Security Unplugged !!!

Bit of Everything! Vulnerability Research, Reverse Engineering, Malware Analysis, Exploits etc...

Praveen D

View my complete profile

Monday, March 3, 2014

Info to Exploit Writing

https://code.google.com/p/it-sec-catalog/wiki/Exploitation

Exploit writing tutorials from corelanc0d3r
https://www.corelan.be/
http://www.exploit-db.com/

Heap overflow
https://net-ninja.net/

Heap Spray
https://www.corelan.be/index.php/2011/12/31/exploit-writing-tutorial-part-11-heap-spraying-demystified/
http://www.fuzzysecurity.com/tutorials/expDev/8.html
https://www.greyhathacker.net/?p=549
https://community.rapid7.com/community/metasploit/blog/2013/03/04/new-heap-spray-technique-for-metasploit-browser-exploitation
https://www.corelan.be/index.php/2013/02/19/deps-precise-heap-spray-on-firefox-and-ie10/

Use After Free
http://www.fuzzysecurity.com/tutorials/expDev/11.html
http://www.thegreycorner.com/2010/01/heap-spray-exploit-tutorial-internet.html
http://www.blackhat.com/presentations/bh-usa-07/Afek/Whitepaper/bh-usa-07-afek-WP.pdf

Posted by Praveen D at 12:45 AM

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

Labels: Exploit, rce, Security

No comments:

Post a Comment

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

NVD CVE/CCE Search Engine

Search for Vulnerabilities
Enter vendor, software, or keyword

Followers

Blog Archive

► 2020 (1)
- ► February (1)

► 2019 (3)
- ► September (3)

► 2018 (3)
- ► December (1)
- ► January (2)

► 2017 (4)
- ► December (1)
- ► October (1)
- ► April (2)

► 2015 (26)
- ► September (1)
- ► April (3)
- ► March (4)
- ► February (11)
- ► January (7)

▼ 2014 (40)
- ► December (6)
- ► November (1)
- ► October (2)
- ► September (2)
- ► August (3)
- ► July (5)
- ► June (2)
- ► May (4)
- ► April (7)
- ▼ March (5)
- ► January (3)

► 2013 (4)
- ► December (4)

► 2012 (22)
- ► November (2)
- ► August (4)
- ► July (2)
- ► June (5)
- ► May (3)
- ► April (2)
- ► February (1)
- ► January (3)

► 2011 (4)
- ► September (2)
- ► July (1)
- ► May (1)

► 2010 (12)
- ► November (1)
- ► October (1)
- ► September (1)
- ► August (2)
- ► July (2)
- ► June (3)
- ► May (2)

► 2009 (8)
- ► October (1)
- ► September (1)
- ► August (1)
- ► April (1)
- ► March (1)
- ► February (2)
- ► January (1)

► 2008 (1)
- ► November (1)

Unique Clicks

counter on blogger

Total Pageviews

Security Blogs

AVG Analysis
extraexploit
Google Security
ISS FrequencyX Blog
MalwareThreatCenter(SRI International)
McAfee Labs
MS Malware
MS Security Response
MSDN
SANS Diary
Sophos
Sourcefire
Symantec SecurityResponse
The Honeynet Project
Trend
ZDNet

Browser Stuff

IE Blog
GNUCITIZEN
Larholm
Browser Fun

Exploits/WhitePapers/Videos

IronGeek
OpenRCE
WindowSecurity
SecurityTube
ExploitDB

Programming/ Coding

The Code Project
Microsoft Technologies
GoogleCode Blog
Java Programming @SUN
CodeGuru
Cafe au Lait Java

Networks

The TCP/IP Guide
CISSP Preparation
CCNA Blog
Juniper Blog
CCIE Blog

@RISK: The Consensus Security Alert

IBM Internet Security Systems Internet Threat Information

US-CERT Cyber Security Alerts

National Vulnerability Database

Learn Malware Analysis

IDA Pro, Decompilation, Binary Analysis
Binary Auditing

Technology News

http://www.heavyreading.com/
http://www.h-online.com/
http://www.extremetech.com/
Dark Reading

Dark Reading - All Stories

SANS Technology Institute - Security Laboratory

Threat Level

Ntdebugging Blog

Praveen Darshanam. Watermark theme. Powered by Blogger.