Buffer Overflow Fundamentals

This Buffer Overflow course covers the fundamentals of the analysis process and exploitation against UNIX and Windows platforms as well as root principles used in overflow egg development. The students will examine the elements of an overflow in terms of programming constructs and data structures. The instructor's own experience in Buffer Overflow exploitation and development will also guide the students through the cause and effect of overflows and how they can be used to effectively exploit systems.

Lab

The lab will focus on the analysis of known stack and heap based overflow vulnerabilities by utilizing reverse engineering tools and developing a program to exploit an overflow. Students will identify input required to overflow the buffer, document stack/heap contents during the overflow and evaluate options for execution redirection. They will then utilize this information to develop an exploit tool incorporating existing egg technology.

Buffer Overflows

This exclusive Buffer Overflow course follows on from the Fundamentals to introduce students to Heap Overflows and Format String vulnerabilities that can be used to facilitate Stack Overflows. Techniques used in identifying new Overflows will be covered by analyzing unpublished vulnerabilities.

Lab

Students will utilize tools to stress application interfaces and perform root cause analysis to identify new buffer overflow vulnerabilities. They will then develop an overflow egg and program to exploit their newly found vulnerability.

Please refer to the Schedule/Fees for dates of availability