logo hva international

International Security Summer Camp: 29 August - 2 September 2016

12 hours to save Amsterdam from a terrorist attack!

Learn about information security, cyber warfare, incident response and ethics in the field of information security and join the challenge: 12 hours to save Amsterdam from a terrorist attack

  • hands‐on learning and practical exercises are central to this camp's teaching style.
  • participants learn by doing and experiencing information security threats, defenses, and investigation techniques.
  • The aim of this camp is to provide the highest possible quality of instructions on topics relevant to today’s information security threat landscape including ethical hacking and penetration testing, incident handling, and digital forensics.

Topics

  1. Introduction to information security, cyber warfare, incident response and ethics in the field of information security.
  2. Coverage of modern internet threats and attacks, case studies about threat actors and modern attacks.
  3. Introduction to security bugs, exploits, malware and modern problems from the infosec standpoint, security testing and testing methodologies.
  4. Right tools and methods for testing: networks, systems and web applications.
  5. Incident response and forensics, Indicators of compromise, Forensic data collection and analysis.
  6. Twelve-hour challenge: Save Amsterdam from a terrorist attack. Who will find intelligence to stop the attack? Prizes available.

29-8-2016 | Opening Offensive Security

Time / Place

Topic

Evening

08:30-11:00

KSH 00A11

  • 8.30 hours: opening by the Dean of the Faculty Geleyn Meijer
  • 8.45 hours: presentation by John Fokker, National High Tech Crime Unit
  • followed by lecture: offensive security: introducing tools such as the metasploit framework

Canal trip

 

11:10-15:20

TTH 04A08 / 04A09 (study hall)

15:20-17:00

KSH 00A11

30-8-2016 | Exploit development and shell coding 

Time / Place

Topic

Evening

09:00-11:00

TTH 05A19/ 05A23

Exploit development and shell coding 

(Board) games night. Starts right after programme

11:10-15:20

TTH 04A08 / 04A09 (study hall)

15:20-17:00

TTH 05A19/ 05A23

31-8-2016 | Challenge: 12 Hours to save Amsterdam

Time / Place

Topic

Evening

08:00-20:00

TTH 04A08 / 04A09 (study hall)

Challenge: 12 Hours to save Amsterdam

Challenge: 12 Hours to save Amsterdam

1-9-2016 | Malware forensics 

Time / Place

Topic

Evening

09:00-11:00

KSH 04A04

Malware forensics  

Farewell party / drinks

11:10-15:20

TTH 04A08 / 04A09 (study hall)

15:20-17:00

KSH 00A11

2-9-2016 | Wrap up

Time / Place

Topic

Evening

08:30-11:00

KSH 09A10

Final presentation per country / Farewell session: All partners

 

Ali Dehghantanha

Private Digital Investigator, Malware Analyst, Professional Trainer and Lecturer at University of Salford Manchester

Ali Dehghantanha is serving as a Mari-Curie International Incoming Research Fellow in cyber forensics (the Marie-Curie Fellowships are Europe’s most competitive and prestigious research awards) at University of Salford, Manchester, UK. He is one of lead editors for Elsevier book titled “Contemporary digital forensic investigations of cloud and mobile applications” and is a guest editor for a special issue on “Internet of Things: Security and Forensics Trends and Challenges” in the Elsevier Future Generation Computer Systems journal, guest editor for a special issue on "Big Data Applications in Cyber Security and Threat Intelligence" in IEEE Transactions on Big Data. Ali has served for several years in a variety of industrial and academic positions with leading players in Cyber-Security and Digital Forensics. He has long history of working in different areas of computer security as security researcher, malware analyzer, penetration tester, security consultant, and forensic analyst.  He regularly travels the globe on speaking, teaching, and consulting engagements and assist clients in securing their information assets. Ali is imminently qualified in the field of cyber-security; he holds Ph.D in Security in Computing and a number of professional qualifications namely GREM, CCFP,CISSP, CISM ISMS L.A, CEH, CHFI, ECSA, and ECIH and he is the founder of annual “International Conference in Cyber-Security, Cyber Warfare and Digital Forensics (CyberSec)”! He can be contacted at AliD@AliD.info

 

Tonimir Kišasondi

Head of Open Systems and Security Laboratory at Faculty of Organization and Informatics, University of Zagreb

Dr. Tonimir Kišasondi holds specialization in security testing, security analysis and penetration testing and also cryptography systems implementation and security analysis. His fields are as follows:

  • Active knowledge of methodologies: OSSTMM, OWASP, ISO27000 family, NIST SP800-115
  • Active knowledge of security tools: nmap, ncrack, nessus, openvas, metasploit framework, w3af, skipfish, sqlmap, wireshark, john, oclhashcat
  • Knowledgeable in creation of custom scripts and tools for security testing and analysis (Open source examples are available on my GitHub page) - Prefers development in Python
  • Knowledgeable in cryptographic software and systems development based on open source technologies or standards: OpenSSL, GnuPG, OpenPGP, OpenSSH, X509
  • Advanced knowledge of network security tools and techniques: VLAN's, L3,L4 i L7 filtering with iptables, pf, pfsense. IDS solutions: Snort, OSSEC and VPN's with OpenVPN and IPSec
  • Implementation of custom network filtering solutions
  • Advanced knowledge of biometric systems and biometrics system security testing.
  • Knowledgable in computer forensics and forensics procedures, active work with EnCase and other open source solutions: (TCTK, SleuthKit…)
  • System administration knowledge with special focus on security administration and hardening on GNU/Linux based distributions: (Debian, Ubuntu, CentOS)
  • Active knowledge of Python with a wide set of libraries: requests, nltk, beautifulsoup.

