dostackbufferoverflowgood
the_cyber_plumbers_handbook
Our great sponsors
dostackbufferoverflowgood | the_cyber_plumbers_handbook | |
---|---|---|
13 | 26 | |
1,379 | 2,503 | |
- | - | |
0.0 | 1.8 | |
about 3 years ago | over 2 years ago | |
C | ||
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dostackbufferoverflowgood
-
Pre-OSCP Knowledge
This one: https://github.com/justinsteven/dostackbufferoverflowgood
-
BOF Learning Resources?
IDK if the type of BOF has changed since I did it, but https://github.com/justinsteven/dostackbufferoverflowgood was VERY helpful to me.
- Need resources for BO and AD study
-
Asking for help
A topic that many start with is buffer overflows so there are a lot of tutorials it. Maybe start there. A resource on learning that topic that I liked is https://github.com/justinsteven/dostackbufferoverflowgood
-
Important PWK Machines
Master buffer overflows so you can get 25 points out the gate, while you're scanning the other boxes (Yeh...that was a pro tip đ). Justin Stevens will set you right. https://github.com/justinsteven/dostackbufferoverflowgood/blob/master/dostackbufferoverflowgood_tutorial.md
-
BOF in Proving Grounds?
Completing this https://github.com/justinsteven/dostackbufferoverflowgood a few times (the YouTube video is fun and informative to watch too) and a methodical script template that a friend crafted and taught me to use got me over on the BOF. PG and THM didn't exist when I did my last attempt but I would certainly use them if I was taking the exam today. All the best!
-
BOF - Where do I Practice(outside the lab)?
dotackbufferoverflowgood - If youâre interested to get a more in-depth understanding of BoF in order to better apply it in a wider variety of scenarios, do check out https://github.com/justinsteven/dostackbufferoverflowgood. Replicate the PDF step-by-step, youâll learn a lot from this. It also goes through interesting payloads other than the typical reverse shell we normally use.
- For whatever reason, I am having a lot of trouble grasping buffer overflows. What is your favorite resource/video that spelled it out for you when you learned?
- Linux Buffer Overflow on OSCP exam?
-
Tib3rius Tryhackme for BOF of OSCP?
DoStackBufferOverFlowGood: https://github.com/justinsteven/dostackbufferoverflowgood
the_cyber_plumbers_handbook
-
Pre-OSCP Knowledge
Tunnelling, port forward, proxying, and pivoting
-
[q]uestion? What is the most secure way to remote access to home lab?
If you really want to get deep into what SSH can do, I heartily recommend The Cyber Plumber's Handbook. It's an excellent resource!
-
That's nice. I don't care
And: https://github.com/opsdisk/the_cyber_plumbers_handbook
- Confused on Port forward/pivot knowledge needed for exam
- GitHub - opsdisk/the_cyber_plumbers_handbook: Free copy of The Cyber Plumber's Handbook
- Free copy of The ssh Plumber's Handbook
- Free book: The Cyber Plumber's Handbook
-
Free book to master SSH tunneling concepts
From the very first paragraph of the README:
> This repo contains the PDF book The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss. The book was first published in October 2018 for purchase, but now I'm providing it for FREE to anyone interested in learning more about the magic of SSH tunnels and port redirection.
The license is a CC license. https://github.com/opsdisk/the_cyber_plumbers_handbook/blob/...
-
Hacker News top posts: Jan 15, 2022
Free book to master SSH tunneling concepts\ (0 comments)
What are some alternatives?
OSCP-BoF - This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.
Infosec_Reference - An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Buffer-Overflow-Exploit-Development-Practice - Good For OSCP Training
tailscale - The easiest, most secure way to use WireGuard and 2FA.
HackSysExtremeVulnerableDriver - HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
MicrosoftWontFixList - A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
PWK-OSCP-Preparation-Roadmap - Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
awesome-oscp - A curated list of awesome OSCP resources
Privilege_Escalation
tmate - Instant Terminal Sharing
OSCE - Some exploits, which Iâve created during my OSCE preparation.
pr0cks - python script setting up a transparent proxy to forward all TCP and DNS traffic through a SOCKS / SOCKS5 or HTTP(CONNECT) proxy using iptables -j REDIRECT target