Jump to: navigation, search


11 October 2013 (RSVP to or on Melbourne Security Hub)

Socialising: 18:00 - 18:30

Presentation: 18:30 - 19:30 (pizza and soft drinks will be provided)

Join us afterwards for a drink at a bar nearby.


The York Butter Factory (on the corner of King St and Collins St) 62-66 King Street Melbourne, VIC 3000


Introduction to Buffer Overflows (Stack Smashing)

The presentation will open with a quick recap of number systems, data types, the stack, memory and assembly. Then we ramp it up with a demo that finds ourselves deep inside GDB looking at assembly, stack dumps and hex. Concluding the presentation will be a challenge to test your skills!

This is a beginner-level presentation aimed at anyone with an interest in software security. No prior security knowledge is required, however If you’re completely unfamiliar with the below topics, having a quick read over the following may help you keep up, Basic understanding of:

  • Programming in C or C++
  • Number systems, base 2, 10, 16
  • Debugging… GDB, etc.
  • An idea of the x86/x64 assembly language
  • Bit of BASH

Sitting on the fence? The presentation is a great starting point for those interested in security and will give you the necessary base knowledge to approach more advanced topics about software security.

About the speaker

Julian Berton

Julian graduated from the University of Melbourne with a Bachelor of Computer Science and started work as a freelance software developer with a focus on web applications. While freelancing, he has co-founded and was lead developer for a rock-climbing startup. The opportunity arose at a web company called Rundl which emphasised web security and reminded me of my passion for this field. Security was not a focus throughout my studies and one of my goals is to fill this gap through education.

Daniel Parker

Daniel Parker is a student at Swinburne University of Technology, studying a Bachelor of Software Engineering. Daniel is a co-founder of Inductive Studios, a web development business based in Geelong. 'Daniel is the leader of the programming stream in the Swinburne Cyber Security Club (SCSC) and competed in the Cyber Security Challenge Australia (CySCA) earlier this year as a member of Swinburne’s teams.

Hoping you’re excited to get involved! Don’t forget to RSVP! :)

OWASP Melbourne :)