Session 7: Lecture

Exception handling; SEH records; SEH exploitation and mitigation

Tags:

Session 7: Practical

Stack exception chaining; SEH based exploits

Tags:

ASLR Smack and Laugh Reference: Seminar on Advanced Exploitation Techniques

by Tilo Muller

Bypassing Browser Memory Protections: Setting back browser security by 10 years

by Alexander Sotirov and Mark Dowd

Exploit writing tutorial part 3: SEH Based Exploits

by Peter Van Eeckhoutte

Exploit writing tutorial part 3b: SEH Based Exploits

by Peter Van Eeckhoutte

Exploit writing tutorial part 7: Unicode

by Peter Van Eeckhoutte

Code Auditing 101: part 1

by Dan Guido

Code Auditing 101: part 2

by Dan Guido

Session 7: Lecture

Windows Heap; Heap Spraying; Heap Feng Sui

Tags:

Session 7: Practical

PDF Document Structure; Extracting and Analysing Javascript

Tags:

Advanced Windows Debugging (Chapter 6): Memory Corruption Part II — Heaps

by Mario Hewardt and Daniel Pravat

Practical Windows XP/2003 Heap Exploitation

by John McDonald and Chris Valasek

Heap Feng Shui in JavaScript

by Alexander Sotirov