BEGIN:VCALENDAR VERSION:2.0 PRODID:Data::ICal 0.24 BEGIN:VEVENT DESCRIPTION: 'Title: Sold Out - Ghidra Analysis & Automation Masterclass\ n When: Friday\, Aug 9\, 14:00 - 17:59 PDT\n Where: Springhill Suites/ Dean Martin - [1]Map\n\n Description:\n\n Reverse engineering is done for a variety of reasons\, most commonly to\n analyze malware\, when sea rching for (and when looking to understand)\n vulnerabilities\, or simpl y because of one’s curiosity. The NSA\n understood this early on and d eveloped a framework to aid them in\n their reversing endeavors\, which they open-sourced in early 2019:\n Ghidra. Since then\, Ghidra has been one of the industry standard tools\n to analyze files\, mainly due to it s active development\, as well as due\n to its accessible and versatile nature.\n\n This four-hour workshop primarily focuses on the analyst min dset and\n fundamental knowledge with regards to reverse engineering\, i ncluding\n but not limited to understanding Ghidra’s core capabilities such as\n the disassembly and decompiler views\, creating and retyping data\n structures\, writing scripts to extend and automate tasks\, and t he\n creation and use of function recognition databases for FunctionID a nd\n BSim.\n\n The concepts behind the capabilities of Ghidra are the focus of the\n theory and during the hands-on exercises\, allowing one t o transfer the\n gained knowledge to another tool if so desired. As such \, this class is\n perfect for aspiring and beginning analysts\, while a lso providing\n background information and additional techniques for int ermediate\n analysts.\n\n The workshop’s materials will partially co nsist of multiple malware\n samples\, the precautions for which will be explained in-detail during\n the workshop\, ensuring the safety and inte grity of the systems of the\n attendees. A laptop with a preinstalled In tel based 64-bit Ubuntu\n 22.04 VM\, along with Ghidra\, Eclipse\, and O penJDK 21 is required.\n\n Additionally\, knowing how to read C/C++ is r equired when dealing with\n decompiled code. Being able to read and writ e Java is required for the\n automation scripting\, even though Python 2 can be used as well. If you\n cannot write Java and would still like to participate\, you are\n welcome\, but do note that this will impede som e parts of the\n workshop’s exercises.\n\n SpeakerBio: Max "Libra" Kersten\n\n Max Kersten is a malware analyst\, blogger\, and speaker who aims to\n make malware analysis more approachable for those who are sta rting. In\n 2019\, Max graduated cum laude with a bachelor's in IT & Cyb er\n Security\, during which Max also worked as an Android malware analy st.\n Currently\, Max works as a malware analyst at Trellix\, where he\n analyses APT malware and creates open-source tooling to aid such\n re search. Over the past few years\, Max spoke at international\n conferenc es\, such as DEFCON\, Black Hat (USA\, EU\, MEA\, Asia)\, Botconf\,\n Co nfidence-Conference\, HackYeahPL\, and HackFestCA. Additionally\, he\n g ave guest lectures and workshops for DEFCON\, Botconf\, several\n univer sities\, and private entities.\n\n '\n\n 1. #Springhill_Full\n\n\n DTEND:20240810T005900Z DTSTART:20240809T210000Z LOCATION:WS - Springhill Suites/Dean Martin SUMMARY:Sold Out - Ghidra Analysis & Automation Masterclass END:VEVENT END:VCALENDAR