GithubHelp home page GithubHelp logo

5l1v3r1 / osce-preparation Goto Github PK

View Code? Open in Web Editor NEW

This project forked from mdisec/osce-preparation

0.0 1.0 0.0 165.88 MB

MDISEC Twitch topluluğu olarak OSCE hazırlık materyallerinin listelendiği repo.

License: GNU General Public License v3.0

Assembly 3.18% C 4.96% Python 91.87%

osce-preparation's Introduction

OSCE Preparation

This repo contains a resources that should be followed step by step during the OSCE preperation.

Please do NOT hesitate to create an issue in order to add resource to the list.

Getting Familiar with Assembly Language

BOOK : Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation https://www.amazon.com/Practical-Reverse-Engineering-Reversing-Obfuscation/dp/1118787315

Videos : x86 Assembly Language and Shellcoding on Linux https://www.pentesteracademy.com/course?id=3

Another Video : Reverse Engineering Win32 Applications Course Videos https://www.pentesteracademy.com/course?id=41

Corelan.be Exploit Development Articles

One of the greatest resource about getting started with buffer overflows.

  1. Corelan.be BOF - 0x01 |  Exploit writing tutorial part 1 : Stack Based Overflows

  2. Corelan.be BOF - 0x02 |  Exploit writing tutorial part 2 : Stack Based Overflows – jumping to shellcode

  3. Corelan.be BOF - 0x03 | Exploit writing tutorial part 3 : SEH Based Exploits

  4. Corelan.be BOF - 0x04 | Exploit writing tutorial part 3b : SEH Based Exploits – just another example

  5. Corelan.be BOF - 0x05 | Exploit writing tutorial part 4 : From Exploit to Metasploit – The basics

  6. Corelan.be BOF - 0x06 | Exploit writing tutorial part 5 : How debugger modules & plugins can speed up basic exploit development

  7. Corelan.be BOF - 0x07 | Exploit writing tutorial part 6 : Bypassing Stack Cookies, SafeSeh, SEHOP, HW DEP and ASLR

  8. Corelan.be BOF - 0x08 | Exploit writing tutorial part 7 : Unicode – from 0x00410041 to calc

FuzzySecurity Windows Exploit Development Tutorial Series

Another awesome resource about exploit development.

  1. Part 1: Introduction to Exploit Development
  2. Part 2: Saved Return Pointer Overflows
  3. Part 3: Structured Exception Handler (SEH)
  4. Part 4: Egg Hunters
  5. Part 5: Unicode 0x00410041
  6. Part 6: Writing W32 shellcode
  7. Part 7: Return Oriented Programming
  8. Part 8: Spraying the Heap [Chapter 1: Vanilla EIP]
  9. Part 9: Spraying the Heap [Chapter 2: Use-After-Free]
  10. Part 10: Kernel Exploitation -> Stack Overflow
  11. Part 11: Kernel Exploitation -> Write-What-Where
  12. Part 12: Kernel Exploitation -> Null Pointer Dereference
  13. Part 13: Kernel Exploitation -> Uninitialized Stack Variable
  14. Part 14: Kernel Exploitation -> Integer Overflow
  15. Part 15: Kernel Exploitation -> UAF
  16. Part 16: Kernel Exploitation -> Pool Overflow
  17. Part 17: Kernel Exploitation -> GDI Bitmap Abuse (Win7-10 32/64bit)
  18. Part 18: Kernel Exploitation -> RS2 Bitmap Necromancy
  19. Part 19: Kernel Exploitation -> Logic bugs in Razer rzpnk.sys

Fuzzing

TODO later

AV Bypass

TODO later https://captmeelo.com/exploitdev/osceprep/2018/07/16/backdoor101-part1.html https://captmeelo.com/exploitdev/osceprep/2018/07/21/backdoor101-part2.html

osce-preparation's People

Contributors

mdisec avatar meryem0x avatar ncilengir avatar yavuzru avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.