Confidence - (28-29.05 2013 Krakow)
Język: polski | english

Warsztaty

Przy okazji tegorocznej edycji CONFidence organizujemy szkolenia dodatkowe przed konferencją. W poniższym wątku umieszczać będziemy informacje o kolejnych szkoleniach:

  • 27 maja, Warsztaty prowadzone przez Georgie Weidman na temat Attacking and Securing Mobile Devices

  • 27 maja, serdecznie zapraszamy na profesjonalne warsztaty prowadzone przez Fernando Gont’a, na temat IPv6 Hacking Crash Course

Attacking and Securing Mobile Devices – Georgia Weidman

As smartphones take over the workplace, and customers begin deploying smartphone applications as frequently as traditional web applications, it falls to security professionals to integrate these new technologies into penetration testing. How will your organization fair when the smartphone apocalypse arrives? In this course we will study in-depth the techniques used by hackers to exploit mobile phone platforms and applications. We will look at smartphone jailbreaks/roots and real malicious code samples seen in the wild. We will look analyze smartphone apps, using open source tools and manual skills to detect potential attacks and vulnerabilities. Additionally, we will look at real world examples of smartphone apps with vulnerabilities exploitable by attackers. We will cover hands-on exercises exploiting real smartphone platforms and applications. After brushing up on the offensive side, we will switch gears and discuss available methods of defending smartphones in the workplace against the myriad attack vectors. We will look at using the same methods used by attackers for evil, for good to defend smartphone devices and the sensitive data they access. In this course we will use several open source tools for assessing smartphones such as the instructors own Smartphone Pentesting Framework.

Miejsce: Kraków

Data: 27.05.2013

Szacowany czas trwania warsztatów: 9h

Cena: 450 Euro / 1800zł netto.

Cena zawiera:

  • udział w warsztatach,
  • przerwy kawowe,

Język prezentacji: angielski

Liczba uczestników: minimalnie 5 osób, maksymalnie 15

Rejestracji można dokonywać pod adresem: http://2013.confidence.org.pl/mobile

IPv6 Hacking Crash Course – Fernando Gont

The IPv6 protocol suite was designed to accommodate the present and future growth of the Internet, by providing a much larger address space than that of its IPv4 counterpart, and is expected to be the successor of the original IPv4 protocol suite. The imminent exhaustion of the IPv4 address space has resulted in the deployment of IPv6 in a number of production environments, with many other organizations planning to deploy IPv6 in the short or near term.

There are a number of factors that make the IPv6 protocol suite interesting from a security standpoint. Firstly, being a new technology, technical personnel has much less confidence with the IPv6 protocols than with their IPv4 counterpart, and thus it is more likely that the security implications of the protocols be overlooked when the protocols are deployed. Secondly, IPv6 implementations are much less mature than their IPv4 counterparts, and thus it is very likely that a number of vulnerabilities will be discovered in them before their robustness matches that of the existing IPv4 implementations. Thirdly, security products such as firewalls and NIDS’s (Network Intrusion Detection Systems) usually have less support for the IPv6 protocols than for their IPv4 counterparts. Fourthly, the security implications of IPv6 transition/co-existence technologies on existing IPv4 networks are usually overlooked, potentially enabling attackers to leverage these technologies to circumvent IPv4 security measures in unexpected ways.

The imminent global deployment of IPv6 has created a global need for security professionals with expertise in the field of IPv6 security, such that the aforementioned security issues can be mitigated.

IPv6 Hacking Crash Course provides a full-day intense IPv6 hacking experience, focusing on hands-on IPv6 hacking exercises. The training is carried out by Fernando Gont, a world-renowned IPv6 security expert.

Opis:
PDF

Miejsce: Kraków

Data: 27.05.2012

Szacowany czas trwania warsztatów: 9h

Cena: 450 Euro / 1800zł netto.

Cena zawiera:

  • udział w warsztatach,
  • przerwy kawowe,

Język prezentacji: angielski

Rejestracji można dokonywać pod adresem: http://2013.confidence.org.pl/ipv6

UWAGA! LICZBA MIEJSC OGRANICZONA!!

Wymagania dla uczestników:

Uczestnicy pracują na własnych laptopach w grupach dwuosobowych (dwie osoby, dwa komputery per stanowisko). Komputery powinny być wyposażone w karty sieciowe zgodne z 802.11a oraz napęd DVD.