Hey everyone,
In this post, I am going to explain to you some of the basics about fuzzing, shellcode and some different techniques of developing attacks and exploits using Vulnserver that have personally helped me a lot in my training process to take the OSCE certification exam.
Vulnserver is a Windows-based, threaded TCP server application that is designed to be exploited. The program is intended to be used as a learning tool to teach about the software exploitation process.
- OS GNU/Linux with python 3
- Windows machine
- Immunity Debugger
- Corelan - mona.py
- Boofuzz
(UPDATE)
TRUN
- Exploit: Vanilla Buffer Overflow
GMON
Exploit: Vanilla Buffer Overflow
GTER
- Exploit: Egghunter
HTER
- Exploit: Hexadecimal encoding Buffer Overflow
KSTET
- Exploit: Egghunter
LTER
- Exploit: SEH (bypassing ASLR)