The Effitas team was delighted to attend BSides Budapest on Thursday 28th March. Security BSides is the first grass roots, DIY, open security conference in the world. Its format is a mix of structured anchor events and grass-roots geocentric events.
Effitas was well-represented at Bsides. Principal Threat Analyst Attila Marosi-Bauer opened and closed the main conference, while Research Director Zsombor Kovács and Technical Innovation advisor Barnabás Sztán-Kovács presented on “How to be a Pentester” and “FRIDA, the ‘Hooker’” respectively.

Our BSides abstracts

How to be a Pentester – Zsombor Kovács

“Hacker” is one of the most widely misunderstood and misused words within the IT community. It is a word loaded with multiple meanings and associations – so much so that there is general confusion about the underlying philosophy of the activity and the profession.
Many people have asked me about the best route into a career as a hacker. How does one become a hacker? Which school should I choose if I want a career in IT security? What’s the most important step to take to begin this career? What should I do, and what should I not do?
There isn’t a straightforward answer to these questions: as with most things in life, there is rarely one definitive answer.
Zsombor’s brief talk attempted to clarify an often confusing area and to answer questions from multiple perspectives. We hope the audience, from rookies to seasoned vets, gained some new insight into a fascinating and mysterious profession.

FRIDA, the “Hooker” – Barnabás Sztán-Kovács

FRIDA is a bad girl who can do nasty things. Not only she is a “hooker”, but also an expert at manipulating and eavesdropping. To put it a different way, FRIDA is a superb customizable dynamic instrumentation toolkit which can attach to processes and inject code and even detach without crashing them.
It can be used for reverse engineering, hooking and monitoring function calls, and can also be used as a special malware analysis tool.
Barnabás’ talk taped into these cases further, offering a glimpse into the capabilities and possibilities of FRIDA.

Barnabas Sztan-Kovacs about hooking malware samples with Frida

More about BSides

“Security BSides is a community-driven framework for building events for and by participants in the information security community. It creates opportunities for individuals to present and participate in an intimate atmosphere that encourages collaboration. It is an intense event with discussions, demos, and interaction by participants. The goal is to expand the spectrum of conversation beyond the traditional confines of space and time. This is where conversations for the next-big-thing happen. The open platform gives community participants a rare opportunity to directly share ideas, insights, and develop longstanding trusted relationships with others in the community.”

Source, and to learn more:

Photos about the event

2019.03.28. BSidesBUD 2019