I love the brain dump on BOFs. I was at a company sponsored class over the summer and wrote an exploit for Adobe flash the same way you just did. I hadn’t done one of those in a while and forgot how much fun it really is. For the class we had access to IDA Pro as well as another tool similar to the old Ollydbg, x64dbg. And while those tools certainly do help, having a tool for fuzzing is essential. And yes, some machine code experience also helps. Again thanks for the write-up.
Reply To: From Dev to InfoSec Part 4: Buffer Overflows Made My Brain Hurt
Upcoming Webinars
– EH-Net Live! December: “Burp-less Hacking – Learning Web Application Pentesting on a Budget“ w/ Phillip Wylie on Thursday Dec 19 at 1:00 US Eastern Reg Open NOW!
Recent Articles
-
Webinar: Burp-less Hacking – Learning Web Application Pentesting on a Budget December 4, 2019
-
Video: All Things CTF! November 25, 2019
-
Team Pentesting – The Unspoken Reality of Career Ethical Hacking November 18, 2019
-
Wireless Pentesting Part 2 – Building a WiFi Hacking Rig November 15, 2019
-
Webinar: All Things CTF! November 6, 2019
-
Video: Hacking Humans November 5, 2019
-
Webinar: Hacking Humans October 16, 2019
-
Wireless Pentesting Part 1 – An Overview October 2, 2019
