CanSecWest Vancouver 2013

Site menu:

Register | Conference | Dojo | Speakers | Agenda | Slides | Hotel & Travel | Contact

Security Masters Dojo

Advanced and intermediate security training and technology enhancement for information security professionals.

Introductory Exploit Lab

Register for March 2-3 Course

Advanced Exploit Lab

Register for March 4-5 Course

Register for both Courses

Intro and Advanced labs

Instructor(s):
Saumil Shah
Josh Ryder

Description

The Advanced Exploit Laboratory for CanSecWest 2013 is an all new intermediate to advanced level class, for those curious to dig deeper into the art and craft of software exploitation. We begin with a quick overview of stack overflows, exception handler abuse, memory overwrites, and other core concepts. The class then moves on to use-after-free bugs and vtable overwrites, especially applicable to browser and PDF exploits. The class also spends a lot of time focusing on defeating modern day exploit mitigation techniques like DEP and ASLR using Return Oriented Programming (ROP).

To add extra punch, we are introducing an all new section practical exploitation of browsers on the Android platform and working with ARM exploits. This is one class you don't want to miss!

The Exploit Laboratory requires a lot of hands on work. Lab examples used in this class cover Linux, Windows and Android platforms, featuring popular third party applications and products instead of simulated lab exercises.

As with the popular Exploit Laboratory, all topics are delivered in a down-to-earth, learn-by-example methodology. The same trainers who brought you The Exploit Laboratory for over eight years have been working hard in putting together advanced material based on past feedback.

PREREQUISITE WARNING Each class has prerequisites for software loads and a laptop is mandatory. These individual class guides will list material the students are expected have knowledge about coming in and software tools that need to be pre-installed before attending so you get the maximum benefit from the focused intermediate or advanced level course. Please pay particular attention to the prerequisites, as the material listed there will not be reviewed in the courses, and will be necessary to get the maximum benefit out of these educational programs.

Learning Objectives

• Stack Overflows
• Use-after-free bugs and vtable overwrites
• Browser Exploits
• PDF Exploits
• Introduction to Return Oriented Programming
• Defeating DEP using ROP
• Practical ROP Exploits
• Bypassing ASLR on Windows 7
• Advanced Heap Spray techniques
• Leaked memory pointers and Dynamic ROP chains
• Introduction to the Android Platform
• Practical exploitation of Webkit on Android

Daily Class Outline

Day 1:

• Introduction to systems concepts
• Stack overflows on Linux and Windows
• Use-after-free bugs
• vtable overwrites
• Browser Exploits
• PDF Exploits

Day 2:

• Defeating DEP using Ret2LibC
• Introduction to Return Oriented Programming
• ROP gadgets and stack flips.
• Practical ROP Exploits
• Bypassing ASLR on Windows 7
• Advanced Heap Spray techniques
• Introduction to the Android Platform
• Practical exploitation of Webkit on Android

TARGET AUDIENCE

• Red Team members, who want to pen-test custom binaries and exploit custom built applications.
• Bug Hunters, who want to write exploits for all the crashes they find.
• Members of military or government cyberwarfare units.
• Members of reverse engineering research teams.
• Pen-testers, Security analysts, Security auditors, who want to take their skills to the next level and write their own exploits instead of borrowing them.
• People frustrated at software to the point they want to break it!

PREREQUISITES

• Have a working knowledge of operating systems, Win32 and Unix.
• A conceptual understanding of functions and stacks.
• Not be allergic to command line tools.
• Use vi/pico/joe editors.
• Have a working knowledge of shell scripts, cmd scripts or Perl.
• Understanding of C programming would be a bonus.

HARDWARE REQUIREMENTS

• A working laptop (no Netbooks, no Tablets, no iPads)
• Intel Core 2 Duo x86/x64 hardware (or superior) required
• 4GB RAM required, at a minimum
• Wireless network card
• 20 GB free Hard disk space

SOFTWARE REQUIREMENTS

• Linux / Windows / Mac OS X desktop operating systems
• VMWare Player / VMWare Workstation / VMWare Fusion MANDATORY
• Administrator / root access MANDATORY

Sponsors:

More Information:

Sponsorship Information | Valid XHTML | Valid CSS

Wise words:

"Sen Sen No Waza - to strike the opponent after he has formed the intention to attack and has committed to a specific motion."

Copyright © dragostech.com inc. All Rights Reserved.