[<prev] [next>] [day] [month] [year] [list]
Message-ID: <CAA=gzfBE1gW9vfvbuP_hkukVaemmXRUCyq4thYwpixOwT96UFg@mail.gmail.com>
Date: Sat, 27 Sep 2014 19:16:11 +0530
From: Aditya Gupta <adi0x90@...il.com>
To: bugtraq <bugtraq@...urityfocus.com>
Subject: Hands-on Mobile (Android & iOS) + ARM Exploitation Training at Toorcon
Hello everyone,
I'm glad to announce that, I'll be running a 2-day class on Android,
iOS and ARM Hands-on Exploitation at Toorcon 2014 in San Diego this
October. The training will focus on a hands-on approach to find vulns
and exploit them on mobile applications as well as the platform as
well.
All the exercises will be performed on a customised Mobile
Exploitation training distro
and on a set of vulnerable labs built for Toorcon class. The labs
contains of over 25+
challenges over a span of 2 days along with 2 final CTF competition.
The goal of the class is to take the students from a ground level to
upwards of you being
able to find and exploit vulnerabilities in any real world
application. Some of the topics
that will be covered are :
[+] Internals of Android and iOS Security architecture
[+] Finding application based vulnerabilities
[+] OWASP Mobile Top 10 and lesser known vulns
[+] Exploiting Platform based weaknesses
[+] Assessing security of native apps
[+] Breaking obfuscation for mobile apps
[+] Security weaknesses in BYOD/MDM solutions
[+] Dex and Smali Labs for Android
[+] ARM Exploitation on Real world scenarios
Attendees will also be receiving :
[+] 3 months free access to online labs for mobile exploitation
[+] Reference materials for mobile exploitation
[+] Mobile Application Security Checklist for developers & security
professionals
[+] Winners of CTF will also receive author signed copy of "Learning
Pentesting for Android Devices"
I've been running a previous version of this class for the past two
years at Toorcon,
receiving amazing feedback from the students. Apart from Toorcon, a modified
early version of this training has also been conducted at BlackHat,
Syscan, OWASP AppSec, Brucon, HackInParis etc.
There are limited number of seats which usually fill out quite fast.
Register your spot
for the training by sending out the mail to secure[at]attify[dot]com
for discounts, or
could directly register from the website
(http://sandiego.toorcon.net/event-registration/?ee=14).
Looking forward to see you in class.
Powered by blists - more mailing lists