Vipin Kumar and Nitin Kumar, authors of the system security section, covered shellcoding step by step and in great detail.
I have already written about the recent Khobe 8.0 research. Headlines have hit almost all the security-related websites and blogs: “New malware can bypass all AV’s”.
Now we are in trouble. Research from Matousec has revealed a means by which a hacker would be capable of disabling dozens of modern AV’s including McAfee, Symantec, and friends.
Thank you, Google! A new and very effective way to learn web application security from the developer’s point of view has been announced: Jarlsberg (link no longer available).
The vulnerable application created by Google is coded in Python and was created for pentesters or web developers to practice hacking from different perspectives such as black box testing and whitehat testing through code inspection (addressed to Python coders).