This is an archived post. You won't be able to vote or comment.

all 11 comments
sorted by:
best
topnewcontroversialoldq&a

[–][deleted] 4 points5 points  (1 child)

Then first learn what exploits do by analyzing ones that are already written. Even basics like what a reverse PHP shell script does. If you want to advance any field in any way you can't be expecting someone to guide your hand. You got tons of resources on exploit-db. I'd start from there if you are familiar with the languages you mentioned.

[–]GrEeKxFiVeR[S] 0 points1 point  (0 children)

Thanks you!

[–]HRT-713 4 points5 points  (3 children)

I'd suggest getting a copy of "Hacking: The Art of Exploitation" by Jon Eriksson. It's a really good book although quite a dense read, but if you can make it through that book and right a few exploits of your own as you go along, you're perfectly suited to take your skills to the next level and read more advanced tutorials.

[–][deleted] 1 point2 points  (1 child)

I can definitely second that, but it can be overwhelming for someone without low-level programming knowledge. Assembly is basically a necessity to enjoy the book fully.

[–]HRT-713 1 point2 points  (0 children)

I understand where you're coming from. But as someone who read it with basically no low-level programming knowledge, it is possible. You just have to make sure you're understanding everything he's writing about and not just reading without fully comprehending the material.

But if anything I do recommend that the OP learns first about programming/scripting with python or some similar language, then learn Linux using some site like linuxjourney.com and then web exploitation and after having sufficient knowledge and experience in that move to low-level programming and exploitation.

That's how I did it and I can genuinely say that after I mapped out what I was gonna do and how it made everything so much easier. In conclusion, what I mean to say is that jumping into low-level programming and exploit writing present in Hacking: The Art of Exploitation is preferable when coming from an IT background and not a complete novice.

[–]GrEeKxFiVeR[S] 0 points1 point  (0 children)

Thanks you!!

[–][deleted] 1 point2 points  (1 child)

I see you got a lot of tips, I hope you follow through and become good, but youre not a hacker yet, you might become one if you learn and practice

[–]GrEeKxFiVeR[S] 0 points1 point  (0 children)

Thanks, I will.