{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,27]],"date-time":"2026-06-27T03:49:29Z","timestamp":1782532169930,"version":"3.54.5"},"publisher-location":"New York, NY, USA","reference-count":51,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,3,7]],"date-time":"2024-03-07T00:00:00Z","timestamp":1709769600000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"ONR","award":["N00014-21-1-2732"],"award-info":[{"award-number":["N00014-21-1-2732"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,3,7]]},"DOI":"10.1145\/3626252.3630911","type":"proceedings-article","created":{"date-parts":[[2024,3,7]],"date-time":"2024-03-07T18:17:20Z","timestamp":1709835440000},"page":"986-992","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["PWN Lessons Made Easy with Docker: Toward an Undergraduate Vulnerability Research Cybersecurity Class"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9707-1830","authenticated-orcid":false,"given":"TJ","family":"OConnor","sequence":"first","affiliation":[{"name":"Florida Institute of Technology, Melbourne, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0001-1373-6442","authenticated-orcid":false,"given":"Alex","family":"Schmith","sequence":"additional","affiliation":[{"name":"Florida Institute of Technology, Melbourne, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0750-5963","authenticated-orcid":false,"given":"Chris","family":"Stricklan","sequence":"additional","affiliation":[{"name":"Florida Institute of Technology, Melbourne, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2354-9640","authenticated-orcid":false,"given":"Marco","family":"Carvalho","sequence":"additional","affiliation":[{"name":"Florida Institute of Technology, Melbourne, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7942-0902","authenticated-orcid":false,"given":"Sneha","family":"Sudhakaran","sequence":"additional","affiliation":[{"name":"Florida Institute of Technology, Melbourne, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,3,7]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Procedure Call Standard for the Arm\u00ae 64-bit Architecture. https:\/\/developer.arm.com\/documentation\/102374\/0100\/Procedure-Call-Standard. Accessed","author":"ARM.","year":"2023","unstructured":"ARM. 2019. Procedure Call Standard for the Arm\u00ae 64-bit Architecture. https:\/\/developer.arm.com\/documentation\/102374\/0100\/Procedure-Call-Standard. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/3197091.3197111"},{"key":"e_1_3_2_1_3_1","volume-title":"libc-database: a collection of libc versions and corresponding offsets to be used in exploit development. https:\/\/github.com\/niklasb\/libc-database. Accessed","author":"Niklas B.","year":"2023","unstructured":"Niklas B. 2015. libc-database: a collection of libc versions and corresponding offsets to be used in exploit development. https:\/\/github.com\/niklasb\/libc-database. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_4_1","volume-title":"Accessed","author":"Levy Benjamin","year":"2023","unstructured":"Benjamin Levy. Year. pwninit: A tool for automating starting binary exploit challenges. hhttps:\/\/github.com\/io12\/pwninit. Accessed: December 10, 2023."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.22"},{"key":"e_1_3_2_1_6_1","volume-title":"Symposium on Information, Computer and Communications Security. ACM","author":"Bletsch Tyler","year":"2011","unstructured":"Tyler Bletsch, Xuxian Jiang, Vince W Freeh, and Zhenkai Liang. 2011. Jumporiented programming: a new class of code-reuse attack. In Symposium on Information, Computer and Communications Security. ACM, Hong Kong, China, 30--40."},{"key":"e_1_3_2_1_7_1","volume-title":"Phrack Magazine","volume":"10","year":"2002","unstructured":"blexim. 2002. Basic Integer Overflows. Phrack Magazine, Volume 0x0b, Issue 0x3c, Phile #0x0a of 0x10."},{"key":"e_1_3_2_1_8_1","volume-title":"ROPing on Aarch64. https:\/\/blog.perfect.blue\/ROPing-on-Aarch64. Accessed","author":"Blue Perfect","year":"2023","unstructured":"Perfect Blue. 2021. ROPing on Aarch64. https:\/\/blog.perfect.blue\/ROPing-on-Aarch64. