Categories: Linux administration, Networking, Security
This course covers low level attacks against x86 (32 and 64 bit) architecture. Agenda includes bypassing of strengthening mechanisms.
Participants of this course are required to have participated in Linux – application and kernel debugging course or have comparable knowledge.
Techniques presented during the classes serve only the educational purpose. Please note that in certain circumstances using them might be against the law.
Duration
5 days
Agenda
- Introduction
- Aim of attack
- Available means (remote, local)
- Low level attacks (x86 and x86_64)
- Format string
- buffer overflow – stack, heap
- Bypassing of exploitation prevention mechanisms
- Bypassing DEP
- Bypassing ASLR
- Security analysis and evaluation of applications meant to operate in the system
Audience and prerequisites
Good knowledge of C programming and x86 architecture. Basic knowledge of Assembler. Basic knowledge of Python programming. Basic knowledge of Linux.
Certificates
Course participants receive completion certificates signed by ALX.
See also:
- Linux administrator
- Advanced Linux administrator
- LPI 101. An introduction to Linux administration
- LPI 102. Linux administration and networking
- Building a modern CI / CD process using the Jenkins server
- Selected Linux network services
- LPI 201. Linux architecture and low-level configuration
- LPI 202. Selected network services and network security
- LPIC-2 exam prep course
- LPI 300: LDAP, Samba, Integration with MS Windows and Mixed Environments
- LPI 303: Cryptography, Access Control, Services and Network Security
- LPI 304: Linux Virtualization and High Availability
- E-mail server - Exim, anti-spam solutions
- E-mail server - Postfix
- Bash shell programming
- Advanced shell programming, Bash, AWK
- Linux backups
- Advanced network traffic and content filtering
- VPNs in theory and practice
- Bandwidth and Traffic Management (QoS) on Linux
- Server and network monitoring, SNMP, Nagios, Munin
- Apache HTTP server on Linux
- Bind domain name server on Linux
- LDAP directory services on Linux. Integrating authorization systems
- Samba server on Linux
- Advanced Samba configuration (PDC, LDAP, replication)
- Linux virtualization
- Wireless networks and their security
- Digital signature and encryption with OpenSSL and GnuPG
- High availability: Linux Virtual Server and supporting technologies (HA1)
- NFS: Network File System on Linux
- Safe Internet in a computer lab
- Security components in Linux
- Linux - application and kernel debugging
- Linux - application security testing, searching for possible exploits. High-level attacks
- MySQL administration