x33fcon Courses

Modern Stuxnet-Style Attacks Using Filesystem Vulnerabilities and NTFS Exploits

Explore modern cyber attack techniques inspired by Stuxnet, focusing on filesystem vulnerabilities, NTFS exploits, and advanced persistence methods while learning effective defense strategies.

• YouTube
• 44 minutes
• On-Demand
• Free Video

NTLM Relay Attacks - An OPSEC-Conscious Approach to Port 445 Takeover

Discover a stealthy technique for NTLM relay attacks by hijacking port 445/tcp, featuring reverse engineering insights and automation tools for enhanced SMB-based operations with minimal detection risk.

• YouTube
• 46 minutes
• On-Demand
• Free Video

Innovate, Navigate, Elevate - A Journey into Offensive Security Entrepreneurship

Explore the challenges and opportunities in offensive security entrepreneurship, from industry dynamics to practical insights on building innovative security companies while maintaining hacker culture.

• YouTube
• 48 minutes
• On-Demand
• Free Video

Unified Red Team Automation with Red Commander - Infrastructure Management and Deployment

Discover how to streamline Red Team infrastructure deployment and management with Red Commander - a unified web platform for orchestrating engagement assets across multiple cloud providers and services.

• YouTube
• 35 minutes
• On-Demand
• Free Video

Kernel Games: The Ballad of Offense and Defense in Rootkit Methodologies

Dive into advanced kernel rootkit techniques for red team operations and defense strategies, covering stealthy persistence, EDR evasion, and practical detection methods with hands-on demos.

• YouTube
• 31 minutes
• On-Demand
• Free Video

Hiding C2 Communications in Plain Sight Using Windows Memory Page Permissions

Discover advanced techniques for hiding C2 communications by exploiting Windows memory page permissions, with practical approaches to building modular and stealthy command-and-control systems.

• YouTube
• 36 minutes
• On-Demand
• Free Video

Analyzing and Executing ADCS Attack Paths with BloodHound

Discover how to identify, analyze, and execute ADCS attack paths using BloodHound, while learning practical remediation strategies for defending against PKI-based privilege escalation in Active Directory environments.

• YouTube
• 42 minutes
• On-Demand
• Free Video

Attacking and Defending Large Language Models in Production Environments

Explore essential security strategies and potential vulnerabilities of Large Language Models in production, covering attack vectors, defense mechanisms, and implementation best practices based on leading AI research.

• YouTube
• 42 minutes
• On-Demand
• Free Video

Cloud Console Cartographer - Mapping Cloud Events for Security Analysis

Discover how to efficiently map and analyze cloud console activities with an open-source framework that simplifies the complex task of correlating hundreds of CloudTrail events to specific user actions.

• YouTube
• 40 minutes
• On-Demand
• Free Video

Red Team Operations Recovery and Adaptation - Lessons from Fortune 500 Companies

Discover real-world red team operation mishaps and recovery strategies in Fortune 500 companies, exploring innovative TTPs development and mission success through candid insights from experienced security professionals.

• YouTube
• 38 minutes
• On-Demand
• Free Video

Busting Red Team Trends with Style - Building a Custom ETW-Based Sysmon Replacement

Dive into advanced threat hunting with a custom ETW-based Sysmon replacement, exploring enhanced telemetry capabilities for detecting sophisticated red team techniques and threat actor fingerprinting.

• YouTube
• 33 minutes
• On-Demand
• Free Video

Exploiting EntraID Guest Access - Security Vulnerabilities and Defenses

Uncover critical security vulnerabilities in EntraID guest access, exploring unauthorized data access, SQL server dumps, and potential backdoors while learning defensive strategies for Office 365 environments.

• YouTube
• 41 minutes
• On-Demand
• Free Video

Hunting for macOS Application Logic Bugs - Local Privilege Escalation Vulnerabilities

Discover critical macOS security vulnerabilities and privilege escalation bugs affecting major software products, with practical exploitation techniques and defensive strategies for improved visibility.

• YouTube
• 29 minutes
• On-Demand
• Free Video

Addressing Tactics Related to Edge Device Compromise - Security Detection and Defense

Explore advanced threat hunting techniques and defense strategies against edge device compromises, focusing on detection methods, forensic analysis, and proactive security measures for network infrastructure.

• YouTube
• 41 minutes
• On-Demand
• Free Video

Unraveling and Countering Adversary-in-the-Middle (AiTM) Phishing Attacks

Dive into advanced cybersecurity strategies for detecting and preventing Adversary-in-the-Middle phishing attacks, exploring real-world cases, detection methods, and practical defense techniques.

• YouTube
• 43 minutes
• On-Demand
• Free Video