Exploit sourcecode / Exploit "guide" ?

[zodiacBeast]

Hello,

is there any sourcecode of a recent exploit?
How are exploits found? Do you literally debug the process or how do I start? I really want to learn !

 

[Qraktzyl]

Each exploit is different, but if you're talking about the crashers, then the server logs can give you a good idea on what happened. I'm not the one who found out the exploits, but if I understood correctly those are characters that the teamspeak database has issues with. We do not share the sourcecode however.

Maybe @Derp or @Kaptan647 will be able to tell you more if they can.
Don't pm them tough, they will reply here if they want to share it more in detail with us.

 

[zodiacBeast]

Each exploit is different, but if you're talking about the crashers, then the server logs can give you a good idea on what happened. I'm not the one who found out the exploits, but if I understood correctly those are characters that the teamspeak database has issues with. We do not share the sourcecode however.

Maybe @Derp or @Kaptan647 will be able to tell you more if they can.
Don't pm them tough, they will reply here if they want to share it more in detail with us.

Thank you, that already helped a lot. Yes I am talking about the crashers.
I have a basic idea what could cause a crash, like you said if you send bad characters to the server and the function that handles those characters doesn't validate them and for example tries to convert "a" to integer ^^ (probably not quite that easy).
However, I really want to learn how to find those. I don't see myself experienced enough to find such a vulnarability inside ASM code when debugging TS.
I just ask for a basic "that's the way to go" guide.

For example: How do I debug the process and find the place where the input (sent by my program) is handled?
If any developer is up to talk (maybe teamspeak) was awesome too

Thanks anyway!

 

[Kaptan647]

Basicly i think like what would i forget if i build this software. Unfortunately sending bad characters wont work because teamspeak has an error code for that. (Convert Error)
Some hint. You dont need to hook your program into teamspeak for sending a command. As you can see all of our poc tools dont use teamspeak itself.

 

[Derp]

Some hint. You dont need to hook your program into teamspeak for sending a command. As you can see all of our poc tools dont use teamspeak itself.

^ That, and also this: https://r4p3.net/threads/yumbbq-teamspeak-3-tutorial-mmbbq-3-0-3.257/#post-14259

The comment I linked above shows how you can hook the encrypt/decrypt functions on teamspeak. That will give you a better idea on how the client is communicating with the server.

-Derp

 

[zodiacBeast]

Really nice that you are up to help learning things thanks!
mmbbq seems super relaxed - didn't know that before. Nice!
Well I think now is my turn - i'll let you guys know if I have success

Bye and thanks again