Penetration Testing and Vulnerability Analysis

Updates

post_exploitation_fall09.pdf

created on Tuesday, November 24, 2009 at 7:23PM by Dan Guido within Resources
post_exploitation_fall09.pdf

created on Tuesday, November 24, 2009 at 7:15PM by Dan Guido within Resources
Reference Material

Like the reversing section, there is simply too much reference material I wanted to include so I've centralized it here for you. Reading Material Tactical ...

created on Sunday, November 22, 2009 at 8:34PM by Dan Guido within Client-sides
Post-Exploitation

Coming soon.

created on Sunday, November 22, 2009 at 8:31PM by Dan Guido within Client-sides
Post-Exploitation 2008

Hopefully it should be clear from the Client-side section that you can get more shells than you know what to do with in a well-designed phishing campaign. This brings up some ...

created on Sunday, November 22, 2009 at 8:19PM by Dan Guido within Client-sides
Fuzzing 101 2008

Fuzzing 101 PDF

created on Sunday, November 15, 2009 at 3:49PM by Dan Guido within Fuzzing
Client-sides

In penetration testing, the targets for exploitation aren't always network services that are exposed through a firewall. When you need to find other ways in, your primary targets become the browser, ...

created on Sunday, November 15, 2009 at 3:46PM by Dan Guido within Client-sides
Student Projects - Fall 2009

SPARC64 port-bind shellcode on FreeBSD 8 Vulnerability analysis of the Flash file format - Quick guide to the Flash file format - Analysis of current exploits - Investigation ...

created on Thursday, November 12, 2009 at 8:50PM by Dan Guido within Blog
memory_corruption_101.pdf

created on Sunday, November 8, 2009 at 5:05PM by Dan Guido within Resources
Mid-Semester Lessons Learned

Security Tools Reviews - not for studentsI think I'm asking students to do too much here. Do homeworks, do a project, do readings, AND write presentations on tools they've never heard ...

created on Sunday, November 8, 2009 at 4:52PM by Dan Guido within Blog