-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathcourse-plan.txt
139 lines (135 loc) · 2.39 KB
/
course-plan.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
Weeks
1 Intros
2 Types of attacks
3 Script languages
4 Script languages & Web
5 Web & Exam
6 Compiled languages
7 Compiled languages
8 C# & Java
9 Unix/Linux security
10 Windows
1 (ALL)
- Intro
- Programming languages (interpretative and compiled)
- Types of attacks
- injection
- format string
- path
- shell
- sql
- code
- XSS
- CSRF
- Unicode
- overflow
- stack
- heap
- integer
- memory allocation
- underflow
- off by one
- logical
- DNS
- Timing (password brute-forcing)
- Crypto
- Denial of service
- Input validation
2 Types of attacks
- Input validation
- Protocol complexity(state machine, turing complete) (ManiaX)
- Environment (Marian)
- Direct input (Marian)
- Race conditions (Marian)
- non re-entrent functions (DB, Shared mem, files)
- mutex/futex/spinlock/RCU/fcntl
- acter model (no shared resources architecture)
- Timing
3 Script languages
General problems in script languages
- Hash implementation(collisions) (ManiaX)
- SQL (ManiaX)
- Code (Marian)
- Weaktyping
- PHP (Marian)
- SQL
- Code
- Shell
- general language issues
- Ruby (Petko)
- Perl (Marian)
- SQL
- Shell
- Code
- general language issues
4 Script languages
- Python (Kiro)
- Bash (Marian)
- JavaScript (Joan)
- Web
5 Web
WEB (Petko)
- XSS
- CSRF
- Hijacking
- cookies
- domains
- Exams
6 Compiled languages
- Shellcode
- arch (ARM, i386, x86-64) ManiaX
- ARM 32/64
- i386/x86-64
- NOP, JMP HackMan
- shellcode HackMan
- return oriented programming HackMan
7 Compiled languages
- Stack overflow HackMan
- Heap overflow HackMan
- Memory allocator HackMan
- how to use double free
- use after free
- overwrite memory allocator structure
- Stack canarry HackMan
- ASLR HackMan
- NX HackMan
- Integer overflows ManiaX
- type conversion
- sign extension
- Uninitialized data ManiaX
8 C# & Java
- C#(Joan)
- SQL
- Shell
- Code
- general language issues
- Java (da vidq predlojenieto na Nakov)
- SQL
- Shell
- Code
- Hash implementation(collisions)
- general language issues
- Exams
9 Linux (Marian)
- Kernel level exploits
- proper setuid
- linker
- capabilities
- namespaces
- chroot
10 Windows
Windows (Bobi)
11
Demo
12
- Crypto (ManiaX)
- Defensive Programming (Marian)
Misc
- Packet in packet injection (ManiaX)
- ???
Find security issues with the following software:
- Moodle
- Joomla
- WordPress
- Linux Kernel
Every proven security issue is elidgable for 1 to 3 points.