Workshop - C# Hackathon (Registration Required)

Presented at Wild West Hackin' Fest 2018, Oct. 25, 2018, 3 p.m. (120 minutes).

The .NET framework is built in to every modern version of Windows. It is an amazing attack surface to explore. This will be a hands on workshop led by Joe Moles & Zac Brown. We will explore .NET / C# techniques for circumventing security controls. Lots of time for questions and writing your own code. This will be useful for both offense and defense. If you have never used C# or are an expert, this will be a fun way to learn and explore. We will cover Program Structure and Compilation, Shellcode Execution, Process Hollowing, PE Loaders and bypassing security controls.

Presenters:

  • Zac Brown - Red Canary
    Zac Brown is a Principal Software Engineer at Red Canary focused on Blue Team Detection & Engineering. Prior to working at Red Canary, he worked for Microsoft on the Windows team and later the Office 365 Security Team. Zac likes long walks on the beach, operating systems internals, and working on compilers. In his non-existent free time, he enjoys spending time with his wife and dogs, reading, and cooking.
  • Joe Moles - Red Canary
    Joe leads a team of security analysts to help organizations defend their endpoints against threats. An IR and digital forensics specialist, Joe Moles has more than a decade of experience running security operations and e-discovery. Prior to joining Red Canary, Joe built and led security operations, incident response, and e-discovery programs for Fortune 500 companies like OfficeMax and Motorola. He is regarded as an industry thought leader and regularly contributes to the Red Canary blog.

Links: