Scribd
Upload
61 views3 pages

Osce3 Resources

Uploaded by

thnhng105
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
61 views3 pages

Osce3 Resources

Uploaded by

thnhng105
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 3

Study Materials

snoopysecurity - OSCE Prep


epi052 - OSED Scripts
Exploit-DB - Windows User Mode Exploit Development
r0r0x-xx - OSED Pre
sradley - OSED
Nero22k - Exploit Development
YouTube - 7PMw9GIb8Zs
YouTube - FH1KptfPLKo
YouTube - sOMmzUuwtmc
ExploitLab Blog
Azeria Labs - Heap Exploit Development Part 1
ZeroKnights - Getting Started Exploit Lab
Google Drive File 1
Google Drive File 2
Google Drive File 3
Corelan - Exploit Writing Tutorial Part 1: Stack Based Overflows
wtsxDev - Exploit Development
corelan - Corelan Training
subat0mik - Journey to OSCE
nanotechz9l - Corelan Exploit Tutorial Part 1: Stack Based Overflows
snoopysecurity - OSCE Prep
bigb0sss - OSCE
epi052 - OSCE Exam Practice
mdisec - OSCE Preparation
mohitkhemchandani - OSCE BIBLE
FULLSHADE - OSCE
areyou1or0 - OSCE Exploit Development
securityELI - CTP OSCE
Google Drive File 4
Coalfire Blog - The Basics of Exploit Development
Connor McGarr - Browser Exploit
KaliTut - Exploit Development Resources
0xZ0F - Z0FCourse Exploit Development
dest-3 - OSED Resources
Infosec Institute - Python for Exploit Development
Anitian - A Study in Exploit Development Part 1: Setup and Proof of Concept
Sam's Class - WWC 2014
Stack Overflow - Exploit Development in Python 3
CTF Writeups - Converting Metasploit Modules to Python
PacktPub - Networking and Servers
Cybrary - Exploit Development Part 5
SpaceRaccoon - ROP and Roll EXP-301 Offensive Security Exploit Development (OSED)
Review
Offensive Security - OSED Exam Guide
epi052 - OSED Scripts
YouTube - 0n3Li63PwnQ
epi052 - Windows Usermode Exploit Development Review
PythonRepo - epi052 OSED Scripts
dhn - OSEE
PythonRepo - epi052 OSED Scripts
nop-tech - OSED
Ired Team - ROP Chaining Return Oriented Programming
InfoSec Writeups - ROP Chains on ARM
YouTube - 8zRoMAkGYQE
Infosec Institute - Return Oriented Programming ROP Attacks
dest-3 - OSED Resources
mrtouch93 - OSED Notes
wry4n - OSED Scripts
r0r0x-xx - OSED Pre
Reviews
YouTube - aWHL9hIKTCA
YouTube - 62mWZ1xd8eM
ihack4falafel - Offensive Security AWEOSEE Review
LinkedIn - Advanced Windows Exploitation (OSEE) Review - Etizaz Mohsin
Animal0day - Reviews for OSCP, OSCE, OSEE, and Corelan
AddaxSoft - Offensive Security Advanced Windows Exploitation (AWE/OSEE) Review
jhalon - OSCE Review
YouTube - NAe6f1_XG6Q
SpaceRaccoon - ROP and Roll EXP-301 Offensive Security Exploit Development (OSED)
Review
kuhi.to - OFFSEC EXP301 OSED Review
epi052 - Windows Usermode Exploit Development Review
SpaceRaccoon - ROP and Roll EXP-301 Offensive Security Exploit Development (OSED)
Review
YouTube - NAe6f1_XG6Q
LinkedIn - Offensive Security Certified Expert 3 (OSCE3) - Cristian Cornea
NOP Blog - OSED
Deep Hacking - OSED Review
Labs
CyberSecurityUP - Buffer Overflow Labs
ihack4falafel - OSCE
nathunandwani - CTP OSCE
sufyandaredevil - OSED - Exploiting SEH Overflows
firmianay - Life-long Learner - SEED Labs - Buffer Overflow Vulnerability Lab
wadejason - Buffer Overflow Vulnerability Lab
Jeffery-Liu - Buffer Overflow Vulnerability Lab
mutianxu - SEED LAB - Buffer Overflow Attack
INE - Windows Exploit Development
Connor McGarr - Browser Exploit
Coalfire Blog - The Basics of Exploit Development
Pentest Magazine - Exploit Development Windows
Steflan Security - Complete Guide to Stack Buffer Overflow (OSCP)
Offensive Security - EVOCAM Remote Buffer Overflow on OSX
Exploit-DB - Exploit 42928
Exploit-DB - Exploit 10434
OCW CS PUB RO - Lab 08
epi052 - OSED Scripts
OSEE
Content
Bypass and evasion of user mode security mitigations such as DEP, ASLR, CFG, ACG
and CET
Advanced heap manipulations to obtain code execution along with guest-to-host and
sandbox escapes
Disarming WDEG mitigations and creating version independence for weaponization
64-Bit Windows Kernel Driver reverse engineering and vulnerability discovery
Bypass of kernel mode security mitigations such as kASLR, NX, SMEP, SMAP, kCFG and
HVCI
Study Materials
https://www.linkedin.com/pulse/advanced-windows-exploitation-osee-review-etizaz-
mohsin-/
https://www.crowdstrike.com/blog/state-of-exploit-development-part-2/
https://www.youtube.com/watch?v=pH6qocUEor0&ab_channel=BlackHat
https://github.com/nccgroup/exploit_mitigations/blob/master/windows_mitigations.md
https://hack.technoherder.com/sandbox-escapes/
https://www.youtube.com/watch?v=LUH6ZxYNJFg&ab_channel=ZeroDayInitiative
https://www.youtube.com/watch?v=NDuWcGn5hTQ&ab_channel=ZeroDayInitiative
https://www.youtube.com/watch?v=p0OaGMlBb2k&ab_channel=BlackHat
https://github.com/MorteNoir1/virtualbox_e1000_0day
https://blog.palantir.com/assessing-the-effectiveness-of-a-new-security-data-
source-windows-defender-exploit-guard-860b69db2ad2
https://github.com/palantir/exploitguard
https://github.com/microsoft/Windows-classic-samples
https://github.com/SofianeHamlaoui/Pentest-Notes/blob/master/offensive-security/
code-injection-process-injection/how-to-hook-windows-api-using-c%2B%2B.md
https://github.com/ndeepak-zzzz/Windows-API-with-Python
https://int0x33.medium.com/day-59-windows-api-for-pentesting-part-1-178c6ba280cb
Reviews
https://ihack4falafel.github.io/Offensive-Security-AWEOSEE-Review/
https://www.richardosgood.com/posts/advanced-windows-exploitation-review/
https://www.youtube.com/watch?v=srJ1ICC4ON8&ab_channel=DavidAlvesWeb
https://medium.com/@0xInyiak/my-offensive-security-journey-part-1-5ffbd66fe0c2
Labs
https://github.com/BLACKHAT-SSG/EXP-401-OSEE
https://github.com/timip/OSEE
https://github.com/dhn/OSEE
https://github.com/orangice/AWE-OSEE-Prep
https://github.com/matthiaskonrath/AWE-OSEE-Prep
https://github.com/ihack4falafel/OSEE
https://github.com/gscamelo/OSEE
https://github.com/w4fz5uck5/3XPL01t5
Social Network
Joas Antonio - Linkedin
CyberSceurityUP- GitHub
C0d3Cr4zy - Twitter
Filipi Pires - Linkedin
Filipi Pires - GitHub
Filipi Pires - Twitter

You might also like