FreshRSS

🔒
❌ Secure Planet Training Courses Updated For 2019 - Click Here
☷
△ 🔃
There are new available articles, click to refresh the page.
Yesterday — September 7th 2025Your RSS feeds

New OpenSecurityTraining2 class: "Bluetooth 2222: Bluetooth reconnaissance with Blue2thprinting" (~8 hours)

By: /u/OpenSecurityTraining

This class by Xeno Kovah (founder of OST2) teaches about the 30+ types of Bluetooth data that the Blue2thprinting software can collect and surface for when you're trying to determine what a device is, and whether it has any known vulnerabilities. New in v2.0+ is the BTIDALPOOL crowd-sourcing server for researchers to push & pull data about devices they've discovered.

Like all current #OST2 classes, the core content is made fully public, and you only need to register if you want to post to the discussion board or track your class progress. Based on beta testing this class takes an median of 8 hours to complete (and an average of 9 hours, with a min of 4h30m and max of 15h22m.)

The new Bluetooth learning path showing this class's relationship to others under development is available here: https://ost2.fyi/Bluetooth.html

submitted by /u/OpenSecurityTraining
[link] [comments]
Before yesterdayYour RSS feeds

New OpenSecurityTraining2 class: "Debuggers 1103: Introductory Binary Ninja"

By: /u/OpenSecurityTraining

This class by Xusheng Li of Vector 35 (makers of Binary Ninja) provides students with a hands-on introduction to the free version of Binja as a debugger, thus providing decompilation support!

Like all current #OST2 classes, the core content is made fully public, and you only need to register if you want to post to the discussion board or track your class progress. This mini-class takes approximately 2 hours to complete, and can be used as standalone cross-training for people who know other reverse engineering tools, or by students learning assembly for the first time in the https://ost2.fyi/Arch1001 x86-64 Assembly class.

submitted by /u/OpenSecurityTraining
[link] [comments]

New free 7h OpenSecurityTraining2 class: "Fuzzing 1001: Introductory white-box fuzzing with AFL++" by Francesco Pollicino is now released

By: /u/OpenSecurityTraining

(Short link) https://ost2.fyi/Fuzz1001

This course provides an introduction to fuzzing, a software testing technique used to identify security vulnerabilities, bugs, and unexpected behavior in programs. Participants will gain a thorough understanding of fuzzing, including its goals, techniques, and practical applications in software security testing. The course covers a wide range of topics, such as the fundamentals of fuzzing, its working process, and various categories like mutation-based, generation-based, and coverage-guided fuzzing.

Advanced topics include using Address Sanitizer (ASAN) for memory error detection and specialized instrumentation like PCGUARD and LTO mode. Real-world exercises feature CVE analysis in software like Xpdf, libexif, and tcpdump, providing hands-on experience in applying fuzzing techniques to uncover vulnerabilities.

By the end of the course, participants will be equipped with the knowledge and skills to effectively use fuzzing to improve software security.

Syllabus

  1. Introduction
    • Fuzzing Introduction
    • AFL Introduction
  2. Hands On
    • Lab Setup
    • The First Fuzzing
    • Slicing
    • Fuzzing Xpdf
  3. Advanced Instrumentation pt.1
    • PCGUARD vs LTO
    • Fuzzing libexif
  4. Advanced Instrumentation pt.2
    • ASAN
    • Fuzzing TCPdump
submitted by /u/OpenSecurityTraining
[link] [comments]
❌