 

Eric Filiol 

Head of the Operational Cryptography and Computer Virology lab (C + V) O which is currently hosted by ESIEA in Laval, France

Does reseach on:

  • Symmetric encryption: design and evaluation of symmetric cryptosystems, design of cryptosystems with trapdoors (introduction of undetectable mathematical weaknesses allowing a less complex cryptanalysis for anyone who has knowledge of the trapdoor), cryptanalysis of symmetric cryptosystem based on the combinatorial properties (weaknesses) of those systems, reconstruction techniques of unknown algorithms (coding or encryption) using the intercepted stuff only (encoded streams, encrypted messages).
  • Analysis and design of steganographic systems. Encrypted data (COMSEC aspect only) exhibit a (too) typical statistical profile. Consequently any attacker can therefore easily identify an exchange of encrypted data. It is therefore crucial in some contexts to hide the very existence (storage, exchange) of data. It is the role of steganography (hiding the channel by considering the TRANSEC aspect). From a dual point of view, I am also interested in techniques for detecting steganographic contents (steganalysis). 
  • Computer virology: formal characterization of viral techniques (known and unknown techniques), study and design of new malware technologies, formalization and design of new antiviral techniques, malicious cryptography and steganography (potential use of encryption and/or steganographic techniques by Malware and use of malicious codes for applied cryptanalysis purposes), analysis and Evaluation (passive and active) of antivirus software.
  • Analysis and technical studies of the concept of computer warfare

https://sites.google.com/site/ericfiliol/

 

Michael Gilhespy 

Lecturer/Researcher, HvA

Michael Gilhespy joins the teaching staff at the HvA after spending the last 13 years in industry, specialising in security analysis and hardening of enterprise networks.  He has spent time in a variety of roles, from leading board level conversations as a consultant to observing bits and bytes on the wire as a SOC analyst, but has always placed knowledge acquisition and transfer at the top of his priority list.

Michael's deepest interests are in (software) reverse engineering and forensic investigations, particularly the growing field of DFIR (Digital Forensics in Incident Response). Michael graduated with an MSc in Information Security from Royal Holloway, University of London.

Venue

Venue Hogeschool van Amsterdam: Theo Thijssen building. The Theo Thijssen building is part of the Amstelcampus. A map of the entire Amstelcampus can be found here.

 

Accommodation

Students are expected to book their own accommodation. We recommend:

StayOkay Hostel Amsterdam - Zeeburg

StayOkay Hostel Amsterdam - Stadsdoelen

StayOkay Hostel Amsterdam - Vondelpark

 

Activity

Things to see and do in Amsterdam

 

Travelling

From Schiphol Airport to Amsterdam Central Station by train

Amsterdam Metro and tram map

Travelling from StayOkay Zeeburg to the university at the Amstel Campus: leave the hostel and walk to the Molukkenstraat, take tram 7 (heading to slotermeer) and get off at the Weesperplein. From there it is a 3 minute walk to the university.

Tickets (public transport)

Hour tickets / Day tickets that can be used on tram, metro and bus. Buy them at Central station (red machines) or in the metro station there. Check how this works here.

GVB 1 hour € 2.90
GVB 1 day / 24 hours € 7.50
GVB child 1 day / 24 hours € 2.50
GVB 2 days / 48 hours € 12.50
GVB 3 days / 72 hours € 17.00
GVB 4 days / 96 hours € 21.50
GVB 5 days / 120 hours € 26.50
GVB 6 days / 144 hours € 30.00
GVB 7 days / 168 hours € 33.00

 

Student Doctor services

Students of the University of Amsterdam (UvA) and the Hogeschool van Amsterdam (HvA) are all entitled to make use of the services of the Student Doctors, who have specific knowledge of student life.

The Student Doctors provide these services in collaboration with the Oude Turfmarkt GPs. There is no ‘district limit' in place for students: you can use the services of the Student Doctors regardless of where you live in Amsterdam.

Address and contact information

Oude Turfmarkt General Practitioners/ Student Doctors' Office 
Oude Turfmarkt 151 1012 GC Amsterdam 
T:  020 525 2878  / 4772

You can see a doctor without an appointment from Monday to Friday from 9.00-9.45 hours. You will have to pay around €25. You can claim this money from your insurance.

Emergencies during office hours: 020 525 2889.

Emergencies outside of office hours and on the weekend:  088 00 30 600. You will be referred to the doctor on duty. Mind you that it is expensive to see a doctor outside the office hours: around € 100. You can claim this back from your own insurance      

Mind you that the Dutch emergency number is 112. You should only call this number in true emergencies : police, fire brigade, ambulance.​

Application takes place via the contact person office of your home University.

Marlies Nijenhuis

Email: m.l.c.nijenhuis-stelder@hva.nl

Published by  Faculty of Digital Media and Creative Industries 1 September 2016