Dailydave mailing list archives

Re: DefCON NOP Redux

From: "Anthony Lineberry" <anthony.lineberry () gmail com>
Date: Wed, 13 Aug 2008 18:34:17 -0700

I have to say, 40 minutes was a good limit. I struggled for a bit at
the beginning as I was unfamiliar with the tools. (I had never really
even used olly that much before).
But after I got the hang of them it was fun. I didn't think I was even
going to pull it off when it got close to the time limit. I was
definitely no Pusscat with fucking 16 minutes! what an asshole! But I
think had I had a copy of IDA and windbg, I might have been able to
speed up my time a bit.

As for how school of root did it... I'd love to know some specifics.
Past the fact that chris eagle has a factory of badasses. haha

--
Anthony Lineberry



On Wed, Aug 13, 2008 at 1:47 PM, Dave Aitel <dave () immunityinc com> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

So lots of people came to take the NOP test - almost everyone passed,
which was surprising. The average time to complete the exercise out of
the 26 people who took it was 32 minutes. This, of course, is a lot less
than the 2 hours that Microsoft quoted for the CANVAS Early Release of
MS08-025, which is what I hear they said catalyzed movement on some of
their new programs. You can read about these programs here (blackhat
slides are not up yet, to my knowledge):
http://www.microsoft.com/presspass/events/blackhat/materials.mspx

Regardless, there's clearly lots of interest in a hands-on-exploitation
certification. I find it's especially good for people who for whatever
reason cannot fill out their skills on their resume.

One thing that was interesting this year at Defcon was CTF, which was a
bit of a blowout, even though the game itself was reasonably fair and
there were lots of good teams competing. At some point it would be cool
if school of root (the winning team) posted how they did it.

- -dave


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIo0hFtehAhL0gheoRApnqAJ9Zw4MRSs1nNCGR9bZWWT0kWDPrSACfTw4u
f/NeYKmlu4DvxDkynckHRD8=
=tE4z
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

DefCON NOP Redux Dave Aitel (Aug 13)
- Re: DefCON NOP Redux Anthony Lineberry (Aug 14)
  - Re: DefCON NOP Redux Brandon Enright (Aug 14)
    - Re: DefCON NOP Redux RB (Aug 15)
- Re: DefCon CTF (was: DefCON NOP Redux) Doc Brown (Aug 14)
  - Re: DefCon CTF Jared DeMott (Aug 14)
    - Re: DefCon CTF Chris Eagle (Aug 15)
    - Re: DefCon CTF Red Dragon (Aug 15)
    - Re: DefCon CTF Chris Eagle (Aug 15)
    - Re: DefCon CTF jesse michael (Aug 15)
    - Re: DefCon CTF Doc Brown (Aug 15)
    - Re: DefCon CTF Jason Lewis (Aug 16)

(Thread continues...)