Cheatsheet and refresher for a simple x86 Windows buffer overflow methodology for an app over the network.

Discover an app is running on port 9999 and available to download from a webserver. Some fuzzing suggests it’s vulnerable to a Stack Buffer Overflow. Investigate the app inside a Windows VM with Immunity Debugger. Develop exploit to get user access. Check allowed commands for sudo and exploit the a pager vulnerability with the help of GTFOBins