Exploit Development 6 - ROP Decoder
Added 2023-01-19 18:52:36 +0000 UTCUsing the encoders included in msfvenom is not the only way one could go - besides writing one's very own encoding routine and integrating the decoder stub into the shellcode, the decoding routine can also be integrated into the ROP chain which brings some advantages with it.
In part 5 of the exploit development series where we wrote another DEP bypass using WriteProcessMemory, we encountered a new problem exploiting the buffer overflow: The decoding stub added to our shellcode by msfvenom breaks our exploit since the shellcode does not have write permissions within the code cave. In order to solve this hurdle, an ROP-based decoder can be utilized instead.
Exploit Development Series:
- Exploit Development 1 - VulnServer Simple Buffer Overflow
- Exploit Development 2 - SEH Based Overflow
- Exploit Development 3 - Writing an Exploit Stager
- Exploit Development 3b - Reconstructing A Socket
- Exploit Development 4 - Bypass DEP with VirtualAlloc
- Exploit Development 5 - Bypassing DEP with WriteProcessMemory
- Exploit Development 6 - Writing A ROP Decoder
