Open-source firmware is the future. Learn coreboot from scratch: design principles, boot process & building for QEMU. Chromebooks run it, you should know it! Architecture 4031: Introductory coreboot https://ost2.fyi/Arch4031 by @pietrushnic
OpenSecurityTraining2
- 398 Followers
- 5 Following
- 172 Posts
501(c)(3) Non-Profit providing Open Source and Open Access computer security training material. #OST2 re-launched July 2021!
Xeno KovahLong overdue things I got done on the OpenSecurityTraining2 beta server this past weekend (with Claude's help): Adding OAuth login via Google & Github, making it email the instructor when students post to Discussions (a feature I've been asking for for years), and removing an annoying first-use "tour" of Open edX (that provides no value and for which there's no feature flag for disablement). All things coming to production soon, after getting some testing on beta while the Arch1901 beta is running.
(And for me, a Claude skill to collect better stats about student course completion without me needing to do a bunch of manual work. Obviously I'm loving Claude's ability to fix misc small things that have been bugging me forever.)
Uninitialized data use, race conditions (TOCTOU), Use-After-Free (UAF), type confusion & info leaks: Vulnerabilities 1002 https://ost2.fyi/Vulns1002 by @xenokovah teaches real CVEs, not fake toy examples. Real exploit walkthroughs included. Level up your 'sploity sense!
C++ binaries are notoriously hard to reverse. This class by Gal Zaban @0xgalz teaches you to map them clearly in IDA. Reverse Engineering 3011: Reversing C++ Binaries https://ost2.fyi/RE3011
Learn to use a debugger that runs *beneath* the OS using Intel VT-x. Hidden hooks, TLB splitting, EPT-based monitoring: reverse engineering's secret weapon. Debuggers 3301: HyperDbg https://ost2.fyi/Dbg3301 by @intel80x86
RE: https://infosec.exchange/@OpenSecurityTraining2/116515815171054746
There's still time to sign up before the next beta of Arch1901 kicks off May 20th!
📢Call for beta testers! (Round 2)📢
The "Architecture 1901: From zero to QEMU - A Gentle introduction to emulators from the ground up!" course by Antonio Nappa @jeppojeps / @fuzzsociety_org will begin May 20th. Sign up here: https://forms.gle/rB4mtU4BQtPo7utK8
This class has received a bunch of revisions based on student feedback! This course explores the fascinating world of emulation, guiding learners from the fundamentals of CPU design to the internals of QEMU and advanced instrumentation techniques.
You will start by understanding what emulation truly means—how software can imitate hardware—and progressively build your own 8-bit CPU emulator in Python (SimpleProc-8), extend it with interrupts, I/O, and MMIO, and finally instrument real-world emulators like QEMU.
The course combines hands-on labs, in-browser exercises, and conceptual lectures to bridge theory and practice, preparing students to tackle topics such as system emulation, hardware-assisted execution, and fuzzing of embedded targets.
By the end, you’ll not only understand how emulators work—you’ll be able to build, modify, and analyze them for research, debugging, and vulnerability discovery.
Architecture 1901: From zero to QEMU - A Gentle introduction to emulators from the ground up! (Beta round 2)
Enter the email you have used / will use when registering for beta.ost2.fyi. This will be used to enroll you in the beta class if you are selected. If your account does not exist at the time enrollment is processed, you will not be admitted to the class.
Your BIOS is out of sight, out of mind: and that's exactly where attackers hide. Learn firmware security, SPI flash, SMM & how to RTFM like a pro. Architecture 4001: x86-64 Intel Firmware Attack & Defense by @xenokovah is at https://ost2.fyi/Arch4001
Your CPU speaks assembly. Shouldn't you? Master x86-64 with the most common instructions and unlock reverse engineering, exploit dev & OS internals. But this is no skim class; it takes ~28h on average (not counting the final lab). Get started on Architecture 1001: x86-64 Assembly https://ost2.fyi/Arch1001 by @xenokovah today for mad skillz tomorrow!
If you're serious about reverse engineering, you need to master a powerful debugger. Dbg1103 walks you through Binary Ninja's debugger hands-on, so you can hit the ground running on real targets. https://ost2.fyi/Dbg1103 by Xusheng Li