Aussie exploit challenges for noob to leet

By

Learn to beat Linux non-executable memory, ASLR, and stack smashing protection.

Linux security boffin Andrew Griffiths has launched series of educational hacking challenges that hone skills in privilege escalation, vulnerability analysis, exploit development, debugging and reverse engineering.

Aussie exploit challenges for noob to leet

Griffiths is a veteran designer of capture the flag competitions: he ran the recent comp at Melbourne’s Ruxcon event, and popular OverTheWire Linux exploit challenges Vortex, Drifter and Blacksun.

He said the free exploit-exercises virtual machine challenges were developed bit by bit over the last few months.

The Nebula virtual machine was run at Ruxcon and designed to suit a wide infosec pallete.

“There were a variety of challenges available for people, from basic Linux commands, world readable files, shell tricks, scripting language vulnerabilities, password cracking, reconstructing a tcpdump packet capture, and basic reverse engineering / experimenting with program input / output,” Griffiths said.

Protostar, the second machine, had 19 levels and was a “very basic” introduction to memory corruption in Linux.

Griffiths said it covered stack and heap overflows, format string vulnerabilities, and basic program analysis and modification of program execution without modern protection mechanisms like non-executable memory or Address Space Layout Randomisation (ASLR).

But the recently added virtual machine dubbed Fusion stepped up the game. Through 28 levels it examined the player’s ability to exploit and bypass modern Linux protection mechanisms including non-executable memory, ASLR, position independent executables, stack smashing protection, and heap allocator improvements.

Those who succeeded would have a better understanding of exploit prevention, cryptographic weaknesses and heap implementations.

Blacksun, part of OvertheWire formerly known as PullThePlug, was also designed for advanced exploitation against hardened hosts and environments. Those challenges were being moved to a new site and only Vortex was yet playable in a beta form.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:
aslrbypassexploitslinuxruxconsecurityvirtualisationvulnerabilities

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?