Brainpan I | TryHackMe

Reverse engineering brainpan.exe with Immunity Debugger and Mona. Then exploiting it with Buffer Overflow. Room: https://tryhackme.com/r/room/gatekeeper Buffer Overflow Prep Room: https://tryhackme.com/r/room/bufferoverflowprep Buffer Overflow guide by @TCMSecurityAcademy : https://www.youtube.com/watch?v=ncBblM920jw Background Music: Creator Mix Mellow - https://creatormix.com/album/mellow-61.html Mellow 2 - https://creatormix.com/album/mellow-two-78.html Tryhackme: https://tryhackme.com/p/Bsaro LinkedIn: https://www.linkedin.com/in/babyka-saroeun/ 0:00 - Intro 6:36 - Nmap & Dirbusting with Feroxbuster 8:05 - Download brainpan.exe from to local Windows VM 9:26 - Fuzzing the executable 12:00 - Find EIP offset 15:20 - Find Badchars 17:30 - Find Jump point & Configure exploit.py 18:30 - Buffer Overflow exploit to local machine 21:00 - Wrong way to send payload and enumeration with CMD on Linux 23:38 - Right way to send payload and do buffer overflow 24:25 - Escalate the privilege (Follow every steps here)