Black Hat Trainings (Vegas) questions

I might have a chance to attend Black Hat USA in Las Vegas this year for the first time, and just had a few questions that I'm also researching on my own.

1. Do most people who attend gravitate to the 4-day trainings as opposed to the 2-day ones?

2. Any quick recommendations or suggestions? I know that's a huge topic, especially when you know nothing about me. I do both offense and defense in my day jobs, and I could probably pick up most any course that doesn't dive hard into C programming or assembly or Windows API types of stuff. (For reference, I took SEC542 a few weeks ago and FOR408 from SANS last year.) It is outside my normal wheelhouse, but doing social engineering or gettings some hands-on with physical entry could be fun. Physical entry seems to be one that I have a hard time learning just on my own.

I'll also be looking at the instructors and if these courses/material are also offered elsewhere for far cheaper than the BHUSA price tag.

Find more posts tagged with

Comments

chrisone

Last two years I have taken Dark Side Ops: Custom Penetration Testing and SpecterOps Red Team Adversary Tactics. Both courses were 4 days, but this year I am taking Pentester Academy's Active Directory Attacks and Defense for Red and Blue Teams, which is a two day course.

4 day courses are only slightly more expensive, they obviously cover more material, and you spend more time building relationships with your class mates and instructors. It really comes down to the class and the material you want to cover. In reality, whatever course you take, you will probably spend months going over and analyzing the course work again (or at least you should be).

Another tip or idea is to stay the entire week, attend Defcon and Bsides vegas. Purchase your defcon ticket when you buy your blackhat training, it is only $300 this year, Bsides is free. Defcon and Bsides provide free training courses as well, you just have to sign up when they release the sign ups (check twitter).

As for which BlackHat courses to take? well there are many good ones. I will list a few I like.

chrisone

Disclaimer

These are based off my own interest, any courses not mentioned are purely based off my own ignorance of the subject or instructor and in no way am I claiming any course or instructor better than any other.

2 Day Courses

Active Directory Attacks for Red and Blue Teams - Advanced Edition

Presenter: pentester academy

Advanced Infrastructure Hacking - 2019 Edition (2 Day)

Presenter: notsosecure

Adaptive Penetration Testing

Presenter: coalfire systems

Advanced WiFi Exploitation for Red and Blue Teams

Presenter: pentester academy

Applied Hardware Attacks 1 - Embedded and IoT Systems

Presenter: joe fitzpatrick & the securinghardware.com team

Applied Hardware Attacks 3 - Rapid Prototyping

Presenter: joe fitzpatrick & the securinghardware.com team

An Introduction to IoT Pentesting with Linux

Presenter: craig young, tripwire vert

Basic Infrastructure Hacking

Presenter: notsosecure

Basic Web Hacking

Presenter: notsosecure

Web Hacking - Progressive Edition 2019 (2 day)

Presenter: notsosecure

BlackOps Hacking - Master Level

Presenter: sensepost

Dark Side Ops - Malware Dev

Presenter: silent break security

Dark Side Ops 2 - Adversary Simulation

Presenter: silent break security

Web Application Hacking - Journeyman level

Presenter: sensepost

Enterprise Infrastructure Hacking - Journeyman Level

Presenter: sensepost

Hands-On Hacking Fundamentals - Beginner Level

Presenter: sensepost

Exploit Development for Beginners

Presenter: sam bowne

Malware Analysis Crash Course

Presenter: flare team of fireeye, inc

Software Defined Radio

Presenter: michael ossmann, great scott gadgets

Software Defined Radio - Starting from Scratch

Presenter: paul clark

The IDA Pro Basic Course

Presenter: sk3wl 0f r00t

The Mobile Application Hacker's Handbook - Live Edition

Presenter: mdsec

The Shellcode Lab

Presenter: paul kalinin, ygor da rocha parreira

The Web Application Hacker's Handbook - Live Edition

Presenter: mdsec consulting limited (marcus pinto)

The Web Application Hacker Level-up Lab (The WAHLL)

Presenter: silent robot systems

Windows Enterprise Incident Response

Presenter: mandiant, a fireeye company

Windows Kernel Primer

Presenter: hungry hackers

chrisone

Disclaimer

Ability Driven Red Teaming

Presenter: egypt & mubix

A Complete Practical Approach to Malware Analysis and Memory Forensics - 2019 Edition

Presenter: monnappa & sajan shetty

Advanced Infrastructure Hacking - 2019 Edition (4 Day)

Presenter: notsosecure

Advanced Red Teaming Techniques - Malware Authoring and Repurposing

Presenter: flare team of fireeye, inc

Adversary Tactics - Detection

Presenter: specterops

Adversary Tactics - Red Team Ops

Presenter: specterops

A Practical Approach to Defense and Offense - Understanding Attackers Through Red Team Tactics and Purple Teams

Presenter: trustedsec

Extended Introduction to Hacking - Beginner Level

Presenter: sensepost

Malware Analysis Master Course

Presenter: flare team of fireeye, inc.

Web Hacking - Progressive Edition 2019 (4 Day)

Presenter: notsosecure

Windows Kernel Rootkit Techniques

Presenter: t.roy, codemachine

JDMurray

chrisone said:

Purchase your defcon ticket when you buy your blackhat training, it is only $300 this year, Bsides is free.

DC27 might be $300 cash this year (DC26 was $280), but BSidesLV is no longer walk-in free. You gotta spend time or money or both to get in this year.

chrisone

ah ok, I stand corrected on bsides, id pay to get in for sure....

As for DC27 I got charged $300 when I bought the blackhat training course.

tedjames

JDMurray said:

chrisone said:

Purchase your defcon ticket when you buy your blackhat training, it is only $300 this year, Bsides is free.

DC27 might be $300 cash this year (DC26 was $280), but BSidesLV is no longer walk-in free. You gotta spend time or money or both to get in this year.

April 1 is when BSides Las Vegas starts accepting donations for tickets.

JDMurray

Yes, April is when they'll start checking in their regular volunteers too. This will be my sixth year volunteering at BSidesLV. Always a lot of fun.

LonerVamp

Good to know, thank you! I've been to Defcon, but obviously not having been to BH I didn't even think about the joint purchase.

JDMurray

DC27 is at Paris/Ballys/Planet Hollywood, which is down the street (E Flamingo Road) from BSidesLV at the Tuscany Hotel & Casino. There is a free shuttle service that runs between the two conventions for those of you that don't like walking the downtown Las Vegas streets in August.