Vulncon 2025

The most valuable findings in modern penetration tests start with effective cloud enumeration. This workshop teaches techniques to discover cloud resources and gain initial access into AWS, GCP, and Azure environments. You'll learn methods used in professional cloud penetration testing and red team assessments. Whether you're a pentester, offensive security consultant, or bug bounty hunter, you'll gain the edge to discover high-impact vulnerabilities that others miss.

Most companies now use cloud services, creating a unique attack surface with its own security challenges. This workshop shows you how to find and exploit weaknesses in cloud environments.

In this 4-hour hands-on session, you will learn:

• Enumerating Cloud Footprint
• Public Resource Discovery
• Exposed Secrets (and where to find them)
• From Discovery to Access

The workshop includes real-world demonstrations and hands-on exercises. You'll get practical experience with the discussed tools and methods.

We'll end with an exciting Capture The Flag (CTF) challenge to apply everything you've learned during the workshop.

Ideal Audience:

This workshop is best for individuals aiming to break into cloud environments, including:

• Pentesters Specializing in Cloud Security
• Offensive Security Engineers
• Cloud Security Consultants
• Security Engineers
• Bug Hunters

What to Expect:

• Hands-on labs
• Slides
• CTF & Fun

What Not to Expect:

• Mitigation against these attacks
• Mastering cloud platforms - truly mastering multi-cloud takes time

Requirements:

Attendees need internet connectivity and personal laptops during the workshop. Prerequisites to setup before workshop will be shared a week before workshop.

In today's rapidly evolving threat landscape, traditional security monitoring is no longer sufficient. Modern threat hunting requires a data-driven approach that leverages advanced analytics, algorithms, and security intelligence. This session will provide an in-depth look at how cybersecurity teams can proactively detect threats by applying Jupyter Notebooks, Python-based analytics, and Outlier Detection techniques using Numpy and Pandas.

Join us for a technical deep dive into real-world threat hunting scenarios, where we will explore:

• The fundamentals of data-driven threat hunting.
• How to leverage Jupyter Notebooks for security analysis.
• Outlier detection algorithms to identify anomalies in security logs.
• Hands-on techniques using Numpy & Pandas for large-scale data analysis.

We will also walk through live demonstrations and interactive case studies that showcase how to detect stealthy threats hidden within massive datasets.

Key Takeaways:

• Understanding modern threat hunting methodologies.
• Using Jupyter Notebooks for security research and detection.
• Implementing Outlier Detection for anomaly-based threat detection.
• Practical data analysis techniques with Numpy & Pandas.
• Real-world demos and case studies of threat hunting in action.

Requirements:

Attendees need internet connectivity and personal laptops during the workshop. Prerequisites to setup before workshop will be shared a week before workshop.

The ability to perform dynamic instrumentation and peek into processes is close to a superpower when it comes to debugging and reverse engineering applications.

Frida is a world-class scriptable dynamic binary instrumentation toolkit for dynamic analysis and reverse-engineering. FRida lets you inject snippets of JavaScript or your own library into native apps on Windows, macOS, GNU/Linux, iOS, Android, and QNX. FRida also provides you with some simple tools built on top of the Frida API. Simply put, if you want to be a Thor when debugging or reverse engineering black-box apps, Frida is your Mjölnir.

This training is for attendees who would like to get up to speed with FRida and perform dynamic instrumentation in Linux/Android environment. You'll learn to use FRida to peek into black-box binaries on Linux, apps on Android and subvert the protection mechanisms.

The workshop will begin with an introduction to Frida, highlighting its core functionalities and its application in various contexts. We will then delve into several practical use cases, showcasing how Frida can be employed to perform security testing. We will cover some advanced concepts such as writing custom Frida scripts, memory manipulation and RASP hooking.

By the end of the workshop, attendees will gain a comprehensive understanding of Frida's capabilities and be equipped with practical knowledge to leverage advanced dynamic instrumentation for security testing, research and application analysis.