Hacking Night at OWASP Cork
Details
Two great talks on the night starting with 'Exploiting Insecure Deserialisation' where Nabigh discusses a new approach to exploitation of deserialization vulnerabilities. This is followed up with a talk by Katerina and Sam of 'Hack The Box' on their company's gamified hacking playground where a community of hackers upload vulnerable machines and learn while hacking them. https://www.hackthebox.eu/
**** Meeting link has been added but is accessible only to those who RSVP ****
Talk 1: Exploiting Insecure Deserialisation
Speaker: Nabigh Nugdallagh
Talk summary:
A new approach to exploiting deserialisation vulnerabilities utilizing a tool Nabigh developed during his studies.
Speaker bio:
Nabigh is a SOC Analyst and hacker enthusiast with a passion for Information security researching with more than 7 years of experience in the industry. He holds a Master of Science degree in Cybersecurity from Cork Institute of Technology / Munster Technology University, Ireland. Nabigh loves to tackle through CTFs as well as security challenges by researching and developing suitable techniques for exploitation. His focus is on web applications, mobile applications, digital forensics, network security, and Operating systems.
Talk2: HackTheBox
Speakers: Katerina Tasiopoulou, Sam Nye
Talk summary:
We will be discussing how Hack The Box has helped train a huge community of over 600k members in the latest hacking skills and techniques with both free and paid services, some of which focusing specifically on OWASP Top 10 vulnerabilities.
Sepaker bio:
Katerina Tasiopoulou is the Business Development Manager for Hack the Box. Kat started her career as a penetration tester and SOC Analyst, prior to moving into the incident response realm. Katerina responded to security incidents globally and helped organisations contain and recover from cyber attacks.
Kat has won a magnitude of awards across UK and is a recognised public speaker.
Sam is a Technical Account Manager at Hack the Box. He has a wealth of experience in multiple security disciplines. He spent 8 years in the Armed Forces, providing secure communications across the globe. Sam continued to focus his expertise in the field of offensive cybersecurity and utilized these skills in the commercial world, conducting security assessments for large organizations in both the UK and the Middle East as well as for high-profile individuals