Basic Exploitation Tutorial Coming soon

Just the other day I was speaking to a friend that claimed the stack based buffer overflow is dead. I quickly pointed out that last year the second and third type of vulnerability class of CVEs published, a great majority were memory corruption. And while not stack based, the use after free heap overflow is skyrocketing in exploitation.

CVEs up to last year, 2015

Even with mitigation, and on x64, in many instances we can obtain arbitrary code execution or at least cause some ill effects. The only solution is to prevent the overrun in the first place!

Today I have begun the creation of a mini course on stack based buffer overflows and on generic heap overflows. If I feel sausy I may even make some videos.

J