SystemsSec 2016W Hacking Opportunities

From Soma-notes

Operating Systems Security

  • Configure a jail for running a service.
  • Change an SELinux policy to use a custom directory (e.g., change the location of apache's files from /var/www).


Network Security

  • Decrypt a captured SSL/TLS session using WireShark


Software Security

  • Successfully run a buffer overflow/memory corruption attack against an application using a Metasploit exploit.


Web Security

  • Modify a web application to be vulnerable to a cross-site scripting attack and then successfully exploit the vulnerability.