Last week to get a GIAC Certification Attempt Included with Online Training - Ends Soon!

Seattle 2017

Seattle, WA | Mon, Oct 30, 2017 - Sat, Nov 4, 2017
Event starts in 11 Days
 

Exploitation 101: Stacks, NX/DEP, ASLR and ROP!

  • David Hoelzer
  • Monday, October 30th, 7:15pm - 9:15pm

In this two-hour talk we will begin with basic stack overflows and then introduce the various protections one at a time... and demonstrate how they are defeated! The talk will cover stack overflows, bypassing DEP/NX (non-executable stacks), defeating ASLR, and defeating code signing with ROP. While the talk covers technical topics, even those with less of a technical background will walk away with an appreciation of just how easy exploit development actually is!


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Lunch & Learn: Short presentations given during the lunch break.
Monday, October 30
Session Speaker Time Type
General Session - Welcome to SANS David Hoelzer Monday, October 30th, 8:00am - 8:30am SANS@Night
Exploitation 101: Stacks, NX/DEP, ASLR and ROP! David Hoelzer Monday, October 30th, 7:15pm - 9:15pm Keynote
Tuesday, October 31
Session Speaker Time Type
Infosec State of the Union Jake Williams Tuesday, October 31st, 7:15pm - 8:15pm SANS@Night
Wednesday, November 1
Session Speaker Time Type
Effective Security in Zero-Trust Environment Wednesday, November 1st, 12:30pm - 1:15pm Lunch and Learn
Using the Attack & Defense Matrix Scorecard Mick Douglas Wednesday, November 1st, 7:15pm - 8:15pm SANS@Night