SEC760: SANS Cyber Security East: August 2022

Provided by

Enquire about this course

What You Will Learn

Vulnerabilities in modern operating systems such as Microsoft Windows 10 and the latest Linux distributions are often very complex and subtle. When exploited by very skilled attackers, these vulnerabilities can undermine an organization's defenses and expose it to significant damage. Few security professionals have the skillset to discover why a complex vulnerability exists and how to write an exploit to compromise it. Conversely, attackers must maintain this skillset regardless of the increased complexity. SEC760: Advanced Exploit Development for Penetration Testers teaches the skills required to reverse-engineer 32-bit and 64-bit applications to find vulnerabilities, perform remote user application and kernel debugging, analyze patches for one-day exploits, and write complex exploits such as use-after-free attacks against modern software and operating systems.

You Will Learn:
  • How to write modern exploits against the Windows 7/8/10 operating systems
  • How to perform complex attacks such as use-after-free, kernel and driver exploitation, one-day exploitation through patch analysis, and other advanced attacks
  • How to effectively utilize various debuggers and plug-ins to improve vulnerability research and speed
  • How to deal with modern exploit mitigation controls aimed at thwarting success
You Will Be Able To
  • Discover zero-day vulnerabilities in programs running on fully patched modern operating systems
  • Use the advanced features of IDA Pro and write your own IDA Python scripts
  • Perform remote debugging of Linux and Windows applications
  • Understand and exploit Linux heap overflows
  • Write Return-Oriented Shellcode
  • Perform patch diffing against programs, libraries, and drivers to find patched vulnerabilities
  • Perform Windows heap overflows and use-after-free attacks
  • Perform Windows kernel debugging up through Windows 10 64-bit Build 1903
  • Perform Windows driver and kernel exploitation.
What You Will Receive
  • A four-month license to IDA Pro, which is provided by Hex-Rays, is included in this course. In order to obtain the license, you must agree to the terms, including providing your name and an e-mail address, so that Hex-Rays may assign the license. After the course ends, students may choose to extend the license at a discounted rate by contacting Hex-Rays. (If you choose to opt-out, then you must bring a copy of IDA Pro 7.4 advanced or later.)
  • Various preconfigured virtual machines, such as Windows 10.
  • Various tools on a course USB that are required for use in class.
  • Access to the in-class Virtual Training Lab with many in-depth labs.
  • Access to recorded course audio to help hammer home important network penetration testing lessons.


Start date Location / delivery
01 Aug 2022 Virtual Book now

Related article

At GIAC, we believe that hands-on testing is the future of cybersecurity certification. With five certification exams featuring CyberLive , and thr...