Black Hat Europe
November 10-13, 2015
Amsterdam RAI | The Netherlands
BH Executive Summit
December 8-10, 2015
Omni Montelucia | Scottsdale, AZ
Black Hat Asia
March 29 - April 1, 2016
Marina Bay Sands | Singapore
01:00 PM
Black Hat Staff
Black Hat Staff
Event Updates

Black Hat USA 2014: Something in the Air

Today's quartet of Black Hat 2014 Training highlights delve into the wide world of wireless hacking.

We start off from a defensive posture with Foundstone's Ultimate Hacking: Wireless. Sure, your org's got an authorized wireless infrastructure, but what about the wireless networks that aren't supposed to be there? The "temporary" access point that's still there months later? That AP brought in by a passing contractor? All are possible attack points. This Training aims to help you see WiFi networks like hackers do, which will give you the knowledge you need to defend against WiFi hackers' increasingly sophisticated tools, techniques, and methods. 

A case in point might be someone with the knowledge offered in our next highlighted Training, Hacking by Numbers Reloaded: Wireless Bootcamp. Starting from the basics, you'll learn the standard techniques Sensepost's analysts use in their wireless engagements, eventually working your way up to bleeding-edge research. Expect theory, practical exercises, and a lot of hands-on WiFi hacking. WPA won't know what hit it. 

Looking beyond WiFi, software-defined radio is an idea whose time has finally come. The aptly named Training Software Defined Radio will bring you up to speed on this brave new world of freeform radio with the help of a shiny new HackRF One SDR radio transceiver, yours to keep. Or for another approach to the topic check out Radio Exploitation, which will show you how to intercept, demodulate, decode, and reverse engineer RF signals, as well as exploit vulnerabilities in RF systems. WiFi too passé? Check out these waveforms! 

Ready to register? Early-bird rates are available until June 2. Please visit Black Hat USA 2014's registration page to get started. 

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Current Issue
E-Commerce Security: What Every Enterprise Needs to Know
The mainstream use of EMV smartcards in the US has experts predicting an increase in online fraud. Organizations will need to look at new tools and processes for building better breach detection and response capabilities.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio