Rapid7 and the entire core Metasploit team are headed to Las Vegas next week for Black Hat USA, Security B-Sides, and Defcon 18. The full schedule of events is listed below, make sure you drop by Booth #64 at Black Hat to take a shot at the Race to Root contest, where the winners will receive hacker lust-worthy prizes.
July 26th-27th, 2010 -- HD Moore will be hosting the training session, “Tactical Exploitation”, at Black Hat USA. This course is taught in conjunction with Attack Research and walks through the process of compromising a "secure" network by combining information leaks with design weaknesses.
July 27th, 2010 -- Joshua “Jabra” Abraham will be hosting the training session, “Pentesting with Perl”, at Black Hat USA, which will focus on streamlining tasks during a penetration testing assessment and demonstrating how to improve existing tools as well as create new tools.
July 28th, 2010 -- Join Rapid7 at Booth #64 of the exposition area of Black Hat USA for the Race to Root contest, where contestants race against the clock to discover and gain access to a target network. This is a timed event where the winners will receive hacker lust-worthy prizes. Contestants will have a chance to try Rapid7's commercial products, including Metasploit Express and NeXpose Enterprise.
July 28th, 2010 -- Starting at 1:30pm, Jonathan Cran will be hosting a series of demos entitled "Automating Metasploit and AutoLab" in the Black Hat Arsenal area of the Black Hat conference. These demos will focus on the myriad ways to automate Metasploit and how to quickly extend it to assist with common penetration testing tasks. At Security B-Sides, Joshua "jabra" Abraham will present on "Fierce v2", the latest version of his DNS assessment tool at 5pm.
July 28th, 2010 -- Rapid7 will be hosting a mega-party at the Palms hotel, this will run from 9:00pm to at least 2:00am and in the words of Michael Burns, "This is gonna make our RSA bash look like a day at church". This party is invite only and has already reached capacity.
July 29th, 2010 --Head to Security B-Sides at 10:00am to catch HD Moore, along with Jack Daniel, Dennis Fisher, and Josh Corman for the "InfoSec Speed Debates". This is immediately followed by James "egypt" Lee's talk on "Beyond R57", which focuses on his recent research around PHP post-exploitation. After James speaks, HD Moore will present on "Fun with VxWorks", a deep-dive into the vulnerability landscape of the VxWorks platform followed by a live demonstration of exploiting a widely-deployed commercial product. Following HD's demo, Tod Beardsley will commandeer the B-Sides Lightning Talk space to release the next version of PacketFu, the network packet crafting library for Ruby.
July 31st, 2010 -- At 2:00pm, HD Moore will present on "Fun with VxWorks" during the Skytalks at Defcon 18. This talk will focus on exploiting the VxWorks platform and include some theory crafting on possible ways to compromise the Mars Rovers (VxWorks-based robots with a 20-minute ping time).
July 31st, 2010 -- The Metasploit team can be found wandering around the last day of Defcon 18. The CTF winners will be announced and we are all rooting (hah) for our own Joshua "jduck" Drake and James "egypt" Lee.