{"id":3665,"date":"2023-12-28T23:11:37","date_gmt":"2023-12-28T21:11:37","guid":{"rendered":"https:\/\/archive.brucon.org\/2024\/?p=3665"},"modified":"2023-12-28T23:15:11","modified_gmt":"2023-12-28T21:15:11","slug":"brucon-0x10-spring-training-open-for-registration","status":"publish","type":"post","link":"https:\/\/archive.brucon.org\/2024\/2023\/12\/28\/brucon-0x10-spring-training-open-for-registration\/","title":{"rendered":"BruCON 0x10 – Spring training open for registration"},"content":{"rendered":"

[vc_row][vc_column][vc_column_text]We are very happy to share the BruCON0x10 Spring training program (17-19 April 2024). All courses will take place in the Novotel Mechelen Centre or virtually via Zoom. Early-bird will last till the 1st of February, please fine the line-up here :<\/p>\r\n

[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column width=”5\/6″][vc_column_text](In-person) Corelan \u201cstack\u201d based exploitation for Windows (a.k.a. \u201cBootcamp\u201d) \u2013 Peter Van Eeckhoutte (3-days) –<\/strong> The Corelan \u201cBOOTCAMP\u201d is a truly unique opportunity to learn both basic & advanced techniques from an experienced exploit developer. During this 3-day course, students will be able to learn all ins and outs about writing reliable stack based exploits for the Windows (x86) platform.\u00a0 The trainer will share his \u201cnotes from the field\u201d and various tips & tricks to become more effective at writing exploits. We believe it is important to start the course by explaining the basics of stack buffer overflows and exploit writing, but this is most certainly not \u201cyour average\u201d entry level course. In fact, this is a true bootcamp and one of the finest and most advanced courses you will find on Win32 stack based exploit development. More information here<\/a>[\/vc_column_text][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”489″ style=”vc_box_circle”][\/vc_column][\/vc_row][vc_row][vc_column width=”1\/6″][vc_single_image image=”2432″ style=”vc_box_circle”][\/vc_column][vc_column width=”5\/6″][vc_column_text](Virtual) Active Directory Attacks for Red and Blue Teams – Advanced Edition – Nikhil Mittal (3-days) <\/strong>–<\/p>\r\n

More than 95% of Fortune 500 companies use Active Directory! Enterprises are managed using Active Directory (AD) and it often forms the backbone of the complete enterprise network. Therefore, to secure an enterprise from an adversary, it is inevitable to secure its AD environment. To secure AD, you must understand different techniques and attacks used by adversaries against it. Often burdened with maintaining backward compatibility and interoperability with a variety of products, AD environments lack ability to tackle latest threats.This training is aimed towards attacking modern AD Environment using built-in tools and trusted OS resources. The training is based on real world penetration tests and Red Team engagements for highly secured environments.\u00a0 More information here<\/a>[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column width=”5\/6″][vc_column_text](In-Person) Advanced Incident Response in the Microsoft Cloud – Korstiaan Stam (3-days) –<\/strong><\/p>\r\n

In this three-days hands-on training, you\u2019ll learn everything you need to know about forensics and incident response in the Microsoft cloud. This training covers both Microsoft 365 and Microsoft Azure, you\u2019ll get hands-on experience with investigating attacks, acquition of forensic artefacts from the cloud and digging through the relevant artefacts. Everything you learn is related to real life threats observed against the Microsoft cloud.\u00a0The trainer has real life experience with incident response and forensic investigations in the cloud, knowledge will be shared that’s not available on any public resource. Once you\u2019ve completed this training you will feel comfortable inves,ga,ng any threat in the Microsoft cloud. The training is very hands-on and concluded with two full attack scenarios in both Azure & M365 and you’re tasked in the CTF to solve as many pieces of the puzzle as you can. More information here<\/a>[\/vc_column_text][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”3650″ style=”vc_box_circle”][\/vc_column][\/vc_row][vc_row][vc_column width=”1\/6″][vc_single_image image=”3659″ style=”vc_box_circle”][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”3658″ style=”vc_box_circle”][\/vc_column][vc_column width=”4\/6″][vc_column_text](Virtual) Mastering Kubernetes: Deep Dive into Attacks, Defense & Mitigations – Divyanshu Shukla and Ravi Mishra (3-days) –<\/strong><\/p>\r\n

