- Malicious PDF Analysis Workshop Advance Screening
This workshop will teach you the fundamentals you need to know to analyze (malicious) PDF documents. Didier Stevens will familiarize you with PDFiD and pdf-parser, two essential tools for PDF analysis he authored. We start with a very simple, PoC malicious PDF file (you could even analyze this PoC file with Notepad or vi) to lay out the fundamentals, and then work through more complex examples.
More details here.
- White Hat Shellcode Workshop
In this workshop, we will present shellcode designed to protect systems, in stead of attacking systems. Some examples: shellcode to unload a DLL - shellcode to enable DEP - shellcode to patch a vulnerability – shellcode to test a security setup - shellcode to prevent heap sprays (from my HeapLocker tool).
- Windows x64 The Essentials Workshop
In this workshop, we will touch upon important differences between 32-bit and 64-bit Windows. Some examples: how to develop and inject an x64 DLL - how to develop x64 shellcode - how to develop and sign an x64 kernel driver - how does WoW64 allow us to run 32-bit applications on a 64-bit system?
- Workshop Bundle
Get all 3 workshops at a 20% discount.