Full Report
From the team that won the world’s first Soccer Hack Cup, we bring you the latest and the greatest in computer hacking training – SensePost Hacking By Numbers Extended Edition – a local course that combines two of the brand new courses we just finished presenting at Black Hat Las Vegas. The training will be offered in Brooklyn Pretoria from 14 – 17 September 2010. Here’s how it will work: 14 – 15 September: Cadet Edition 16 – 17 September: Bootcamp Edition Ok ok ok, so Pretoria is not exactly Vegas, but the courses are fresh and updated and packed full of exciting new content, tools and techniques.
Analysis Summary
This analysis is based *only* on the provided context, which describes a SensePost training course offering new tools and techniques presented at Black Hat Las Vegas. Since the article is an advertisement for a course rather than a technical report on specific malware or incidents, the specific details required for a complete malware analysis summary (like file hashes, specific CVEs, or detailed capabilities) are **not present**.
The summary will focus on the *existence* of new content, tools, and techniques being taught, mapping this to general categories based on the context of advanced hacking training.
---
# Tool/Technique: New Content from SensePost Hacking By Numbers Extended Edition (Black Hat Material)
## Overview
This entry summarizes the subject matter, tools, and techniques presented during the SensePost "Hacking By Numbers Extended Edition" training course held in Pretoria, September 2010. The content is described as the "latest and the greatest" material recently presented at Black Hat Las Vegas, indicating modern hacking methodologies for the time.
## Technical Details
- Type: Training Material (Encompassing Multiple Tools | Techniques)
- Platform: Not specified, but likely covers a range including local system exploitation, web application security, and infrastructure assessment given the context of advanced training.
- Capabilities: Delivery of "exciting new content, tools and techniques" fresh from a major offensive security conference.
- First Seen: Course materials reflecting this content were presented around August/September 2010.
## MITRE ATT&CK Mapping
*(Note: Specific MITRE ATT&CK mappings for generic "new tools and techniques" are impossible. The following provides tactical categories likely covered in advanced offensive training.)*
- **Tactic: Initial Access**
- **Technique: T1190 - Exploit Public-Facing Application** (If new web exploitation methods were covered)
- **Tactic: Execution**
- **Technique: T1059 - Command and Scripting Interpreter** (If new scripting techniques were covered)
- **Tactic: Persistence**
- **Technique: T1547 - Boot or Logon Autostart Execution** (If new persistence methods were covered)
## Functionality
### Core Capabilities
- Presentation of recently developed offensive security methodologies.
- Instruction on "new tools" relevant to penetration testing and advanced exploitation as of late 2010.
### Advanced Features
- Content sourced directly from presentations at Black Hat Las Vegas.
- Structured curriculum split into "Cadet Edition" (Fundamentals/Introductory) and "Bootcamp Edition" (Advanced/In-depth).
## Indicators of Compromise
- File Hashes: N/A (No specific malware identified)
- File Names: N/A (No specific malware identified)
- Registry Keys: N/A
- Network Indicators: N/A
- Behavioral Indicators: N/A
## Associated Threat Actors
- SensePost (As the training provider/developer of the material, not an attacker group).
## Detection Methods
- Detection methods would be specific to the individual tools/techniques taught, none are detailed here.
## Mitigation Strategies
- Mitigation strategies would be specific to the individual tools/techniques taught, none are detailed here.
## Related Tools/Techniques
- **Cadet Edition Course Content**
- **Bootcamp Edition Course Content**
- General offensive security tools and techniques prevalent around 2010 presentations at Black Hat.