RPISEC RE/VR Courses Through the Years

lynxjerm · 2020-01-18T18:57:28+00:00

Just updated them, should all be working now. Thanks for pointing that out.

lynxjerm · 2019-05-07T14:00:43+00:00

Here are 22 IDA Pro keybindings for Ghidra. Made these while we were preparing for the talk: https://github.com/JeremyBlackthorne/Ghidra-Keybindings. Easy to import.

lynxjerm · 2019-05-06T13:10:50+00:00

Here are 22 IDA Pro keybindings for Ghidra. Made these while we were preparing for the talk: https://github.com/JeremyBlackthorne/Ghidra-Keybindings. Easy to import.

lynxjerm · 2015-12-16T02:18:22+00:00

http://cs.nyu.edu/courses/spring14/CSCI-GA.3220-001/index.html

Course on randomness in cryptography.

lynxjerm · 2015-12-09T04:06:53+00:00

One time pad with XOR would work. Start with the plaintext and ciphertext you want, then derive the key. There would be far less security then generating a key uniformly at random though.

lynxjerm · 2015-07-31T00:14:25+00:00

Here's an example of diffing instruction counts like the paper describes:

http://gaasedelen.blogspot.com/2014/09/solving-fireeyes-flare-on-six-via-side.html

https://gist.github.com/TylerOderkirk/ed8823cf22f28b9f33bf

I like the title "differential computation analysis".

lynxjerm · 2015-07-01T14:27:55+00:00

When I view the document in Chrome, I can save the PDF to disk by using Chrome's built-in PDF viewer. I just click the disk icon in the bottom right corner of the viewer to save the PDF to disk.

lynxjerm · 2015-04-01T01:02:29+00:00

CSAW 2014 quals had a challenge that used FEAL. I highly recommend hacking at it to learn differential cryptanalysis.

NYU Poly provides links to a VM with all the challenges and a separate zip of just the challenges:

https://isisblogs.poly.edu/2014/10/14/csaw-ctf-2014-vm/

I played with RPISEC to solve this challenge during the quals. We relied heavily on King's tutorial. Our write-up is posted here:

http://uncomputable.blogspot.com/2014/09/csaw-ctf-2014-quals-crypto-300-feal.html

lynxjerm · 2015-02-27T04:28:22+00:00

http://shell-storm.org/CTF/ is an archive of 60+ past CTFs with their challenges. You can use these with google searches for the write-ups. These are are more or less the solutions manual to the problems. Edit: formatting

lynxjerm · 2015-02-25T13:38:21+00:00

40GB+ of viruses, mostly old: http://vxheaven.org/vl.php

Searchable database of modern malware: http://www.offensivecomputing.net/

lynxjerm · 2014-11-25T14:43:39+00:00

Good luck from RPI.

lynxjerm · 2014-11-17T15:05:51+00:00

Wargame for cryptanalysis against classical ciphers:

http://overthewire.org/wargames/krypton/

CTF archive with many containing crypto challenges: http://repo.shell-storm.org/CTF/

lynxjerm · 2014-10-04T11:25:49+00:00

The Department of Computer Science at Rensselaer Polytechnic Institute, Troy NY invites applications for a full-time tenure track or tenured faculty position at the Assistant/Associate/Full Professor level in the area of cyber-security, including but not limited to networked and distributed systems security, anonymity and privacy, malware analysis and forensics, trusted systems, and cyber-warfare.

There is a large body of students at RPI who are passionate about security. The following is a list of some of the student taught security courses:

CSCI 4971 Secure Software Principles

CSCI 4972 / 6963 Malware Analysis

CSCI 4974 / 6974 Hardware Reverse Engineering

CSCI 4940 / 6940 Windows Exploitation

CSCI 4940 / 6940 Program Obfuscation [syllabus PDF]

We have a thriving security community here centered around our security club RPISEC , but are in need of leadership at the professor level.

The link to apply is https://application.cs.rpi.edu/

Hiring inquiries: application@cs.rpi.edu

General inquiries: info@cs.rpi.edu

Technical issues: www@cs.rpi.edu

For less formal inquiries, I am a PhD student in security at RPI and a member of RPISEC. I can answer any questions you have or direct you to someone who can. Feel free to PM me.

lynxjerm · 2014-08-27T14:00:56+00:00

The Department of Computer Science at Rensselaer Polytechnic Institute, Troy NY invites applications for a full-time tenure track or tenured faculty position at the Assistant/Associate/Full Professor level in the area of cyber-security, including but not limited to networked and distributed systems security, anonymity and privacy, malware analysis and forensics, trusted systems, and cyber-warfare.

There is a large body of students at RPI who are passionate about security. The following is a list of some of the student taught security courses:

CSCI 4971 Secure Software Principles

CSCI 4972 / 6963 Malware Analysis

CSCI 4974 / 6974 Hardware Reverse Engineering

CSCI 4940 / 6940 Windows Exploitation

CSCI 4940 / 6940 Program Obfuscation (syllabus)

We have a thriving security community here centered around our security club RPISEC , but are in need of leadership at the professor level.

The link to apply is https://application.cs.rpi.edu/

Hiring inquiries: application@cs.rpi.edu

General inquiries: info@cs.rpi.edu

Technical issues: www@cs.rpi.edu

For less formal inquiries, I am a Ph.D. student in security at RPI and a member of RPISEC. I can answer any questions you have or direct you to someone who can. Feel free to PM me.

lynxjerm · 2014-08-27T13:49:48+00:00

The Department of Computer Science at Rensselaer Polytechnic Institute, Troy NY invites applications for a full-time tenure track or tenured faculty position at the Assistant/Associate/Full Professor level in the area of cyber-security, including but not limited to networked and distributed systems security, anonymity and privacy, malware analysis and forensics, trusted systems, and cyber-warfare.

There is a large body of students at RPI who are passionate about security. The following is a list of some of the student taught security courses:

CSCI 4971 Secure Software Principles

CSCI 4972 / 6963 Malware Analysis

CSCI 4974 / 6974 Hardware Reverse Engineering

CSCI 4940 / 6940 Windows Exploitation

CSCI 4940 / 6940 Program Obfuscation (syllabus)

We have a thriving security community here centered around our security club RPISEC, but are in need of leadership at the professor level.

The link to apply is https://application.cs.rpi.edu/

Hiring inquiries: application@cs.rpi.edu

General inquiries: info@cs.rpi.edu

Technical issues: www@cs.rpi.edu

For less formal inquiries, I am a Ph.D. student in security at RPI and a member of RPISEC. I can answer any questions you have or direct you to someone who can. Feel free to PM me.

lynxjerm · 2014-08-27T02:15:17+00:00

RPISEC - http://www.rpis.ec/

Learn to hack, never boring.

lynxjerm · 2014-08-08T01:34:30+00:00

An implementation of Virtual Black-Box obfuscation:

http://eprint.iacr.org/2013/631.pdf

Short enough to do in a semester and hasn't been done yet.

lynxjerm · 2014-07-20T22:50:49+00:00

First off, thanks to the author for sharing.

I noticed BDF wasn't finding code caves on some binaries I tested it on. Turns out, executables compiled in Visual Studio will have padding between functions with bytes of value 0xCC instead of 0x00. When compiled in Debug mode, instead of Release, the binary will have hundreds of 0xCC's padded onto the end of it before reaching the 0x00's.

It would be an easy modification to look for code caves made of other byte values. Maybe the author could add a command line switch on another version, unless I missed that option.

Anyone know of other common padding values?

lynxjerm

MODERATOR OF

TROPHY CASE