Blog

Oregon State University Security Club

Meeting Notes 2/21

Tonight we hosted Karl Fosaaen from NetSPI, and he gave an awesome talk on pentesting in an Azure environment. If you’re interested in learning more about this, check out the NetSPI blog or the Azure pentesting book he mentioned. Karl’s post on using Azure RunAs certificates is now live here.

Meeting Notes 2/14

Tonight I went over some basic usage of GDB, IDA Pro, and pwntools for solving the first pwnables on our CTF site. Link to the slides (requires ONID login). The slides have information on getting the tools installed, so if you are having issues with that, check the slides out.

Meeting Notes 2/7

Today we continued discussing reverse engineering and introduced 64-bit assembly. There are more samples on the GitHub repo. The only announcement for today is to RSVP for our upcoming event with NetSPI! They will be coming back on 2/21 to do a presentation on penetration testing, and answer any questions you may have. The RSVP…
Read more

Meeting Notes 1/31

Today we talked about some basic reverse engineering, and compare/contrasting x86 assembly with C code. There are some new challenges up on CTFd, rev[1-4] Link to the slides (requires ONID login)

Meeting Notes 1/24

Tonight we worked on buffer overflows, and some binaries on the new OSUSEC CTF platform. Slides (requires ONID login) Next week, we’re going to work on similar binaries, but comparing the assembly code with the C code.

Meeting Notes 1/17

Tonight we talked about some CTF tools and did a walkthrough for “start” on pwnable.tw. You can read a detailed writeup for this binary on the OSUSEC GitHub. Here’s a link to the slides (requires ONID login): Slides For those of you who felt lost tonight, my apologies! I received some great feedback, and will…
Read more

NSA Codebreaker 2018 – Task 7

Refunds – (Smart-Contract Development; Vulnerability Analysis; Exploit Development)

NSA Codebreaker 2018 – Task 6

Loophole – (Smart-Contract Development; Vulnerability Analysis; Exploit Development)

Meeting Notes 1/10

Thanks for a great first meeting for Winter 2019! Here is a link to the slides (requires ONID login): Slides For those of you who were unable to make it, here’s a brief summary of what we went over. Mostly, it was just talking about what’s coming for the rest of the term: Updates on…
Read more

Welcome to Winter 2019!

Happy New Years! Our first meeting will be this Thursday at 7pm in KEC1003, and we will be meeting at the same time/place the whole term. Some things to look forward to for this term: I’m working with NetSPI to have them come back with a more technical presentation and hopefully some labs, so that…
Read more