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.23"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.101"},{"key":"e_1_3_2_1_11_1","volume-title":"Analysis and Exercises for Engaging Beginners in Online CTF Competitions for Security Education. In 2017 USENIX Workshop on Advances in Security Education (ASE 17)","author":"Burns Tanner J","year":"2017","unstructured":"Tanner J Burns, Samuel C Rios, Thomas K Jordan, Qijun Gu, and Trevor Underwood. 2017. Analysis and Exercises for Engaging Beginners in Online CTF Competitions for Security Education. In 2017 USENIX Workshop on Advances in Security Education (ASE 17). USENIX, Vancouver, BC, Canada."},{"key":"e_1_3_2_1_12_1","volume-title":"2017 USENIX Workshop on Advances in Security Education (ASE 17)","author":"Chung Kevin","year":"2017","unstructured":"Kevin Chung. 2017. Live Lesson: Lowering the Barriers to Capture The Flag Administration and Participation. In 2017 USENIX Workshop on Advances in Security Education (ASE 17). USENIX, Vancouver, BC, Canada, 6 pages."},{"key":"e_1_3_2_1_13_1","unstructured":"Solar Designer. 1997. Return to Libc Exploit. Bugtraq mailinglist."},{"key":"e_1_3_2_1_14_1","volume-title":"Accessed","author":"Gallopsled","year":"2023","unstructured":"Gallopsled et al. 2023. pwntools: CTF Framework and Exploit Development Library. https:\/\/github.com\/Gallopsled\/pwntools. Accessed: June 14, 2023."},{"key":"e_1_3_2_1_15_1","unstructured":"Fabian Faessler. 2016. Global Offset Table (GOT) and Procedure Linkage Table (PLT) - bin 0x12. https:\/\/youtu.be\/kUk5pw4w0h4"},{"key":"e_1_3_2_1_16_1","unstructured":"Fabian Faessler. 2016. The Heap: what does malloc() do? - bin 0x14. https:\/\/youtu.be\/HPDBOhiKaD8"},{"key":"e_1_3_2_1_17_1","volume-title":"Cyber Security Experimentation and Test (CSET)","author":"Fanelli Robert","unstructured":"Robert Fanelli and TJ OConnor. 2010. Experiences with Practice-Focused Undergraduate Security Education. In Cyber Security Experimentation and Test (CSET). USENIX, Washington, DC."},{"key":"e_1_3_2_1_18_1","volume-title":"Lightweight Symphony: Towards Reducing Computer Science Student Anxiety with Standardized Docker Environments","author":"Fernalld Kourtnee","year":"2023","unstructured":"Kourtnee Fernalld, TJ OConnor, Sneha Sudhakaran, and Nasheen Nur. 2023. Lightweight Symphony: Towards Reducing Computer Science Student Anxiety with Standardized Docker Environments. In Special Interest Group on Information Technology Education (SIGITE). ACM, Marietta, GA."},{"key":"e_1_3_2_1_19_1","unstructured":"Fran\u00e7ois Goichon. 2015. Glibc adventures: The forgotten chunks. Context Information Security."},{"key":"e_1_3_2_1_20_1","volume-title":"Dream Diary","year":"2021","unstructured":"Ir0nstone. 2021. Dream Diary: Chapter 1. https:\/\/ir0nstone.gitbook.io\/hackthebox\/challenges\/pwn\/dream-diary-chapter-1. Accessed on May 9, 2023."},{"key":"e_1_3_2_1_21_1","volume-title":"https:\/\/github.com\/sajjadium\/ctf-writeups\/tree\/master\/ctfs\/0CTF\/2017\/Quals\/babyheap. Accessed","author":"Jadium Sajjad","year":"2023","unstructured":"Sajjad Jadium. 2017. 0CTF 2017 Quals: Babyheap. https:\/\/github.com\/sajjadium\/ctf-writeups\/tree\/master\/ctfs\/0CTF\/2017\/Quals\/babyheap. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_22_1","unstructured":"Lkmidas. 2021. Linux Kernel Pwn - Part 1. https:\/\/lkmidas.github.io\/posts\/ 20210123-linux-kernel-pwn-part-1\/. Accessed on May 9 2023."},{"key":"e_1_3_2_1_23_1","unstructured":"David Manouchehri. 2017. Overview of glibc Heap Exploitation Techniques. https:\/\/0x434b.dev\/overview-of-glibc-heap-exploitation-techniques\/#unsafe-unlink. Accessed on May 9 2023."},{"key":"e_1_3_2_1_24_1","volume-title":"Communications of the IIMA","volume":"11","author":"Manson Daniel","year":"2011","unstructured":"Daniel Manson and Anna Carlin. 2011. A league of our own: the future of cyber defense competitions. In Communications of the IIMA, Vol. 11. IIMA, New Orleans, LA, 1."},{"key":"e_1_3_2_1_25_1","volume-title":"Return-to-csu: A new method to bypass 64-bit Linux ASLR. Black Hat Asia.","author":"Marco-Gisbert Hector","year":"2018","unstructured":"Hector Marco-Gisbert and Ismael Ripoll. 2018. Return-to-csu: A new method to bypass 64-bit Linux ASLR. Black Hat Asia."},{"key":"e_1_3_2_1_26_1","volume-title":"Workshop on the Economics of Information Security (WEIS)","author":"Miller Charles","year":"2007","unstructured":"Charles Miller. 