Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Hands-on Fuzzing and Exploit Development (Basic)
Rating: 4.9 out of 5(13 ratings)
1,687 students

Hands-on Fuzzing and Exploit Development (Basic)

Learn the process of exploit development with real world examples
Created byUday Mittal
Last updated 3/2024
English

What you'll learn

  • Windows Exploit Development
  • Basics of Buffer Overflow
  • Protocol and File Format Fuzzing
  • Hacking

Course content

2 sections12 lectures1h 35m total length

  • Introduction3:23

    This video gives an overview of the technique you'll be learning in this module. It also gives a brief overview of tools and software required for this module.

  • Fuzzing7:34

    This video gives an overview of fuzzing and then demonstrates how to fuzz an application using Spike fuzzer

  • PoC Creation6:37

    In this video, we'll take the results from the previous part and create a PoC script in Python. The aim is to replicate the crash in the target application.

  • Controlling the execution11:23

    In this video, we'll enhance the PoC created in the previous part to take control of the execution flow of the application.

  • Bad character analysis7:26

    In the video, we identify the bad characters which might break our final payload.

  • Cracking the shell6:53

    In this video, we will complete our exploit by integrating the payload shellcode and finally execute it to obtain shell from the target machine.

  • Develop a working exploit for JetAudio jetCast Server 2.0

Requirements

  • Have basic knowledge of Kali Linux, Fuzzing, Assembly language, Immunity Debugger

Description

About the course

This course will teach you the basics of exploiting a buffer overflow vulnerability. It follows the six stages of exploit development and gives a detailed walk-through of each. Each module starts by identifying the vulnerability via fuzzing. You'll learn both, protocol fuzzing (using Spike) and file format fuzzing (using FileFuzz). It then shows you how to create a PoC to trigger the vulnerability and convert that PoC into a working exploit.

Through this course you will get introduced to various tools such as Immunity Debugger, Mona library for Immunity Debugger, Metasploit, msfvenom, Spike, File Fuzz and much more.  This course is designed to be short and concise yet packed with practical knowledge.

Each video includes learning resources (in video) and associated files (pdf slides, fuzzing scripts, python script etc.). You can just follow along and create a working exploit. It's that simple.  Happy hacking!

What our fellow students say about this course

"Course goes from the basics through to what the OSCP teaches you. Highly recommended, still enjoying the material." - Michael Ross

"Best course I have taken thus far that explains buffer overflows in a way that you can easily try on your own home lab. Instructor is easy to understand, doesn't rush through the material and explains step - by - step." - William Daugherty

"Awesome course; clear and to-the-point; very helpful for understanding Buffer Overflow..." - Zeeshan


Who this course is for:

  • Students curious about ethical hacking, fuzzing, exploit development

Report abuse