Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

YearUp: Hacking for Jobs

204 views

Published on

Introduction to ethical hacking at CCSF: training, clubs, and cybercompetitions. Presented at YearUp in San Francisco Dec. 6, 2016, by Sam Bowne.

https://samsclass.info

Published in: Education
  • Be the first to comment

  • Be the first to like this

YearUp: Hacking for Jobs

  1. 1. Hacking for Jobs YearUp, Dec. 6, 2016 Sam Bowne City College San Francisco All materials available at samsclass.info
  2. 2. • Hacking is indeed a circus • Is that supposed to be a bad thing?
  3. 3. Challenging Students
  4. 4. Student Diversity • Beginners • Old-school mainframe programmers upgrading skills • Amateurs from hackerspaces • Professional IT workers • Professional infosec workers
  5. 5. Levels of Achievement • Memorize definitions of terms • Hands-on projects with step-by-step instructions • Challenges without instructions • Capture the Flag Competitions • Professional information security employment
  6. 6. Violent Python • Step-by-step project • Challenges • No instructions • Increasing difficulty • ty @mqaissaunee
  7. 7. April 2014: Heartbleed
  8. 8. Vulnerable Android Devices
  9. 9. A Job from One Tweet
  10. 10. Exploit Development Class
  11. 11. Command Injection
  12. 12. CNIT 127: Exploit Development
  13. 13. Buffer Overflow Vulnerability • Input more than 1024 bytes will overflow the buffer
  14. 14. DoS Exploit
  15. 15. Nonrepeating Pattern
  16. 16. Gnu Debugger
  17. 17. Generate Shellcode with msfvenom
  18. 18. Construct Exploit
  19. 19. The Stack Frame • The last word is the return value • Must jump into the NOP sled
  20. 20. Listening Shell
  21. 21. Pwnage Remote Code Execution
  22. 22. Vulnerability Disclosure
  23. 23. • ty @bugcrowd
  24. 24. Hacked by Anonsec
  25. 25. XSS
  26. 26. Rooted My Server
  27. 27. Rooted Twice the Same Way • My first attempt to patch the vulnerability failed • With the help of a student, I got my kernel updated after this
  28. 28. Stealing My Password • Shoulder surfing • http://tinyurl.com/ samspw
  29. 29. CTFs
  30. 30. How to Start 1. PicoCTF 2. EasyCTF 3. CTFTime
  31. 31. • Many levels, from very easy to very hard • Complete walkthroughs
  32. 32. Graphical Gameboard
  33. 33. • 1 week long • Many easy problems, but also hard ones • Sign up to hear about other easy CTFs
  34. 34. Write-Ups
  35. 35. Find CTFs
  36. 36. Walk-Throughs!
  37. 37. Hacking Club
  38. 38. Remote Speakers • Projector, webcam, Skype, speakers • Two talks from professional penetration testers
  39. 39. Student Contributions • Cleaning up the lab to make an inviting hangout space • Bridging to the CCSF_Coders club • Technical expertise from Google vuln labs • Hacker contacts from Defcon, etc.
  40. 40. Hacking Lab Free Fire Zone
  41. 41. Signs on Wall
  42. 42. Keylogger • One student wrote a Python keylogger and installed it on the lab machines
  43. 43. Lockpicking
  44. 44. Make Easy Locks • Get cheap locks at Home Depot • 2 for $11 • Normal lock has 5 pins • Remove pins to make locks with 1, 2, 3, 4 pins
  45. 45. Cheap Locks are Fine
  46. 46. Re-Keying Kit ($11)
  47. 47. Remove the Clip
  48. 48. Insert Key, Turn to 45°
  49. 49. Slide Cylinder Out
  50. 50. Root Canal • Actual re-keying involves carefully removing pins and replacing them with pins of different length • But all we need is to remove pins & springs entirely, making the lock easier to pick
  51. 51. Lockpick Training Set
  52. 52. Internships
  53. 53. Employers • OpenDNS • NASA Ames • Lawrence Berkeley Lab • San Francisco Housing Authority • UCSF Medical Center
  54. 54. Job Fair • Students bring resumes at first (and only) class meeting • Employers describe jobs and grab applicants on the spot • Everyone welcome, including ex-students, students from the Computer Science department, students not enrolled in the internship class
  55. 55. Administrative Resistance • CCSF administrators cancelled the entire program in Spring 2015 • I only saved it by appealing directly to the Chancellor and threatening to resign • However, the person who cancelled it is now the Chancellor
  56. 56. Administrative Resistance • The new curriculum review process doesn't allow any class without lectures, textbook, final exam, etc. • This blocks seminar classes and Internship classes • The solution is to just break the rules--this is what tenure is for
  57. 57. Guest Speakers • At least one per class per semester • "Careers" class consisting of visiting industry speakers

×