Ty Miller, CTO of Pure Hacking, Australia’s leading specialist information security consultancy has been confirmed as an international speaker at the upcoming Hack in the Box security conference, 8 - 11 October, Kuala Lumpur, Malaysia. Miller will be running his internationally renowned "The Shellcode Lab" training course for penetration testers, security officers and auditors, system administrators and managers wanting to improve their shellcoding security skills. This is the first time that "The Shellcode Lab" will be available to Hack in the Box participants.
The two day training course will provide attendees with a “Virtual Shellcode Development Environment” that is designed to enable shellcode development across multiple platforms including Linux, Mac 64-bit OSX and Windows. Students are instructed in the development of simple to complex shellcode and Metasploit Exploit Framework (MSF) integration to successfully execute your own shellcode within all MSF exploits.
Targeted at Penetration Testers, Security Officers, Security Auditors and System Administrators, “The Shellcode Lab” is ideal for attendees interested in shellcoding, exploitation, vulnerabilities or Metasploit. It is also suitable for developers interested in gaining low-level security development skills with shellcoding and assembly, plus management staff needing to better understand how Information Technology Systems are compromised.
The training course focuses on writing shellcode to bypass security controls to increase the exploitation success rate. Students are taught how to encode their shellcode using the Metasploit Exploit Framework (MSF), and insert it into exploits that will be used to show that their shellcode was successfully executed. "The Shellcode Lab" has been held at Black Hat USA in 2011 and 2012.
For Miller attendance at The Shellcode Lab has multiple benefits. "It is crucial for security experts to understand the underlying assembly language to be able to understand shellcode exploits. This is the primary method for identifying how to improve security for the enterprise," he recommended.
Concurrent to his role as CTO at Pure Hacking, Miller performs independent security research and is co-author of the book Hacking Exposed Linux 3rd edition. He runs the shellcoding site ‘Project Shellcode’ (www.projectshellcode.com) and was involved in the design of the bootable CHAOS Linux cluster distribution.
Interested participants can visit http://conference.hitb.org/hitbsecconf2012kul/tech-training-5-shellcode-lab/