To start learning pwn (binary exploitation) from scratch, follow this roadmap: 1. Basics: Learn C programming (e.g., “The C Programming Language” by K&R) and Linux fundamentals (e.g., “The Linux Command Line” by William Shotts). 2. Memory Concepts: Understand memory layout (stack, heap, data, text segments) and basic x86/x86_64 assembly (e.g., Intel's assembly language programming guide). 3. Basic Exploitation: Study stack buffer overflows and format string vulnerabilities using resources like Our KZbin channel and Exploit Exercises using OverTheWire Narnia, Behemoth sections etc.. 4. Intermediate Techniques: Learn Return-Oriented Programming (ROP) and heap exploitation (e.g., “Hacking: The Art of Exploitation” by Jon Erickson and Phrack articles). 5. Advanced Techniques: Focus on bypassing modern protections (ASLR, DEP, stack canaries) and kernel exploitation (e.g., “The Shellcoder’s Handbook” by Chris Anley). 6. Practice: Participate in CTFs (listed on CTFTime) and use practice platforms like Hack The Box, pwnable.kr, and OverTheWire. 7. Community and Continuous Learning: Join forums, Discord servers, and Reddit communities like r/Netsec and r/ExploitDev to stay updated and engaged. By following these steps, you'll build a solid foundation in binary exploitation. Good luck!