Today, we are at a time when cloud technologies are used predominantly. At this point, AWS meets most of its market share. The presentation will describe practical security methods for common services (EC2, S3, KMS, etc.) in AWS, hardening applicati...
MORE ↦This workshop will cover the basics of reverse engineering a (M)MORPG (Pwn Adventure 3 from Vector35). While reversing a video game might not seem interesting for some security professionals, the techniques and methodologies we will cover are simila...
MORE ↦Frida well know by mobile application testers as a way to bypass security controls such as root detection or SSL pinning. At its core, frida is a framework for injecting JavaScript into running applications that makes things significantly easier whe...
MORE ↦Une faille à été découverte dans la Nintendo Switch, cette faille étant au niveau hardware, Nintendo ne pourra boucher la faille sans modifier sa console, nous montrerons donc les différentes possibilités, comment faire et l'avenir du hack de...
MORE ↦Bro is an open-source Network Security Monitor (NSM) and analytics platform. Even though it has been around since the mid 90's, its main user base was primarily universities, research labs and supercomputing centers. In the past few years, however,...
MORE ↦Most of our everyday mobile applications take advantage of services provided by Google. Back in 2001, Google designed the Protocol Buffers, a.k.a protobuf. This serialisation protocol, also known as marshalling an object, is widely used to ensure co...
MORE ↦Zed Attack Proxy, Zap pour les intimes, est un projet phare de l’organisation OWASP. Ce scanner de vulnérabilités offre une interface de scripting puissante qui permet d’accéder au code pour piloter ses actions. Ainsi que vous soyez auditeur,...
MORE ↦