BHIS | Getting Started in Blockchain Security and Smart Contract Auditing | Beau Bullock

Описание к видео BHIS | Getting Started in Blockchain Security and Smart Contract Auditing | Beau Bullock

Join us in the Black Hills InfoSec Discord server here:   / discord   to keep the security conversation going!

Learn breaching the cloud with Beau Bullock from Antisyphon
Training: https://www.antisyphontraining.com/br...

0:00:00 - PreShow Banter™ — Beau Has a Fan Club
0:32:39 - FEATURE PRESENTATION: Getting Started in Blockchain Security and Smart Contract Auditing
0:36:39 - Roadmap
0:37:51 - Why Blockchain Security
0:39:21 - Growing Use Cases for Blockchain
0:43:23 - Blockchain Elements That Need Securing
0:49:00 - What Are Smart Contracts
0:51:22 - EVM : Ethereum Virtual Machine
0:54:00 - Solidity
0:59:55 - Smart Contract Vulns
1:04:00 - – Reentrancy
1:05:54 - – Front-Running
1:07:41 - – Inter Overflow and Underflow
1:09:15 - – Denial-of-Service
1:10:43 - – Access Control
1:12:46 - – Timestamp Dependence
1:15:23 - Case Studies – Uranium Finance Hack
1:17:26 - – Poly Network Hack
1:21:07 - – Cream Finance Hack
1:24:42 - DEMO: Live Exploit
1:35:44 - Exploit Recap
1:36:14 - Security Tools – VS Code + Solidity Visual Developer
1:37:08 - – Slither
1:37:26 - – Mythril & MythX
1:37:57 - Get-Started Resources
1:39:03 - Bug Bounties
1:39:19 - Key Takeaways
1:40:29 - This is the End – Q & A

Description: In this Black Hills Information Security (BHIS) webcast, we'll use case studies about recent blockchain hacks to introduce the underlying issues that occur in writing/engineering smart contracts that have ultimately lead to the loss of millions of dollars to attackers.

Slides:https://s1hb.sharepoint.com/Content&C...

BlockchainHAX QuickStart Guide
• https://start.blockchainhax.com

Follow me on Twitter
• Beau Bullock - @dafthack

CoinSec Podcast – Weekly show about blockchain security
• coinsecpodcast.com • @coinsecpodcast
• CoinSec Podcast Discord:   / discord  

Black Hills Infosec Socials
Twitter:   / bhinfosecurity  
Mastodon: https://infosec.exchange/@blackhillsi...
LinkedIn:   / antisyphon-training  
Discord:   / discord  

Black Hills Infosec Shirts & Hoodies
https://spearphish-general-store.mysh...

Black Hills Infosec Services
Active SOC: https://www.blackhillsinfosec.com/ser...
Penetration Testing: https://www.blackhillsinfosec.com/ser...
Incident Response: https://www.blackhillsinfosec.com/ser...

Backdoors & Breaches - Incident Response Card Game
Backdoors & Breaches: https://www.backdoorsandbreaches.com/
Play B&B Online: https://play.backdoorsandbreaches.com/

Antisyphon Training
Pay What You Can: https://www.antisyphontraining.com/pa...
Live Training: https://www.antisyphontraining.com/co...
On Demand Training: https://www.antisyphontraining.com/on...

Educational Infosec Content
Black Hills Infosec Blogs: https://www.blackhillsinfosec.com/blog/
Wild West Hackin' Fest YouTube:    / wildwesthackinfest  
Active Countermeasures YouTube:    / activecountermeasures  
Antisyphon Training YouTube:    / antisyphontraining  

Join us at the annual information security conference in Deadwood, SD (in-person and virtually) — Wild West Hackin' Fest: https://wildwesthackinfest.com/

#bhis #infosec

Комментарии

Информация по комментариям в разработке

Похожие видео