SystemsSec 2016W Hacking Opportunities

From Soma-notes
Jump to navigation Jump to search

Operating Systems Security

  • Configure a jail for running a service.
  • Change an SELinux policy to use a custom directory (e.g., change the location of apache's files from /var/www).


Network Security

  • Decrypt a captured SSL/TLS session using WireShark


Software Security

  • Successfully run a buffer overflow/memory corruption attack against an application using a Metasploit exploit.


Web Security

  • Modify a web application to be vulnerable to a cross-site scripting attack and then successfully exploit the vulnerability.
Retrieved from "https://homeostasis.scs.carleton.ca/wiki/index.php?title=SystemsSec_2016W_Hacking_Opportunities&oldid=20458"