2007. The Legitimate vulnerability market: the secretive world of 0-day exploit sales.. In Workshop on the Economics of Information Security (WEIS). Carnegie Mellon University, Hanover,NH."},{"key":"e_1_3_2_1_27_1","unstructured":"NSA. 2022. Academic Requirements for Designation as a CAE in Cyber Operations Fundamental. https:\/\/www.nsa.gov\/Resources\/Students-Educators\/centers-academic-excellence\/cae-co-fundamental\/requirements\/"},{"key":"e_1_3_2_1_28_1","volume-title":"HELO DarkSide: Breaking Free From Katas and Embracing the Adversarial Mindset in Cybersecurity Education","author":"Connor TJ","unstructured":"TJ OConnor. 2022. HELO DarkSide: Breaking Free From Katas and Embracing the Adversarial Mindset in Cybersecurity Education. In Special Interest Group on Cyber Security Education (SIGCSE). ACM, Virtual Event."},{"key":"e_1_3_2_1_29_1","volume-title":"Elementary Tcache Write-Up. https:\/\/github.com\/tj-oconnor\/ctf-writeups\/tree\/main\/nitectf\/heapchall. Accessed","author":"Connor TJ","year":"2023","unstructured":"TJ OConnor. 2022. NiteCTF 2022 : Elementary Tcache Write-Up. https:\/\/github.com\/tj-oconnor\/ctf-writeups\/tree\/main\/nitectf\/heapchall. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"crossref","unstructured":"TJ OConnor Carl Mann Tiffanie Petersen Isaiah Thomas and Chris Stricklan. 2022. Toward an Automatic Exploit Generation Competition for an Undergraduate Binary Reverse Engineering Course. In Innovation and Technology in Computer Science Education (ITiCSE). ACM Dublin Ireland.","DOI":"10.1145\/3502718.3524744"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"crossref","unstructured":"TJ OConnor and Chris Stricklan. 2021. Teaching a Hands-On Mobile and Wireless Cybersecurity Course. In Innovation and Technology in Computer Science Education (ITiCSE). ACM Virtual Event.","DOI":"10.1145\/3430665.3456346"},{"key":"e_1_3_2_1_32_1","unstructured":"Phantsmal Phantasmagoria. 2005. The malloc maleficarum. Bugtraq mailinglist."},{"key":"e_1_3_2_1_33_1","volume-title":"Accessed","author":"Rieger Gerhard","year":"2023","unstructured":"Gerhard Rieger. 2023. socat: Multipurpose relay for bidirectional data transfer. http:\/\/www.dest-unreach.org\/socat\/. Accessed: December 10, 2023."},{"key":"e_1_3_2_1_34_1","volume-title":"Accessed","author":"Riggle Zach","year":"2018","unstructured":"Zach Riggle. 2018. pwndbg: Exploit Development and Reverse Engineering with GDB. https:\/\/github.com\/pwndbg\/pwndbg. Accessed: June 14, 2023."},{"key":"e_1_3_2_1_35_1","unstructured":"Christopher Roberts. 2021. Linux Kernel Exploit Development. https:\/\/breaking-bits.gitbook.io\/breaking-bits\/exploit-development\/linuxkernel-exploit-development. Accessed on May 9 2023."},{"key":"e_1_3_2_1_36_1","volume-title":"Accessed","author":"RPISEC.","year":"2015","unstructured":"RPISEC. 2015. MBE: Modern Binary Exploitation. https:\/\/github.com\/RPISEC\/ MBE. Accessed: June 14, 2023."},{"key":"e_1_3_2_1_37_1","volume-title":"how2heap. https:\/\/github.com\/shellphish\/how2heap. Accessed","year":"2023","unstructured":"Shellphish. 2018. how2heap. https:\/\/github.com\/shellphish\/how2heap. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_38_1","volume-title":"Lesson 5: Common Challenges Shellcoding. https:\/\/pwn.college\/modules\/shellcode. Accessed","author":"Shoshitaishvili Yan","year":"2023","unstructured":"Yan Shoshitaishvili and Connor Nelson. 2021. Lesson 5: Common Challenges Shellcoding. https:\/\/pwn.college\/modules\/shellcode. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_39_1","volume-title":"Module: Kernel Security. https:\/\/pwn.college\/modules\/kernel.html. Accessed","author":"Shoshitaishvili Yan","year":"2021","unstructured":"Yan Shoshitaishvili and Connor Nelson. 2021. Module: Kernel Security. https:\/\/pwn.college\/modules\/kernel.html. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_40_1","volume-title":"Sandboxing: Escaping seccomp. https:\/\/pwn.college\/modules\/sandbox.html. Accessed","author":"Shoshitaishvili Yan","year":"2021","unstructured":"Yan Shoshitaishvili and Connor Nelson. 2021. Sandboxing: Escaping seccomp. https:\/\/pwn.college\/modules\/sandbox.html. