Description:
Welcome to Part 6 of the Exploit Research Megaprimer. Please begin this series by watching Part 1, if you have not already done so!We have covered Buffer Overflows in-depth! Now let us move on to more interesting topics! The next couple of videos will be SEH based exploitation. SEH stands for Structured Exception Handler, and is a software system for dispatching and handling exceptions on Windows.
Using an overflow attack, it is possible to get control of the SEH and in the process pwn the system. In this first video of the SEH series, I will introduce you to the basics of exception handling, exception handlers, handler linked lists, how an SEH chain gets created at runtime, registration of handlers, role of the stack in SEH, default handler by the OS, implementation of SEH in Visual C++ and take a demo to understand these concepts.