope this simple but informative paper helped you a bit on the basics of memory, the functions, what it does etc..
--Chroniccommand
/*X-Ploit mag
Made this back in may time when we had plans to make one before, so a lot is outdated, incorrect or just plain bad grammer :L
Contents:
0x03..Intro.......................................
0x04..History of iExploit.........................
0x05..Plans for the Future........................
Issue 001
~Foreword
Hello readers, welcome to the first ever issue of
X-PloitZine, what will hopefully be a very successful series of dedicated hacking, programming and technolust. This hackerzine, will contain news, events and competitions from iExploit itself, with cash prizes, memberships and even hardware to be won. We have a large section of the mag every month dedicated to purely expanding your memory, featuring exclusive papers, tutorials and proof of concept exploits made solely by the iExploit members. The mag will contain logical challenges for you to spend your time on when offline, as well as special columns written by the iExploit members, such as monthly reviews of the activities in the forum, member of the month, hacker of the month and a lot more. Before we get started, let me state, I am not Shakespeare, do not expect correct spelling throughout the whole issue.
Secondly, i hope you like the layout and style we have chosen, this may change depending on popular demand, but i think it is pretty good.
Before we start, can I thanks the following people for helping me put this mag together.
Xinapse
ChronicCommand
Semtex
Rx
~History of iExploit
iExploit banded together at the end of February 2010, by the name of “bytesecurity.net†found by Xinapse, along with the help of nextlive and infamous.
Originally, set out as an Ethical Hacking Website/Forum, funded by the teaching Xinapse offered to now, well over 50 aspiring hackers. Before too long bytesecurity changed to “Firewire-Security.com†due to an existing company named bytesecurity, that may cause problems for us. From here we recruited the aid of Gameover and George. George, although not into “hacking†proved an invaluable member, pushing Firewire forward with new ideas, who then became admin, through two promotions from Xinapse. Early on iExploit suffered major downtime issues, and we have changed host five separate times, (i wouldn’t be surprised if we changed host again) although this time we are looking for a VPS/dedi server rather than shared hosting.
A lot has happened in the short time iExploit has been around, probably too much to list here, however i will try cut it short to the interesting parts.
After a few staff changes, (and another name change Firewire to iExploit.org) iExploit is growing rapidly again, with the staff chroniccommand and gameover. Still suffering mild patches of downtime, however this isn’t affecting the dedication of our members too much.
~Plans for the Future
I have great ambition for iExploit to go far, and grow hugely, although chronic has recommended we have a small community, as they tend to work better, i believe with the right staff we can make a large community work without any essence of skiddieness. The worst thing i would want is to become another Hackforums, a nazi regime based on rep, postcount, membership date and your ability to use a RAT. So back to iExploit, we have hacking challenges up which will grow and grow as more logical, and interesting challenges are coded. I also expect to see some wargames, capture the flags and pentest labs set up for you to break into, or not as the case may be. As the website grows, iExploit will have more and more features added, such as radio interviews and podcast, in addition to the already popular iExploitTube youtube channel. In the future im sure the members here will come up with some great exploits and releases, and hopefully some community projects for you all to work on.
However at the moment i am looking for a dedicated staff team, and growth in the forum and hacking challenges, as well as finding time to make new video tutorials for the Youtube.
~Xinapse – My Background
Every issue, we will be having an exclusive article dedicated to a certain member, to explain more about themselves, and how they got into the art of hacking. However as this is the first issue you lucky guys will get one for each of our staff.
I got into hacking and coding at the age of 12/13, after seeing the epic film hackers, the one featuring Angelina Jolie, although the film obviously doesn’t show much actual hacking, the it was the culture that brought me into to it, so i signed up on some hacking forums and found myself lucky to get in with some very knowledgeable people, and became part of two of the best hacking communities i have known (both run by girls, strange that), however both of these have disbanded now. Since then i have just been reading and practicing techniques i have learnt, being mainly a web app specialist, in the last year I have broadened my skills to a wider range of attacks.
[----------------------------------]
Memory basics
By Chroniccommand
iExploit
[----------------------------------]
Intro
To many people who are computer illiterate, the computer is a magical like machine that preforms tasks at relatively fast pace. To the aspiring hacker, we want to know how something works. After all, 80 - 90 percent of hacking / /exploitation // whatever you want to call \"hacking\", is learning how something works. The rest is being able to preform it. So to learn how something works, we read about it and absorb the information given.
