| Exploit Development |
| Exploit Development |
The course is focused on a comprehensive coverage of software exploitation. It will present different domains of code exploitation and how they can be used together to test the security of an application. The participants will learn about Debuggers and their use in software exploitation on Windows and Linux, exploiting using Metasploit Framework and basics of Reverse Engineering(RCE).
|
| Objectives of the course |
Upon completion of this course, participants will be able to:
- Understand how exploits works and different types of software exploitation techniques
- Understand the exploit development process
- Search for vulnerabilities in closed-source applications
- Write their own exploits for vulnerable applications
|
| Who should attend this training? |
- Information Security Professionals
- Anyone with an interest in understanding exploit development
- Ethical Hackers and Penetration Testers looking to upgrade their skill-set to the next level
|
| Course Contents |
|
Session One
- Module 1:Introduction to Vulnerabilities and Exploits
- Module 2:Live Exploitation demo
- Module 3:x86 Architecture and Assembly Language Programming
- PE File Format
- Little Endian vs Big Endian
|
|
Session Two
- Module 4:Types of Exploitation
- Stack Buffer overflow
- Heap Overflow
- File Format String exploits
- Module 5:Introduction to Debuggers
- Windbg
- Ollydbg
- Immunity Debugger
- Module 6: Shellcode basics
|
|
Session Three
- Module 7: Windows Exploitation – Walkthrough for sample application
- Fuzzing – Triggering the vulnerability
- Crafting the attack string
- Return to stack Vs Return through registers
- Break-point debugging
- Creating the payload
|
|
Session Four
- Module 8: Revision
- Module 9:‘Jumping’ to the shellcode
|
|
Session Five
- Module 10:Abusing Structured Exception Handlers (SEH)
|
|
Session Six
- Module 11:Metasploit – Basic usage
- Module 12:The Meterpreter payload
- Module 13:Client-side attacks
- Module 14:Creating Metasploit exploits
|
|
Session Seven
- Module 15:ActiveX Exploitation
- Module 16:Exploit Protection mechanism
- SafeSEH
- GS Cookie
- Data Execution Prevention(DEP)
- Address Space Layout Randomization(ASLR)
|
|
Session Eight
- Module 17: Introduction to Reverse Engineering
- Module 18: Hands-on with IDA Pro
|
|
Session Nine
- Module 19: Sample Crackme challenges
|
|
Session Ten
- Module 20: Malware Analysis – A case study
|
|
Session Eleven
- Module 21: Linux Exploitation
- Module 22: GDB Debugger
- Module 23: Return-to-libc technique
|
|
Session Twelve
- Module 24: Capture the flag – Exploit development exercise
|
