C++ Writers

Attention! This job posting is 534 days old and might be already filled.
InfoSec Institute Published: December 9, 2015

<p><span style="font-weight: 400;">Seeking IT/Security writers and instructors able to create a focused series of virtual labs and hands-on tutorials for use in an educational setting.  Expertise in writing secure C++ code required.</span></p>
<p><span style="font-weight: 400;">These topics are our first priority for completion:</span></p>
<p><span style="font-weight: 400;">Input Data Validation – Format String Vulnerabilities</span></p>
<ul>
<li style="font-weight: 400;"><span style="font-weight: 400;">Discovering danger points, exploitation of format bugs through buffer overflows, format strings.</span></li>
</ul>
<p><span style="font-weight: 400;">Heap Overflow – Attack Methodology:</span></p>
<ul>
<li style="font-weight: 400;"><span style="font-weight: 400;">This should be an in-depth tutorial, including an emphasis on heap-based exploits and buffer overflow attack detection.</span></li>
</ul>
<p><span style="font-weight: 400;">Code Auditing with Clang:</span></p>
<ul>
<li style="font-weight: 400;"><span style="font-weight: 400;">Using Clang (or any other open-source code analysis tool) to find vulnerable code in vulnserver source code. We are using Kali Linux for labs, so you could either use any of the pre-installed tools or walk through the process of installing and configuring Clang (or some other external tool).</span></li>
</ul>
<p><span style="font-weight: 400;">Labs should be based on VMware Workstation platform, with no (or minimal) interaction with the host. Setup could be something similar to this: https://resources.enablesecurity.com/resources/voiplab.pdf </span></p>
<p><span style="font-weight: 400;">For examples of previous labs we’ve commissioned, please see examples here:</span></p>
<p><a href="http://resources.intenseschool.com/voip-in-packet-tracer-basic-labs/"><span style="font-weight: 400;">http://resources.intenseschool.com/voip-in-packet-tracer-basic-labs/</span></a></p>
<p><a href="http://resources.intenseschool.com/a-guide-to-the-intense-school-packet-tracer-labs/"><span style="font-weight: 400;">http://resources.intenseschool.com/a-guide-to-the-intense-school-packet-tracer-labs/</span></a></p>
<p><a href="http://resources.intenseschool.com/guide-to-the-intense-school-resources-for-gns3-labs-part-ii/"><span style="font-weight: 400;">http://resources.intenseschool.com/guide-to-the-intense-school-resources-for-gns3-labs-part-ii/</span></a></p>
<p><span style="font-weight: 400;">Labs should be entirely virtualized, with no actual physical phones or devices.  VMs can be networked to communicate with each other, but, ideally, no internet connection should be needed for labs.</span></p>
<p><span style="font-weight: 400;">At the moment, we require 10 labs, which will be allocated via milestone payments for the candidate that successfully creates these first three. </span></p>
<p><span style="font-weight: 400;">Any questions, feel free to drop me a line. Hope to hear from you soon!</span></p>

Apply
 upload file ... Limit reached, delete at least one file below to add more.