From Bug To Exploit
Introduction
This page serves as the central hub for my series “From Bug To Exploit”.
The goal of this series is to study how software vulnerabilities are transformed into real-world exploits. Rather than focusing solely on malware analysis, this series explores the offensive side of cybersecurity, including vulnerability discovery, reverse engineering, exploit development, and payload execution.
The series covers both historical and modern vulnerabilities, ranging from classic stack overflows to wormable vulnerabilities such as MS08-067 and MS17-010 (EternalBlue).
This page will be continuously updated as new research is added.
Goals
The long-term objectives of this series are:
- Understand how real-world vulnerabilities are exploited
- Develop Proof-of-Concept (PoC) exploits
- Study historical exploitation techniques
- Understand offensive tooling such as Meterpreter and DoublePulsar
- Bridge the gap between vulnerability research and malware analysis
Roadmap
Fundamental Concepts
- Buffer Overflow
- Stack Overflow
- Heap Overflow
- User-After-Free
- Integer Overflow
- Race Conditions
- Remote Code Execution (RCE)
- Privilege Escalation
Exploitation Techniques
- Shellcode Development
- Return-Oriented Programming (ROP)
- DEP Bypass
- ASLR Bypass
- Stack Pivoting
- Kernel Exploitation
Historical Vulnerabilities
- MS08-067
- MS17-010 (EternalBlue)
- Heartbleed
- Shellshock
- Zerologon
- PrintNightmare
Articles
(Coming soon…)
THANKS FOR READING!
