The Art of Exploit Writing: Buffer Overflow
Zero-prerequisite to expert. From C, Python and assembly to stack overflows, ROP and mitigation bypass.
Truly zero-prerequisite. The course begins with number systems, C, Python and assembly, then builds one connected progression through debugging, stack overflows, SEH, egghunters, ROP and modern mitigation bypass on both Windows and Linux, x86 and x64.
What exploit development is and the road ahead.
Binary, hex, and how computers represent data.
Processes, memory, and CPU basics.
C essentials for understanding memory bugs.
Pointers, buffers, and manual memory management.
Scripting exploits and tooling in Python.
Registers, instructions, and the two architectures.
Reading and writing basic assembly.
How the stack and function calls work.
Memory layout and PE/ELF formats.
Driving Windows and Linux debuggers.
Spotting where memory bugs live.
The root causes of memory-corruption bugs.
Producing crashes and analysing them.
First full overflow on Linux x86.
First full overflow on Windows x86.
Handling bad chars and placing shellcode.
Exploiting an overflow over the network.
SEH overwrite exploitation.
Finding shellcode in constrained memory.
Exploiting under character restrictions.
Writing and customising shellcode.
Moving exploitation to 64-bit Linux.
First ROP chains.
DEP, ASLR, stack cookies, and how they work.
Defeating DEP with ROP on Windows.
ret2csu and advanced ROP on Linux.
Leaking addresses to defeat ASLR.
Mutation and coverage-guided fuzzing.
Use-after-free, heap, and format-string bugs.
Reliable 64-bit exploitation.
Building primitives into full chains.
Shellcode under heavy constraints.
Finding bugs from patches.
Automating with mona.py and WinDBG.
Making exploits reliable against modern defences.
Complete Beginners
No prior programming, assembly, debugging or exploitation knowledge required.
Aspiring Exploit Developers
Learners who want to move from using exploits to writing reliable PoC exploits.
Penetration Testers
Practitioners who want to understand memory corruption deeper than running tools.
Security Researchers
Those moving toward vulnerability research, crash triage and N-day work.
Truly zero-prerequisite
Begins with number systems, C, Python and assembly — no assumed background.
One connected progression
Programming to assembly to debugging to overflows to ROP to mitigation bypass.
Windows & Linux, x86/x64
Covers both platforms and both architectures.
Mitigation-aware
DEP, NX, ASLR, PIE, stack cookies, SafeSEH and SEHOP — with real bypasses.
Interested in this course? Our team will reach out within 1 business day.
Enquire Now