Security Basics mailing list archives
Advanced Android & iOS Hands-on Exploitation Training at Toorcon San Diego
From: Aditya Gupta <adityagupta1991 () gmail com>
Date: Fri, 3 Oct 2014 20:39:40 +0530
Hello everyone, I'm Aditya from Attify. I'm glad to announce that, I'll be running a 2-day class on Android, iOS and ARM Hands-on Exploitation at Toorcon 2014 in San Diego this October. The training will focus on a hands-on approach to find vulns and exploit them on mobile applications as well as the platform as well. All the exercises will be performed on a customised Mobile Exploitation training distro and on a set of vulnerable labs built for Toorcon class. The labs contains of over 25+ challenges over a span of 2 days along with 2 final CTF competition. The goal of the class is to take the students from a ground level to upwards of you being able to find and exploit vulnerabilities in any real world application. Some of the topics that will be covered are : [+] Internals of Android and iOS Security architecture [+] Finding application based vulnerabilities [+] OWASP Mobile Top 10 and lesser known vulns [+] Exploiting Platform based weaknesses [+] Assessing security of native apps [+] Breaking obfuscation for mobile apps [+] Security weaknesses in BYOD/MDM solutions [+] Dex and Smali Labs for Android [+] ARM Exploitation on Real world scenarios Attendees will also be receiving : [+] 3 months free access to online labs for mobile exploitation [+] Reference materials for mobile exploitation [+] Mobile Application Security Checklist for developers & security professionals [+] Winners of CTF will also receive author signed copy of "Learning Pentesting for Android Devices" I've been running a previous version of this class for the past two years at Toorcon, receiving amazing feedback from the students. Apart from Toorcon, a modified early version of this training has also been conducted at BlackHat, Syscan, OWASP AppSec, Brucon, HackInParis etc. There are limited number of seats which usually fill out quite fast. Register your spot for the training by sending out the mail to secure[at]attify[dot]com for discounts, or could directly register from the website (http://sandiego.toorcon.net/event-registration/?ee=14). Looking forward to see you in class. -Aditya ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Advanced Android & iOS Hands-on Exploitation Training at Toorcon San Diego Aditya Gupta (Oct 03)