Vulnerability Research Courses and Certifications

Recon Conference

Tales From The Crypt: Bug Hunting in the Windows CryptoAPI

Dive into vulnerability research in Windows CryptoAPI with Erik Egsgard as he shares his journey finding remote code execution vulnerabilities in this critical security component.

• YouTube
• 26 minutes
• On-Demand
• Free Video

DEFCONConference

Outlook Unleashing RCE Chaos: Exploiting CVE-2024-30103

Dive into the critical Outlook security vulnerabilities, exploring remote code execution exploits through COM objects, NTLM leaks, and essential mitigation strategies for enterprise protection.

• YouTube
• 41 minutes
• On-Demand
• Free Video

NDC Conferences

ToolShell, Patch Bypass, and the AI That Might Have Seen It Coming

Explore the ToolShell SharePoint vulnerability chain, patch bypass techniques, and how AI tools can enhance exploit detection and security analysis in enterprise environments.

• YouTube
• 47 minutes
• On-Demand
• Free Video

Black Hat

QuickShell - Sharing is Caring About an RCE Attack Chain on Quick Share

Discover how researchers uncovered 10 vulnerabilities in Google's Quick Share, leading to QuickShell - a complex RCE attack chain exploiting file sharing protocols on Windows and Android.

• YouTube
• 39 minutes
• On-Demand
• Free Video

NDC Conferences

Inside Google's Discovery and Remediation of a Critical CPU Vulnerability

Dive into the discovery and remediation process of Reptar, a critical CPU vulnerability found by Google researchers, exploring technical challenges and operational strategies implemented under tight timeframes.

• YouTube
• 45 minutes
• On-Demand
• Free Video

Black Hat

Windows Downdate: Downgrade Attacks Using Windows Updates

Explore how downgrade attacks can exploit Windows Updates to revert software to vulnerable versions, beyond the BlackLotus UEFI bootkit case that targeted Secure Boot.

• YouTube
• 34 minutes
• On-Demand
• Free Video

Black Hat

Diving into Windows HTTP - Unveiling Hidden Preauth Vulnerabilities in Windows HTTP Services

Uncover 100+ critical pre-auth vulnerabilities in Windows HTTP services like IIS, ADFS, and Hyper-V, including RCE, DoS, and info leakage exploits requiring no credentials.

• YouTube
• 36 minutes
• On-Demand
• Free Video

CryptoCat

Print Scan Hacks - Understanding the 8 CVEs Impacting Brother Printers

Explore 8 critical Brother printer vulnerabilities through hands-on analysis of CVEs 2024-51977 to 51984, covering buffer overflows, auth bypass, SSRF, and credential exposure attacks.

• YouTube
• 30 minutes
• On-Demand
• Free Video

Black Hat

JDD - In-depth Mining of Java Deserialization Gadget Chains via Bottom-up Gadget Search and Dataflow-aided Payload Construction

Discover advanced techniques for mining Java deserialization vulnerabilities using bottom-up gadget search and dataflow-aided payload construction to identify zero-day exploits.

• YouTube
• 37 minutes
• On-Demand
• Free Video

Black Hat

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip

Explore vulnerability research on Google's Titan M security chip, including fuzzing techniques, impact analysis, and mitigation strategies for modern device protection.

• YouTube
• 34 minutes
• On-Demand
• Conference Talk

Black Hat

From Coordinated Disclosure to Cooperative Vulnerability Research When Dealing with Critical Software Stacks

Explore evolving approaches to vulnerability disclosure in critical software, emphasizing early cooperation between researchers and vendors for improved security outcomes.

• YouTube
• 44 minutes
• On-Demand
• Conference Talk

Ekoparty Security Conference

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip

Exploración de vulnerabilidades en el chip Titan M de Google, desde análisis estático hasta ejecución simbólica dinámica. Incluye demostración de explotación de CVE-2022-20233 para obtener ejecución de código.

• YouTube
• 36 minutes
• On-Demand
• Conference Talk

Ekoparty Security Conference

A Journey Finding Pre and Post-Auth D-Link Router Zero-Days

Explora el proceso de descubrimiento y explotación de vulnerabilidades 0-day en routers D-Link, desde obtener acceso al firmware hasta identificar y explotar fallos de seguridad para lograr ejecución remota de código.

• YouTube
• 37 minutes
• On-Demand
• Free Video

AGU

Society's Growing Vulnerability to Natural Hazards and Implications for Geophysics Research

Explore natural hazards' impact on society, geophysics research implications, and strategies for addressing vulnerabilities through case studies and scientific advancements.

• YouTube
• 1 hour 10 minutes
• On-Demand
• Free Video

media.ccc.de

Physical Vulnerability Research - Exploring Security Systems Exploitation

Explore methodologies for exploiting physical security systems, including locks and access control, with real-life examples and digital security crossovers.

• YouTube
• 44 minutes
• On-Demand
• Free Video