Categories

There are currently no items in your shopping cart.

User Panel

Forgot your password?.

Hands-on Fuzzing and Exploit Development (Advanced)

Video Introducing this tutorial


Module 1 (Egg Hunters) :
Introduction
Fuzzing
PoC Creation
Controlling the execution
Bad character analysis
Cracking the shell

Module 2 (ASLR Bypass + Stack Pivoting) :
Introduction
Fuzzing
PoC Creation
Bad character analysis
Controlling the execution (ASLR Bypass)
Controlling the execution (Stack Pivoting)
Cracking the shell

Module 3 (Unicode) :
Introduction
Fuzzing
PoC Creation
Controlling the Execution (SEH Overwrite)
Controlling the execution (Aligning register for shellcode)
Bad character analysis
Cracking the shell

Assignment: NetSetMan 4.7.1 :
Develop a working exploit for NetSetMan 4.7.1
1 question

Module 4 (Limited Buffer Space / Function Reuse) :
Introduction
Fuzzing
PoC Creation
Controlling the execution
Bad character analysis
Cracking the shell (First-stage payload)
Cracking the shell (Second-stage payload)
Bonus: BooFuzz Installation

Module 5 (Acrobatics / QuickZip) :
Introduction
Fuzzing (Understanding ZIP file format specification)
Fuzzing (Reverse engineering ZIP file structure) Part 1
Fuzzing (Reverse engineering ZIP file structure) Part 2
Fuzzing (Creating fuzzing script)
Fuzzing (Fuzz QuickZip.exe)
PoC Creation
Controlling the execution
Bad character analysis - Part 1
Bad character analysis - Part 2
Cracking the shell (Short Jump)
Cracking the shell (Long Jump)
Cracking the shell (Egg Hunter - Encoding - Part 1)
Cracking the shell (Egg Hunter - Encoding - Part 2)
Cracking the shell (Egg Hunter - Execution)
Cracking the shell (Payload shellcode)

Assignment: Kenward Zipper 1.4 :
Develop a working exploit for Kenward Zipper 1.4