Buffer Overflows Made Easy (2022 Edition)

Published 2022-01-14
Hi everyone! I hope you enjoyed this video. Please do consider subscribing so we can continue making awesome hacking content! You can find more awesome content and courses at academy.tcm-sec.com/

Timestamps below:

0:00 - Introduction
1:23 - Downloading Our Materials
7:43 - Buffer Overflows Explained
11:56 - Spiking
22:12 - Fuzzing
28:26 - Finding the Offset
33:50 - Overwriting the EIP
37:19 - Finding Bad Characters
45:15 - Finding the Right Module
53:46 - Generating Shellcode & Gaining Root
59:46 - Python 3 & More
1:13:30 - TryHackMe Brainstorm Walkthrough

❓Info❓
___________________________________________
Pentests & Security Consulting: tcm-sec.com/
Get Trained: academy.tcm-sec.com/
Get Certified: certifications.tcm-sec.com/
Merch: merch.tcm-sec.com/
Sponsorship Inquiries: [email protected]

📱Social Media📱
___________________________________________
Twitter: twitter.com/thecybermentor
Twitch: www.twitch.tv/thecybermentor
Instagram: instagram.com/thecybermentor
LinkedIn: www.linkedin.com/in/heathadams
Discord: discord.gg/tcm

💸Donate💸
___________________________________________
Like the channel? Please consider supporting me on Patreon:
www.patreon.com/thecybermentor
Support the stream (one-time): streamlabs.com/thecybermentor

My Build:
lg 32gk850g-b 32" Gaming Monitor:amzn.to/30C0qzV
darkFlash Phantom Black ATX Mid-Tower Case: amzn.to/30d1UW1
EVGA 2080TI: amzn.to/30d2lj7
MSI Z390 MotherBoard: amzn.to/30eu5TL
Intel 9700K: amzn.to/2M7hM2p
G.SKILL 32GB DDR4 RAM: amzn.to/2M638Zb

My Recording Equipment:
Panasonic G85 4K Camera: amzn.to/2Mk9vsf
Logitech C922x Pro Webcam: amzn.to/2LIRxAp
Aston Origin Microphone: amzn.to/2LFtNNE
Rode VideoMicro: amzn.to/309yLKH
Mackie PROFX8V2 Mixer: amzn.to/31HKOMB
Elgato Cam Link 4K: amzn.to/2QlicYx
Elgate Stream Deck: amzn.to/2OlchA5

*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated si

All Comments (21)
  • Hi everyone! I hope you enjoyed this video. Please do consider subscribing so we can continue making awesome hacking content! You can find more awesome content and courses at academy.tcm-sec.com/

    Timestamps below:

    0:00 - Introduction
    1:23 - Downloading Our Materials
    7:43 - Buffer Overflows Explained
    11:56 - Spiking
    22:12 - Fuzzing
    28:26 - Finding the Offset
    33:50 - Overwriting the EIP
    37:19 - Finding Bad Characters
    45:15 - Finding the Right Module
    53:46 - Generating Shellcode & Gaining Root
    59:46 - Python 3 & More
    1:13:30 - TryHackMe Brainstorm Walkthrough
  • @kaitlynk2145
    Please keep these long courses coming they truly are so amazing and I am so thankful and appreciative for them!
  • @Child0ne
    Are you fricken kidding me…. More free content ! Man this shit is too good
  • If you are trying this now and you are stuck at the fuzzing section saying it crashed at 100 bytes, its an issue with passing a string into the buffer to make it work you need to convert it to byte as
    buffer=b"A"*100
    and also
    s.send(b"TRUN /.:/" + buffer)
    lastly also,
    buffer=buffer + b"A"*100
  • @ardecanw7112
    I was just going through the old ones this week! glad to see an updated one!
  • @rahulbotcha
    Awesome explanation... I am preparing for my OSCP, this helps me a lot. Thanks a lot TCM
  • Thank you very much Heath, fantastic course. You make it so structured and simple to understand.
  • @whoisPremier
    It took me a while to digest this during the PEH course but I got it eventually. Thanks!
  • Amazing. To think that I talked about the previous playlist on my LinkedIn today. You guys rock
  • @smbsid
    Good video! BOF had always been a myth for me, but it's now clear in my mind after I watched this on the PEH course on tcm academy.
  • i couldn't make it work from other buffer overflow. hopefully i get to work with this. can't wait to finish. Thanks for your time and effort
  • @shubham_srt
    massive respect for all this free content ❤️
  • Really well made! Easy to follow and workaround for different issues! 🙂
  • @Edovsky
    Great video. Simply a life saver for a oscp student :)
  • @kevinbatdorf
    Really loved the ending, thanks! Just bought a hoodie
  • @innerfire369
    I think one of the things which we need is a video showing us what to do when the buffer is too small for payload. Thanks!
  • Wow. You have explain it wonderfully. Thank you for making this video.