YoVDO

Robin Hood vs Cisco ASA AnyConnect

Offered By: Recon Conference via YouTube

Tags

REcon Conference Courses Cybersecurity Courses Reverse Engineering Courses Exploit Development Courses Vulnerability Analysis Courses

Course Description

Overview

Explore a detailed analysis of a critical vulnerability in Cisco's AnyConnect/WebVPN implementation on ASA devices. Delve into the architecture of the fuzzer used to discover a double free vulnerability, and learn about the bug analysis and exploitation techniques. Gain insights into a generic method for leveraging fragmented IKEv1 packets for heap feng shui and creating a write primitive. Understand the significance of this vulnerability, which received a CVSS score of 10.0 from Cisco. Discover how this fuzzing architecture can be applied to other protocols on Cisco devices. Join Cedric, a reverse engineering and exploit development expert from NCC Group, as he shares his findings and techniques in this informative conference talk from Recon Brussels 2018.

Syllabus

Recon Brussels 2018 - Robin Hood vs Cisco ASA AnyConnect


Taught by

Recon Conference

Related Courses

Computer Security
Stanford University via Coursera
Cryptography II
Stanford University via Coursera
Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera
Building an Information Risk Management Toolkit
University of Washington via Coursera
Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network