Make exploitation workflow explicit

index.html

@@ -322,6 +322,21 @@ x86 is a **little-endian** architecture
 ]
 ---
 template: inverse
+# Exploitation workflow
+---
+.left-column[
+## Exploitation workflow
+]
+.right-column[
+- Find input to overflow
+- Figure out exact needed length for overflow to overwrite return address
+- Place shellcode in memory, ideally with a NOP-sled in front
+- Figure out shellcode location
+- Use overflow to point the return address at shellcode/NOP-sled
+  - Do take endianness into account
+]
+---
+template: inverse
 # Demo
 ---
 .left-column[