Hamza Megahed - Penetration Testing Shellcode. Detect, exploit, and secure network-level and operating system vulnerabilities

Copyright 2018 Packt Publishing

All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.

Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing or its dealers and distributors, will be held liable for any damages caused or alleged to have been caused directly or indirectly by this book.

Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.

Commissioning Editor: Vijin Boricha
Acquisition Editor: Shrilekha Inani
Content Development Editor: Nithin Varghese
Technical Editor: Khushbu Sutar
Copy Editors: Safis Editing, Dipti Mankame, Laxmi Subramanian
Project Coordinator: Virginia Dias
Proofreader: Safis Editing
Indexer: Pratik Shirodkar
Graphics: Tom Scaria
Production Coordinator: Shraddha Falebhai

First published: February 2018

Production reference: 1120218

Published by Packt Publishing Ltd.
Livery Place
35 Livery Street
Birmingham
B3 2PB, UK.

ISBN 978-1-78847-373-6

www.packtpub.com

Mapt is an online digital library that gives you full access to over 5,000 books and videos, as well as industry leading tools to help you plan your personal development and advance your career. For more information, please visit our website.

• Spend less time learning and more time coding with practical eBooks and Videos from over 4,000 industry professionals

• Improve your learning with Skill Plans built especially for you

• Get a free eBook or video every month

• Mapt is fully searchable

• Copy and paste, print, and bookmark content

Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.PacktPub.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at service@packtpub.com for more details.

At www.PacktPub.com , you can also read a collection of free technical articles, sign up for a range of free newsletters, and receive exclusive discounts and offers on Packt books and eBooks.

Hamza Megahed is a penetration tester, a Linux kernel expert, and a security researcher. He is interested in exploit development and cryptography, with a background in memory management and return-oriented programming. He has written many shellcodes; some of them were published in shell-storm and exploit-db. Also, he has written articles about information security and cryptographic algorithms.

Rejah Rehim is the director and chief information officer (CISO) at Appfabs. Previously holding the title of security architect at FAYA, India, he is a long time preacher of open source. He is a steady contributor to the Mozilla Foundation and was featured in the San Francisco Firefox Monument.

He has created nine Mozilla Add-ons, including the Clear Console addonselected as one of the best Mozilla Add-ons of 2013. He has created the world's first security testing browser bundle, PenQ. He is an active speaker at FAYA:80, a tech community in Kerala, with the mission of free knowledge sharing.

Glen D. Singh is a cybersecurity instructor and contractor at various institutions within the Republic of Trinidad and Tobago. He has conducted multiple training sessions in offensive security, digital forensics, and network security annually. He also holds various information security certifications, such as CEH, CHFI, CCNA Security, and many others.

With his wealth of knowledge, he provided technical contributions toward Digital Forensics with Kali Linux by Packt Publishing.

If you're interested in becoming an author for Packt, please visit authors.packtpub.com and apply today. We have worked with thousands of developers and tech professionals, just like you, to help them share their insight with the global tech community. You can make a general application, apply for a specific hot topic that we are recruiting an author for, or submit your own idea.

This book is all about finding buffer overflow vulnerabilities, crafting your own shellcode from scratch, learning the security mechanisms of the operating system, and exploit development. You will understand how systems can be bypassed both at the operating system and network levels with shellcode, assembly, and Metasploit. You will also learn to write and modify 64-bit shellcode along with kernel-level shellcode concepts. Overall, this book is a step-by-step guide that will take you from low-level security skills to covering loops with exploit development and shellcode.

This book is intended to be read by penetration testers, malware analysts, security researchers, forensic practitioners, exploit developers, C language programmers, software testers, and students in the security field.

, Introduction , discusses the concept of shellcode, buffer overflow, heap corruption, and introduces the computer architecture.

, Lab Setup , teaches how to build a safe environment to test bad code and introduces readers to the graphical interfaces of debuggers.

, Assembly Language in Linux , explains how to use the assembly language on Linux to build shellcode.

, Reverse Engineering , shows how to use debuggers to perform reverse engineering on code.