堆栈内存溢出
  简体   繁体   English

我怎么知道子进程是否正在等待 C 中的键盘输入

[英]How can I know if child process is waiting for keyboard input in C

 原文  2020-12-11 04:57:44       c/ linux/ fork/ child-process/ buffer-overflow

问题描述

I'm working on a buffer overflow exploitation in C (Linux).我正在研究 C (Linux) 中的缓冲区溢出漏洞利用。 Goal of exploitation is to run shell as root .利用的目标是以 root 运行 shell

So my strategy is like this.所以我的策略是这样的。

  1. Guess target address.猜测目标地址。
  2. Run vulnerable program with #1's target address.使用#1 的目标地址运行易受攻击的程序。 (Run by fork-exec) (由 fork-exec 运行)
  3. Check if the program is exploited.检查程序是否被利用。 (whether shell is executed) (是否执行shell)
  4. LOOP until #3 is satisfied.循环直到满足#3。

My problem occurs from #3.我的问题发生在#3。 How can I check if child process executes shell successfully?如何检查子进程是否成功执行 shell?
Or, How can I know if child process is waiting for keyboard input?或者,我如何知道子进程是否正在等待键盘输入?

Here is my code.这是我的代码。

/*
GUESS TARGET_ADDRESS
*/
if(fork()==0){
    execl("./vulnerableProgram", "./vulnerableProgram", "exploitInput.txt", NULL);
}
int check = CHECK_IF_CHILD_PROCESS_RUNS_SHELL()          // <- here is my question
if(check) {
    printf("%s\n", TARGET_ADDRESS);
    break;
}

When child process fails to exploit, the status of child process is like below.当子进程无法利用时,子进程的状态如下所示。

  • Segmentation Fault分段故障
  • Illegal Instructions非法指令
  • exit normally (overflow doesn't occurs due to NULL character among the exploit code)正常退出(由于漏洞利用代码中的NULL字符不会发生溢出)

1 个解决方案

解决方案1
 0  2020-12-11 19:22:38

When a child terminates the program you enter to run it will return or exit normal with value or abnormal.I dont know what are you doing with exploitation and stuff but i can answer your to your question in how you know when the child executes shell successfully.You can tell the parent to wait for child until it's work is done and after you can handle normal or ubnormal execute by WIFEXITED(), if this return true means that execution of child was normal else abnormal.当孩子终止您输入运行的程序时,它将返回或退出正常值或异常。我不知道您在做什么利用和东西,但我可以回答您的问题,您如何知道孩子何时成功执行 shell .你可以告诉父母等待孩子,直到它的工作完成,然后你可以通过WIFEXITED()处理正常或异常执行,如果这个返回true意味着孩子的执行是正常的,否则异常。

waitpid(pid,&status,0);
if(WIFEXITED(status){
    printf("normal with %d", WEXITSTATUS(status));
}else{
  //abnormal
}

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 C、Linux中子进程的复杂键盘输入 - Complex keyboard input to child process in C, Linux 如何在 c 中轮询键盘输入? - How can I poll keyboard input in c? 等待子进程是否终止-C - Waiting for child process to terminate, or not - C 当我不等待父进程中的子进程时,如何终止程序? - How can I terminate the program when I am not waiting for the child process in the parent? pthreads,我怎么知道进程内的另一个线程不在等待? - pthreads, how do I know that another thread inside the process is not waiting? 如何从命令行输入创建子进程 - How can I create a child process from a command line input 我怎么知道哪个孩子退出了C语言? - How can I know which child has exited in C? 父进程等待孩子在C中完成 - Parent Process Waiting for Child to Finish in C 在 C 中等待子进程终止的最佳实践 - Best practice for waiting for a child process termination in C 我如何确保子进程最终将数据写入C? - How can I ensure a child process eventually writes data in C?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM