SlideShare a Scribd company logo

Dünden Bugüne Exploit Dünyası

O
Onur Alanbel

This document discusses the history and evolution of computer exploits from early vulnerabilities like stack overflows to modern techniques like return oriented programming and kernel exploits. It provides examples of major exploits from the Morris Worm in 1988 to recent zero-days. It also outlines numerous bypass techniques for defenses such as ASLR, sandboxes, and KASLR. The document examines the sophisticated Pegasus spyware and its developer, the Israeli cybersecurity firm NSO Group.

Presentations & Public Speaking
1 of 31
Downloaded 13 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
DÜNDEN BUGÜNE EXPLOIT DÜNYASI Onur ALANBEL
$id -un • Bilgisayar Mühendisi (İYTE) • Kurucu @cricomtr (cri.com.tr) • Geliştirici @TaintAll (taintall.com) • Uygulama Güvenliği Araştırmacısı • Github: github.com/onura • Twitter: @onuralanbel • https://packetstormsecurity.com/search/?q=onur+alanbel
VULNERABILITYVS POCVS EXPLOIT • Vulnerability: istismar edilebilir hata (bug).
VULNERABILITYVS POCVS EXPLOIT • Vulnerability: istismar edilebilir hata (bug). • PoC: Zafiyeti tetikleyen kod.
VULNERABILITYVS POCVS EXPLOIT • Vulnerability: istismar edilebilir hata (bug). • PoC: Zafiyeti tetikleyen kod. • Exploit: Program akışını manipüle eden kod ve girdi birleşimi.
NEREDE BULUNURLAR?
NEDEN KULLANILIRLAR? • Yetkisiz Erişim • YetkiYükseltme
SMASHINGTHE STACK 1996-11-08
MORRIS WORM 1988-11-02
MS08-067 • RPC RCE • Conficker
Dünden Bugüne Exploit Dünyası
DÜNVS BUGÜN • SDLC (no stack overflow?)
DÜNVS BUGÜN
DÜNVS BUGÜN ➤ Buffer Overrun ➤ Buffer Overflow ➤ Stack overflow ➤ Heap overflow ➤ UAF ➤ Double Free ➤ Memory Corruption ➤ Unbound Memory Read / Write ➤ Arbitrary Memory Read / Write ➤ Type Confusion ➤ Race Condition ➤ Logic Bugs ➤ ….
CODE Program Instructions RX STACK User Input RWX
CODE Program Instructions RX STACK User Input RW ROP Return Oriented Programming Non-Executable Memory or DEP
CODE Program Instructions RX STACK User Input RW Address Space Layout Randomization Stack Heap DLL Base Code Base
ASLR BYPASS • Info Leak • Partial PC Overwrite • Non-ASLR Components/Libraries • Heap Spray (Nop Sled) • PLT Overwrite • GOT Dereference
SANDBOX Target Process OS Components Limited Access Other Processes
Kernel shellcode User Process Trigger a NULL Pointer Dereference
Kernel shellcode User Process Run/Read
Kernel PAGEZERO inaccessable User Process :( Compatibility Issues
ROP Kernel Fake Stack User Process SMEP Supervisor Mode Execution Prevention
ROP Fake Stack Kernel User Process SMEP/ SMAP Supervisor Mode Access Prevention
KASLR BYPASS • Info Leak • Partial PC Overwrite • Side Channel Attacks (UsuallyTime Based)
DIĞER KORUMALAR • Stack Canaries/Cookies • Memory Protector, Isolated heap • Different Data/Code Caches • …
PEGASUS OLAYI • Milyon Dolarlık Exploit Nasıl Gözükür?
Kurban bir linke tıklar UAF (CVE-2016-4657) Arbitrary Read to Break ASLR Arbitrary Write to Gain Code Execution Fake NULL Pointer Dereference Info Leak (CVE-2016-4655) Break KASLR Kernel UAF (CVE-2016-4656) to Jailbreak
ARKASINDA KİMVAR? • NSO GroupTechnologies 2010 da kurulan İsrail çıkışlı bir güvenlik firması. • 200 çalışan, $40 milyon 2013, $150 milyon in 2015 yıllık gelir. • İş tanımları: NSO Group provides "authorized governments with technology that helps them combat terror and crime”.
GÜNDEM • Siber Silah • Siber Caydırıcılık • Aktif Siber Savaş
Dünden Bugüne Exploit Dünyası

More Related Content

PDF
Liran tal Stranger Danger Security vulnerabilities - Negev Web Developers mee...
Liran Tal
 
PDF
Unit testing in swift 2 - The before & after story
Jorge Ortiz
 
PPTX
Reverse engineering android apps
Pasindu Perera
 
PDF
OWASPTR Uygulama Güvenliği Günü 2013
Onur Alanbel
 
PDF
Binary Hacking Hakkında Herşey
Onur Alanbel
 
PDF
The Postmodern Binary Analysis
Onur Alanbel
 
PPT
Introduction to Reverse Engineering
Gopinath Chintala
 
PPTX
APT Saldırıları
Alper Başaran
 
Liran tal Stranger Danger Security vulnerabilities - Negev Web Developers mee...
Liran Tal
 
Unit testing in swift 2 - The before & after story
Jorge Ortiz
 
Reverse engineering android apps
Pasindu Perera
 
OWASPTR Uygulama Güvenliği Günü 2013
Onur Alanbel
 
Binary Hacking Hakkında Herşey
Onur Alanbel
 
The Postmodern Binary Analysis
Onur Alanbel
 
Introduction to Reverse Engineering
Gopinath Chintala
 
APT Saldırıları
Alper Başaran
 

Recently uploaded (20)

