Following the Breadcrumbs: Hacking behind the scenes
The learning path in InfoSec is one of the main reasons that makes this field so catching and attractive. Behind every discovery, there is an extensive research process with a methodology and a mindset that makes all that work possible.
“What things do I need to learn?”, “What is the best path to follow?”, “How can I learn to find bugs like those?” These are the kind of questions you probably ask yourself while reading a blog about a particular bug. I have thought about them for a long time, until I asked myself, what is happening behind the scenes of these huntings? I truly believe that the mindset, the creative thinking and the learning process behind bug hunting are as valuable as the techniques and results.
During this talk, we will focus on a series of bugs in “modern” desktop applications, where we will talk about the knowledge required to start looking for similar bugs, what resources could we use to learn, and of course, what questions we should ask ourselves when trying to identify similar vectors.