•  

SEC710: Advanced Exploit Development

A session at SANS London 2012

  • James Shewmaker

Sunday 2nd December, 2012

9:00am to 5:00pm (GMT)

SANS SEC710 is an advanced two-day course on exploit development. Students attending this course should know their way around a debugger and have prior experience exploiting basic stack overflows on both Windows and Linux. Terms such as "jmp esp" and "pop/pop/ret" should be nothing new to you. We will move beyond these attack techniques to explore more advanced topics on heap exploitation, format string attacks, and Microsoft patch reversal and exploitation. We will be taking a real Microsoft security patch, reversing it to model the discovery of an undisclosed vulnerability, and developing a client-side exploit that defeats controls such as Address Space Layout Randomization (ASLR).

Attendees can apply the skills developed in this class to create and customize exploits for penetration tests of homegrown software applications and newly discovered flaws in widespread commercial software. Understanding the process of exploit development can help enterprises analyze their actual business risks better than the ambiguous hypotheticals we often contend with in most traditional vulnerability assessments.

About the speaker

This person is speaking at this event.
James Shewmaker

Sign in to add slides, notes or videos to this session

SANS London 2012

England England, London

26th November to 3rd December 2012

Tell your friends!

When

Starts 2nd December 2012 at 9:00am GMT

Ends 3rd December 2012 at 5:00pm GMT

Short URL

lanyrd.com/symxh

Official event site

www.sans.org/info/107449

View the schedule

Share

See something wrong?

Report an issue with this session