Skip to content

Instantly share code, notes, and snippets.

@AndyNovo
Last active March 18, 2024 22:24
Show Gist options
  • Save AndyNovo/35b244a57948cedc89a9d070a8d2a114 to your computer and use it in GitHub Desktop.
Save AndyNovo/35b244a57948cedc89a9d070a8d2a114 to your computer and use it in GitHub Desktop.
CPEG 476/676

Lecture 1: Intro to C/C++

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_5yuf8l3s

Lecture 2: Memory Management in C/C++

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_l9cfb39x

Lecture 3: Compiling, Linking, Object Files

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_xe7a0cne

Lecture 4: Intro to x86 by way of Choose your own adventure stories

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_cc906ake

Lecture 5: Radare2, x86 disassembly, intro to reversing

Part 1: First 10 minutes before disconnect

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_l6op9t0q

Part 2: Second half

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_xf2xybck

Lecture 6: Practice Reverse Engineering an executable

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_hoxaiwa7

Lecture 7: Andy babbles for a while then teaches 32-bit calling conventions

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_0s6qpm8i

Lecture 8: Interacting with services on ports via scripts

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_1bv9p7uk

Lecture 9: First Exploits (Stack "smashing" for changing local variables)

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_iujmk9sm

Lecture 10: Writing ASM and shellcode from scratch

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_10su8vxx

Lecture 11: Solve the first 4 speedruns

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_fau28lax

Lecture 12: Calling conventions in more detail

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_dk9lp3u4

Lecture 13: 64-bit calling conventions

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_w74jjd8d

Lecture 14: Intro to ROP chains

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_fk8h3x8l

Lecture 15: Working with glibc leaks

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_4shu8nui

Lecture 16: Live PWN demo

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_f2n2b4zi

Lecture 17: Global Offset Table / Procedure Linkage Table

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_8d646l89

Lecture 18: Crafting a vulnerable executable as a puzzle

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_if0n0da4

Lecture 19: Intro to printf vulnerabilities

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_wwsrcfrq

Lecture 20: Medium strength printf payloads

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_mqgo7sh7

Lecture 21: Advanced printf is actually write what where

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_vg8x9uok

Lecture 22: Filling in gaps in the GOT/PLT mental models

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_7m7naby7

Lecture 23: Office Hours style catch-up

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_b7nx6uxd

Lecture 24: Second Office Hours Catch-up

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_pvsm4zcq


7-week course can stop here


Lecture 25: Intro to the heap

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_6bt3m897

Lecture 26: Intro to fastbins

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_6ravaqpn

Lecture 27: Fastbin Double-Free

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_5xf0l1xi

Lecture 28: Our first heap exploit (pt 1)

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_y5q3z3kx

Lecture 29: Unsorted Bin Play, Connecting pwntools and gdb

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_1utbufkt

Lecture 30: House of Spirit (almost)

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_81csd6cq

Lecture 31: Heap Office hours

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_bfv6bain

Lecture 32: Intro to kernel problems (guest lecture pt 1)

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_fbdv8gyi

Lecture 33: DEFCON recap

Lecture 34: House of Force pt. 1 (More importantly how2heap guide)

https://capture.udel.edu/media/Andy+Novocin%27s+Personal+Meeting+Room/1_kiduqeh8

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment