HeapVault - Heap exploitation made simple
November 10th, 2025 | Bucharest
HeapVault is a hands-on course for people who struggle to understand heap exploitation.
Learning resources are scattered and confusing, so HeapVault puts everything in a simple, step by step order.
You’ll practice old tricks that worked on older glibc versions (like 2.23) and modern techniques that work on recent glibc versions (up to 2.41).
HeapVault doesn’t teach one single exploit, it teaches how the allocator works under the hood.
As the saying goes: “Give a man a fish and you feed him for a day; teach him to fish and you feed him for a lifetime.” By reading real glibc code and exploring the labs, you’ll learn the thinking and steps needed to build heap exploits.
Why is this workshop relevant?
Heap exploitation is a core skill in modern cybersecurity, as most real-world memory bugs today affect the heap rather than the stack.
With modern protections making classic stack exploitation less practical, attackers and defenders need to understand heap internals to keep up.
Workshop agenda
- Internals (Why is malloc used, Chunks, Hooks, Fastbins)
- Fastbin Dup
- Understanding the unsortedbins and its sorting process, Unsortedbin attack
- Challenge starground
- Largebins, Largebin attack, House of Storm
- Introduction to tcache, tcache dup, House of Botcake
- Removal of hooks, FSOP
- Challenge suisoku
- Modern House of Botcake, House of Kiwi/Apple2
About the trainer
MARC LUCHIAN
I’m Luchian Marc, penetration tester at Bit Sentinel and independent security researcher with two years of professional experience.
I was part of Romania’s team for the European Cyber Security Challenge (ECSC), and I hold the eCXD, eCRE, OSCP, and OSED certifications.
My work combines hands-on penetration testing with ongoing security research, with a focus on practical exploit development, vulnerability discovery, and designing CTF challenges.
Who is it for?
Beginner–Intermediate level course for security researchers, CTF players, bug-hunters and junior exploit developers who already understand stack pwn/ROP but struggle to grasp heap exploitation techniques.
Key learning objectives:
✔ Understand glibc heap internals and allocator behavior
✔ Identify and analyze common heap vulnerabilities (use-after-free, double free, overflow)
✔ Learn FSOP and modern heap exploitation techniques as well as older ones
Other information & prerequisites
Basic GDB general knowledge, and a basic understanding of binaries and stack layout. Familiarity with compiling C programs, reading assembly, and a little python scripting.
Technical requirements for attendees:
Required OS: Any Linux distribution that uses glibc, attendees must bring their own laptops.
Estimated Workshop Duration: 9 hours
Language of Instruction: Romanian / English if non-Romanian participants present.
Participation fee: EUR 200
FAQs
If we do not meet the minimum number of participants, you can either transfer to another workshop and pay or receive a refund for any difference in price, or opt for a full refund. You will be notified in advance and given options to choose what works best for you.
The workshop price covers food. However, accommodation is not included, but we can recommend nearby options for your convenience.
Yes, full refunds are available up to 15 days before the workshop start date. However, if you cancel after that, we can offer only 50% of the price.
You will receive an email with all the necessary details, including the workshop location, prerequisites, and schedule, at least one week before the event. If you have any immediate questions, feel free to reach out to us directly.