{"id":451,"date":"2018-06-03T10:08:19","date_gmt":"2018-06-03T10:08:19","guid":{"rendered":"https:\/\/www-new.brucon.org\/2018\/?page_id=451"},"modified":"2018-06-08T17:10:59","modified_gmt":"2018-06-08T15:10:59","slug":"offensive-whiteboard-hacking-for-penetration-testers","status":"publish","type":"page","link":"https:\/\/archive.brucon.org\/2018\/brucon-2018-training\/offensive-whiteboard-hacking-for-penetration-testers\/","title":{"rendered":"Offensive Whiteboard Hacking for Penetration Testers"},"content":{"rendered":"

[vc_row][vc_column][vc_column_text]<\/p>\n

Course Description<\/span><\/h2>\n
\n
\n
\n
\n
The training material and hands-on workshops with real live Use Cases are provided by Toreon. The students will be challenged to perform practical threat modeling in groups of 3 to 4 people covering the different stages of offensive threat modeling on:<\/div>\n
    \n
  • Attacking a hotel booking web and mobile application, sharing the same REST backend<\/li>\n
  • Weakness analysis of an Internet of Things (IoT) smart home deployment<\/li>\n
  • Get into the defenders head \u2013 modeling points of attack against a nuclear facility<\/li>\n<\/ul>\n
    During the training many real life examples of attacks will be provided. Toreon has delivered threat modeling training courses at Black Hat, OWASP and O\u2019Reilly Security conferences.<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n

    [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

    Course contents<\/span><\/h2>\n
    Threat modeling introduction<\/div>\n
      \n
    • Offensive threat modeling for penetration testers<\/li>\n
    • What is threat modeling?<\/li>\n
    • Why perform threat modeling?<\/li>\n
    • Threat modeling stages<\/li>\n
    • Diagrams<\/li>\n
    • Identify threats<\/li>\n
    • Addressing threats<\/li>\n
    • Exploiting a threat model<\/li>\n<\/ul>\n
      <\/div>\n
      Diagrams \u2013 what are you attacking?<\/div>\n
        \n
      • Understanding context<\/li>\n
      • Doomsday scenarios<\/li>\n
      • Data flow diagrams<\/li>\n
      • Attack Boundaries<\/li>\n
      • Hands-on: Attacking a B2B web and mobile applications, sharing the same REST backend<\/li>\n<\/ul>\n
        <\/div>\n
        Identifying threats \u2013 how can we attack?<\/div>\n
          \n
        • STRIDE introduction<\/li>\n
        • Spoofing threats<\/li>\n
        • Tampering threats<\/li>\n
        • Repudiation threats<\/li>\n
        • Information disclosure threats<\/li>\n
        • Denial of service threats<\/li>\n
        • Elevation of privilege threats<\/li>\n
        • Attack trees<\/li>\n
        • Hands-on: Weakness analysis of an Internet of Things (IoT) smart home deployment<\/li>\n<\/ul>\n
          <\/div>\n
          Understanding defence<\/div>\n
            \n
          • Mitigation patterns<\/li>\n
          • Authentication: mitigating spoofing<\/li>\n
          • Integrity: mitigating tampering<\/li>\n
          • Non-repudiation: mitigating repudiation<\/li>\n
          • Confidentiality: mitigating information disclosure<\/li>\n
          • Availability: mitigating denial of service<\/li>\n
          • Authorization: mitigating elevation of privilege<\/li>\n
          • Hands-on: get into the defenders head \u2013 modeling points of attack of a nuclear facility.<\/li>\n<\/ul>\n
            <\/div>\n
            Attack libraries<\/div>\n
              \n
            • Attack libraries<\/li>\n
            • CAPEC<\/li>\n
            • OWASP Top 10<\/li>\n
            • The \u201cSnowden\u201d documents<\/li>\n
            • Other lists<\/li>\n
            • Create your own attack list<\/li>\n<\/ul>\n
              Penetration testing based on threat models<\/div>\n
                \n
              • Create pentest cases for threat mitigation features<\/li>\n
              • Pentest planning to exploit security design flaws<\/li>\n
              • Vulnerabilities as input to plan and scope security testing<\/li>\n
              • Prioritization of pentesting based on risk rating<\/li>\n
              • Threat modeling resources<\/li>\n
              • Open-Source tools<\/li>\n
              • Commercial tools<\/li>\n
              • General tools<\/li>\n<\/ul>\n
                Examination<\/div>\n
                  \n
                • Hands-on examination<\/li>\n
                • Grading and certification<\/li>\n<\/ul>\n

