Security At HSGS

Disclaimer: Nội dung của workshop này chỉ dành cho mục đích giáo dục. Người sử dụng tài nguyên từ các nội dung này hoàn toàn tự chịu trách nhiệm về các vấn đề pháp lý trước pháp luật.

List of topics

• Introduction to security
  • Security on the internet
    • Facebook privacy settings
    • 2FA
• Networking
  • OSI model, TCP/IP model
  • DNS
  • IP
    • Routing
    • Public IP
    • Private IP
    • IANA
    • NAT
  • MAC
• Linux basic
  • OverTheWire
• Secure coding/Reverse Engineering and Exploit Development
  • Introduction to low-level stuffs
    • Compilation
    • Machine code
    • Instruction sets
    • x86
    • The memory
  • Buffer Overflow
• World Wide Web
  • HTTP
  • Authentication
  • Common vulnerabilities
    • Injection
      • SQL injection
      • XSS
    • Logical vulns
• Resources
  • Social media
    • Twitter
    • Reddit
    • Slack
    • Facebook groups
  • CTFTime

Workshop Materials

Presentations

• Linux: https://docs.google.com/presentation/d/1pQMrvbaM3JC5G1XPKarolhFB9_8BhLqaGJLnPX6kKR8/edit?usp=sharing
• Networking: https://docs.google.com/presentation/d/1PEwDaqexqWHacNl_5Y166wQMMPUdHNNIpDB1L-skQuY/edit?usp=sharing
• Reverse Engineering: https://docs.google.com/presentation/d/1xQOWMiC4OEt1h6leEoJossBUxqJJTTIxoUJMXrjjStk/edit?usp=sharing
• Web: https://docs.google.com/presentation/d/1CdhWRSPPOaubp8-_iCIGzDV7H6uw4TWGqOnASE5XOiY/edit?usp=sharing

Live Stream

• Live Streams can be found in Security@HSGS Group on Facebook: https://www.facebook.com/groups/605031313214665/videos/

Practice

• SHSGS CTF: https://shsgs.simpleguy.tech

Resources

Linux

Networking

Reverse Engineering - Binary Exploitation

Web

Credits

• RITSEC (formerly RC3 and SPARSA) for inspiring me to do this: https://www.ritsec.club/
• Lương Thế Minh Quang (quangio, quangltm, ...) for some web challenges: https://www.linkedin.com/in/quangluongtm/