By Ed Skoudis
Last night, I presented a new talk at a keynote session for the SANS Cyber Defense Initiative conference. My goodness, was I excited, as the topic is something that has been very near and dear to my heart for the past 15 years. The talk was all about how info sec professionals can use challenges to develop their skills and careers, including Capture the Flag games, as well as a whole bunch of other challenge types. We touched on topics such as gamification, challenge designs, and a sampling of some really great free challenges available to everyone on the Internet. Here is a slide from the talk discussing some of the stuff we're thinking about and working on at Counter Hack Challenges:
Here is the overall description of the talk:
Put Your Game Face On: Using InfoSec Challenges to Build Your Skills and Career
- Ed Skoudis, SANS Institute Fellow
There are a multitude of info sec challenges available today, letting info sec pros evaluate and build their skills in a fun and exciting way.
Going beyond traditional lecture and exercise-based learning, some challenges are fantastic, while other sadly stink up the place. Some focus on tried-and-true formats such as Capture the Flag hacking competitions, while others push the envelope in structure, topic, and style, providing fertile environments for forensics experts, auditors, and secure software developers. What makes for a good challenge? What are some of the best ones freely available today? How can info sec pros use challenges to better their skills and improve their careers? In this lively presentation, Ed Skoudis, no stranger to playing or writing info sec challenges, will address these topics and more in a fun, interactive session. Whether you are interested in being a challenge participant who gets real value, or want to start authoring your own challenges, you won't want to miss this session!
Feel free to download my slides here (Put Your Game Face On), and please make sure to check out the last 5 slides or so, where I provide an inventory of available free Capture the Flag and other info sec challenges available on the Internet.
Last night was the debut of the talk. I'll be presenting updated versions of it again at SANS New Orleans Jan 19-24 and SANS Orlando March 25-30. W00t!