Don Donzal

Watch Now to Amp Up Your Red Team!

Video and Slide Deck from EH-Net Live! May 2020

OK… so your infrastructure is pretty much locked down, your SOC is solid, you do regular pentests and even leveled up your organization’s capabilities to include threat hunting, RE and malware analysis. Your security program is at a pretty mature level. However, as your organization grows or the assets they possess become more valuable, are you ready for what a nation state or other APT groups can throw at you? How do you know unless you pretend to be one? Are you ready to ramp up your red team engagements to mimic some really well-funded and deviously clever attackers? Watch Jake Williams AKA @MalwareJake in this FREE EH-Net Live! webinar that was presented on Thurs May 28, 2020.

Register Now to Amp Up Your Red Team!

OK… so your infrastructure is pretty much locked down, your SOC is solid, you do regular pentests and even leveled up to include threat hunting, RE and malware analysis. Your security program is at a pretty mature level. But, as your organization grows or the assets they possess become more valuable, are you ready for what a nation state or other APT groups can throw at you? How do you know unless you pretend to be one? Jake Williams AKA @MalwareJake brings to you a proven methodology of adversary emulation with some cool live demos in this FREE EH-Net Live! webinar on Thurs April 23, 2020 at 1:00 PM EDT. Join us live to receive certificates for easy submission of CPEs!

Watch Now for a Virtual IoT Village with a Hands-On Firmware Hacking Lab!

Video and Slide Deck from EH-Net Live! April 2020

Every device imaginable now has Internet access. IoT promises to bring supply chain efficiency, decreased maintenance downtime, home conveniences, and much more. There’s a lot of power being bestowed upon these little guys. And with great power… comes great vulnerabilities. Every IoT device large and small needs an operating environment. In the IoT world of embedded systems, that’s called firmware. But what is it, how do we hack it and what are the impacts for your home, in your organization and on your careers? We’re very excited to bring you a mini virtual version of an IoT Village today, as Village IDIOT Labs joins us today for some IoT Hacking 101 goodness in this FREE EH-Net Live! webinar that was presented on Thurs April 23, 2020.

Register Now for a Virtual IoT Village with a Hands-On Firmware Hacking Lab!

Every device imaginable now has Internet access. IoT promises to bring supply chain efficiency, decreased maintenance downtime, home conveniences, and much more. There’s a lot of power being bestowed upon them. And with great power… comes great vulnerabilities. Every device large and small needs an operating environment. In the IoT world of embedded systems, that’s called firmware. But what is it, how do we hack it and what are the impacts in your organization and on your careers? Join Village IDIOT Labs for some IoT Hacking 101 goodness in this FREE EH-Net Live! webinar on Tues March 31, 2020 at 1:00 PM EST. Join us live to receive certificates for easy submission of CPEs!

Watch Now for the Technical Foundations of AI for Deepfakes!

Video and Slide Deck from EH-Net Live! March 2020

We’ve all seen deepfakes on the Interwebs… from funny videos to politics and, of course, from the impetus behind many technical innovations, an insatiable appetite for porn. At her talk at RSAC 2020, Alyssa Miller, Application Security Advocate at Snyk, took a unique view at the effect that deepfakes might have on many more aspects of life beyond just mischief or cyber security and into the threats that deepfakes pose to businesses and global markets. Since her stage time was limited, she didn’t get a chance to showcase details about the technology used by the wizards of data to pull off such magical feats. Well… Now she does! And, in true EH-Net fashion, I also wanted to make sure that we covered some practical aspects on how all of this can affect your InfoSec career. If it seems like a lot, it is. But she was gracious in trying to tackle it all in this FREE EH-Net Live! webinar that was presented on Tues March 31, 2020.

Register Now for the Technical Foundations of AI for Deepfakes!

We've all seen deepfakes on the Interwebs... from funny videos to politics and, of course, from the impetus behind many technical innovations, an insatiable appetite for porn. At her talk at RSAC 2020, Alyssa Miller, Application Security Advocate at Snyk, took a unique view at the effect this might have on many more aspects of life beyond mischief or cyber security and into the threats that deepfakes pose to businesses and global markets. Since time was limited, she didn't get to showcase details about the tech used by the wizards of data to pull off such magical feats. Now she does! Join us for a brief history of deepfakes, live demos of machine learning techniques and where this all might fit into the careers of InfoSec pros in this FREE EH-Net Live! webinar on Tues March 31, 2020 at 1:00 PM EST. Join us live to receive certificates for easy submission of CPEs!

Watch Now to Learn Shellcoding from the Ground Up!

Video and Slide Deck from EH-Net Live! January 2020

In the art of binary exploitation, there is one ominous “hacker” term you will hear quite often, and that is shellcode. What is shellcode? How do exploit developers create it and how do ethical hackers use it in their pentests, for research or even in CTF competitions? These questions and others will be addressed by our guest, John Hammond, a cybersecurity practitioner and online training personality. Together we’ll do our best to show you how to use shellcode against vulnerable programs in both Linux and Windows, explore how to generate shellcode in Python, and eventually get to the hacker holy grail… an interactive shell on the host machine within the organization that we’ll be pretending to pentest. All this and more in this FREE EH-Net Live! webinar that was presented on Wed Jan 29, 2020.

Register Now to Learn Shellcoding from the Ground Up!

In the art of binary exploitation, there is one ominous "hacker" term you will hear quite often: shellcode. What is shellcode? How can it be used, and how do exploit developers create it? These questions and others will be addressed by John Hammond, a cybersecurity practitioner and online training personality. Join us to watch and learn the use of shellcode against vulnerable programs in both Linux and Windows, explore how to simply generate shellcode in Python, and even how to evade bad character restrictions with sub-encoding techniques and how to apply them as a pentester, researcher, bug bounty hunter or CTF player in this FREE EH-Net Live! webinar on Wed Jan 29, 2020 at 1:00 PM EST. Join us live to receive certificates for easy submission of CPEs!

See FOSS Tools for WebApp Pentests!

Video and Slide Deck from EH-Net Live! December 2019

Web Application Penetration Testing, or webapp pentesting, to put it simply is poking at the code behind a web site to see if there are any holes. If there are, how far down the rabbit hole can we go? We say pentesting instead of just hacking, because there’s not only a methodology (or a repeatable process) behind it, but we must also have permission to do the poking. In the end, we must also report our findings to our bosses or clients and most importantly recommend fixes. But we often talk about the catch 22 of not having experience to get a job like this, and, if you can’t get a job, how do I gain the experience? And with millions of high paying jobs in this field going unfilled because of a lack of skilled candidates, there’s becoming a huge appetite to learn the basics. And since most are either just out of college or even trying to switch careers, creating that technical foundation for little to no money down is the desire of many. We share many tools and even some career advice to become either a pentester or a bug bounty hunter in this FREE EH-Net Live! webinar that was presented on Thurs Dec 19, 2019.