• Like
Uploaded on

 

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
849
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
17
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. Digicomp Hacking Day 2012 - 14.6.2012
  • 2. Real knowledge derives from practical exercises !© Hacking-Lab www.hacking-lab.com Slide 2
  • 3. Security Conferences Universities Security Trainings© Hacking-Lab www.hacking-lab.com Slide 3
  • 4. Austria is seeking cyber talents in 2012. Hacking-Lab is performing the qualifying challenges (July-Sept 2012) followed by a final run in November 2012.© Hacking-Lab www.hacking-lab.com Slide 4
  • 5. Research Virtual CERT Talent Online CERTProjects Pentesting Quest Training SupportPlatform Team© Hacking-Lab www.hacking-lab.com Slide 5
  • 6. Free LiveCD © Hacking-Lab www.hacking-lab.com Slide 6
  • 7. Web Security VoiP / SS7 / GSM Malware / Trojan / Bugs Wireless Security Windows Security Unix / Linux Security Apple Security Crypto Challenges Penetration Testing Programming Networking Fun Challenge Forensics Reverse Engineering© Hacking-Lab www.hacking-lab.com Slide 8
  • 8. Every challenge in Hacking-SBS Lab is available as SBS or WGStep by Step Wargame WGSBS challenges WG challengesare used in are used in freecommercial trainings, CTFtrainings. and talent quest.Trainees do not Solving a WGhave the time to challenge is morespend 1-2 hours difficult andper challenge. needs moreThey will be knowledge.guided throughthe challenge.© Hacking-Lab www.hacking-lab.com Slide 9
  • 9. Compass covers ALL OWASP TOP 10 (2007 and 2010)© Hacking-Lab www.hacking-lab.com Slide 10
  • 10. © Hacking-Lab www.hacking-lab.com Slide 11
  • 11. Student Choose lab case (theme, subject) Solve lab cases Submit solution to teacher Wait for the ranking Teacher Compiles lab case list (event) Verifies solutions from student Manage scoring -> ranking Explain solution -> movie© Hacking-Lab www.hacking-lab.com Slide 13
  • 12. Organization Manager Add/Remove Users Add/Remove Classrooms and Events Add/Remove Privileges (e.g. Trainer) Enterprise Admin Super Root Admin Add/Remove Organizations Add/Remove Challenges© Hacking-Lab www.hacking-lab.com Slide 14
  • 13. © Hacking-Lab www.hacking-lab.com Slide 15
  • 14. © Hacking-Lab www.hacking-lab.com Slide 16
  • 15. © Hacking-Lab www.hacking-lab.com Slide 17
  • 16. © Hacking-Lab www.hacking-lab.com Slide 18
  • 17. © Hacking-Lab www.hacking-lab.com Slide 19
  • 18. © Hacking-Lab www.hacking-lab.com Slide 20
  • 19. © Hacking-Lab www.hacking-lab.com Slide 21
  • 20. © Hacking-Lab www.hacking-lab.com Slide 22
  • 21. Every user gets some points if he or she succeeds in tackling a security challengeImprove your skill level and avatar© Hacking-Lab www.hacking-lab.com Slide 23
  • 22. VPN is required to access the lab!
  • 23. https://www.hacking-lab.com/Remote_Sec_Lab/livecd.htmlDownload free LiveCD here: http://media.hacking-lab.com/largefiles/livecd/© Hacking-Lab www.hacking-lab.com Slide 25
  • 24. © Hacking-Lab www.hacking-lab.com Slide 26
  • 25. © Hacking-Lab www.hacking-lab.com Slide 27
  • 26. http://media.hacking-lab.com/largefiles/livecd/© Hacking-Lab www.hacking-lab.com Slide 28
  • 27. How to use LiveCD using the VirtualBox Appliance How to install LiveCD in Vmware 8 workstation How to use OpenVPN https://www.hacking-lab.com/FAQ/© Hacking-Lab www.hacking-lab.com Slide 29
  • 28. Bitte registrieren Sie sich über folgenden Linkhttps://www.hacking-lab.com/sh/kpzhrhd
  • 29. © Hacking-Lab www.hacking-lab.com Slide 31
  • 30. Wie arbeitet man gleichzeitig als Angreifer und Opfer? Starten von 2 Firefox Instanzen Firefox –P –no-remote & Video: http://media.hacking-lab.com/movies/multiple-firefox-browsers/Wie untersucht man die HTTP Pakete zwischen Client und Server? Starten von ZAP Proxy (ehemalig PAROS Proxy) Konfiguration von Browser Proxy auf localhost:8080 Video: http://media.hacking-lab.com/movies/zap/Wie richtet man sich eine Landing Page auf der LiveCD ein? Root Shell öffnen Stoppen Lokaler DokuWiki Web Server Starten Lokaler Apache Landing Page Server Video: http://media.hacking-lab.com/movies/landingpage/© Hacking-Lab www.hacking-lab.com Slide 32