Hacking using Python

Even if you have never programmed before, you can quickly and easily learn how to make custom hacking tools in Python. In hands-on projects, participants will create tools and hack into test systems, including:

  • Port scanning
  • Login brute-forcing
  • Port knocking
  • Cracking password hashes

In the exploit development section, students will take over vulnerable systems with simple Python scripts. Hands-on projects will include:

  • Bash command injection
  • Command injection via buffer overflow
  • ImageMagick exploitation
  • SQL injection
  • Exploiting PHP vulnerabilities
  • Linux buffer overflow
  • Buffer overflow on Windows 7
  • Exploiting Windows Server 2012
  • Fuzzing a vulnerable server
  • Structured Exception Handler exploitation on Windows Defeating Data Execution Protection with Return-Oriented Programming

Technical Requirements

Participants need a computer (Windows, Mac, or Linux) with VMware Player or VMware Fusion. USB thumbdrives will be available with Kali Linux and Windows Server 2008 virtual machines to use.

All the class materials are freely available on my Web page (samsclass.info) for anyone to use.

Prerequisite Knowledge

Participants should be familiar with networking and security concepts at the Network+ and Security+ level. Previous programming experience is helpful but not necessary.

Textbooks

  • Violent Python: A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers by TJ O’Connor — ISBN-10: 1597499579 (2012) Buy from Amazon
  • The Shellcoder’s Handbook: Discovering and Exploiting Security Holes, by Chris Anley, John Heasman, Felix Lindner, Gerardo Richarte; ASIN: B004P5O38Q Buy from Amazon

Complete class information here:  https://samsclass.info/127/127_WWC_IL_2016.shtml

Dates
Prices
Registration Fee$600.00
Close
loading...