I have been lately training myself on windows exploitation using multiples resources , but I learnt a lot this time in topics such as how to perfom buffer overflows , seh , multiples way to jmp a shellcode
call / jmp esp pop ret push ret small buff SEH
I also learn bypasing DEP using ROP , bypassing ASLR using non-ASLR modules, partial overwrite,bruteforce address space , theorical and practical knowlegde about safeSEH and SEHOP . the use of egghunters , but however I skipped a bit the module of unicode for shellcoding on windows / linux . I could consider myself I am at level 2 of exploit development , and level 3 I could say everything related to heap , wingdb , UAF , and etc. what things should I go for right now ? my main goal right now is to hunt bugs specially memory corruption ones , browsers , and cool ones . I know I could not have the level for that right now , but I could . so my question is where should I go ?