BEGIN:VCALENDAR VERSION:2.0 PRODID:Data::ICal 0.24 BEGIN:VEVENT DESCRIPTION: 'Title: House of Heap Exploitation\n When: Thursday\, Aug 11\, 14:00 - 17:59 PDT\n Where: Harrah's - Goldfield + Tonopah (Workshop s) - [1]Map\n Speakers:Zachary Minneker\,Maxwell Dulin\,Kenzie Dolan\,Na than Kirkland\n\n SpeakerBio:Zachary Minneker \, Senior Security Enginee r\, Security\n Innovation\n Zachary Minneker is a senior security engi neer and security researcher\n at Security Innovation. His first compute r was a PowerPC Macintosh\, an\n ISA which he continues to defend to thi s day. At Security Innovation\,\n he has performed security assessments on a variety of systems\,\n including robots for kids\, audio transcript ion codecs\, and electronic\n medical systems. He has previous experienc e administrating electronic\n medical systems\, and deep experience in f uzzing\, reverse engineering\,\n and protocol analysis. His research has focused on techniques for\n in-memory fuzzing\, IPC methods\, and vulne rability discovery in\n electronic medical record systems and health car e protocols. In his\n free time he works on music and synthesizers.\n Twitter: [2]@seiranib\n\n SpeakerBio:Maxwell Dulin \, Security Engineer\ n Maxwell Dulin (Strikeout) is a senior security consultant hacking all\ n things under the sun\, from garage doors to web applications to\n op erating systems. Maxwell has published many articles/talks for a\n pleth ora of heap exploitation techniques\, assorted web application\n exploit s and IoT devices. He has previously spoken at DEF CON 27s IoT\n Village \, ToorCon\, CanSecWest\, Hackfest and DEF CON workshops. His\n research is focused on custom RF protocols and binary exploitation\n methods. In his free time\, he plays with RF toys\, hikes to fire\n lookouts and ca tches everything at dodgeball.\n Twitter: [3]@Dooflin5\n\n SpeakerBio: Kenzie Dolan \, Security Engineer\n Kenzie Dolan (they/she) works for Se curity Innovation as a Security\n Engineer focusing on engagements rangi ng from IoT hacking to kiosk\n exploitation. His current research intere sts include emerging threats\n against Mobile and IoT devices. He has a degree in Computer and\n Information Science from University of Oregon. In his free time\, James\n enjoys composing music\, playing video games or hiking in the greater\n Seattle area.\n\n SpeakerBio:Nathan Kirklan d\n Raised on a steady diet of video game modding\, when Nathan found\n programming as a teenager\, he fit right into it. Legend says he still\n keeps his coffee (and tear) stained 1980s edition of The C Programming\ n Language by K&R stored in a box somewhere. A few borrowed Kevin\n Mi tnick books later\, he had a new interest\, and began spending more\n an d more time searching for buffer overflows and SQL injections. Many\n co ffee fueled sleepless nights later\, he had earned OSCP\, and\n graduate d highschool a few months later. After a few more years of\n working tow ards a math degree and trying fervently to teach himself\n cryptanalysis \, he decided to head back to the types of fun hacking\n problems that w ere his real first love\, and has worked at Security\n Innovation ever s ince.\n\n Description:\n\n Materials\n Laptop with enough powe r for a moderately sized Linux VM\n Administrative access to the l aptop 8GB RAM minimum 30GB\n harddrive space Virtualbox or another virtualization platform\n installed\n\n Prereq\n Basic computer science background (x86_64 assembly\, stack\,\n programmi ng skills in C & Python) Basic binary exploitation\n skills (buffe r overflow exploitation\, ROP\, ASLR\, etc.) -\n Familiar with Lin ux developer tools such as the command line\,\n Python scripting a nd GDB.\n\n '\n\n 1. https://defcon.outel.org/consolidated_page.html#H arrahs\n 2. https://twitter.com/seiranib\n 3. https://twitter.com/Doof lin5\n\n\n DTEND:20220812T005900Z DTSTART:20220811T210000Z LOCATION:WS - Harrah's - Goldfield + Tonopah (Workshops) SUMMARY:House of Heap Exploitation END:VEVENT END:VCALENDAR