Dailydave mailing list archives
Re: DefCON NOP Redux
From: "Anthony Lineberry" <anthony.lineberry () gmail com>
Date: Wed, 13 Aug 2008 18:34:17 -0700
I have to say, 40 minutes was a good limit. I struggled for a bit at the beginning as I was unfamiliar with the tools. (I had never really even used olly that much before). But after I got the hang of them it was fun. I didn't think I was even going to pull it off when it got close to the time limit. I was definitely no Pusscat with fucking 16 minutes! what an asshole! But I think had I had a copy of IDA and windbg, I might have been able to speed up my time a bit. As for how school of root did it... I'd love to know some specifics. Past the fact that chris eagle has a factory of badasses. haha -- Anthony Lineberry On Wed, Aug 13, 2008 at 1:47 PM, Dave Aitel <dave () immunityinc com> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 So lots of people came to take the NOP test - almost everyone passed, which was surprising. The average time to complete the exercise out of the 26 people who took it was 32 minutes. This, of course, is a lot less than the 2 hours that Microsoft quoted for the CANVAS Early Release of MS08-025, which is what I hear they said catalyzed movement on some of their new programs. You can read about these programs here (blackhat slides are not up yet, to my knowledge): http://www.microsoft.com/presspass/events/blackhat/materials.mspx Regardless, there's clearly lots of interest in a hands-on-exploitation certification. I find it's especially good for people who for whatever reason cannot fill out their skills on their resume. One thing that was interesting this year at Defcon was CTF, which was a bit of a blowout, even though the game itself was reasonably fair and there were lots of good teams competing. At some point it would be cool if school of root (the winning team) posted how they did it. - -dave -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIo0hFtehAhL0gheoRApnqAJ9Zw4MRSs1nNCGR9bZWWT0kWDPrSACfTw4u f/NeYKmlu4DvxDkynckHRD8= =tE4z -----END PGP SIGNATURE----- _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
_______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- DefCON NOP Redux Dave Aitel (Aug 13)
- Re: DefCON NOP Redux Anthony Lineberry (Aug 14)
- Re: DefCON NOP Redux Brandon Enright (Aug 14)
- Re: DefCON NOP Redux RB (Aug 15)
- Re: DefCON NOP Redux Brandon Enright (Aug 14)
- Re: DefCon CTF (was: DefCON NOP Redux) Doc Brown (Aug 14)
- Re: DefCon CTF Jared DeMott (Aug 14)
- Re: DefCon CTF Chris Eagle (Aug 15)
- Re: DefCon CTF Red Dragon (Aug 15)
- Re: DefCon CTF Chris Eagle (Aug 15)
- Re: DefCon CTF jesse michael (Aug 15)
- Re: DefCon CTF Doc Brown (Aug 15)
- Re: DefCon CTF Jason Lewis (Aug 16)
- Re: DefCon CTF Jared DeMott (Aug 14)
- Re: DefCON NOP Redux Anthony Lineberry (Aug 14)