Learn real-world skills from real-world cyber security practitioners. View upcoming Live Online Events.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

IDA Pro Challenge Walk Through & What's New in SEC760 'Advanced Exploit Dev'

  • Thursday, April 02, 2020 at 3:30 PM EDT (2020-04-02 19:30:00 UTC)
  • Huáscar Tejeda, Stephen Sims

You can now attend the webcast using your mobile device!

  

Overview

In February, the SANS Pen Test curriculum posted a binary exploitation challenge where the winner received a licensed copy of IDA Pro. You can check it out here: https://twitter.com/Steph3nSims/status/1233119624658481157?s=20 This was a Linux heap challenge which can be rather intimidating. Many who attempted the challenge asked for a walk through and we are happy to provide that for everyone. We also want to take the opportunity to let you know what's new in the associated course, SEC760: Advanced Exploit Development.

Speaker Bios

Huáscar Tejeda

Huáscar Tejeda is the Co-Founder & CEO of F2TC Cyber Security. He is a seasoned cybersecurity professional, thoroughly experienced with more than 20 years with notable achievements in IT and Telecommunications, developing carrier grade security solutions and business critical components for multiple broadband providers. Highly skilled in Security Research, Penetration Testing, Linux Kernel Hacking, Software Development and Embedded Hardware Design. In his spare time, Huáscar enjoys technical scuba diving and playing guitar.


Stephen Sims

Stephen Sims is an industry expert with over 15 years of experience in information technology and security. Stephen currently works out of San Francisco as a consultant. He has spent many years performing security architecture, exploit development, reverse engineering, and penetration testing. Stephen has an MS in information assurance from Norwich University and is a course author and senior instructor for the SANS Institute. He is the author of SANS' only 700-level course, SEC760: Advanced Exploit Development for Penetration Testers, which concentrates on complex heap overflows, patch diffing, and client-side exploits. Stephen is also the lead author on SEC660: Advanced Penetration Testing, Exploits, and Ethical Hacking and co-author of SEC599: Defeating Advanced Adversaries – Purple Team Tactics & Kill Chain Defenses. He holds the GIAC Security Expert (GSE) certification as well as the CISSP, CISA, Immunity NOP, and many other certifications. In his spare time Stephen enjoys snowboarding and writing music.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.