使用DVL Linux练习Linux安全攻防

　　The videos aren't been included in the distribution to keep its size down. But it would be nice to have two versions of DVL -- a vanilla version with only the tools, and an extended version with the videos as well.

　　So what exactly does one learn?

　　Security is a wide topic and security issues can arise from almost everywhere. Schneider says the tutorials are split into three parts. "The first is about binary exploitation, buffer overflows, format string vulnerabilities, or shellcodes. The second is about Web exploitation such as SQL injection, path retrieval, and Web site insecurity. The third part is about reverse code engineering and copy protection analysis and teaches how vulnerable copy protections are in reality."

　　"The one thing that sets DVL apart the most," Sweeney says, "is the focus on buffer overflows and disassembly." Disassembly, he says, is often talked about in conjunction with buffer overflows and reverse engineering. "Disassembling is when someone breaks down a program into the assembly language for further analysis. By doing this, users can analyze code at a very low level and look for security issues. There have been many excellent papers on the subject over the years, but these generally don't come with learning tools in a self-contained, easy-to-use environment."

　　More releases and videos coming up