@_robre

References

Unordered collection of links and resources for various topics

Binary Exploitation

Link

Description

http://www.auxy.xyz/

Blog on some exploitation techniques

http://www.phrack.org/issues/49/1.html

Almost all Phracks from 49 contain juicy info exploitation info

https://exploit.education/

vms to learn exploitations

http://codearcana.com/posts/2013/05/28/introduction-to-return-oriented-programming-rop.html

Good Rop intro

https://de.slideshare.net/saumilshah/dive-into-rop-a-quick-introduction-to-return-oriented-programming

Also good Rop intro

https://github.com/yeyintminthuhtut/Awesome-Advanced-Windows-Exploitation-References

Advanced Win Exploitation stuff

https://www.fuzzysecurity.com/tutorials.html

Exploit Tuts

https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/

One of the best exploitation tutorials (check all parts)

https://blog.ret2.io/2018/06/05/pwn2own-2018-exploit-development/

pwn2own writeup

https://geosn0w.github.io/Jailbreaks-Demystified/

Jailbreaking

https://www.exploit-db.com/docs/english/43945-jailbreaking-ios-11.1.2-an-adventure-into-the-xnu-kernel.pdf

More Jailbreaking

https://github.com/secfigo/Awesome-Fuzzing

Fuzzing Collection

https://github.com/RPISEC/MBE

Academic Modern Binary Exploitation Course

https://googleprojectzero.blogspot.com/2015/06/what-is-good-memory-corruption.html

Memory Corruptions, how do they differ

http://csec.it/events/phd-course-binaries/

Another Binary Exploitation Course

https://github.com/wapiflapi/villoc

malloc visualizer

https://googleprojectzero.blogspot.com/2019/08/jsc-exploits.html

Bleeding Edge Exploit research

https://www.n0tr00t.com/2016/12/26/115Browser-725-rce-vuln.html

Some browser rce

https://medium.com/@bpmxmqd/v8-engine-jsobject-structure-analysis-and-memory-optimization-ideas-be30cfcdcd16

Javascript Engine Backrounds

https://v8.dev/blog/fast-properties

More JS Engine Backgrounds

https://liveoverflow.com/

YT Channel for all things security, also BinExpl, BrowserExploitation

https://github.com/jaybosamiya/security-notes

some notes on bin expl

Web Exploitation

Link

Description

https://github.com/cure53/XSSChallengeWiki/wiki/Older-Challenges-and-Write-Ups

Collection of XSS Challenges

https://blog.zsec.uk/tag/ltr101/

Blog

https://github.com/EdOverflow/bugbounty-cheatsheet

EdOverflows Bugbounty Cheatsheet

https://whitton.io/

Blog

http://brutelogic.com.br/blog/

Blog on XSS

Other

Link

Description

https://sockpuppet.org/blog/archives/

Blog / Crypto

https://balsn.tw/ctf_writeup/

Lots of ctf writeups by this team

https://securit.ie/blog/

Blog

https://mobile-security.gitbook.io/mobile-security-testing-guide/

Mobile Security Guide

https://www.exploit-db.com/papers/44145

Mobile Hacking writeup

PreviousWelcomeNextUntitled

Last updated