Vulnerability Research Courses and Certifications

Hack In The Box Security Conference

Escaping From VMware Workstation Through the Disk Controller

Exploración detallada de una vulnerabilidad en los controladores de disco de VMware Workstation que permite escapar de una máquina virtual, con demostraciones de exploits para Linux y Windows.

• YouTube
• 49 minutes
• On-Demand
• Free Video

Security Research with Open Source Software - Volume Omega

Explore open source software security with the OpenSSF Alpha-Omega team. Learn about automated security patches, vulnerability research, and tools to address global security concerns in the OSS ecosystem.

• YouTube
• 44 minutes
• On-Demand
• Free Video

HackMiami

Hunting File System Redirection Bugs Through Instrumentation

Explore file system redirection vulnerabilities and learn advanced techniques for identifying and exploiting these security risks in Windows systems.

• YouTube
• 23 minutes
• On-Demand
• Free Video

NorthSec

Finding and Exploiting Critical Vulnerabilities in RPC Services - NorthSec 2023

Comprehensive walkthrough of finding, exploiting, and reporting critical vulnerabilities in an RPC service, covering reverse engineering, authentication bypass, and coordinated disclosure.

• YouTube
• 28 minutes
• On-Demand
• Free Video

Black Hat

URB Excalibur - New VMware All-Platform VM Escapes

Unveils groundbreaking research on VMware hypervisor vulnerabilities, focusing on virtual USB controllers. Demonstrates novel VM escape techniques using URB, showcasing a critical heap out-of-bounds write vulnerability across all VMware platforms.

• YouTube
• 39 minutes
• On-Demand
• Free Video

media.ccc.de

Dialing into the Past: Remote Code Execution via the Fax Machine - Because Why Not?

Discover how vintage fax technology can be exploited for remote code execution, exploring printer security vulnerabilities and their implications for modern cybersecurity through practical demonstrations and technical insights.

• YouTube
• 39 minutes
• On-Demand
• Free Video

media.ccc.de

Dialing into the Past: Remote Code Execution via Fax Machine Security Vulnerabilities

Discover how vintage fax technology can be exploited for remote code execution, demonstrated through practical examples including running Doom on printers and exploring security vulnerabilities in legacy systems.

• YouTube
• 39 minutes
• On-Demand
• Free Video

OffensiveCon

Frame by Frame: Kernel Streaming Keeps Giving Vulnerabilities

Dive into kernel streaming vulnerabilities with Angelboy's analysis of frame-by-frame exploitation techniques in this technical security presentation.

• YouTube
• 47 minutes
• On-Demand
• Free Video

DEFCONConference

7 Vulns in 7 Days - Breaking Bloatware Faster Than It's Built

Discover how bloatware vulnerabilities led to 7 CVEs in 7 days, exposing privileged service flaws that enable browser-to-system exploitation across major vendors.

• YouTube
• 40 minutes
• On-Demand
• Free Video

DEFCONConference

Hacking Hotel Locks - The Saflok Vulnerabilities Expanded

Explore expanded vulnerabilities in Saflok hotel locks, covering handheld programmers, lock interfaces, credential bit fields, and why security-through-obscurity fails in practice.

• YouTube
• 38 minutes
• On-Demand
• Free Video

Black Hat

Bug Hunting Journey on VMware's Hypervisor - Guest-to-Host Escape Exploits

Dive into VMware hypervisor security through real-world bug hunting experiences, focusing on SVGA vulnerabilities and guest-to-host escape exploits with practical exploitation techniques.

• YouTube
• 39 minutes
• On-Demand
• Free Video

NDC Conferences

Inside Google's Discovery and Remediation of the Reptar CPU Vulnerability

Dive into Google's discovery and response to Reptar, a critical CPU vulnerability, exploring technical challenges, operational complexities, and enterprise-wide remediation strategies.

• YouTube
• 44 minutes
• On-Demand
• Free Video

Black Hat

Attacking Samsung Galaxy A* Boot Chain and Beyond - Security Vulnerabilities and Exploits

Dive into advanced security vulnerabilities in Samsung Galaxy A devices, exploring boot chain exploits, bootloader vulnerabilities, and critical ARM Trusted Firmware weaknesses for comprehensive device control.

• YouTube
• 39 minutes
• On-Demand
• Free Video

Recon Conference

QuickShell - Sharing is Caring About an RCE Attack Chain on Quick Share

Uncover a critical RCE attack chain targeting Google's Quick Share through protocol analysis, fuzzing, and exploitation of 10 vulnerabilities across Windows and Android platforms.

• YouTube
• 53 minutes
• On-Demand
• Free Video

Ekoparty Security Conference

The Missing Link - Draytek's New RCEs Complete the Chain

Discover two new unauthenticated RCEs in Draytek routers (CVE-2024-51138 & CVE-2024-51139) and learn complete exploitation chains for full device takeover from security researchers.

• YouTube
• 35 minutes
• On-Demand
• Free Video