0x15 - Return-Oriented Programming
Details
Join our community Discord server with this link: https://discord.gg/hacksouth
WHAT CAN I EXPECT?
It's been over a year since we learned binary exploitation. Get ready to shake off the rust and learn some ROP! In this Meetup, we will bypass NX and ASLR to solve some active pwn challenges 💥
This is a fairly difficult topic for beginners. We will try to make it approachable, or at least interesting enough for attendees to want to learn more.
ARE YOU A BEGINNER?
You must start somewhere, so why not check in and let us help? We encourage everyone to join a positive InfoSec community to fast-track your awesome journey into cybersecurity.
WHAT DO I NEED?
Some electricity (Yikes Eskom), a computer and an internet connection! If you have not done so yet, sign up to Hack The Box before the event - https://www.hackthebox.com/ (it is free)
REQUIRED SOFTWARE
Please ensure you have the following pre-installed before the meetup if you want to work along and solve the challenges (spectators welcome too!):
• A Kali/Parrot VM
• pwntools - https://docs.pwntools.com/
• GDB and pwndbg - https://github.com/pwndbg/pwndbg
• Ghidra or another SRE tool - https://ghidra-sre.org/
VIRTUAL MACHINE SETUP
We recommend installing your Kali/Parrot virtual machine before the Meetup in order to follow along. Please follow the instruction video below. We are happy to help set up your machine with you before the event - just reach out to one of the organisers on Discord (spymky or TOKO).
YouTube instructions for VirtualBox & Kali Linux setup
• https://www.youtube.com/watch?v=qH8Igk2wF9o
Virtual Machine Software (choose 1)
• VMWare Workstation Player - https://my.vmware.com/web/vmware/downloads
• VirtualBox - https://www.virtualbox.org/wiki/Downloads
Penetration Testing Distribution (choose 1)
• Kali Linux - https://www.kali.org/downloads/
• Parrot OS - https://parrotlinux.org/download/
