nullcon Courses

nullcon

nullcon Goa 2014:- Phone pdf A virtual PDF Analysis Framework by Kiran Bandla

Syllabus: Intro Lightning version Adobe Reader Code Exec Vulns in Reader Previous Work Design The Parser Parsing is not fun Example #1: Raw to Python Example #2 The Analysis Engine JavaScript #2 Adobe DOM Emulation Adobe XML Forms Architecture / X 'Rende…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2014:- Multi-value WiFi What the Heck is it by Abhijeet Ghosh @Airtight

Syllabus: Introduction What is WiFi Off the shelf available devices Wireless WiFi Security Multivalue WiFi Rogue AP Threat Matrix Bring Your Own Device Latest State of Technology WiFi Troubleshooting WiFi Intrusion Prevention Plug and Play Summary

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2014:- Fuzzing the easy way using Zulu by Andy Davis

Syllabus: Intro What is Zulu? Motivations behind the tool Zulu basics - the GUI Zulu basics – typical data Zulu basics – the console File structure Configure the proxy Use the standard network clien Select some fuzz points Select mutators Select output m…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2014: O'Dea Assertions Untwining the Security of the SAML protocol by Achin Kulshrestha

Syllabus: Introduction Cloud Applications Multiple User Names What happened What is SAML What is Federation Single Sign On SAML Components Who Sample desertion Assertions Request response Web services Alternative to Web services Security of SAML Authenti…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2014:-Advanced Smartphone Forensics by Vladimir Katalov @elcomsoft

Syllabus: Intro Smartphone forensics methods iOS forensics Backups - what and when Wait, there is more... Frequent locations Location services Do you really trust your charger? Pair-locking Advanced logical acqusition iCloud Control Panel iCloud backups…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2014:- Attacking WPA/WPA2 in the Cloud by Vivek Ramachandran

Syllabus: Intro Shameless Self Promotion SecurityTube.net Training Pentester Academy WPA-Personal - Passphrase Base WPA-PSK Dictionary Attack Open Source Tools Available! PBKDF2 PMK Generator Architecture Worker Architecture Relational Database in the Cl…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2014:- [Keynote] The Security Challenge by Shantanu Ghosh

Syllabus: Symantec. Surge in Targeted Attacks and APTS Critical infrastructure under threat Data Center: The Real Target Expanding boundaries create risk everywhere Internet of Things

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2013: Bug Bounty Programs Crowd Sourcing Security by Raymond Forbes

Syllabus: Introduction Why am I here Mozilla Bug Bounty Program History of Bug Bounty Programs Types of Bug Bounty Programs Black Market Client Programs Program Values Vendor vs Black Market Negative impact on reputation Benefits Concerns Encouraging att…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2013 - Inception of graphical passwords - By Rishi Narang

Syllabus: Introduction Agenda Passwords Security Effects Password forgetfulness alphanumeric symbols issues with passwords drawing Eureka Idea Demo Code walkthrough Future features Not so good points Future roadmap

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

nullcon Goa 2013 - SMS to Meterpreter - Fuzzing USB Modems - By Rahul Sasi

Syllabus: Intro What do you do Agenda Devices in India Similarities USB Modems Phone Number Network Manager Modem Dialer Modem Setup Social Engineering Attack Mass Pitching Attack SMS Passing Module SMS Architecture Understanding SMS Reading SMS Encoding…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

Introduction to Threat Modeling | Siddhant Chouhan | Winja Unplugged

Syllabus: Introduction Threat Model Handson Threat Modeling Thread Dragon Data Flow Threat Model Demo Conclusion

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

Using k8s to deploy security services in a hostile world |John Nichols | Nullcon Conference Mar 2021

Syllabus: Intro Administrative notes! My three step plan Services I started with Cloud setup process The cron process This was actually really hard Where is this project now?

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

Unearthing Malicious And Risky OpenSource Packages Using Packj by Ashish Bijlani Devdutt Patnaik

Syllabus: Intro Open-source software is everywhere Package Managers Package Installation today - dependency hell Software Supply Chain Attack Attack Techniques: Typosquatting Technique: Social Engineering Technique: Dependency Confusion Technique: Accoun…

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

Pushing Security Left By Mutating Byte Code by Gaurav Gogia | Nullcon Goa 2022

Syllabus: Introduction Agenda Push Security Left Debug Version Constant Obfuscation Cross Compilation Binary Debug Theory Encryption Capture Memory Testing Limitations Key Generation Website Questions

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course

nullcon

The Faces Of MacOS Malware Detecting Anomalies In A Poisoned Apple by Amit Malik & Pratik Jeware

Syllabus: Introduction Agenda MacOS Malware Landscape Detection Technology My Attack Framework OS Query Case Study Utility Variation Offensive Tools Unusual Utility Correlation

• YouTube
• Less than 1 hour of material
• On-Demand
• Free Online Course