Hacktivities
CTFs, Challenges y workshops, Poné a prueba tus conocimientos en distintas áreas de infosec con tu entrada de la #eko2021
Advanced CTF by Null Life & GitHub Security Lab
El equipo de Null Life ha trabajado junto a Ekoparty durante los últimos años para producir el Advanced CTF (conocido antes como 'Main CTF), logrando interconectar actividades y otros espacios de la conferencia y convirtiéndose en una las Hacktivities más esperadas por los asistentes, con grandes premios para los tres primeros equipos
Este año contamos una vez más con el apoyo de GitHub Security Lab.
Introductory CTF by Hackear / Google
La comunidad Hackear, con el apoyo de Google, ofrecerá durante la Ekoparty 2021 un conjunto de máquinas virtuales vulnerables, con las cuales podrás poner en práctica los conocimientos básicos de seguridad ofensiva que hayas adquirido hasta el momento.
WarDriving
Workshops
Smart contract hacking with Damn Vulnerable DeFi
Martín Abbatemarco
A multi-billion dollar economy is being built on top of Ethereum smart contracts. Yet for this economy to grow and thrive, we must protect it. We've learned (almost on a weekly basis) that smart contracts can be hacked. Only the latest attacks have stolen hundreds of millions of dollars from early users of the decentralized finances (DeFi). But how's that even possible in the first place ? What's the mindset, tools and exact steps attackers take to exploit vulnerabilities in smart contracts ? In this workshop we cover exactly that, throughout multiple vulnerabilities in DeFi smart contracts, following detailed walkthroughs of the Damn Vulnerable DeFi wargame. Attendees will learn about Ethereum, smart contracts, DeFi protocols, and exploiting techniques for vulnerabilities seen (and exploited) in the wild. This knowledge can be applied to further research into smart contract security and kickstart a career in this new realm of infosec, either as white-hack hackers, bug hunters, or professional security auditors.
TBD
Defenders Guide to the Container Ecosystem
Joshua Jebaraj
Docker is one of the trending technologies that rules the IT ecosystem. Many companies have started to adapt the usage of docker in their companies. While Docker offers a high level of scalability and portability, security can fall into the sidelines.Like many other technologies, it is not safe by default. We have to take certain steps to make sure that the docker deployment is safe and secure. This workshop introduces the attendees to docker basics, discuss various security problems in the default configuration and also discuss the various defense mechanisms. This is a practical, hands-on workshop.The attendees will be introduced from the basics of the docker to the advanced Security Implementation like Image signing.To make sure all the attendees learn the concepts well, there will be challenges at the end of the few scenarios.
TBD
Unknown
Joshua Jebaraj is Creator of GCP-Goat. He currently works as Security Researcher at we45. He is an active member of many open-source communities like Null, Ansible and Hashicorp . .He also Spoken at conferences like Defcon,Owasp-Seasides,Bsides-Delhi and Open-Security-Summit When away from the screen he can be found at watching movies and making memes.
Threat Hunting From Zero to Hero
Leandro Ariel Millahuel
This workshop will teach all the people who wants to start in Threat Hunting how to make her first steps into this world. Also, it will be useful in order to increase at least the curiosity about this topic that today it’s not mentioned too much and it’s a very important portion of any company that takes cybersecurity in a serious way. Finally, I think that It will be fun that people knows that a lot of Threat Groups exists and operates not like a hacking movie but in a really “normal” way.
TBD
Ariel Millahuel
I'm Ariel Millahuel a cybersecurity passionate that works in SOC Prime as Threat Hunter Engineer and dedicates himself on malware-related investigations. My principal area of work is related to analyze and find Cybersecurity and Threat Hunting solutions that brings a robust way of work in order to create safe and strong environments for companies and people. Also I love to train Crossfit, play videogames, spend time with my family and watch horror movies (mostly the old ones)
Honeytokens as a custom suit without burning down the house!
Luis Maritnez
On the recent months, ¿how many 0-day vulnerabilities had appear in the wild? Worst yet, there's no patch or even worst... the patch doesn't work. Additionally, ¿Do your company have a great patching process?. This is one the main reasons that active defense plays a key role on today's cyber security field that not having any of these in place is like not having an insurance these days, it's crazy!
