I spent today at a free penetration testing seminar. The event was held in Leeds and hosted by Sec-1. Before the event, I was a bit skeptical about the quality of the content that would be delivered, but I’m happy to say that I was concerned for no reason. The event and main presentation was awesome.
I think I was mainly concerned that the presentation would be a dumbed-down explanation/definition of penetration testing. It was not. Instead, the presenter actually blasted through a whole range of pentesting techniques and demoed how to exploit weaknesses in common web applications, as well as Windows domain networks.
The presenter was obviously well practiced in his trade and he didn’t seem to hold back at all. He also showed an enormous amount of pride in his work and the speed at which he pwned systems was actually quite scary. I certainly wouldn’t want to piss him off.
I was delighted to see that Kali Linux featured heavily throughout the presentation, go Linux! Also, WordPress was mentioned on numerous occasions, but not in a good way. That said, the mentions were mainly related to WordPress plugins and not the core product, although I may need to take a look at how password resets are handled.
All-in-all, I thoroughly enjoyed the event and it was well worth attending. If you ever get the chance to attend one of Sec-1’s seminars, they hold them regularly, I would highly recommend it!