Anyone attended the Corelan Win32 Exploit Development Bootcamp ?

AlexNguyenAlexNguyen Member Posts: 358 ■■■■□□□□□□
I would like to know if anyone has attended the Corelan 2-day Win32 Exploit Development Bootcamp ? How was it ? That course is taught at Derbycon for a few years. Now it's coming near my hometown and I'm interested to attend. You can find more details about the course here: https://www.corelan-training.com/index.php/training/corelan-live/
Knowledge has no value if it is not shared.
Knowledge can cure ignorance, but intelligence cannot cure stupidity.

Comments

  • jasong318jasong318 Member Posts: 102
    I would sacrifice a bodily appendage to attend :) seriously, for the price, you will not find a better course for learning windows exploit development!
  • JDMurrayJDMurray Admin Posts: 13,091 Admin
    That course does look awesome!

    $1K for the live training? I wonder if they offer it over WebEx or on-demand.
  • ipchainipchain Member Posts: 297
    I definitely wanted to go, but all tickets were sold out before I had a chance to purchase one. I will be there next year, for sure!
    Every day hurts, the last one kills.
  • AlexNguyenAlexNguyen Member Posts: 358 ■■■■□□□□□□
    I've just registered for the course in Québec City and booked my hotel room. Now, it's time to review the assembler language that I learned over 25 years ago...
    Knowledge has no value if it is not shared.
    Knowledge can cure ignorance, but intelligence cannot cure stupidity.
  • AlexNguyenAlexNguyen Member Posts: 358 ■■■■□□□□□□
    I'm in Quebec city right now and I've just finished the first day of training. I'm exhausted. This is a very advanced high paced course and I think I don't have all the prerequisites to attend it. The teacher is a very smart guy and he knows his material. You need to be a pentester or an experienced Metasploit user to fully enjoy this course.

    I can understand the material theory. But I'm kind of lost when I have to do the exercises. It's mainly writing exploit script in python and trying to execute it in a Windows VM, with the Immunity debugger and Mona plug-in. You only have about 1 hour to make your exploit works. The teacher gives you a few hints but he doesn't give you the answer necessary. You don't get the answers to the exercises with the course materials. That sucks.

    You need to understand Intel x86 assembler and the various registers very well. Most of the students are professional pentesters or reverse malware analysts. Only I and another old fart are more high level security specialists. This course is high rated and there are students coming from the US and UK. The class is full.

    One student told me that what the teacher said in about 30 minutes with a few slides, is taking a whole day to teach in a SANS Advanced Malware Analysis course.

    At least, the meals are good. We have group lunch and dinner served in a restaurant inside the hotel. They served gourmet meals. It's a big change from the buffet meals that I usually have when I went to the US for training.
    Knowledge has no value if it is not shared.
    Knowledge can cure ignorance, but intelligence cannot cure stupidity.
Sign In or Register to comment.