1. Digicomp Hacking Day 2012 - 14.6.2012

2. Real knowledge derives from practical exercises !
© Hacking-Lab www.hacking-lab.com Slide 2

3. Security Conferences
Universities
Security Trainings
© Hacking-Lab www.hacking-lab.com Slide 3

4. Austria is seeking cyber talents in 2012. Hacking-Lab is performing
the qualifying challenges (July-Sept 2012) followed by a final
run in November 2012.
© Hacking-Lab www.hacking-lab.com Slide 4

5. Research Virtual CERT
Talent Online CERT
Projects Pentesting
Quest Training Support
Platform Team
© Hacking-Lab www.hacking-lab.com Slide 5

6. Free LiveCD
© Hacking-Lab www.hacking-lab.com Slide 6

8. Web Security VoiP / SS7 / GSM
Malware / Trojan / Bugs Wireless Security
Windows Security Unix / Linux Security
Apple Security Crypto Challenges
Penetration Testing Programming
Networking Fun Challenge
Forensics
Reverse Engineering
© Hacking-Lab www.hacking-lab.com Slide 8

9. Every challenge in Hacking-
SBS Lab is available as SBS or
WG
Step by Step Wargame
WG
SBS challenges WG challenges
are used in are used in free
commercial trainings, CTF
trainings. and talent quest.
Trainees do not Solving a WG
have the time to challenge is more
spend 1-2 hours difficult and
per challenge. needs more
They will be knowledge.
guided through
the challenge.
© Hacking-Lab www.hacking-lab.com Slide 9

10. Compass covers ALL OWASP TOP 10 (2007 and 2010)
© Hacking-Lab www.hacking-lab.com Slide 10

11. © Hacking-Lab www.hacking-lab.com Slide 11

13. Student Choose lab case (theme, subject)
Solve lab cases
Submit solution to teacher
Wait for the ranking
Teacher Compiles lab case list (event)
Verifies solutions from student
Manage scoring -> ranking
Explain solution -> movie
© Hacking-Lab www.hacking-lab.com Slide 13

14. Organization Manager Add/Remove Users
Add/Remove Classrooms and Events
Add/Remove Privileges (e.g. Trainer)
Enterprise Admin Super Root Admin
Add/Remove Organizations
Add/Remove Challenges
© Hacking-Lab www.hacking-lab.com Slide 14

15. © Hacking-Lab www.hacking-lab.com Slide 15

16. © Hacking-Lab www.hacking-lab.com Slide 16

17. © Hacking-Lab www.hacking-lab.com Slide 17

18. © Hacking-Lab www.hacking-lab.com Slide 18

19. © Hacking-Lab www.hacking-lab.com Slide 19

20. © Hacking-Lab www.hacking-lab.com Slide 20

21. © Hacking-Lab www.hacking-lab.com Slide 21

22. © Hacking-Lab www.hacking-lab.com Slide 22

23. Every user gets some points if he or she succeeds in tackling a
security challenge
Improve your skill level and avatar
© Hacking-Lab www.hacking-lab.com Slide 23

24. VPN is required to access the lab!

25. https://www.hacking-lab.com/Remote_Sec_Lab/livecd.html
Download free LiveCD here: http://media.hacking-lab.com/largefiles/livecd/
© Hacking-Lab www.hacking-lab.com Slide 25

26. © Hacking-Lab www.hacking-lab.com Slide 26

27. © Hacking-Lab www.hacking-lab.com Slide 27

28. http://media.hacking-lab.com/largefiles/livecd/
© Hacking-Lab www.hacking-lab.com Slide 28

29. How to use LiveCD using the VirtualBox Appliance
How to install LiveCD in Vmware 8 workstation
How to use OpenVPN
https://www.hacking-lab.com/FAQ/
© Hacking-Lab www.hacking-lab.com Slide 29

30. Bitte registrieren Sie sich über folgenden Link
https://www.hacking-lab.com/sh/kpzhrhd

31. © Hacking-Lab www.hacking-lab.com Slide 31

32. Wie arbeitet man gleichzeitig als Angreifer und Opfer?
Starten von 2 Firefox Instanzen
Firefox –P –no-remote &
Video: http://media.hacking-lab.com/movies/multiple-firefox-browsers/
Wie untersucht man die HTTP Pakete zwischen Client und Server?
Starten von ZAP Proxy (ehemalig PAROS Proxy)
Konfiguration von Browser Proxy auf localhost:8080
Video: http://media.hacking-lab.com/movies/zap/
Wie richtet man sich eine Landing Page auf der LiveCD ein?
Root Shell öffnen
Stoppen Lokaler DokuWiki Web Server
Starten Lokaler Apache Landing Page Server
Video: http://media.hacking-lab.com/movies/landingpage/
© Hacking-Lab www.hacking-lab.com Slide 32