- Introduction & Announcements
- “Searching the poisonous needle in a remote haystack” by Vitaly Kamluk
- “Introduction to Nmap Scripting Engine (NSE)” by Wong Wai Tuck
- “Cross-CTF: A Follow-Up on the CTF Scene in SIngapore)” by Wong Wai Tuck
“Searching the poisonous needle in a remote haystack” – This talk will focus on the release of new open-source tool for remote malware and digital forensics that was developed by the author while working with Interpol. The talk will contain technical details that will explain the architecture and features of OS for remote forensics, ways to overcome challenges of remote user trust, and demo on how to built your own Live OS in minutes.
“Introduction to Nmap Scripting Engine (NSE)” – In this talk, Wai Tuck will talk about an often ignored feature of Nmap, the Nmap Scripting Engine (NSE) – what it is, how to use it, and how to write your own simple scripts. Wai Tuck will walk through a demo of using Nmap to discover a vulnerability, and then writing a short script to automatically detect for that vulnerability downstream. If we have time, Wai Tuck will run through more complicated scripts, such as smb-vuln-cve[masked] (aka Sambacry).
“Cross-CTF: A Follow-Up on the CTF Scene in Singapore” – In this talk, Wai Tuck will share about updates to the CTF scene in Singapore and how it has evolved in the past year. This includes the motivation behind running Cross Varsity CTF (previously X-CTF, but now rebranded to CrossCTF) for its second run, as well as the insights the organising team has gained from running the competition. Wai Tuck will also share about the infrastructure and interesting challenges that the team has made for the competition, which includes reverse engineering an Arduino, collecting data from LED exfiltration, binary exploitation, binary patching and reverse engineering.
Bio of Speakers
Vitaly Kamluk, Principal Security Researcher at Kaspersky Lab. Speaker at null Meetups, HITCON, Black Hat Asia, Black Hat USA, DEFCON, ZeroNights, PHDays and more.
Wong Wai Tuck is sophomore going junior year Information Systems student at Singapore Management University (SMU). He is the outgoing President of Whitehat Society, the Information Security Special Interest Group at SMU. He is currently a Google Summer of Code (GSoC) intern at Nmap and has produced several detection scripts that is available in the latest release of Nmap, including a script to detect the Sambacry vulnerability. He has led initiatives for new competitions targeting different groups in Singapore, including WhiteHacks@SG (which targets JC students) and now CrossCTF 2017. In his free time, he tries his hand at getting certs, and currently holds OSCP.
Wednesday, July 19th
6:45 PM to 8:30 PM
EY (Ernst & Young)
North Tower, Level 14, 1 Raffles Quay