Assembly 101

Welcome to Assembly 101! This course will teach you how computers work down to the lowest level and how to write and read the human readable version of the 1s and 0s they speak in – Assembly. The course starts with an introduction on how computers perform computations using transistors, logic gates and machine code (1s and 0s), then moves on to writing your own assembly programs. Students will start writing x86-16 assembly in a beginner-friendly 8086 emulator to learn the fundamentals and then move on to writing modern x86-64 assembly. 

• How computers work at a low level
• Numbering systems: Decimal, Hex and Binary
• Setting up an assembly development environment
• x86 Registers, Flags and Pointers
• x86 Instruction Set
• Learning x86 fundamentals by writing x86-16 assembly programs
• Writing modern x86-64 assembly
• Explore memory safety and learn about writing shellcode and exploiting stack overflows.

Programming 100: Fundamentals and Linux 100: Fundamentals, or equivalent knowledge!

Students should have a basic understanding and familiarity of programming with any high-level language.

Students will need a computer capable of running and x86-64 virtual machine. The first half of the course will use an emulator that can be run on most architectures, however the second half of the course will focus on x86-64 development without the use of an emulator. 

• Introduction
  • Course Introduction
  • Course Discord (Important)
  • Resources and Tips for Success
  • Course Repo
• Gaining a Foothold
  • Introduction
  • Gaining a Foothold (Box 1)
• Initial Enumeration
  • System Enumeration
  • User Enumeration
  • Network Enumeration
  • Password Hunting
  • AV Enumeration
• Exploring Automated Tools
  • Automated Tool Overview
  • Exploring Automated Tools
• Escalation Path: Kernel Exploits
  • Kernel Exploits Overview
  • Escalation with Metasploit
  • Manual Kernel Exploitation
• Escalation Path: Passwords and Port Forwarding
  • Overview
  • Gaining a Foothold (Box 2)
  • Escalation via Stored Passwords
• Escalation Path: Windows Subsystem for Linux
  • Overview
  • Gaining a Foothold (Box 3)
  • Escalation via WSL
• Impersonation and Potato Attacks
  • Token Impersonation Overview
  • Impersonation Privileges Overview
  • Potato Attacks Overview
  • Gaining a Foothold (Box 4)
  • Escalation via Potato Attack
  • Alternate Data Streams
• Escalation Path: getsystem
  • getsystem Overview
• Escalation Path: RunAs
  • Overview of RunAs
  • Gaining a Foothold (Box 5)
  • Escalation via RunAs
• Additional Labs
  • Overview of TryHackMe Labs
• Escalation Path: Registry
  • Overview of Autoruns
  • Escalation via Autorun
  • AlwaysInstallElevated Overview and Escalation
  • Overview of regsvc ACL
  • regsvc Escalation
• Escalation Path: Executable Files
  • Executable Files Overview
  • Escalation via Executable Files
• Escalation Path: Startup Applications
  • Startup Applications Overview
  • Escalation via Startup Applications
• Escalation Path: DLL Hijacking
  • Overview and Escalation via DLL Hijacking
• Escalation Path: Service Permissions (Paths)
  • Escalation via Binary Paths
  • Escalation via Unquoted Service Paths
  • Challenge Overview
  • Gaining a Foothold
  • Escalation via Unquoted Service Path Metasploit
  • Manual Challenge Walkthrough
• Escalation Path: CVE-2019-1388
  • Overview of CVE-2019-1388
  • Gaining a Foothold
  • Escalation via CVE-2019-1388
• Capstone Challenge
  • Capstone Overview
  • Challenge Walkthrough 1
  • Challenge Walkthrough 2
  • Challenge Walkthrough 3
  • Challenge Walkthrough 4
  • Challenge Walkthrough 5
• Conclusion
  • Conclusion
  • Next Steps: The Practical Network Penetration Tester (PNPT) Certification