PPTX
PHIL.-ASTRONOMY-AND-NAVIGATION of ..pptx
ajp27480
 
PPTX
chapter8-180915055454bycuufucdghrwtrt.pptx
ajp27480
 
PDF
Parts of Speech Prepositions Presentation in Colorful Cute Style_20250724_230...
ShomailahRashid
 
PPTX
worship songs, in any order, compilation
wilmalenetoledo
 
PPTX
Tablets And Capsule Preformulation Of Paracetamol
sgsayan31
 
PPTX
An Unlikely Response 08 10 2025.pptx
FamilyWorshipCenterD
 
PDF
Tunisia's Founding Father(s) Pitch-Deck 2022.pdf
Hafedh Hafez Mechergui
 
PPTX
Hydrogel Based delivery Cancer Treatment
sgsayan31
 
PPTX
Self management and self evaluation presentation
NikkySharma5
 
PPTX
Tour Presentation Educational Activity.pptx
PaulineAngeliqueBere
 
PPTX
Human Mind & its character Characteristics
peterjoekari
 
PDF
Nykaa-Strategy-Case-Fixing-Retention-UX-and-D2C-Engagement (1).pdf
VaibhavBansal926958
 
PPTX
The Effect of Human Resource Management Practice on Organizational Performanc...
wemasterconstruction
 
PPTX
lesson6-211001025531lesson plan ppt.pptx
ajp27480
 
PPTX
Primary and secondary sources, and history
valenciamarcchristia
 
PPTX
AcademyNaturalLanguageProcessing-EN-ILT-M02-Introduction.pptx
nguyenhung549091
 
PPTX
nose tajweed for the arabic alphabets for the responsive
Hijabi1
 
PPTX
S. Anis Al Habsyi & Nada Shobah - Klasifikasi Hambatan Depresi.pptx
NadaShobah1
 
PPTX
BIOLOGY TISSUE PPT CLASS 9 PROJECT PUBLIC
iamsrinjandatta
 
PPTX
Emphasizing It's Not The End 08 06 2025.pptx
FamilyWorshipCenterD
 
PHIL.-ASTRONOMY-AND-NAVIGATION of ..pptx
ajp27480
 
chapter8-180915055454bycuufucdghrwtrt.pptx
ajp27480
 
Parts of Speech Prepositions Presentation in Colorful Cute Style_20250724_230...
ShomailahRashid
 
worship songs, in any order, compilation
wilmalenetoledo
 
Tablets And Capsule Preformulation Of Paracetamol
sgsayan31
 
An Unlikely Response 08 10 2025.pptx
FamilyWorshipCenterD
 
Tunisia's Founding Father(s) Pitch-Deck 2022.pdf
Hafedh Hafez Mechergui
 
Hydrogel Based delivery Cancer Treatment
sgsayan31
 
Self management and self evaluation presentation
NikkySharma5
 
Tour Presentation Educational Activity.pptx
PaulineAngeliqueBere
 
Human Mind & its character Characteristics
peterjoekari
 
Nykaa-Strategy-Case-Fixing-Retention-UX-and-D2C-Engagement (1).pdf
VaibhavBansal926958
 
The Effect of Human Resource Management Practice on Organizational Performanc...
wemasterconstruction
 
lesson6-211001025531lesson plan ppt.pptx
ajp27480
 
Primary and secondary sources, and history
valenciamarcchristia
 
AcademyNaturalLanguageProcessing-EN-ILT-M02-Introduction.pptx
nguyenhung549091
 
nose tajweed for the arabic alphabets for the responsive
Hijabi1
 
S. Anis Al Habsyi & Nada Shobah - Klasifikasi Hambatan Depresi.pptx
NadaShobah1
 
BIOLOGY TISSUE PPT CLASS 9 PROJECT PUBLIC
iamsrinjandatta
 
Emphasizing It's Not The End 08 06 2025.pptx
FamilyWorshipCenterD
 
Ad

Featured (20)

PDF
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 
PDF
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
PDF
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
OECD Directorate for Financial and Enterprise Affairs
 
PDF
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
PDF
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
PDF
Everything You Need To Know About ChatGPT
Expeed Software
 
PDF
Product Design Trends in 2024 | Teenage Engineerings
Pixeldarts
 
PDF
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
PDF
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
marketingartwork
 
PDF
Skeleton Culture Code
Skeleton Technologies
 
PDF
PEPSICO Presentation to CAGNY Conference Feb 2024
Neil Kimberley
 
PDF
Content Methodology: A Best Practices Report (Webinar)
contently
 
PPTX
How to Prepare For a Successful Job Search for 2024
Albert Qian
 
PDF
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
PDF
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
PDF
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 
PDF
ChatGPT and the Future of Work - Clark Boyd
Clark Boyd
 
PDF
Getting into the tech field. what next
Tessa Mero
 
PDF
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Lily Ray
 
PDF
How to have difficult conversations
Rajiv Jayarajah, MAppComm, ACC
 
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
OECD Directorate for Financial and Enterprise Affairs
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
Everything You Need To Know About ChatGPT
Expeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
Pixeldarts
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
marketingartwork
 
Skeleton Culture Code
Skeleton Technologies
 
PEPSICO Presentation to CAGNY Conference Feb 2024
Neil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
contently
 
How to Prepare For a Successful Job Search for 2024
Albert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
Clark Boyd
 
Getting into the tech field. what next
Tessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Lily Ray
 
How to have difficult conversations
Rajiv Jayarajah, MAppComm, ACC
 
Ad

Dünden Bugüne Exploit Dünyası