Best books, tutorials and courses to learn about exploit development

The best resources for learning exploit development Exploit development is considered to be the climax in the learning path of an ethical hacker or security professional. It is strongly advisable to have mastered the basics before delving into this topic. Exploit development is hard and it’s not something you learn at school or university (usually), not something any of your …

Penetration testing course: 0x02.2 Hexadecimal Numeral System

In the previous article we saw how binary numbers are represented and how to convert from decimal to binary and vice versa, finally how to perform operations like addition, substraction, multiplication, division and bitwise operations between binary numbers. In this lesson we’ll talk about the hexadecimal system and why it is important for computer science in general. DEFINITION In mathematics …

Juniper ScreenOS backdoor: the attack demystified

Juniper Networks is a multinational corporation headquartered in Sunnyvale, California that develops and markets networking products. Its products include routers, switches, network management software, network security products and software-defined networking technology. On 18th December 2015 a critical vulnerability (CVE-2015-7755) affecting ScreenOS 6.3.0r17 through 6.3.0r20 was disclosed. The impact is huge because many routers and switches are powered by Juniper ScreenOS. …