This 3 day course is meticulously crafted for those seeking a deep, technical, hands-on immersion into the world of Kubernetes<\/span>\u00a0security. We begin by laying the groundwork with\u00a0Kubernetes<\/span>\u00a0basics, understanding its architecture, and delving into its potential security pitfalls. Participants will be initiated into the intricate details of\u00a0Kubernetes<\/span>\u00a0attack surfaces, with hands-on labs focusing on real-world vulnerabilities and their corresponding exploits.Using advanced exploitation techniques, our session will unravel sophisticated\u00a0Kubernetes<\/span> attack methodologies, from manipulating Role-Based Access Controls to advanced container breakout strategies. But, it’s not just about offense; we also cover the art of defense.\u00a0Learn how to seal your secrets, enforce stringent network policies with Cilium, and employ advanced detection mechanisms using tools like Falco and EFK.The workshop consists of a Capture The Flag (CTF) challenge, designed to test the mettle of participants, pitting their newly acquired offensive and defensive skills against real-world\u00a0Kubernetes<\/span>\u00a0scenarios.By the end of our intensive three-day journey, attendees will not only have an expanded skill set but also the confidence to identify, exploit, and protect\u00a0Kubernetes<\/span> clusters in real-world environments. More information here<\/a>[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column width=”4\/6″][vc_column_text](In-Person) Defending Enterprises – 2024 Edition – Owen Shearing \/ Will Hunt (2-days starting Thursday 18th)<\/strong> –\u00a0Updated for 2024, our immersive 2-day Defending Enterprises training is the natural counterpart to our popular Hacking Enterprises course. You\u2019ll play a SOC analyst in our Microsoft Sentinel cloud-based lab and try to rapidly locate IOA\u2019s and IOC\u2019s from a live enterprise breach executed by the trainers in real time.\u00a0Whether you\u2019re new to Kusto Query Language (KQL) or a seasoned pro, there\u2019s plenty for you in the 2-days! Yes, we\u2019re using Microsoft Sentinel, but the underlying threat detection theory, logic and threat hunting approach is transferable into your own environments, whatever your preferred platform.\u00a0More information here<\/a>[\/vc_column_text][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”2180″ style=”vc_box_circle”][\/vc_column][vc_column width=”1\/6″][vc_single_image image=”2181″ style=”vc_box_circle”][\/vc_column][\/vc_row][vc_row][vc_column width=”1\/6″][vc_single_image image=”1400″ style=”vc_box_circle”][\/vc_column][vc_column width=”5\/6″][vc_column_text](In-Person) Agile Whiteboard Hacking \u2013 aka Hands-on Threat Modeling – Sebastien Deleersnyder (2-days starting Thursday 18th) <\/strong>–\u00a0You will be challenged with hands-on threat modeling exercises based on real-world projects. You will get insight into our practical industry experience, helping you to become a Threat Modeling Practitioner. We included an exercise on MITRE ATT&CK, and we focus on embedding threat modeling in Agile and DevOps practices. We levelled up the threat modeling war game. Engaged in CTF-style challenges, your team will battle for control over an offshore wind turbine park.\u00a0The level of this training is Beginner\/Intermediate. Participants who are new to threat modeling are advised to follow our self-paced Threat Modeling Introduction training (which is about 2 hours and is included in this training). As highly skilled professionals with years of experience under our belts, we\u2019re intimately familiar with the gap between academic knowledge of threat modeling and real-world practice. To minimize that gap, we have developed practical use cases, based on real-world projects. Each use case includes a description of the environment, together with questions and templates to build a threat model.\u00a0More information here<\/a>[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]All training details and registration links can be found on the BruCON training pages (link<\/a>)<\/p>\r\n

\r\n\r\nyour BruCON team.[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][vc_column_text]<\/p>\r\n

[\/vc_column_text][\/vc_column][\/vc_row]<\/p><\/div>","protected":false},"excerpt":{"rendered":"

[vc_row][vc_column][vc_column_text]We are very happy to share the BruCON0x10 Spring training program (17-19 April 2024). All courses will take place in the Novotel Mechelen Centre or virtually via Zoom. Early-bird will last till the 1st of February, please fine the line-up here : [\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column width=”5\/6″][vc_column_text](In-person) Corelan \u201cstack\u201d based exploitation for Windows (a.k.a. \u201cBootcamp\u201d) \u2013 Peter Van Eeckhoutte (3-days) – The Corelan \u201cBOOTCAMP\u201d is a truly unique opportunity to learn both basic & advanced techniques from an…<\/p>\n","protected":false},"author":8,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":{"0":"post-3665","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-uncategorized"},"menu_order":0,"_links":{"self":[{"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/posts\/3665","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/comments?post=3665"}],"version-history":[{"count":3,"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/posts\/3665\/revisions"}],"predecessor-version":[{"id":3670,"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/posts\/3665\/revisions\/3670"}],"wp:attachment":[{"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/media?parent=3665"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/categories?post=3665"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/archive.brucon.org\/2024\/wp-json\/wp\/v2\/tags?post=3665"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}