Skip to content
/ Exploit-Development-and-Pentesting Public

My notes, exercises, and reports on reverse engineering and penetrating applications

15 stars 10 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

so87/Exploit-Development-and-Pentesting

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
exercises
exercises
 
 
tools
tools
 
 
README.md
README.md
 
 
convertToPDF.ps1
convertToPDF.ps1
 
 
exploit dev.pptx
exploit dev.pptx
 
 
plan of study.docx
plan of study.docx
 
 
plan of study.pdf
plan of study.pdf
 
 

Repository files navigation

Pentest Writeup

This isn't a standard pentest report. A real one would have many more targets. Each one is for just one machine/application.
These are mini reports I put together for vulnerable VMs from Vulhubs(or other CTF sources). These are simple walk throughs users can follow to reproduce vulnerabilities. I also included information on how to patch/fix the vulnerability.

CTF writeup

see CTF-Owens.pdf for the pentest report. This covers what the owner of this computer should fix, and how I gained root level privileges

Custom C/C++ Application

see exploit-dev-Owens.pdf for fuzzing I did on custom application. This addresses poor coding practices in c/c++ application that results in exploits and privilege escalation.

Bad Website example

see website-Owens.pdf for web app pentesting. This covers insecurities found in many websites, what developers need to fix, security tests they need to follow in the future, and practices they need to follow to not produce anymore bugs.

About

My notes, exercises, and reports on reverse engineering and penetrating applications

Resources

Readme
Activity

Stars

15 stars

Watchers

2 watching

Forks

10 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages