Priyanka Joshi - Whitebox Web Exploit Development

Abstract:

Gain experience popping root shells on real world web applications and taking your hacking skills to the next level. Students will learn accessible and powerful vulnerability discovery techniques to identify, exploit and chain vulnerabilities for root shells. Getting hands-on experience using free and widely available Linux utilities to debug and dynamically monitor applications, to more effectively discover and exploit vulnerabilities. Using a whitebox approach students will rapidly discover and exploit non-trivial bugs. A progressive hint system will be used during the labs to incrementally reveal step-by-step progressions of each exploit exercise in case students are stuck or fall behind.

Course Objectives:
--Students will gain hands-on experience analyzing and developing exploits for real world application vulnerabilities.
--Students will learn how to discover vulnerabilities and subsequently weaponize them in an exploit chain to spawn remote shells on application servers.
--Students will gain experience using open source linux tools like strace and tcpdump to analyze application behavior and isolate vulnerabilities.
--Students will gain experience weaponizing web application vulnerabilities and writing exploits
Training Outline
Upon Completion of this training, attendees will know:
--How to identify situations where openbox application vulnerability assessments are appropriate and how to leverage this powerful context.
--How to utilize openbox penetration testing methodologies to achieve more thorough and effective assessments.
--How to leverage vulnerability chaining to assemble multiple medium criticality findings into a single remote root exploit.

Bio:

Priyanka Joshi

Has 6 years of industry experience in Security Engineering following her M.S. degree in InfoSec. She has spent 2+ years researching, developing, maintaining and security testing OAuth2.0 protocol implementations, providing her a deep understanding of the identity space. In her current Security Engineer role with Amazon Ring AppSec team, she focuses on secure design assessments, bug bounty triage and fix validation, consults and security testing.

Cale Smith

Cale Smith is a nerd who loves both building tech but also breaking it, so he can get better at building. He is passionate at learning how the proverbial sausage is made - popping shells is an added bonus. He is also passionate about sharing his passion and created this course to pass along some of the more accessible techniques he has picked up. His professional career originated exclusively as a builder, but has been focusing on the security and breaking side for the last 15 years. During that time he has dabbled in web/cloud, binary, IoT and mobile most recently. Currently he manages a team of world class security engineers at Amazon.

Host or Publisher DEF CON 32 Workshops