Black Box Bug Hunting and Vulnerability Discovery

Presented By: Saumil Shah
A class about the art and craft of vulnerability discovery and subsequent exploit development. It’s an intense hands on course.

The 3 day course will take place on the 7, 8 & 9th September 2015, before 44CON London 2015.

Target Audience
Red Team members, Bug hunters, members of the military or government, pen testers, reverse engineering research teams.

Student Requirements
All topics covered in The Exploit Laboratory classes OR an equivalent level of confidence and recklessness. Skills level needs to be advanced. It will be assumed that attendee is well versed in the concept of Return Orientated Programming and putting together a ROP chain by hand.

A working laptop – No netbooks, tablets or ipads. Intel core 2 duo x86x64 hardware (or superior) required, 4GB RAM required as a minimum, 8GB preferred. Wireless network card, 30GB min free hard disk space & a working USB port (should not be DLP disabled) Linux/Windows/Mac OS X desktop operating systems. VMWare player/workstation and Fusion – this is mandatory. Administrator/root access is also mandatory.

About the Trainer
Saumil Shah is the founder and CEO of Net-Square, providing cutting edge information security services to clients around the globe. Saumil is an internationally recognized speaker and instructor, having regularly presented at conferences like 44CON, Blackhat, RSA, CanSecWest, PacSec, EUSecWest,, Hack-in-the-box and others. He has authored two books titled “Web Hacking: Attacks and Defense” and “The Anti-Virus Book”.

Saumil graduated with an M.S. in Computer Science from Purdue University, USA and a B.E. in Computer Engineering from Gujarat University. He spends his leisure time breaking software, flying kites, traveling around the world and taking pictures.