HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 52 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Need Some Advice on Exploits!!
EH-Net
May 22, 2013, 09:27:00 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Need Some Advice on Exploits!!  (Read 4281 times)
0 Members and 1 Guest are viewing this topic.
goku12205
Newbie
*
Offline Offline

Posts: 2


View Profile
« on: August 13, 2009, 04:05:01 PM »
Alright Hello everyone i'm new to this forum Grin
Alright my question is Can someone give me a couple of good links
or some good advice to learn more about exploits, i can find vulnerabilities but how can i exploit those vulnerabilities?

Thank You Smiley and have a good day!!
Logged
celord
Guest
« Reply #1 on: August 13, 2009, 05:35:34 PM »
Someone told me that reading "The Shelcoders Handbook" or "HAcking: The  Art of explatation" can get me started, so I am doing that... but if you want to read something online you can start with:

http://insecure.org/stf/smashstack.html

cheers
Logged
putosusio
Newbie
*
Offline Offline

Posts: 26


View Profile
« Reply #2 on: August 13, 2009, 08:19:44 PM »
get metasploit, best of all its free.
Logged
Its not the fixing that's the hard part, its knowing what needs fixing.
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #3 on: August 14, 2009, 12:45:26 AM »
Welcome to the forums, goku12205.

What exactly do you mean by finding vulnerabilities? Do you mean it in the way that you know for example how to crash a certain program and would like to know if you can exploit it actually in this way (e.g. bufferoverflow), or that you find vuln. while scanning a network with tools such as nmap?

If you are interested in writing exploits on your own it might be quite hard, depending on your skills so far. There are a couple of books available which focuses on exploits and may interest you:

Writing Security Tools and Exploits
Hacking: The Art of Exploitation, 2nd Edition
Chained Exploits: Advanced Hacking Attacks from Start to Finish
Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals
The Shellcoder's Handbook: Discovering and Exploiting Security Holes

Smashing the Stack for fun and profit linked by celord is certainly worth a read too.

If you are more interested in the second scenario, using existing exploits for known vulnerabilities, I would recommend to play around with Metasploit in your own lab.
Logged
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 928



View Profile WWW
« Reply #4 on: August 14, 2009, 11:55:53 AM »
goku12205,

welcome to the forums Cheesy

The resources provided by Awesec are good, but personally I found them too much to start with exploits, even while reading I felt that exploits were black magic! I'd suggest you take a look at the EH-Net review of Ed Skoudis' Counter Hack Reloaded, here. It contains a sample chapter from the book, which handily enough covers the low level of exploits. Everyone understands things differently but for me reading that chapter was what allowed me to 'get' exploits. After that the more advance/in-depth stuff makes more sense.

Hope this helps
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
goku12205
Newbie
*
Offline Offline

Posts: 2


View Profile
« Reply #5 on: August 14, 2009, 07:14:12 PM »
Thank You Everyone for ur good advice and i really apperchate the information thank you again

My best regards to everyone
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.586 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.