Thanks go out to Slawomir Jasek btw who pointed me at a better way of imaging the rPi 0 rather than just doing a full drive dd

Another example of how teaching for #OST2 and teaching in person aren’t mutually exclusive. Check out Cedric Halbronn’s training if you want in-person support and guidance not just on the basics of exploits, but in the actual engineering that goes into making reliable exploits

My next #OST2 class will be an introduction to Bluetooth Low Energy (BLE) security, where I will be the co-instructor and Veronica Kovah will be the primary instructor (since she’s the one with the 1337 ‘sploits not me ;))

Bump for the Monday crowd. FYI it’s something Amazon-related. One theory is it’s possibly a Ring camera?

Does anyone have a device that advertises itself as “rnet” via Bluetooth Low Energy, and if so, what is it?

My next in-person training will be at hardwear.io May 28-30th in Santa Clara USA

I’ll once again be teaching in my All-You-Can-Learn Buffet style, which will include the new RISC-V Assembly material (+ firmware security, C/C++ vuln hunting, etc)

hardwear.io/usa-2024/train…

Ali Hadi Ali Hadi | B!n@ry who was an OST1 instructor, reached out about contributing a class to #OST2 . And when he learned about ost2.fyi/Sponsorship.ht… he said he wanted to Sponsor OST2 too! I look forward to seeing the DFIR material he’ll be creating, and appreciate the sponsorship!

Thanks to Cyber 5W for Sponsoring #OST2 at the Bronze🥉 level!
More about them here: cyber5w.com

ost2.fyi/SecDev1001 & ost2.fyi/SecDev1002

My catch-phrase contribution to developer security awareness 'Program Paranoid'

I also duplicated my Vulns1001/2 classes and gave them separate URLs as ost2.fyi/SecDev1001 and ost2.fyi/SecDev1002, because I want to make it more clear to developers that those classes are for them too, not just vuln hunters

We’ve added a new “Secure Software Design & Implementation” (SecDev) learning path to OST2 in recognition of the existing classes like Vulns1001/SecDev1001, but also to prepare for future classes that instructors have volunteered to create

ost2.fyi/Secure%20Softw…

This was a good example of a student asking a question and then me saying “I think you’ve been given all the tools you need from Arch1001 and Arch2001 to find the answer yourself”, and then he did :)

I just published my first blog post on Interrupt Handling and Stack Switching in x86-64 Architecture, inspired by some difficulties I faced in a lab from Xeno Kovah’s Arch2001 x86-64 OS Internals course at OpenSecurityTraining2.
theokwebb.github.io/posts/interrup…

The YouTube playlist for #OST2 “Architecture 4001: Intel Firmware Attack & Defense” class is now public for those who like to download videos:
youtube.com/playlist?list=…

But as always, the best way to learn the material is with the full class at ost2.fyi/Arch4001

Booting with Caution: Dissecting Secure Boot's Third-Party Attack Surface by Bill Demirkapi offensivecon.org/speakers/2024/…

“On the ACE3 however, Apple upped their game: Firmware updates are personalized to the device, debug interfaces seem to be disabled, and the external flash is validated and does not contain all the firmware.” 🤔👍

Sounds cool! Even more reason to learn about TPMs in the new #OST2 class ost2.fyi/TC1101