LASCON 2017 has ended
View analytic
Wednesday, October 25 • 9:00am - 6:15pm
Modern Crypto Attacks for Pen Testers who Hate Math w/ Daniel Crowley (Day 2) LIMITED

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Limited Capacity seats available

Paid Training Ticket Required

In the same way that applications are difficult to design, code and deploy securely, cryptographic systems are difficult to design, code and deploy securely. So why is it that people who jump at the chance to learn new ways to break application security balk at learning crypto? One reason seems pretty consistent: the math is too hard! But surprisingly, most application security professionals ALREADY understand and have performed some crypto attacks. Ever cracked a password hash? Ever performed an NTLM relay attack? Then you, too, have successfully attacked cryptosystems!

While math and number theory are involved in attacking crypto, it's only a part of what makes cryptosystems break. This training will focus on crypto basics and practical crypto attacks you can use against real-world applications as explained using the language of logic, not math, as well as tools that can help you launch the attacks which involve more complicated math. Attendees will learn how to exploit common crypto flaws through instruction and hands-on exercises.

Student requirements:  An installed copy of FeatherDuster

avatar for Daniel Crowley

Daniel Crowley

Austin Research Director, NCC Group
Daniel Crowley is a Senior Security Engineer and Research Director for NCC Group, tasked with finding and exploiting flaws in everything from Web applications and cryptosystems to ATMs, smart homes, and industrial control systems. He denies all allegations of unicorn smuggling and... Read More →

Wednesday October 25, 2017 9:00am - 6:15pm

Attendees (2)