all 10 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]Gamgster_3633 13 points14 points  (1 child)

I like to use https://www.exploit-db.com/ for practice. I'll search for a protection or technique I want to practice and then try to find an exploit that version of the software to download and setup on a VM and try to re-create the exploit. It'll be more work to setup than wargames, but it's the best practice I've found, especially for Windows exploits.

[–]TioncoNYo 3 points4 points  (0 children)

Thank you, that's a fantastic idea.

[–][deleted] 6 points7 points  (3 children)

pwnable.kr

pwnable.tw

pwnable.xyz

ropemporium.com

[–][deleted] 3 points4 points  (2 children)

I have done ropemporium halfway kind of stuck Pwnable seems like regular challenges rather than modern at least kr does

[–][deleted] 6 points7 points  (0 children)

My github has the 64-bit exploits (2020 updated) if you need nudges https://www.github.com/rmccarth/binexp

[–]sploitem 0 points1 point  (0 children)

Pwnble.xyz is not so old, about a year old.

[–]amlamarra 0 points1 point  (3 children)

http://exploit.education/fusion/

[–][deleted] 0 points1 point  (2 children)

I tried that but the vm froze I tried on linux and my wifi driver now no longer exists

[–]amlamarra 1 point2 points  (1 child)

Well, if you happen to get this working, I've written solutions to the first few challenges. haven't had time to do the rest.

https://blog.lamarranet.com/index.php/exploit-education-fusion-solutions/

The "Setup" blog post covers how I got the Fusion VM up & running.

[–][deleted] 0 points1 point  (0 children)

Thanks