Immunity Master Class

For the past two years, the Master class has only been offered at Immunity's INFILTRATE Conference. By popular demand, Immunity has decided to offer a second Master class in 2012. The class is scheduled for June 4-8, 2012 in Miami Beach, FL.

The Master class focuses on SMT, kernel exploitation and vulnerability findings. Intermediate to advanced exploit development skills are recommended for students wishing to take the Master class. Immunity's trainers have developed a Prerequisite Evaluation for all potential students to take prior to signing up for the Master class. This evaluation will help ensure that this class is right for you.

For additional information, pricing quotes, or a copy of the Prerequisite Evaluation, please send an email to training@immunityinc.com.

Master Class Syllabus*

Day 1: Finding bugs

Advanced C Auditing

Day 2: SMT

Introduction to automated static analysis
Writing static analysis tools with Immunity Debugger
Introduction to SMT solvers and symbolic execution
Build your own DEPLIB - Automatically finding ROP gadgets

Day 3: SMT

Tracing data and automatically generating new inputs
Whitebox fuzzing - Using SMT solvers to fuzz for bugs

Day 4: Kernel-mode exploitation

Debugging environment setup
Kernel debugging principles
Windows kernel architecture
Kernel-land vs user-land
Kernel shellcoding
Kernel structures
Token stealing

Day 5: Kernel-mode exploitation

Past vulnerabilities & how to find them
Protocols
IOCTL & FSCTL
Window management
Arbitrary overwrite exploitation
Kernel pool overflow exploitation
Recent techniques
Hands-on Exploitation
Custom vulnerable driver
Real vulnerabilities

* Class syllabus is subject to change.