Heylo... I'm new to to forums and I was wanting to see about finding vulnerabilites in services & what not, then making exploits for them for pen testing.
I currently have pretty good knowledge/experience in linux, some programming languages, and I'm currently taking Cisco classes so I know a lot about network layer protocols & what not.
Can anyone point me in the right direction so I can begin to learn how to do this? Like maybe reports how other people have found vulnerable/made exploits? If someone would like to mentor me that would be nice too. ^.^
Thanks for the help.
Heorot.net • Index page
the scenarios here are interesting and show the basics of penetration, not sure if this is what your looking for.
patience is appreciated =]
Generally if im looking for bugs in a program I will do two things.
For Open Source:
Fuzz it with Spike (the best fuzzer imo), and Audit the code with Klocwork (the only source code scanner I could get my hands on)
For Closed Source:
Fuzz it with Spikee
Reverse it with either Hexrays or Modelio then audit it with Klocwork,
Reversng from ASM to C (albeit crappy C) is very easy and for the most part is close enough to the original intent to run it through an auditor.