Building Security Nerds
Download
Report
Transcript Building Security Nerds
Training Security Nerds:
Computum deos ab hominibus
Xeno Kovah
tl;dt
Required
(partial)
Recommended
r0x0r Skill Tree
Delivered
Malware
Analysis
Future
Advanced x86:
Real Mode
Exploits 3
(2 day, Corey Kallenberg, TBD)
2 day, Matt Briggs, TBD
(3day, John Butterworth, Fall
2012)
Advanced x86:
Virtualization
Rootkits
(2 day, Xeno Kovah)
(2day, David Weinstein, TBD)
Intermediate
x86
(2 day, Xeno Kovah)
ARM
Architecture
(3 day, TBD)
Reverse
Engineering
Exploits 2
(2 day, Corey Kallenberg, TBD)
(2 day, Matt Briggs)
Life of
Binaries
Vulnerabiliti
es & Exploits
1
(2 day, Xeno Kovah)
(2 day, Corey Kallenberg )
Intro x86
(2 day, Xeno Kovah)
Using TPMs
(2 day, Ariel Segall, TBD)
The great pyramid of security knowledge,
as built by slaves to curiosity
The great pyramid of security knowledge,
as built by slaves to curiosity
The great pyramid of security knowledge,
as built by slaves to curiosity
That's the "logo"
Pretty awesome huh?
OPEN
SECURITY
TRAINING
.INFO
(\Why.html)
Why should you teach?
Selfish
Make mad cash
Look good at or outside of work by showing what you
know
Look good at work by creating a training program
Reinforce existing and learn new material for your own
usage
Improve your presentation skills
Networking & Collaboration
Generate (hopefully) loyal underlings
Why should you teach?
Altruistic
Pay forward what you've learned from others
Lower the cost of training for everyone
Reduce the inefficiency of n00b bootstrapping
Consistency of shared baseline knowledge on
project/at company.
Get more deep technical peers faster
Push your field forward faster
Why should you contribute?
Selfish
Show that your material is vastly superior to
others’
Increase your reputation
Platform to advertise that you are willing to
offer private training for organizations which
don’t have people who can pick up the
material for internal training (works good for
niches.)
Why should you contribute?
Altruistic
Reduce duplication of effort
You've got "abandonware" class material that
you would like to give a second life
Save people time when generating new
classes
Set a new, higher, baseline for expectations of
knowledge
Build better organized ordered progressions to
get bootstrap deep skills faster
Questions?
www.OpenSecurityTraining.info
(If you see just a blank page, it means
you're using a broken version of IE.
Shame on you.)
Bonus Content!
CHEAT CODE ENABLED!
r0x0r Arcade
Some learning requires grinding!
But it can still be accelerated!
http://code.google.com/p/roxor-arcade
Such timeless classics as:
BinDeciHex
The *other* ESP game
1 step forward 3 steps back
Whack-a-ssembly/Assembly Munchers
May your buffer overfloweth
At the demos there's time for!
Thanks