BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Finding Security Vulnerabilities Through Fuzzing\n  
  When: Friday\, Aug 12\, 09:00 - 12:59 PDT\n   Where: Harrah's - Elko (Wor
 kshops) - [1]Map\n\n   SpeakerBio:Hardik Shah \, Security Researcher\n   H
 ardik Shah is an experienced security researcher and technology\n   evange
 list. He is currently working with Sophos as a Principal Threat\n   Resear
 cher. Hardik has found many vulnerabilities in windows and other\n   open 
 source software. He currently has around 30+ CVEs in his name. He\n   was 
 also MSRC most valuable researcher for year 2019 and top\n   contributing 
 researcher for MSRC Q1 2020. Hardik enjoys analysing\n   latest threats an
 d figuring out ways to protect customers from them.\n\n   You can follow h
 im on twitter @hardik05 and read some of his blogs\n   here: [2]https://ne
 ws.sophos.com/en-us/author/hardik-shah/ [3]https://www.mcafee.com/blogs/au
 thor/hardik-shah\n\n   Twitter: [4]@hardik05\n\n   Description:\n   Many p
 eople are interested in finding vulnerabilities but don't know\n   where t
 o start. This workshop is aimed at providing details on how to\n   use fuz
 zing to find software vulnerabilities. We will discuss what is\n   fuzzing
 \, different types of fuzzers and how to use them.\n\n   This training wil
 l start with a basic introduction to different types\n   of vulnerabilitie
 s which are very common in softwares. Later on during\n   the training we 
 will first start with fuzzing a simple C program which\n   contains these 
 vulnerabilities. After that we will see how we fuzz\n   real world open so
 urce softwares using fuzzers like AFL\,libfuzzer and\n   honggfuzz etc.\n\
 n   This talk will also provide details on how AFL works\, what are the\n 
   different mutation strategies it uses. basics of compile time\n   instru
 mentation\, how to collect corpus for fuzzing and how to minimize\n   it\,
 crash triage and finding root cause.\n\n   Key takeaways from this worksho
 p will be: 1. Understanding of common\n   types of security vulnerabilitie
 s like buffer overflow/heap\n   overflow/use after free/double free/Out of
  bound read/write/memory\n   leaks etc. 2. Understanding how to use variou
 s fuzzers like\n   AFL\,LibFuzzer\, Hongfuzz etc. 3. How to fuzz various o
 pen source\n   softwares on linux. 4. How to do basic debugging to find th
 e root\n   cause of vulnerabilities for linux. 5. How to write secure soft
 ware by\n   having an understanding of common types of vulnerabilities.\n\
 n   Materials\n         A laptop with at least 16GB RAM\, min 4 core proce
 ssor\,\n         virtualbox or vmware. I will be sharing a linux VM based 
 on kali\n         which will have all the tools required for the workshop.
 \n\n   Prereq\n         Basic knowledge of C\,C++\, basic knowledge of lin
 ux and windows.\n\n   '\n\n   1. https://defcon.outel.org/consolidated_pag
 e.html#Harrahs\n   2. https://news.sophos.com/en-us/author/hardik-shah/\n 
   3. https://www.mcafee.com/blogs/author/hardik-shah\n   4. https://twitte
 r.com/hardik05\n\n\n
DTEND:20220812T195900Z
DTSTART:20220812T160000Z
LOCATION:WS - Harrah's - Elko (Workshops)
SUMMARY:Finding Security Vulnerabilities Through Fuzzing
END:VEVENT
END:VCALENDAR