Linux Heap Exploitation Part 1: Learn Real-World GLIBC Attacks

Linux Heap Exploitation Part 1: Learn Real-World GLIBC Attacks

A
AllGoodTutorials
1 Video View·Dec 29, 2025

Linux Heap Exploitation Part 1: Learn Real-World GLIBC Attacks

✨ Start your learning journey today and unlock premium courses — try it FREE now 👉 https://techblazes.com/supporters/pricing 🚀

Dive deep into GLIBC's malloc internals and master fundamental heap exploitation techniques. This hands-on course uses HeapLAB to teach House of Force, Fastbin Dup, Unsafe/Safe Unlink, House of Orange, and one-byte overflows. Build real exploits with pwntools and debug with pwndbg.

⏱️ CHAPTER TIMESTAMPS:
00:00:00 - Course Intro: The Art of Heap Exploitation

MODULE 0: FOUNDATIONS & SETUP (25 mins)
00:01:33 - Welcome & Course Structure
00:06:21 - What is GLIBC? (The Target Runtime)
00:11:09 - What is malloc? (Heap Allocator Basics)
00:13:49 - Environment Setup: VM, pwntools, pwndbg, HeapLAB
00:18:26 - Critical Concept: The Top Chunk & Wilderness

MODULE 1: HOUSE OF FORCE (40 mins)
00:28:17 - Our 1st Vulnerable Binary: Analyzing the Target
00:36:18 - Theory: Arbitrary Write via House of Force (Overflowing the Top Chunk)
00:53:12 - Hands-On Exploit Development: Achieving Code Execution with House of Force

MODULE 2: FASTBIN DUP (1 Hour)
01:05:27 - Fastbins Explained: GLIBC's Free List for Small Chunks
01:15:21 - Arbitrary Write via Fastbin Dup (Double Free Primitive)
01:32:37 - Code Execution via Fastbin Dup (Hijacking __malloc_hook)
01:47:17 - Advanced: Fastbin Dup 2 (Bypassing Security Checks)

MODULE 3: UNSAFE & SAFE UNLINK (1 Hour)
02:11:21 - Unlinking Mechanics: How free() Merges Adjacent Chunks
02:21:34 - The Original Unsafe Unlink Technique (Write-What-Where)
02:43:43 - Bypassing Protections: The Safe Unlink Technique (Modern GLIBC)

MODULE 4: HOUSE OF ORANGE (1 Hour)
03:06:03 - What is the House of Orange? (Overview)
03:07:12 - Prerequisite: File Stream (FILE) Exploitation Basics
03:17:54 - The Unsortedbin Attack (Corrupting _IO_list_all)
03:33:32 - Putting It All Together: The Complete House of Orange Exploit

MODULE 5: ADVANCED TECHNIQUES (45 mins)
04:07:36 - Remaindering: A Useful Heap Primitive
04:14:14 - The Power of a Single Byte: "One-Byte" Heap Overflow to Shell (In-Depth Walkthrough)

MODULE 6: COURSE CONCLUSION
04:53:28 - Outro, Course Recap & Path Forward (Part 2 Preview)
04:56:00 - Further Resources & Challenges

👇 Follow TechBlazes on all platforms:

🔵 Facebook Group:
https://www.facebook.com/groups/techblazes/

🔵 Facebook Page:
https://www.facebook.com/TechBlazesHQ/

⚫ X (Twitter):
https://x.com/TechBlazesHQ

📌 Pinterest:
https://www.pinterest.com/techblazesHQ/

👾 Reddit:
https://www.reddit.com/user/techblazesHQ/

🔗 LinkedIn:
https://www.linkedin.com/in/techblazes/

✍️ Medium:
https://medium.com/@techblazeshq

💬 About TechBlazes

TechBlazes is an educational platform specializing in Cybersecurity, Ethical Hacking, Programming, and Linux.
We provide high-quality tutorials, hands-on lessons, real-world projects, and structured learning paths designed to take you from beginner to professional.

📌 Don’t forget to subscribe and turn on notifications to never miss a new video!

~~~~~~~~~~~~~~ SUPPORT US ~~~~~~~~~~~~~~

📌 Give us a helping hand to improve your life.
support us here: https://buymeacoffee.com/techblazes

***************************************
⚠️‼️Participate and activate by activating the pickaxe in the step of clicking on the bell so as not to miss it! You can also subscribe by clicking here: https://www.youtube.com/@techblazes/videos and like the video 👍🏼 :-)