Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Python Penetration Testing Cookbook

You're reading from   Python Penetration Testing Cookbook Practical recipes on implementing information gathering, network security, intrusion detection, and post-exploitation

Arrow left icon
Product type Paperback
Published in Nov 2017
Publisher Packt
ISBN-13 9781784399771
Length 226 pages
Edition 1st Edition
Languages
Arrow right icon
Author (1):
Arrow left icon
Rejah Rehim Rejah Rehim
Author Profile Icon Rejah Rehim
Rejah Rehim
Arrow right icon
View More author details
Toc

Table of Contents (15) Chapters Close

Preface 1. Why Python in Penetration Testing? FREE CHAPTER 2. Setting Up a Python Environment 3. Web Scraping with Python 4. Data Parsing with Python 5. Web Scraping with Scrapy and BeautifulSoup 6. Network Scanning with Python 7. Network Sniffing with Python 8. Scapy Basics 9. Wi-Fi Sniffing 10. Layer 2 Attacks 11. TCP/IP Attacks 12. Introduction to Exploit Development 13. Windows Exploit Development 14. Linux Exploit Development

Structured Exception Handling

The Structured Exception Handling (SEH) is a protection mechanism to prevent the buffer overflows. SEH uses a linked list as it contains a sequence of data records. When an exception occurs, the OS will go through this list and check for the suitable exception function. For this, the exception handler requires a pointer to the current exception registration record (SEH) and another pointer to the next exception registration record (nSEH). As the Windows stack grows downwards, the order will be reversed:

So, if we can overwrite the SEH with a POP POP RETN instruction, the POP will remove four bytes from the top of the stack and the RETN will return an execution to the top of the stack. As the SEH is located at esp+8, we can increment the stack with eight bytes and return to the new pointer at the top of the stack. Then we will be executing nSEH. So...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image