UNDERSTANDING EXPLOITATION AND FINDING VULNERABILITIES

Gain essential knowledge, and hands-on experience, in effective vulnerability detection tools and techniques, and how these vulnerabilities are wielded in exploitation of C++ and C applications. By deepening your understanding of exploitation, the motivations driving mitigations, and the identification of high-risk constructs, you will be able to design software that better meets your security needs.

This training is explicitly targeted at C++ developers, though C developers will also benefit.

The training will provide its students with:

knowledge on how to use tools to find vulnerabilities in native applications

give a hands-on experience in some exploitation techniques

 - Slack: Will be setup a week in advance to facilitate resolving of any technical issue

 cloud instance: guarantees same environment

This training is explicitly targeted at security professionals with some programming experience in C or C++.

: How to use tools like Address Sanitizer and fuzzers like AFL/libFuzzer to find and fix security vulnerabilities. Here you will use fuzzing to find the Heartbleed vulnerability in OpenSSL. You will also be tasked with fixing Heartbleed, and then reviewing the fix that was shipped at the time, to get a realistic impression of how difficult it can be to analyze and fix vulnerabilities in real life scenarios.

Exploiting Buffer Overflows with Custom Exploit Shellcode

: How to exploit buffer overflows and execute arbitrary code, and the mitigations that can help prevent it from happening. Here you will exploit a program with your own custom shellcode.

Return Oriented Programming (ROP) and Format Strings

: How to bypass stack protection mechanisms using ROP and generated ROP chains. And we’ll use format string vulnerabilities as an example of a completely different way of exploiting applications.

DAY 1 - FINDING VULNERABILITIES USING FUZZING

Introduction to exploitation, vulnerabilities and specifications

Mitigations and Tooling: Static and Dynamic Analysis

Undefined Behaviour and Compiler Optimizations

DAY 2 - EXPLOITATION AND WRITING SHELLCODE

Exploitation: Writing and Testing Custom Shellcode

Exploitation: Return Oriented Programming (ROP)

This training is aimed at developers with some C and C++ knowledge.

Auth0

CyberRes

Elastic

Secure Code Warrior

Synopsys

NDC Security 2023

Clarion Hotel Oslo

Fortify

mend.io

SecureFlag

Veeam
Veeam® is the leader in Backup solutions that deliver Cloud Data Management™. Veeam provides a single platform for modernizing backup, accelerating hybrid cloud and securing your data. With 365,000+ customers worldwide, including 81% of the Fortune 500 and 66% of the Global 2,000, Veeam customer-satisfaction scores are the highest in the industry at 3.5x the average. Veeam’s global ecosystem includes 70,000+ partners, including HPE, NetApp, Cisco and Lenovo as exclusive resellers. Veeam was recently acquired by American Insight Partners and has offices in more than 30 countries. To learn more, visit https://www.veeam.com​ or follow Veeam on Twitter @veeam.​

Veeam

NDC Security Oslo 2024

Radisson Blu Scandinavia Hotel

Patricia Aas

Bloomberg Engineering


Cisco
Cisco helps seize the opportunities of tomorrow by proving that amazing things can happen when you connect the unconnected. And, as a part of the Cisco portfolio, Webex Rooms connects people to productivity rather than getting in the way of it by promoting the ability for them to work where they want, when they want, and how they want to get stuff done. The world works better face to face, and whether there is a need to work remote or in-person, Webex Rooms delivers the collaboration tools for that authentic interaction. We are proud to have one of the largest R&D sites in Norway with over 400 employees, developing and designing collaboration tools!

Cisco Webex

We use our competence and technology to provide energy to a growing population in a responsible manner. This guides us as we work towards a future where energy is affordable and sustainable for all.

Equinor

At JetBrains, code is our passion. For over 15 years we have strived to make the strongest, most effective developer tools on earth. By automating routine checks and corrections, our tools speed up production, freeing developers to grow, discover and create.

Jetbrains

Kongsberg

NDC TechTown 2024

Magazinet Kongsberg

Patricia Aas is an international speaker and has spoken at CppCon, ACCU, C++OnSea, NDC Security, NDC Oslo and many other conferences on subjects ranging from Sandboxing in Chromium to Vulnerabilities in C++. She has taught a range of subjects in Computer Science at the University of Oslo.

Patricia has a masters degree in Computer Science and 13 years professional experience as a programmer, most of that time programming in C++. During that time she has worked in codebases with a high focus on security: two browsers (Opera and Vivaldi) and embedded Cisco telepresence systems.

(In)Secure C++: Sec Edition

UNDERSTANDING EXPLOITATION AND FINDING VULNERABILITIES

SECURE CODING PRACTICES IN C++

PRACTICAL INFORMATION

SOME OF THE TOPICS COVERED

TRAINING SCHEDULE

DAY 1 - FINDING VULNERABILITIES USING FUZZING

DAY 2 - EXPLOITATION AND WRITING SHELLCODE