On this talk we will review the different mechanism to implement easily a honeytoken strategy that can help us on the most difficult scenario to detect threat actors that everyday are better to make companies appear on the breach news.
TBD
Luis Maritnez
Cybersecurity defender with 9 years of progressive skill that loves hacking culture and always looking forward for everyday new threats. I had the pleasure to work for Fortune 100 companies (Oracle, Dell) and currently in a big 4 accountability firm (KPMG) as cyber security incident responder and Im currently exploring pentesting/active defense methodologies. I'm old school rocker fan that loves to play guitar and playing videogames as main hobby.
Discovering C&C in Malicious PDF with obfuscation, encoding and other techniques
Filipi Pires
Demonstrate different kind of structures in the binaries as a PDF(header/ body/cross-reference table/trailer), explaining how each session works within a binary, what are the techniques used such as packers, obfuscation with JavaScript (PDF) and more, explaining too about some anti-disassembly techniques, demonstrating as a is the action of these malware’s and where it would be possible to “include” a malicious code. By the end will be clear to everyone, differences in binaries structures, how the researchers can conduct each of these kind of analyzes, besides of course, it should seek more basic knowledge, with file structures, software architecture and programming language.
TBD
Filipi Pires
I’ve been working as Security Researcher at senhasegura, I’m Hacking is NOT a crime Advocate and RedTeam Village Contributor. I’m part of the Staff team of DEFCON Group São Paulo-Brazil, International Speakers in Security and New technologies events in many countries such as US, Canada, UK, Spain, Germany, Poland among others
Arte electrónico tipo #BadgeLife
Maggie Jauregui
Únete a este divertido workshop en donde aprenderás a diseñar tu primer PCB usando la herramienta open source: KiCad. En este workshop convertiremos una imagen en una tarjeta madre como arte electrónico, jugando con los colores de los diferentes niveles físicos: la fibra de vidrio, el cobre, silk screen y mask para crear una pieza de arte original y única. Estas herramientas te servirán para crear tus propios badges electrónicos tipo #badglife.
TBD
Maggie Jauregui
Maggie Jauregui (@_m46s) is a firmware and hardware offensive security researcher for Intel Corporation with over 10 years of experience focused on low level platform security. Maggie is part of Black Hat's review board and President of BSides Portland, the non-profit organization that puts together BSidesPDX. Throughout her career, Maggie has presented her research and delivered technical training on firmware and physical attack security topics at conferences around the world including DEFCON, Black Hat, CanSecWest, and hardwear.io among others.
Finding Bugs and Scaling Your Security Program with Semgrep
Grayson Hardaway & Clint Gibler
"In this workshop, we’ll help you rapidly scale your code review efforts using Semgrep, an open source static analysis tool. Semgrep supports 15+ languages (master once, use everywhere), has a public registry of over 1,000 out-of-the-box security checks, does not require buildable source code, and it’s fast - scanning large code bases in minutes, not hours or days.
This workshop will be a hands-on masterclass of using Semgrep to find vulnerabilities as well as code hotspots, like potentially dangerous functionality (e.g. crypto), routes with broken auth, and more. We’ll also show how to write custom Semgrep rules unique to the code you’re reviewing, and how to roll out Semgrep in CI."
TBD
Clint Gibler
Clint Gibler is the Head of Security Research for r2c, a startup working on giving security tools directly to developers. Previously, Clint was a Research Director at NCC Group. Clint has previously spoken at many conferences, including BlackHat USA and global OWASP cons. Want to keep up with security research? Check out Clint’s newsletter: https://tldrsec.com/
Grayson Hardaway
TBD
Exploring runtime Security and Forensic using eBPF
Carol Valencia
How could you secure the app, the infrastructure and detect threads in your runtime? Build, infra, and runtime will be the key points of this workshop. We will explore good practices to embed security in images, Kubernetes, infrastructure, and workloads, together with several open-source tools that help with the security, compliance, and forensic.
TBD
