AREA41 2018 Technical Workshops

The workshops consist of technical hands-on training sessions with renowned security experts.
Limited space will be available on site, so just drop by.
The workshops are free, but you need a conference ticket to attend.

Workshop UploadScanner - Filing Fiddly Files

Teachers: Tobias "floyd" Ospelt

Date: Friday, June 15, 14:00 - 17:10

Tickets: It is free, but you need to reserve a seat.
And you need a conference ticket to enter.

Location: Xtra (same venue as conference)

Abstract:
Testing web applications is a standard task for every penetration tester. Various automated and semi-automated security testing tools exist. However, they all lack suitable tests for web-based file uploads. Web-based file uploads are critical components of web applications, provide a large attack surface and therefore require proper security testing. While a lot of techniques for file upload testing are known, they often lack proper documentation, are very specific to one use case and require extensive hand-tailoring to each application. Therefore, a file upload testing extension for most pentester's favorite tool - Portswigger's Burp Proxy - was implemented. The developed Burp extension is aiming to automate the testing as far as possible and requires configuration only where necessary. The tool covers various techniques, such as resizing images before uploading them, injecting code into file formats while keeping the file format intact and trying to automatically identify requests performing non-multipart file uploads. The Burp extension's entire code will be released on github after this workshop. Due to lack of other tools, we hope for this tool to become a de-facto standard for testing file uploads.

Description This workshop will give an introduction to the yet unreleased UploadScanner extension developed by modzero AG for Portswigger's Burp Proxy software. The goal is to show pentesters, security analysts and (future) bug bounty hunters how to use the extension to find security issues in web applications that provide any kind of file upload possibility. Participants get the unique chance to use the extension before its official release at area41 in June 2018. The extension already allowed identifying several security issues during pentests and also identified an issue in a website that offers bug bounties.

The workshop covers basic aspects of file uploads such as multipart HTTP requests and other file upload requests. It also explains how security issues can be detected and which requests to the web application are necessary. After this introduction, participants will install the UploadScanner on their machines. The different features of the UploadScanner are then explained and combined with hands-on exercises. If there is time, participants can pick their own bug bounty target, scan it and who knows, maybe write a report for a bug bounty program...

About the author The workshop is held by Tobias "floyd" Ospelt, security analyst at modzero AG and author of the UploadScanner extension. He is a penetration tester working for modzero AG and a researcher in various fields of the IT security world. In the past years he collected a bug bounty from Twitter by finding a TLS race condition in their iOS application, developed a technique to crack Java JKS private keys, used a lot of electricity for his fuzzing farm and wrote several Burp extensions. When he's not developing memory corruption exploits on ARM, running evil wireless access points or developing tools for the AFL fuzzer, he tries to break Android related security mechanisms.

Prerequisites for participants

  • Basic understanding of the HTTP protocol
  • Simple usage of Burp Proxy software and how to install a Burp Python extension
  • Basic knowledge of most web application security issues
  • A laptop (Windows or OSX or VM) with administrative privileges
  • Installed Burp Pro. As the extension works only with Burp Pro version, a trial license has to be requested for the workshop. Please get in touch if that's not possible for you.

Workshop Adversary Simulation

Teachers: Experts from SCIP

Date: Friday, June 15th and Saturday June 16th during the day

Tickets: It is free, but you need a conference ticket to enter.

Location: Xtra (same venue as conference)

Abstract:
This workshop gives you an opportunity to test your hacking skills in an Active Directory (AD) environment. We set up an AD infrastructure and placed several vulnerabilities and insecure configurations on some of the servers. The vulnerabilities are built on different levels of difficulty, in order to become domain admin different flaws have to be exploited and combined. Here you can train and explore your skills in exploitation, privilege escalation and lateral movement. We have a special challenge for more advanced hackers to prove your ninja skills and stay under the radar of our monitoring system. We help you using tools like Bloodhound, Mimikatz or the PowerSploit framework and present you the chance to do all the nasty stuff in an AD environment.

Prerequisites for participants

  • Basic understanding of Windows networks
  • A laptop with the operation system and toolset of your choice

Workshop Introduction to Kali

Teachers: Experts from BoT - Lucerne

Date: Friday, June 15th 10:30-12:20 and Saturday June 16th 10:30-12:20

Tickets: It is free, but you need a conference ticket to enter.

Location: Xtra (same venue as conference)

Abstract:
This workshop gives you an insight into the world’s best-known hacker distribution Kali Linux. Not only will you learn how to use Kali Linux and the most important tools, but you will also be able to apply the knowledge gained in a lab environment. In particular you will learn how to use NMAP, the best port scanner from Fyodor, Metasploit Framework from Rapid7, Hydra from THC as password cracker, OpenVAS as vulnerability scanner, and WPScan - Wordpress Vulnerability scanner. The Lab environment is designed in such a way that vulnerabilities can be exploited on the different workstations and servers. This workshop is aimed at people with little experience and lots of interest in Kali Linux and the various tools.

Prerequisites for participants

  • A laptop with the operating system of your choice and pre-installed virtualization (VMWare Player or Workstation, VirtualBox, Parallels).

Workshop: Security Fabric Challenge

Teachers: Experts from Fortinet

Date: Friday, June 15th ~18:00-20:00

Tickets: It is free, but you need a conference ticket to enter.

Location: Xtra (same venue as conference)

Abstract:
Fortinet will host a Security Fabric Challenge you should not miss out on!
The Fortinet Security Fabric is a security architecture which delivers broad protection and visibility to every network segment, device, and appliance, whether virtual, in the cloud or on-premises. Automatically synchronize your security resources to enforce policies, coordinate automated responses to threats detected anywhere in your network, and easily manage all of your different security solutions and products through a single console.
The goal of this challenge is to introduce you to the Fortinet Security Fabric functionalities within FortiOS 6.0. As part of the challenge, you will be required to harden your current security standing and use all the new FortiOS features in the attempt to improve the overall security posture of a fictional customer. The challenge is time based, and the team with the highest score within the given time will win. 2 individuals build one team.

Prizes:

  • 1st place: Each team member will take home a stunning Firewall (FortiWifi 61E).
  • 2nd place: Surprise, Surprise.
  • 3rd place: Surprise, Surprise


Prerequisites for participants
  • Please bring your laptop to this challenge since you'll need to connect to a virtual lab from your own laptop to be able to participate! A simple browser will do the job so if you've got that running on your system, you should be fine!

Eventbrite - AREA41 2018 Security Conference