Thread canary example

2024-11-22 04:33:28 +00:00 · 2024-04-07 12:29:45 +02:00 · 2024-04-07 12:29:45 +02:00 · 3c938cce25
commit 3c938cce25
parent 654219573c
1 changed files with 4 additions and 0 deletions
--- a/reversing-and-exploiting/linux-exploiting-basic-esp/common-binary-protections-and-bypasses/stack-canaries/bf-forked-stack-canaries.md
+++ b/reversing-and-exploiting/linux-exploiting-basic-esp/common-binary-protections-and-bypasses/stack-canaries/bf-forked-stack-canaries.md
@ -212,6 +212,10 @@ $tls = 0x7ffff7d7f640
 ...
 ```

+{% hint style="info" %}
+Some of the above GDB functions are defined on an extension called [bata24/gef](https://github.com/bata24/gef), which has more features than the usual [hugsy/gef](https://github.com/hugsy/gef).
+{% endhint %}
+
 As a result, a large Buffer Overflow can allow to modify both the stack canary and the master canary in the TLS. This is the offset:

 ```bash