Module details for Ethical Hacking 3

Description

This module develops a critical understanding analysis techniques used by Ethical Hackers to examine binary files and to provide the student with the opportunity to undertake the practical and development of an individual project.

Aims

The aim of this module is to provide the student with an understanding of the broad subject area of binary auditing. The student will also gain an understanding of the countermeasures that a company can take to minimise the effect of vulnerabilities.

Learning Outcomes

By the end of this module the student should be able to:

1.  Analyse and critically evaluate techniques used in binary analysis.

2.  Examine a topic in binary auditing and report the findings.

3.  Demonstrate a critical evaluation of an advanced security topic with an independent project.

Indicative Content

1 Binary auditing tools

Binary auditing tools. Debuggers, add-ons, debugging techniques.

2 Binary auditing

Binary auditing. Source code auditing, Black box auditing, Reverse engineering auditing, Copy protection auditing.

3 Buffer Overflows

Significance of Buffer Overflow Vulnerability, Why Programs and Applications are Vulnerable. Reasons for Buffer Overflow Attacks. Methods of ensuring that buffer overflows are trapped.

4 Shell code development

Shell code development. Creating and writing shellcode.

5 Structured Exception Handling

Structured Exception Handling (SEH) vulnerabilities. Exploitation and countermeasures.

6 Operating system countermeasures.

Overcoming operating system countermeasures. Avoiding Data Execution Prevention (DEP). Address Space Randomisation Layout (ASLR) evasion using ROP chains.

7 Heap Spray Techniques

Heap Spray Techniques. Use of Heap Spraying to avoid countermeasures.

8 Malware analysis

Types of malware, malware analysis methodology. Static and Dynamic analysis.

Teaching and Learning Work Loads