                  [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

                  Target audience<\/span><\/h2>\n

                  This training is aimed at security professionals or penetration testers.<\/p>\n

                  [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

                  Requirements<\/span><\/h2>\n

                  Before attending this course, students should be familiar with basic knowledge of penetration testing methodologies and techniques.<\/p>\n

                  [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

                  Hardware\/Software Requirements<\/span><\/h2>\n

                  The students should bring their own laptop to the course.[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

                  Testimonials<\/h2>\n
                  Example feedback from our Black Hat 2017 training attendees:<\/div>\n
                    \n
                  • \u201cSebastien delivered! One of the best workshop instructor’s I’ve ever had.\u201d<\/li>\n
                  • \u201cVery nice training course, one of the best I ever attended.\u201d<\/li>\n
                  • \u201cI feel that this course is one of the most important courses to be taken by a security professional.\u201d<\/li>\n
                  • \u201cThe group hands-on practical exercises truly helped.\u201d<\/li>\n<\/ul>\n

                    [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\n

                    Trainer Biography<\/span><\/h2>\n

                    [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column width=”5\/6″][vc_column_text]<\/p>\n

                    Sebastien Deleersnyder<\/strong> led engagements in the domain of ICT-security, Web and Mobile Security with several customers in the private and public sector. Sebastien is the Belgian OWASP Chapter Leader, served as vice-chair of the global OWASP Foundation Board and performed several public presentations on Web Application, Mobile and Web Services Security. Furthermore, Sebastien co-founded the yearly BruCON conference.<\/div>\n
                    <\/div>\n
                    Linkedin : sebadele<\/div>\n
                    Twitter : sebadele<\/div>\n

                    [\/vc_column_text][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”1400″][\/vc_column][\/vc_row][vc_row][vc_column width=”5\/6″][vc_column_text]Steven Wierckx<\/strong> is a software and security tester with 15 years of experience in programming, security testing, source code review, test automation, functional and technical analysis, development, and database design, Steven shares his passion for web application security through writing and training on testing software for security problems, secure coding, security awareness, security testing, and threat modeling. He is the project leader for the OWASP Threat Modeling Project and organizes the BruCON student CTF. Last year, he spoke at Hack in the Box Amsterdam, hosted a workshop at BruCON and delivered threat modeling trainings at OWASP AppSec USA and O\u2019Reilly Security New York.<\/p>\n

                    Linkedin : steven-wierckx<\/div>\n
                    Twitter : @ihackforfun<\/div>\n

                    [\/vc_column_text][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”1401″][\/vc_column][\/vc_row][vc_row][vc_column][vc_empty_space][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"

                    [vc_row][vc_column][vc_column_text] Course Description The training material and hands-on workshops with real live Use Cases are provided by Toreon. The students will be challenged to perform practical threat modeling in groups of 3 to 4 people covering the different stages of offensive threat modeling on: Attacking a hotel booking web and mobile application, sharing the same REST backend Weakness analysis of an Internet of Things (IoT) smart home deployment Get into the defenders head \u2013 modeling…<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":75,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-451","page","type-page","status-publish"],"_links":{"self":[{"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/pages\/451","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/comments?post=451"}],"version-history":[{"count":6,"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/pages\/451\/revisions"}],"predecessor-version":[{"id":1402,"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/pages\/451\/revisions\/1402"}],"up":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/pages\/75"}],"wp:attachment":[{"href":"https:\/\/archive.brucon.org\/2018\/wp-json\/wp\/v2\/media?parent=451"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}