Sunday, May 26, 2019 - 11:00
Null meets are free for anyone to attend. There are absolutely no fees. Just come with an open mind and willingness to share and learn. Following were the talks presented by the speakers.
Time: 11am - 3pm
Venue: ICT, Ganpat University, Ahmedabad
Proposed sessions for this event:
- Automating the Recon Process by Armaan Pathan
- Advance Exploit Development Techniques by Ravi Rajput
- Server side template injection by Swapnil Pandya
- Introduction to Ghidra by Bhargav Gajera
- Quiz by Namrata
Mr. Armaan presented about the how he use his own scripts to automate the recon process. He explained how important it is find a digital asset of an organization.
Mr. Ravi explained what are structured exceptions and how they can be leveraged to code execution.
Server Side Template injection, how and where it occurs and what makes a web application vulnerable to Server Side Template Injection was explained by Swapnil.
Ghidra is a reversing tool by NSA which was recently released as an open source software. Mr. Bhargav explained the basic infrastructure an working of Ghidra. The best part about the talk was the custom scripts that can be used to automate the process in finding vulnerable functions and their address.
Ms. Namrata took Quiz for all the attendee. Winners will be provided with Swags in the next meetup.