Info: Your browser does not accept cookies. If you want to put products into your cart and purchase them you need to enable cookies.

Advanced Security Videos arrow Finding Vulnerabilities arrow Finding Software Vulnerabilities - Part I: Patch Analysis

Finding Software Vulnerabilities - Part I: Patch Analysis

click here for fullscreen preview

- this skillTube is provided by -

Why doing patch analysis if the patch is already available? Waste of time, isn't it? First of all, not everyone is patching their systems immediately. This is especially true for third party software running on Windows systems. Additionally and probably more important for a company is to find out what impact a certain vulnerability really has. Is it really just a denial of service or is remote code execution possible? Moreover, is it the only vulnerability patched or did the vendor silently fix additional, probably more serious bugs?

With binary diffing, it might be possible to answer these questions. It basically allows us to make our own risk assessment rather than relying on the vendor's judgment only. In this module, we analyze a real world vulnerability. We walk the student step by step to the point where he is able to understand and trigger the vulnerable part of the code.


What you will learn:

- Basic concept behind binary diffing
- Helpful Tools
- Step by step example


Target audience:

Penetration testers, security engineers and technical risk assessment teams.


Requirements:

- A basic understanding of assembly (IA-32) or the will to learn it on the fly


Duration: 25 min

 

Secure payment processing through:


 

Price: €20.00

 


You may also be interested in this/these product(s):

Exploiting Buffer Overflow Vulnerabilities on Windows
Exploiting Buffer Overflow Vulnerabilities on Windows
€8.99
Add to Cart
 Package: Format String Vulnerabilities
Package: Format String Vulnerabilities
€14.00
Add to Cart
 Windows Shellcode for Beginners
Windows Shellcode for Beginners
€4.99
Add to Cart