|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Anthony Lineberry (anthony.lineberry
gmail.com)
Date: Wed Aug 13 2008 - 20:34:17 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I have to say, 40 minutes was a good limit. I struggled for a bit at
the beginning as I was unfamiliar with the tools. (I had never really
even used olly that much before).
But after I got the hang of them it was fun. I didn't think I was even
going to pull it off when it got close to the time limit. I was
definitely no Pusscat with fucking 16 minutes! what an asshole! But I
think had I had a copy of IDA and windbg, I might have been able to
speed up my time a bit.
As for how school of root did it... I'd love to know some specifics.
Past the fact that chris eagle has a factory of badasses. haha
--
Anthony Lineberry
On Wed, Aug 13, 2008 at 1:47 PM, Dave Aitel <daveimmunityinc.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> So lots of people came to take the NOP test - almost everyone passed,
> which was surprising. The average time to complete the exercise out of
> the 26 people who took it was 32 minutes. This, of course, is a lot less
> than the 2 hours that Microsoft quoted for the CANVAS Early Release of
> MS08-025, which is what I hear they said catalyzed movement on some of
> their new programs. You can read about these programs here (blackhat
> slides are not up yet, to my knowledge):
> http://www.microsoft.com/presspass/events/blackhat/materials.mspx
>
> Regardless, there's clearly lots of interest in a hands-on-exploitation
> certification. I find it's especially good for people who for whatever
> reason cannot fill out their skills on their resume.
>
> One thing that was interesting this year at Defcon was CTF, which was a
> bit of a blowout, even though the game itself was reasonably fair and
> there were lots of good teams competing. At some point it would be cool
> if school of root (the winning team) posted how they did it.
>
> - -dave
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQFIo0hFtehAhL0gheoRApnqAJ9Zw4MRSs1nNCGR9bZWWT0kWDPrSACfTw4u
> f/NeYKmlu4DvxDkynckHRD8=
> =tE4z
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Dailydave mailing list
> Dailydavelists.immunitysec.com
> http://lists.immunitysec.com/mailman/listinfo/dailydave
>
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]