Milliways
reconFTW: Discover and Optimize Your Reconnaissance and Exploitation Techniques
August 18, 2023
9:30 AM – 11:30 AM Add to calendar
9:30 AM – 11:30 AM Add to calendar
Milliways Workshop Dome
Enter the world of ReconFTW, an open source asset discovery tool that has gained significant recognition among red teams, pentesters, and bug hunters. In this presentation, I will dive into the technical aspects of ReconFTW and discuss its advanced scanning techniques and methodologies.
Discover how this tool can effectively identify and catalog assets, even in complex and dynamic environments. Through real-world use cases and success stories, you will learn how ReconFTW can uncover hidden vulnerabilities and improve your security posture.
ReconFTW (https://github.com/six2dez/reconftw) is a comprehensive tool that covers a wide range of reconnaissance and exploitation techniques used in numerous offensive security environments and exercises.
In this workshop, we will explore various topics related to ReconFTW in depth, allowing you to fully exploit its potential. You will learn advanced techniques for horizontally scaling your scans using multiple machines to maximize efficiency and results. I will also show you how to adjust the tool's parameters to get the best results for your security projects.
We will dive into the world of asset discovery, covering both non-intrusive and intensive scans. We will gain practical knowledge on how to perform effective scans without disrupting target systems. In addition, you will become familiar with ReconFTW's new web interface, and we will review the latest techniques and trends in this ever-evolving field.
## Workshop Highlights
- Introduction to ReconFTW and its main features.
- Horizontal scaling of scans using multiple machines.
- Parameter tuning to maximize efficiency and accuracy of results.
- Non-intrusive vs. intensive scans: approaches and considerations.
- Exploration of the new ReconFTW web interface.
- Latest techniques and trends in asset discovery.
Join this workshop where you will gain key skills and knowledge to enhance your reconnaissance and exploitation capabilities with ReconFTW. Don't miss this opportunity to learn from the creator and take your offensive security skills to the next level!
Additional information
| Type | Live Workshop |
|---|---|
| Language | English |
More sessions
| 8/15/23 |
In this 2h workshop, I will teach you to work with the tiny components that modern electronic devices are made of. We will assemble an electronic kitten, that purrs when touched correctly, and hisses when touched wrong. It will work, and is guaranteed to remove your fear of hand-assembling surface mount designs.
|
| 8/15/23 |
The session proposes a quick overview of Frida, a dynamic instrumentation framework, and how it can be used to enhance our work during the runtime analysis of a mobile application. It will be a walkthrough on how hooking and rewriting functions in runtime may be helpful against anti-reverse engineering measures and SSL pinning mechanisms.
|
| 8/15/23 |
Hardware FIDO U2F tokens are security devices which are meant to defend user second factor keys from physical and remote attacks. In this presentation different security features and implemented by FIDO U2F tokens and how they are meant to protect a user from various attack scenarios. We will focus on the open source implementation of FIDO U2F token developed and Common Criteria certified by Federal Office for Information Security (BSI). Having access not only to the source code of the token ...
|
| 8/15/23 |
Come learn how to hack networks without needing to piss off your housemates, local coffee shop, or the Feds! Bring your laptop and by the end of this workshop, everyone can walk away having intercepted some packets and popped some reverse shells.
|
| 8/15/23 |
MITRE ATT&CK (Attack Framework among friends) is intimidating sight at first, but is a great tool for risk identification, threat analysis, red teaming, DFIR and security management. Brief introduction to the topic with various examples.
|
| 8/15/23 |
Solder your own pathlighter badge to illuminate your surroundings at night.
|
| 8/15/23 |
This talk will show you how many interfaces have to communicate in order to fly experiments on a sounding rocket. We will give you insights into the procedures and the complexity of a research campaign and the actual flight of the rocket itself. In particular, we look at the hardware and software used in the Ground Support Equipment (GSE) and the Service Module (SM) within the rocket.
|
