Training

May 25-26-27-28, 2021

2021 Sessions!

NorthSec is pleased to announce its high-quality training sessions, given by the absolute best experts in their field. We strive to provide you with the highest level of exclusive content, giving you a unique opportunity to improve your applied security knowledge during NorthSec.

SpecterOps - Adversary Tactics: Vulnerability Research for Operators

  • SpecterOps

May 27th and 28th

Relying on publicly available and stock tooling to leverage weaknesses in enterprise Windows environments to execute effective red team operations is becoming increasingly difficult. However, complex environments, with custom applications and configurations, often contain significant exploit potential attackers could utilize. Red team operators capable of taking advantage of these weaknesses can simulate more advanced adversaries, and help organizations remove difficult to identify attack chains. This course teaches the methodology and tools to find, triage, and utilize exploitable vulnerabilities on Windows systems in time-sensitive engagements. You will dive into the vulnerability classes that SpecterOps routinely finds in mature environments and practice methods of identification, triage, and exploitation. More information

Brian King - Modern WebApp Pentesting

  • Brian King Black Hills Information Security

May 27th and 28th

This course is different from other webapp pentesting courses. Here, we focus first on the fundamental concepts that every web application requires, and then look at how those concepts are used in modern web applications. This helps a tester stay flexible as new technologies evolve, giving a mental framework that is valid and useful for any web-based system. The instructor has been a full-time webapp tester for more than 10 years and the lessons in this class are based on what real webapps look like today. More information

FalconForce - Detection Engineering for Windows

  • Olaf Hartong FalconForce

  • Gijs Hollestelle FalconForce

  • Henri Hambartsumyan FalconForce

May 25th and 26th

Detection engineering is a methodology to research, develop and improve your detection capabilities. The Detection Engineering for Windows training brings you up-to-speed in 2 full day sessions. More information

FortyNorth - Intrusion Operations

  • Chris Truncer FortyNorth

  • Matt Grandy FortyNorth

May 25th to 28th

The Intrusion Operations class provides students a unique opportunity to learn and implement real-world techniques used by advanced adversaries. An attacker can easily break into an organization by abusing misconfigurations, but the inverse also applies - defenders can easily detect red teams and malicious actors using commodity malware, default indicators, and more. You will learn how to overcome enterprise defenses and hardened infrastructure. You will leverage custom tooling and advanced configurations to break into a simulated corporate network and develop targeted malware profiles to remain undetected. You will leave this class with the skills and tools to develop custom tradecraft for long term persistence. More information

Getting Your Hands Dirty: Understanding & Hunting Down Malware Attacks in Your Network

  • Veronica Valeros Czech Technical University

  • Sebastian Garcia Czech Technical University

May 27th and 28th

This hands-on training teaches the essential know-how of malware traffic analysis: the experience and knowledge of understanding malware behaviors on the network. The core of the training is not about the tools, but the experience transmitted and gained by students. Students should leave with the knowledge to recognize malicious actions of malware in the network. More information

NCC Group - Offensive Cloud Security (Sold-Out)

  • Xavier Garceau-Aranda

May 27th and 28th

While security awareness and collective experience regarding the Cloud has been steadily improving, one common difficulty is applying theoretical knowledge to real-life scenarios. This training’s goal is to help attendees bridge this gap by understanding how conventional technologies integrate with Cloud solutions. The training is scenario-based and focuses on applied exercises. More information

Charles Hamilton - Red Team Training (Sold-Out)

  • Charles Hamilton

May 25th and 26th

The purpose of the Red Team Training is to understand the underlying concept of red teaming. The training will cover payloads generation, lateral movement techniques, initial foothold and internal reconnaissance. The training is aiming to provide a deep understanding of all the previously described aspects of a red team. More information

Fine print

Dates

Training sessions take place right after the conference from Tuesday till Friday. Dates vary by individual training, make sure to check. Training sessions start at 9am and finish at 5pm. Trainers can lengthen the schedule if they want to.

Pricing

See individual training pages for pricing.

  • Early bird until January 31st
  • Student pricing (50% off) is available upon request and on selected training. Contact us for details.
  • Prices are in $CAD before taxes and eventbrite fees

Continuing Professional Education (CPE) Credits

We can emit proof of CPE credits for those who are certified through (ISC)2 upon request.

  • 16 CPE credits for a two-day training session
  • 24 CPE credits for a three-day training session
  • 32 CPE credits for a four-day training session