KSU Cyber Security Integer Overflows & Stack Overflows Report – Description
We are excited to announce that we are accepting applications for our upcoming Vulnerability Research Bootcamp. This bootcamp is designed to provide candidates with the skills and knowledge they need to conduct effective binary vulnerability research guided by industry experts and experienced practitioners. Through the bootcamp, you will gain hands-on technical experience through a combination of lectures, interactive workshops and practical exercises.
In order to be accepted into the bootcamp, you must complete the challenge. The challenge will test your skills in static and dynamic analysis, reverse engineering, and overall knowledge.
To complete the challenge, please go to the dropbox link and follow the instructions provided in the manual.
https://www.dropbox.com/sh/if4lw96bbb4gwjh/AADiEBA8JkdrCwc-1_TbJnO_a?dl=0
We encourage all candidates who are interested in binary vulnerability research to participate in the challenge. The challenge is a great opportunity to test your skills and to learn more about binary vulnerability Research.
To help guide you solve the challenge, we decided to compile a list of FAQs we got through the email:
The challenge is not a malicious program. The bootcamp scope is vulnerability research and not malicious activity detection. any reports submitted that contain automated tool scans (such as VirusTotal & Hybrid Analysis) will be instantly disqualified.
The challenge is a CLI program, it contains no graphics. You need a terminal to run it.
We recommend using static & dynamic analysis tools such as WinDBG, IDA, Ghidra in order to detect and analyze the vulnerabilities present in the challenge.
The challenge is filled with programming bugs, most of these bugs are memory related. We recommend researching the topic of common memory related bugs that manifest during software development. Example of such bugs can be:
Heap overflows.
Stack overflows.
Double free
Use-After-Free
and many others!
The post KSU Cyber Security Integer Overflows & Stack Overflows Report first appeared on .