Linux Exploits & Mitigation: String Vulnerability Analysis

Ubuntu 20.04 | Intermediate

14 videos | 1h 8m 53s
Includes Assessment
Earns a Badge

String vulnerabilities are at the core of a wide range of exploits. Being able to recognize, debug, and fix unsafe string manipulation code is essential to avoiding vulnerabilities. In this course, you'll explore how string code can be written safely and how strings vulnerabilities are exploited. You'll look at the most common format string vulnerabilities in the C programming language and what it means to overflow a string buffer. You'll debug string exploits, including vulnerabilities introduced by common string output and manipulation functions. Next, you'll correct common errors, check strings for safety, loop over strings, and see what happens when unsafe strings are executed in a program. Finally, you'll describe how code can be injected via strings and how strings can be returned safely.

WHAT YOU WILL LEARN

discover the key concepts covered in this course

describe how strings are exploited in computer programs

illustrate the weaknesses caused by string formatting methods

perform a string buffer overflow in a C program

apply flags to the gcc compiler to catch string weaknesses by converting warnings into errors

recognize and correct weaknesses introduced by poorly implemented string copies

recognize and correct common input string vulnerabilities
explore how generating command line string inputs can exploit insecure string methods

check input strings for validity and safety

perform loops over characters in a string in a safe manner

run programs that fail due to unsafe strings

describe how strings executed dynamically can lead to vulnerabilities

recognize safe and unsafe methods of returning strings in C

summarize the key concepts covered in this course

IN THIS COURSE

1m 26s

FREE ACCESS
5m 2s

FREE ACCESS
3. Formatting String Weaknesses

7m 32s

FREE ACCESS
4. Overflowing the String Buffer

7m 45s

FREE ACCESS
5. Compiling String Weaknesses

4m 13s

FREE ACCESS
6. Copying String Weaknesses

9m 13s

FREE ACCESS
7. Catching Input Vulnerabilities

4m 52s

FREE ACCESS
8. Generating String Weaknesses

5m 15s

FREE ACCESS
9. Checking Strings Safely

4m 57s

FREE ACCESS
10. Looping Over Strings Safely

4m 41s

FREE ACCESS
11. Executing Unsafe Strings

4m 31s

FREE ACCESS
12. Injecting Code in Strings

3m 5s

FREE ACCESS
13. Returning Strings Safely

5m 29s

FREE ACCESS
14. Course Summary

52s

FREE ACCESS

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.

Digital badges are yours to keep, forever.

Course OWASP Top 10: A02:2021-Cryptographic Failures

Course Getting Started with Go: Introducing Go Programming Language

Course Linux Exploits & Mitigation: Linux Exploit Architecture

Get Started

Sharpen your skills. Upgrade your career. Find the right learning path for you, based on your role and skills. Take part in hands-on practice, study for a certification, and much more - all personalized for you.

*Not included: Compliance, Leadership Development Program content, and Engineering books

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

Explore a world of live learning with Global Knowledge

Choose from convenient delivery formats to get the training you and your team need - where, when and how you want it.

Browse Live Learning

Linux Exploits & Mitigation: String Vulnerability Analysis

WHAT YOU WILL LEARN

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

YOU MIGHT ALSO LIKE