Guillaume Jeanne Camille Mougey

Fabien Duchene Karim Hossen

2012 – 2013

SecurIMAG

2012-2013

¡¡_ (in)security we trust _!!

Grenoble INP

Ensimag

SecurIMAG

(in)security we trust

SecurIMAG, a club and an association

2 SecurIMAG - title - author - date

• A security club

• We meet once a week

• Learn and practise about several topics related to

computer security

• Organization of events (eg: GreHack)

• Go deeper in concepts and techniques seen during

some courses (eg: break an activation license of an

android application protection)

• Support and help those who want to progress

Evolution

3 SecurIMAG - title - author - date

March 2011

- FUN

- Talks, Projects

- Challenges

- Infosec career

2011-2012

- Trainings

- Hacking contest team

- Video streaming

- GreHack preparation

2012-2013

- 19/10 GreHack

- Practical work

- create challenges

- Papers synthesis

Security Topics

4 SecurIMAG - title - author - date

SecurIMAG

Reverse

engineering

Cryptography

Forensics

Web

Steganography

Fuzzing

Talks examples

5 SecurIMAG - title - author - date

iOS Data Protection (2012-09)

• Albin PETIT

• Keywords : AES, System keybag, integrity check

Let me SQL inject your heart! (2012-02)

• Franck De Goër & Fabien Duchene

• Keywords : SQL injection, XPath, LDAP, Oracle, MySQL

Defeat userland exploits on Linux (2011-09)

• Arnaud Maillet

• Keywords : RELRO, PIE, Glibc, Canary, Stack Overflow, Shellcode

Practical work

6 SecurIMAG - title - author - date

• Reverse engineering with IDA

Advices and helps with your infosec career

7 SecurIMAG - title - author - date

• http://ensiwiki.ensimag.fr/index.php/A_career_in_Informa

tion_Security

• Question asked during interview : « je suis dans le train,

je vais aux toilettes, lorsque je reviens comment savoir si

mon ordinateur n’a pas été corrompu ? »

Own free book library

8 SecurIMAG - title - author - date

• http://ensiwiki.ensimag.fr/index.php/Portail:SecurIMAG_

Ensimag_IT_security_and_hacking_club/Library (D324)

Hacking event : Some of us where there!

9 SecurIMAG - title - author - date

InsomniHack2k12 ranking

GreHack2012 ranking

GreHack2012, Organized by SecurIMAG

10 SecurIMAG - title - author - date

• Security Conference (during day)

• 170 people

• Ethical Hacking Contest (during night)

• 100 people

• 10k€ budget

• We need you to GreHack2013 !

GreHack 2013 - HOW can you help ?

11 SecurIMAG - title - author - date

• challenge creation

• general organization

(meal, cocktail)

• looking for sponsors

• network CTF admin

• community manager

• website admin

• …

GreHack 2013 - WHY to help?

12 SecurIMAG - title - author - date

• Benefits

• meet security professionals (CEA, HP…)

• help to find an internship

• a line on the resume

• see behind the scenes of the organization

Some members

13 SecurIMAG - title - author - date

• Franck De Goer, 2A ISI

• Fabien Duchene, LIG VASCO Team

• Karim Hossen, LIG VASCO Team

• Guillaume Jeanne, 2A ISI

• Arnaud Maillet

• Camille Mougey, 3A ISI

• Albin Petit, Master SCCI

• Guillaume Touron

Who is concerned

14 SecurIMAG - title - author - date

• Open to all… (not only Ensimag students !)

• Passionate about computer security or simply want to

extend your knowledge

• Expert or newbie who want to progress

• Girls !

Contact us

15 SecurIMAG - title - author - date

How to reach that crazy team? • Securimag@ensimag.fr • Twitter : @securimagtwitte • LinkedIn : groups?gid=3898897 • IRC #securimag on irc.car-online.fr 6697

Join US

16 SecurIMAG - title - author - date

Every Thursday 5pm-6pm30 @ Ensimag, Amphi E or E101

Hope to see you soon!

17 SecurIMAG - title - author - date