• Online, Self-Paced
Course Description

The OpenSSL infinite loop vulnerability (CVE-2022-0778) is a critical flaw impacting systems running OpenSSL versions 1.0.2, 1.1.1 and 3.0. If exploited, this vulnerability allows adversaries to perform a denial-of-service (DOS) attack. Take our course to exploit this vulnerability in a secure lab environment.

Learning Objectives

After completing this course, you will be able to:
- Define the OpenSSL infinite loop attack, describe its root cause, and communicate its significance to key organizational stakeholders.
- Exploit this vulnerability using publicly available exploit code.
- Execute various mitigation tactics to reduce risk.

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Cyber Operations
  • Exploitation Analysis