This is a companion repository for the CPOSC 2023 presentation "Introduction to Exploiting Stack Buffer Overflow Vulnerabilities".
CPOSC is over, but you can still watch a recording of the presentation and follow along.
First, use the button above to open a copy of the presentation so that you can see what to type during the demos.
Then see Using devcontainers for the two methods you can
use. But if you are at CPOSC, I highly suggest you use Github
Codespaces. Local VS
Code might work, but you could need to
download ~500 MiB of containers, and who knows how well that will work if
everyone is trying to do that on CPOSC's wifi?
You have two options for using devcontainers.
If you have VS code installed and configured to use devcontainers (i.e., you have docker installed), you can click the button above to set up a devcontainer to follow along in.
You can also run the devcontainer in a Github Code Space. All you need is a Github account and a web browser. Click the above button to create a code space.
- List of Security Competitions and Wargames Learn through doing! Many of these are geared towards learning how to write exploits.
- Corelan Exploit Tutorials A series of exploit writing tutorials that covers the basics and progressively works towards more realistic scenarios. Focuses on Windows exploitation.
- Security Summer School Learning resources on assembly code, gdb, buffer overflows, shellcode, ROP, and more.
- ROP Emporium Sequence of learning problems for Return-Oriented Programming, which is used to bypass DEP/NX.