Basics
You must remember that at the very core of our computers, lye's a basic calculator. Yes, a calculator. The ones we use to preform basic math such as 2 + 2 or to right the word \"hello\" in numbers like we all did in fifth grade. So memory is just bytes of storage our computer's can hold. Said memory is usually accessed by the memories address. If you run a 32 bit machine, there are 4,294,967,296 possible addresses for your computers memory. That's a lot of addresses! In programming, when you create a variable you are storing its value in a memory address. The memory address is then called when you need to use it. And of course there are pointers. Pointers are special variable types to store addresses of memory that references to other memory addresses. Memory cannot actually be moved(This means variables, bytes, addresses etc..). But it can be copied. A new block of memory addresses needs to be created before the address can be copied. This can create some memory leaks and problems. But pointers can solve this problem. Pointers are assigned a large memory block, then the four byte pointer is passed around.
Memory in programming
So I will be using C for this section of the guide, but this pertains to all programming languages. In programming // scripting languages you can declare things such as constants, characters, integers, floats, doubles etc..
Here is what some declarations look like in the C programming languages.
Code:
int one; //Create the integer of one
float flt; //Create the float variable of flt
char *str //Create a character of str
This is declaring a float, integer and a character to be used in C later on. We can set the variables later on like
one = 2;
But one is not equal to two 0.o Anyway, moving on. There is another term you must known with memory, little endian. It's an order meaning the least significant bye is first in the stack. Bytes are stored in 4 byte reverse words like integers.
Memory segmentation
So another thing crucial to memory is the five different segments involved. These segments are:
text
data
stack
bss
heap
[Text segment]
Also sometimes referred to as the code segment. Assembled machine code is stored in this segment of memory. Statements are non-linear in this section. You must also know what the EIP is. The EIP is the Extended Instruction Pointer. This points to the next memory segment to be executed. When a program is first executed the EIP is the first memory address to be read. The processor then does a loop until finished.
1.)Read the instruction that EIP is pointing to.
2.)Add the byte-length of the instruction to EIP.
3.)Execute the instruction that was read in step 1.
Then continues to step one. This is what we call a loop. The EIP can call different instructions such as jump(JMP) then the EIP address is changed. Additionally, the text segment is read only, so you can’t write to it(Normally). But in an overflow such as Heap OverFlows, Stack OverFlows, etc.. you can exploit the EIP and all other memory addresses to perform commands written in shell code.
[Data + BSS]
The data and BSS sections store global variables. Data is filled with strings and constants etc.. and BSS section has uninitialized counterparts.
[Heap]
The heap segment is used for all other program variables. The heap isn't of one size, unlike the stack. So size can be adjusted as fit. All memory is allocated and kept my algorithms
[Stack]
The stack segment holds and stores function. For more information on the stack segment and all about the stack please look at my \"All about the stack\" paper. My paper includes functions of the stack, order of the stack etc..
I hope this simple but informative paper helped you a bit on the basics of memory, the functions, what it does etc..
--Chroniccommand
/*X-Ploit mag
Looking good. We should have an issue where all admins such as you, George, Me, Semtex etc introduce our selfs and write a bit about our selfs.
I'd be up for that if you give a rough wordcount you want. I think you could make it a magazine thing like "meet the staff" section. New staff member every week/month
Hey I'm chroniccommand. I'm a developer for iExploit. I have some knowledge
in computer security. No, I am not a hacker. I'm a security enthusiast. I came
to iExploit in 2010 and impressed Xinapse so much with my papers, he made me
mod. I've continued with my papers ever since. Reading, gaining knowledge, and
sharing my knowledge. I love to help others further their security knowledge.
I'll be continuing with my papers at iExploit so I may contribute them to the
iExploit magazine. Look for them :)
--Chroniccommand
I wrote a bit of an Aboutme. Don't know if its how you want it.
Hey I'm chroniccommand. I'm a developer for iExploit. I have some knowledge
in computer security. No, I am not a hacker. I'm a security enthusiast. I came
to iExploit in 2010 and impressed Xinapse so much with my papers, he made me
mod. I've continued with my papers ever since. Reading, gaining knowledge, and
sharing my knowledge. I love to help others further their security knowledge.
I'll be continuing with my papers at iExploit so I may contribute them to the
iExploit magazine. Look for them :)
--Chroniccommand