Understanding C Pointer Magic Arithmetic | Ep. 07

preview_player
Показать описание
We debug the line that causes the heap overflow. And it's a great opportunity to understand pointers in C.

Episode 07:
00:00 - Intro & Motivation
00:46 - Create Debug Build
01:02 - The Crashing Location
01:43 - Scary Pointer Magic
02:10 - *to++ = *from
02:56 - Explaining: from++
04:03 - Explaining: *from
04:56 - Explaining: to++
05:23 - Explaining: *to = *from
05:54 - The Copy While Loop
06:26 - Explaining: from[0] vs *from
07:14 - The Bug!
08:35 - Wrong Allocation Size Calculated
09:30 - Unescape Logic
10:15 - Why though?

-=[ ❤️ Support ]=-

-=[ 🐕 Social ]=-

  1. LiveOverflow
  2. Live Overflow
  3. liveoverflow
  4. hacking tutorial
  5. how to hack
  6. exploit tutorial
Рекомендации по теме
Understanding C Pointer 0:10:50

Understanding C Pointer Magic Arithmetic | Ep. 07

Pointer Arithmetic Explained: 0:01:03

Pointer Arithmetic Explained: Unlock the Magic of Arrays! 🔑 | C/C++ #learnwithsumit #cprogramming

Pointers in C 2:04:29

Pointers in C for Absolute Beginners – Full Course

Introduction to C 0:15:06

Introduction to C Pointers: Pointer Arithmetic

Class 15 pointer 0:16:29

Class 15 pointer Arithmetics

C Programming: Pointers, 1:31:53

C Programming: Pointers, arrays, and pointer arithmetic

C++ Weekly - 0:04:47

C++ Weekly - Ep 389 - Avoiding Pointer Arithmetic

Pointer Arithmetic in 0:02:52

Pointer Arithmetic in C (Structs and Typedefs in C - Video #3)

Your Seventh Day 0:40:51

Your Seventh Day in C (Pointer are not arrays, and 2D arrays) - Crash Course in C Programming

C Strings and 0:07:46

C Strings and Pointer Arithmetic

Learn C memory 0:07:01

Learn C memory addresses in 7 minutes 📬

Triple Ref Pointers 0:08:28

Triple Ref Pointers - Computerphile

Pointer Arithmetic In 0:33:49

Pointer Arithmetic In C

C++ Pointer Arithmetic 0:10:23

C++ Pointer Arithmetic

POINTERS in C++ 0:16:59

POINTERS in C++

CS50 Explained 2016 0:02:47

CS50 Explained 2016 - Week 4 - Pointer Fun with Binky

Master Pointer Arithmetic 0:00:21

Master Pointer Arithmetic in 20 Seconds🔥#short #viral

Study C Pointer 1:37:53

Study C Pointer Via Examples

CIS11 Unit 11 1:34:40

CIS11 Unit 11 Lecture: Functions, Pointer and Arrays in C and LC-3

C Arrays and 0:35:20

C Arrays and Pointers to Pointers

C++ Member Function 0:08:11

C++ Member Function Pointer Tutorial

Master C++ Pointer 0:00:17

Master C++ Pointer Magic in 16 Seconds🔥#short #viral

Sine Curve and 0:00:27

Sine Curve and the Unit Circle

Pointers in C 0:05:38

Pointers in C (the basic of pointer basics)

Комментарии
Автор

A "hold my hand to understand the assembly language" series is what I need.

JohnSmith-ihcj
Автор

The professor that taught me C is an ethical hacker I look up to a lot. I love realizing how things he taught me actually fit into the context of security.

CubensisEnjoyer
Автор

1:50 "I know this looks intimidating, but let's look at this in assembly" should be a meme :-D
*to++ = *from++ is a memcpy()/strcpy() (that assumes no overlap) even without looking at the assembler. Hats off that this is simpler for you through reading the asm 😉

Gregorius
Автор

I know you might not hear this often, but the captions really does really help me understand, thanks so much for adding them.

mapleint
Автор

This series needs more love. It also needs a sequel

szymach
Автор

fun fact, not only are "*from" and "from[0]" semantically equivalent, so is "0[from]"

wtthehll
Автор

one of the most important things to know when doing work like this, great content as always man

_..---
Автор

My Professor gave us this exact pointer magic for finals

He never explained how ++ interacts with pointers and No on got it right in the exam

Running the code after compiling gave me the right answer but I never understood it until now thank you

Zedoy
Автор

This is my favorite YT channel hands down. Damn the cliff hangers though!!

thatcreole
Автор

i have try to understand this cve for 4 days ago. and now, i am seeing your video :))) i wish it come more earlier

chittodihoc
Автор

This is why I advocate to bring back assembly in colleges. A semester of hardware design and building a small 8 bit system and developing in assembly.
I had no issue with pointers when we finally learned C, because I had been programming in 6502/Z80 already for 3 or 4 years. The other students couldn’t grasp it as easily.
So my syllabus would look like:
-Hardware design assembler
-C
-And some high level OO language.

And boy this code is shotty for such an important security tool.
You would do the stripping of the slashes first and have that result string copied.
These are two separate functional operations, that you should not combine. Unless speed is an issue but that can’t be the case in sudo :)

CallousCoder
Автор

I remember learning c in uni, good times 👍

andyli
Автор

650k sub I think I subscribed when he was under 5000k it's amazing to see channels growing !

peaceandfood
Автор

Man that jeff (gef) guy is so awesome 😂

flamendless
Автор

Do you know about the -Og flag? It's specifically listed for use with debugging in the manual page

qwertywifi
Автор

I really enjoy your videos thank you 🙏😁

FedoraRose
Автор

nice bro, your video's very helpful to me

--_mr.who_--
Автор

I love learning new thing thanks for the video

reastle
Автор

Hey i'm curious about OSCP instead of my college degree. So after then can i get a pentesting job??

gamesinloop
Автор

I notice you referred to '0' as "ASCII null" a couple of times. "null" is the German word for English "zero", right?

MCLooyverse