PoC Creation | Yaksas Security Classroom

Autoplay
Autocomplete

Previous Lesson Complete and Continue

Hands-on Fuzzing and Exploit Development (Advanced)

Module 1 (Egg Hunters)

Introduction (4:28)
Fuzzing (7:34)
PoC Creation (4:37)
Controlling the execution (10:37)
Bad character analysis (8:08)
Cracking the shell (14:22)

Module 2 (ASLR Bypass + Stack Pivoting)

Introduction (5:42)
Fuzzing (14:36)
PoC creation (4:59)
Bad character analysis (4:25)
Controlling the execution (ASLR Bypass) (13:55)
Controlling the execution (Stack Pivoting) (13:07)
Cracking the shell (12:30)

Module 3 (Unicode)

Introduction (4:05)
Fuzzing (10:48)
PoC Creation (8:31)
Controlling the Execution (SEH Overwrite) (11:33)
Controlling the execution (Aligning register for shellcode) (13:14)
Bad character analysis (8:20)
Cracking the shell (8:17)

Assignment: NetSetMan 4.7.1

Develop a working exploit for NetSetMan 4.7.1 (3:00)

Module 4 (Limited Buffer Space / Function Reuse)

Introduction (5:52)
Fuzzing (12:25)
PoC Creation (9:11)
Controlling the execution (12:13)
Bad character analysis (13:05)
Cracking the shell (First-stage payload) (24:08)
Cracking the shell (Second-stage payload) (7:11)
Bonus: BooFuzz Installation (9:18)

Module 5 (Acrobatics / QuickZip)

Introduction (3:37)
Fuzzing (Understanding ZIP file format specification) (13:43)
Fuzzing (Reverse engineering ZIP file structure) Part 1 (14:40)
Fuzzing (Reverse engineering ZIP file structure) Part 2 (10:21)
Fuzzing (Creating fuzzing script) (18:28)
Fuzzing (Fuzz QuickZip.exe) (12:06)
PoC Creation (8:09)
Controlling the execution (23:49)
Bad character analysis - Part 1 (17:05)
Bad character analysis - Part 2 (12:48)
Cracking the shell (Short Jump) (16:30)
Cracking the shell (Long Jump) (16:11)
Cracking the shell (Egg Hunter - Encoding - Part 1) (20:40)
Cracking the shell (Egg Hunter - Encoding - Part 2) (15:58)
Cracking the shell (Egg Hunter - Execution) (17:05)
Cracking the shell (Payload shellcode) (17:10)

Assignment: Kenward Zipper 1.4

Develop a working exploit for Kenward Zipper 1.4

Teach online with

PoC Creation

Lesson content locked

If you're already enrolled, you'll need to login.

Enroll in Course to Unlock