January 28, 2016 at 10:55 am #8861
January 29, 2016 at 3:27 am #54255UNIXParticipant
I haven’t taken their training, but as a general recommendation corelanc0d3r’s tutorials cover many different topics that would be useful as a preparation. Similarly, you can find some tutorials by FuzzySecurity, The Grey Corner, Security Shift and Open Security Training. And of course other great resources like phrack and PoC||GTFO.
Looking at the course syllabus and searching for the covered examples that are used during the training, you can find some tutorials and further explanations that deal with the same vulnerabilities online. For example, for “Module 3: ActFax (OSVDB 89944)” a tutorial is provided by Craig himself (assuming it is the same vulnerability that he discovered) as well as by others. The same applies to other examples covered such as “Mozilla Firefox (CVE-2011-2371)” (see here and here).
If you decide to take the course it would be great to see a review. 🙂
February 1, 2016 at 7:29 am #54256robert71Participant
Thank you very much for your response. Very interesting links! I’ve never heard of FuzzySecurity before. Their tutorials about heap overflows seem very well written.
I am still unsure whether to take the course or not, but if I decide to attend the event here in Amsterdam, I’ll definitely write a short review for all of you. 😉
July 28, 2016 at 2:08 am #54257UNIXParticipant
Did you eventually take the course?
You must be logged in to reply to this topic.