I love the brain dump on BOFs. I was at a company sponsored class over the summer and wrote an exploit for Adobe flash the same way you just did. I hadn’t done one of those in a while and forgot how much fun it really is. For the class we had access to IDA Pro as well as another tool similar to the old Ollydbg, x64dbg. And while those tools certainly do help, having a tool for fuzzing is essential. And yes, some machine code experience also helps. Again thanks for the write-up.
Reply To: From Dev to InfoSec Part 4: Buffer Overflows Made My Brain Hurt
Upcoming Webinars
– EH-Net Live! Thurs Oct 29 @ 1:00 PM US ET. Details Coming Soon!
Recent Articles
-
Wireless Pentesting Part 4 – Performing an Actual Wireless Pentest October 9, 2020
-
Video: Android Hacking Proving Ground September 29, 2020
-
Webinar: Android Hacking Proving Ground September 14, 2020
-
Video: TryHackMe – Behind the Curtain September 2, 2020
-
Wireless Pentesting Part 3 – Common Wireless Attacks August 25, 2020
-
Intro to Blockchain as a Service (BaaS) August 18, 2020
-
Webinar: TryHackMe – Behind the Curtain August 17, 2020
-
Video: CISO Underrepresented July 31, 2020
