Week 1

Who, me?

andrew.j.wong@unsw.edu.au

  • Teams ^
  • SECedu Slack - featherbear

New number, who dis?

Share something interesting on your phone’s photo gallery (or meme collection) that describes yourself

Housekeeping

🍉 Food - Sure thing

🎥 Recordings - Yes, next slide

👩‍🏫 Lab Attendance - Not marked

💡 This room… had RGB lighting… but … :(

Course Stuff

Contact

cs6443@cse.unsw.edu.au

Slack - seceduau.slack.com
#cs6443
#cs6443-21t2-h13a

Good Faith Policy

“These courses expects a high standard of professionalism from its students with regard to how security testing is conducted. We expect all students to act in good faith at all times […]”

TL;DR Don’t be mean

https://sec.edu.au/good-faith-policy

Assessments

  • CTF Challenges
  • 2x Reports
  • Mid-term Exam
  • Final Examination

Check the course outline for the schedule

Resources

featherbear.cc/tutoring-unsw

Today’s Agenda

  • Andrew’s Rant
  • Activities
    • Logging into Quocca Bank
    • Installing Burp Suite
    • Maybe try find some flags?
      • Recon
      • HTTP As A Service challenge

Andrew’s Rant

  • CTF
    • Find flags, get points
    • Finding 6843 flags, no points … for now
    • Finding 6843 flags, feel good about yourself
    • Finding 6843 flags, get more out of the course without the stress of being assessed
  • Vulnerability Report
    • Groups of 4 / 5
    • More about this in the future…
    • For now, keep track of how you found flags

Doing this course at uni

Like, at uni, physically, in person - i.e. here.

If you are using automated tools that have a large network footprint, please change your DNS

  • Google - 8.8.8.8
  • Cloudflare - 1.1.1.1

Burp Suite

See it in action

More!

Activities

  • First form report groups!
  • Logging into Quocca Bank
  • Installing Burp Suite
  • Maybe try find some flags?
  • Recon
  • HTTP As A Service challenge
Home