BROP Attack of the Nginx remote code execution vulnerabilities analysis and use-vulnerability and early warning-the black bar safety net

Blind ROP is a very interesting attack, in fact, many foreign chapters, as well as the original dark cloud in the Knowledge Base article has a description, I put these reference articles are placed in the end position, interested friends can study together the Exchange. As Flappy pig clan wars, I...

Nginx 1.4.0 (Generic Linux x64) - Remote Overflow

Nginx 1.4.0 Generic Linux x64 - Remote Overflow nginx = 1.4.0 exploit for CVE-2013-2028 by sorbo Fri Jul 12 14:52:45 PDT 2013 ./brop.rb 127.0.0.1 for remote hosts: ./frag.sh ip ./brop.rb ip rm state.bin when changing host or relaunching nginx with canaries scan.py will find servers, reading IPs...