From CTF to CVE by Joe Gray

preview_player
Показать описание
Recorded live on January 19, 2019 at LevelUp 0x03.

Abstract:
"As an industry, we are always looking for ways to sharpen our skills. We have education, certifications, and mentorship programs. A staple at Defcon as well as most other conferences is the Capture the Flag (CTF) competitions. As a blue teamer, in an effort to sharpen my skills, I started downloading CTF VMs and working through them. For more applicability, I started applying these concepts to things outside the CTF for bug bounties, but to no avail.
As luck would have it, I left Burp on and logged in to configure my lab wireless router to use for testing and learning wireless hacking. While the antennae that I bought to attack wireless were being used, they weren’t being used in the same sense of attack. I logged into the router and noticed several vulnerabilities in the router’s authentication scheme. This presentation breaks down the concepts of the CTF and how I applied them through the research and responsible disclosure process.
"

  1. Bugcrowd
  2. Hacking Methodology
  3. Hacking CTF
Рекомендации по теме
From CTF to 0:55:34

From CTF to CVE by Joe Gray

From CTF to 0:55:34

From CTF to CVE by Joe Gray

DEF CON 29 0:36:03

DEF CON 29 Car Hacking Village - Bill Hatzer - From CTF to CVE

From CTF to 0:36:04

From CTF to CVE - Bill Hatzer

PrintNightmare CVE (PicoCTF 0:06:27

PrintNightmare CVE (PicoCTF 2022 #06)

CVE's for FreeRDP 0:00:05

CVE's for FreeRDP #bugbounty #cve #cybersecurity #freerdp #ctf

CTF Minute: Episode 0:10:25

CTF Minute: Episode 3: CVE 2019-14287: Sudo Exploitation & Risk

IBM CVE's #cyberhatonline 0:00:06

IBM CVE's #cyberhatonline #cve #bugbounty #ctf #cybersecurity

with examples CyberChef 0:00:35

with examples CyberChef #cve #bugbounty #cybersecurity #ctf #ctf2023 #ctfgroup #oyun #games #game

CVE Daily Lists 0:00:06

CVE Daily Lists #cve #bugbounty #cybersecurity #ctf #ctf2023 #ctfgroup #oyun #games #game

#cve #bug #ctf 0:00:53

#cve #bug #ctf #vulnerability #rce #exploit #redteam #blue https://t.co/CVzndZOj5M #cve-2023-24055

CVE-2023-5832: CTF Walkthrough 0:06:24

CVE-2023-5832: CTF Walkthrough

CTF and CTF2023 0:00:06

CTF and CTF2023 #cve #bugbounty #cybersecurity #ctf #ctf2023 #ctfgroup #oyun #games #game

Finding 0day in 0:12:41

Finding 0day in Apache APISIX During CTF (CVE-2022-24112)

CTF Challenge for 0:07:56

CTF Challenge for OverlayFS CVE-2021-3493 Exploit

SnykCon CTF - 0:12:15

SnykCon CTF - Sauerkraut - Python Pickle Vulnerabilities

Linux CVE-2017-6074 | 0:19:00

Linux CVE-2017-6074 | CTF Walkthrough | OSCP Video Course Prep

SEC-T CTF #cve 0:00:05

SEC-T CTF #cve #bugbounty #cybersecurity #ctf #ctf2023 #ctfgroup #oyun #games #game

CTF Challenge Using 0:06:45

CTF Challenge Using CVE 2021-3560

https://github.com/0xf4n9x/CVE-2023-0669 #cve #bug 0:01:01

https://github.com/0xf4n9x/CVE-2023-0669 #cve #bug #ctf #vulnerability #rce #exploit #redteam #blue

Bypassing Directory Structure 0:04:18

Bypassing Directory Structure Filters #hack #cybersecurity #ethicalhacking #ctf #cve #bugbounty

CTF Challenge Solution: 0:02:21

CTF Challenge Solution: CVE-2022-29072

Apache CVE News 0:00:10

Apache CVE News #apache #cve #bugbounty #cybersecurity #ctf #ctf2023 #ctfgroup

CTF -ctf #cve 0:00:05

CTF -ctf #cve #bugbounty #cybersecurity #ctf #ctf2023 #ctfgroup #oyun #games #game