BHIS | Getting Started in Blockchain Security and Smart Contract Auditing | Beau Bullock

Показать описание

Learn breaching the cloud with Beau Bullock from Antisyphon

0:00:00 - PreShow Banter™ — Beau Has a Fan Club
0:32:39 - FEATURE PRESENTATION: Getting Started in Blockchain Security and Smart Contract Auditing
0:36:39 - Roadmap
0:37:51 - Why Blockchain Security
0:39:21 - Growing Use Cases for Blockchain
0:43:23 - Blockchain Elements That Need Securing
0:49:00 - What Are Smart Contracts
0:51:22 - EVM : Ethereum Virtual Machine
0:54:00 - Solidity
0:59:55 - Smart Contract Vulns
1:04:00 - – Reentrancy
1:05:54 - – Front-Running
1:07:41 - – Inter Overflow and Underflow
1:09:15 - – Denial-of-Service
1:10:43 - – Access Control
1:12:46 - – Timestamp Dependence
1:15:23 - Case Studies – Uranium Finance Hack
1:17:26 - – Poly Network Hack
1:21:07 - – Cream Finance Hack
1:24:42 - DEMO: Live Exploit
1:35:44 - Exploit Recap
1:36:14 - Security Tools – VS Code + Solidity Visual Developer
1:37:08 - – Slither
1:37:26 - – Mythril & MythX
1:37:57 - Get-Started Resources
1:39:03 - Bug Bounties
1:39:19 - Key Takeaways
1:40:29 - This is the End – Q & A

Description: In this Black Hills Information Security (BHIS) webcast, we'll use case studies about recent blockchain hacks to introduce the underlying issues that occur in writing/engineering smart contracts that have ultimately lead to the loss of millions of dollars to attackers.

BlockchainHAX QuickStart Guide

Follow me on Twitter
• Beau Bullock - @dafthack

CoinSec Podcast – Weekly show about blockchain security

Black Hills Infosec Socials

Black Hills Infosec Shirts & Hoodies

Black Hills Infosec Services

Backdoors & Breaches - Incident Response Card Game

Antisyphon Training

Educational Infosec Content

#bhis #infosec

Рекомендации по теме

Комментарии

This was exactly what I was looking for as I want to focus on blockchain offensive security. Super helpful 💯

Jessica

I'm already on the smart contract rabbit hole, and this is great fuel for the fire!

calebnaugle

Before this video, i just know that cypto is based on blockchain but now i know what blockchain is .Thanks for the video ❤️.

baroonjha

man, you guys have the coolest t-shirts (and great talk!)

bensacc

Great Content Guys! Currently Writing a Master's Dissertation on Some of the Smart Contract Vulnerabilities and this has helped alot!

KayA-gonr

Loved it! It was such a pleasure to watch, succinct and very well done! Please make more of these

xDevelopers

Been waiting for this since the webcast ended.😂

legrandesleepy

Great content - thanks a lot for sharing your knowledge!

pgteugj

Thanks for sharing. Please keep sharing stuff like this.

fakermankumar

really very good and informative session...it's definitely super super helpful.

🤣camera focusing issue was miserable though...

xclusivetech

Thanks for the info. I want to get into blockchain security but have no cyber background. How should I approach?

crazyrobot

get this guy to talk about Solana smart contracts vulns pls

MarKac

How do i get the Cybersecurity guys channel

iampromesa

Can someone tell me name of a website which is solely dedicated to blockchain security and has smart contract boxes just like in hack the box or is their a website which has regular updates on ctfs and bug bounty for blockchain 🤔.

synoopspentest

Hi, do you know where to start the technical part of block chains ?

MrEpicdream

Great content guys. I am in Toronto Canada and looking to get into blockchain technology/developer. Would love to connect with Black Hills. What’s the best way to join the community?

nellsawere

Hi sir, I need help with a project in the Blockchain security field, which is about implementing SQL injection and XSS on a decentralized application, if you have any idea or you know anyone that can help and guide me please let me know, many thanks

soulsongs

BHIS | Getting Started in Blockchain Security and Smart Contract Auditing | Beau Bullock

BHIS | Getting Started in Covert .NET Tradecraft for Post-Exploitation – Kyle Avery

Day 1 | Getting Started in Security with BHIS and MITRE ATT&CK

BHIS LIVE! | Getting Started in Pentesting The Cloud: Azure | Beau Bullock (1-Hour)

Day 2 | Getting Started in Security with BHIS and MITRE ATT&CK

BHIS | Getting Started in Blockchain Security and Smart Contract Auditing | Beau Bullock

BHIS | Getting Started: Cybersecurity Maturity Model Certification (CMMC) | CJ Cox & Adam Austi...

Day 1 - Getting Started in Security 11-2024 #livestream #infosec #training

Day 4 | Getting Started in Security with BHIS and MITRE ATT&CK

Day 3 | Getting Started in Security with BHIS and MITRE ATT&CK

Getting Started in Cyber Deception

BHIS | Atomic Red Team Hands on Getting Started Guide | Carrie & Darin Roberts | 1 Hour

Day 4 - Getting Started in Security 11-2024 #livestream #infosec #training

BHIS | Introduction to Pentesting with Mike Felch | 1 Hour

BHIS | Firmware Enumeration Using Open Source Tools | Paul Asadoorian | 1-Hour

BHIS | How to Build a Phishing Engagement - Coding TTP's - Ralph May

BHIS | Atomic Red Team: Hands-on Getting Started Guide | Carrie & Darin Roberts | 1-Hour

BHIS | Your Free and Open Source EDR Options! | John Strand | 1 Hour

1st 3 Windows IR Commands - BHIS Nuggets | John Strand

BHIS | OPSEC Fundamentals for Remote Red Teams - Michael Allen - 1-Hour

BHIS | How to Fail at a Pentest with John Strand | 1-Hour

Day 2 - Getting Started in Security 11-2024 #livestream #infosec #training

Atomic Red Team: Testing your EDR | John Strand | BHIS Nuggets

BHIS | Intro to Windows Event Collecting | Nick & Noah | 1 Hour

#coLearning - Attending Black Hills Infosec -Getting Started in Security with BHIS and MITRE ATT&...