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_41_1","volume-title":"Arizona State University. Accessed","author":"Shoshitaishvili Yan","year":"2023","unstructured":"Yan Shoshitaishvili and Connor Nelson. 2023. Pwn College. Arizona State University. Accessed: June 12, 2023."},{"key":"e_1_3_2_1_42_1","volume-title":"Temple of Pwn","author":"Stratton Logan","year":"2023","unstructured":"Logan Stratton. 2020. Temple of Pwn. North Dakota State University. Accessed: June 12, 2023."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"crossref","unstructured":"Chris Stricklan and TJ OConnor. 2021. Towards Binary Diversified Challenges For A Hands-On Reverse Engineering Course. In Innovation and Technology in Computer Science Education (ITiCSE). ACM Virtual Event.","DOI":"10.1145\/3430665.3456358"},{"key":"e_1_3_2_1_44_1","volume-title":"ret2dl_resolve - A Classic Technique for Modern Times. https:\/\/syst3mfailure.io\/ret2dl_resolve. Accessed","year":"2023","unstructured":"syst3mfailure. 2021. ret2dl_resolve - A Classic Technique for Modern Times. https:\/\/syst3mfailure.io\/ret2dl_resolve. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_45_1","unstructured":"TIS Committee. 1993. Tool Interface Standard (TIS): Portable Formats Specification Version 1.1. http:\/\/refspecs.linux-foundation.org\/elf\/TIS1.1.pdf"},{"key":"e_1_3_2_1_46_1","unstructured":"Vector35. 2022. Binary Ninja. https:\/\/binary.ninja"},{"key":"e_1_3_2_1_47_1","volume-title":"CTF Writeup: CTFSG CTF 2021 - reverse. https:\/\/ violenttestpen.github.io\/ctf\/pwn\/reverse\/2022\/03\/11\/ctfsg-ctf-21\/. Accessed","year":"2022","unstructured":"violenttestpen. 2022. CTF Writeup: CTFSG CTF 2021 - reverse. https:\/\/ violenttestpen.github.io\/ctf\/pwn\/reverse\/2022\/03\/11\/ctfsg-ctf-21\/. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_48_1","volume-title":"https:\/\/blog.metactf.com\/ unionized-cybergames-2021\/. Accessed","author":"Whitehead Caitlin","year":"2023","unstructured":"Caitlin Whitehead. 2021. Unionized Write-Up. https:\/\/blog.metactf.com\/ unionized-cybergames-2021\/. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_49_1","series-title":"0x0e 70 (2001)","volume-title":"The advanced return-into-lib (c) exploits: Pax case study. Phrack Magazine","author":"Wojtczuk Rafal","unstructured":"Rafal Wojtczuk. 2001. The advanced return-into-lib (c) exploits: Pax case study. Phrack Magazine, Volume 0x0b, Issue 0x3a, Phile# 0x04 of 0x0e 70 (2001), 227--242."},{"key":"e_1_3_2_1_50_1","volume-title":"https:\/\/sourceware.org\/pipermail\/libc-alpha\/2020-March\/111631.html. Accessed","author":"Zakharov Dmitry","year":"2023","unstructured":"Dmitry Zakharov. 2020. [PATCH] Fix integer overflow in getaddrinfo. https:\/\/sourceware.org\/pipermail\/libc-alpha\/2020-March\/111631.html. Accessed: May 9, 2023."},{"key":"e_1_3_2_1_51_1","volume-title":"Unix Signal Reference. https:\/\/lcamtuf.coredump.cx\/ signals.txt. Accessed","author":"Zalewski Michal","year":"2023","unstructured":"Michal Zalewski. 2001. Unix Signal Reference. https:\/\/lcamtuf.coredump.cx\/ signals.txt. Accessed: May 9, 2023."}],"event":{"name":"SIGCSE 2024: The 55th ACM Technical Symposium on Computer Science Education","location":"Portland OR USA","acronym":"SIGCSE 2024","sponsor":["SIGCSE ACM Special Interest Group on Computer Science Education"]},"container-title":["Proceedings of the 55th ACM Technical Symposium on Computer Science Education V. 1"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3626252.3630911","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3626252.3630911","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3626252.3630911","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,21]],"date-time":"2025-08-21T04:32:36Z","timestamp":1755750756000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3626252.3630911"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,3,7]]},"references-count":51,"alternative-id":["10.1145\/3626252.3630911","10.1145\/3626252"],"URL":"https:\/\/doi.org\/10.1145\/3626252.3630911","relation":{},"subject":[],"published":{"date-parts":[[2024,3,7]]},"assertion":[{"value":"2024-03-07","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}