Take This Course Online / Computer Based
Looking to take this class as an online or computer based course from home? Get discount pricing now by calling:
(888) 236-1411
Or Click Here
Category: Information Security | Vendor: Advanced Security
Advanced Exploit Development Training Course - Featuring Saumil Shah
This internationally successful course features the top instructor in the world for Exploit dev, Saumil Shah, in a training class that is broken into two weeks. The two weeks combine the two most popular exploit development training seminars that are offered at industry conferences around the world, but are always sold out. This advanced exploit creation training will be held at our Greenbelt, MD location. Delivery Style: 75% Hands-On, 25% Lecture
Exploit Dev Course Description
Week 1
Exploit Development and The Exploit Laboratory: Black Belt edition are now combined in an all-in-one package that takes you from "n00b" to "1337" in five days. Exploit Dev: No Assembly Required is an intense hands-on class for those wishing to dive into vulnerability analysis, exploit writing and being able to circumvent popular exploit mitigation techniques.
This class features real world applications as candidates for exploitation rather than building up on carefully simulated lab exercises. Most of the class time is spent working on exploit writing exercises featuring some of the latest applications on Linux, Windows and Mac OS X. All this—delivered in a down-to-earth, learn-by-example methodology, by trainers who have been teaching advanced topics in computer security for over 10 years. This class does NOT require knowledge of assembly language. A few concepts and a sharp mind is all you need.
Week 1 Highlights:
- Stack Overflows (in both Linux and Windows)
- Heap Overflows (in both Linux and Windows)
- Integer Overflows
- Exploits on Mac OS X
- Abusing Structured Exception Handlers on Windows
- Abusing Vectored Exception Handlers on Windows
- Browser Exploits
- PDF Exploits
- Exploits on Mac OS X.
- Defeating DEP using Ret2LibC.
- Introduction to Return Oriented Programming
- ROP gadgets and stack flips.
- ROP shellcode loaders
- Practical ROP Exploits
- Bypassing ASLR on Windows 7
- Kernel exploitation
- JIT spraying
- Advanced browser exploits
- Advanced PDF exploits
Week 2
Conventional war - the brutal clash of armies on the battlefield, but deep in the shadows is another kind of conflict. One we are never meant to see. Where victory is not always measured by deploying traditional forces onto a battlefield. For some - the weapon of choice for the non-traditional battlefield is called Information Operations (IO).
Exploit Dev: Black OPs is a live fire capture the flag style of course that builds on the lessons learned in the previous week. By simulating a cyberwar with covert operations against foreign entities - attackers must craft exploits against real applications that run on both 32bit and 64bit architectures and utilize modern exploit mitigations such as DEP, ASLR.
The goal of the first week's course was to teach the fundamentals of modern exploit development. The goal of this course is to give the students as much practice writing exploits against real applications as possible. The instructor will have nearly 100 vulnerable real world applications for the students to use as exploit development targets.
Week 2 Highlights:
- Browser Exploits
- PDF Exploits
- Dealing with DEP
- Practical ROP Exploits
- Bypassing ASLR on Windows 7
- Kernel exploitation
- JIT spraying
- Advanced browser exploits
- Advanced PDF exploits
Exploit Development Training Course Pricing
$8,500 Per Enrollment
*Gov, DoD and Multiple Enrollment Discounts Available
Travel Info - This class is held in Greenbelt, MD and BWI Airport is the recommended Airport. However, Reagan National is also within close proximity. Discounted hotel (300 feet from our location) info can be found here: Hilton Garden Inn Greenbelt, MD
News Related to Exploit Dev
There are no current articles related to this course. Please check back soon!
