7 : More about the fuzzing basics

Memory protections

  • DEP

  • data execution prevention

  • it will prevent code execution from data pages, throw error by that

  • ASLR

  • randomize base address on every time reboot the OS

Things to aware

  • Check the EIP memory size

  • you need ~ 450-500 bytes for C application rootkit injection