OpenSecurityTraining2

3

17

4.7K

OpenSecurityTraining2@OpenSecTraining·3d

C++ binaries are notoriously hard to reverse. This class by Gal Zaban @0xgalz teaches you to map them clearly in IDA. Reverse Engineering 3011: Reversing C++ Binaries ost2.fyi/RE3011

English

12

79

4K

OpenSecurityTraining2 retweetledi

Satoshi Tanda@standa_t·14 May

@LxlxIxlxlxL @Oppenheim3r In the spirit of helping others learn and enjoy this fascinating technology, I have been working on free materials. Hopefully, I can start the beta this year, and you will find it helpful. x.com/OpenSecTrainin…

We wanted to point out specifically the update to the System Security Learning Path that the excellent low level engineer & researcher Satoshi Tanda @standa_t has agreed to create our long-desired 'Architecture 3001: Intel Virtual Machine Extensions (VMX)' class!

English

6

28

3K

OpenSecurityTraining2@OpenSecTraining·11 May

There's still time to sign up before the next beta of Arch1901 kicks off May 20th!

📢Call for beta testers! (Round 2)📢 The "Architecture 1901: From zero to QEMU - A Gentle introduction to emulators from the ground up!" course by Antonio Nappa @jeppojeps / @fuzzsociety_org will begin May 20th. Sign up here: forms.gle/rB4mtU4BQtPo7u… This class has received a bunch of revisions based on student feedback! This course explores the fascinating world of emulation, guiding learners from the fundamentals of CPU design to the internals of QEMU and advanced instrumentation techniques. You will start by understanding what emulation truly means—how software can imitate hardware—and progressively build your own 8-bit CPU emulator in Python (SimpleProc-8), extend it with interrupts, I/O, and MMIO, and finally instrument real-world emulators like QEMU. The course combines hands-on labs, in-browser exercises, and conceptual lectures to bridge theory and practice, preparing students to tackle topics such as system emulation, hardware-assisted execution, and fuzzing of embedded targets. By the end, you’ll not only understand how emulators work—you’ll be able to build, modify, and analyze them for research, debugging, and vulnerability discovery.

English

2

9

1.6K

OpenSecurityTraining2@OpenSecTraining·11 May

Learn to use a debugger that runs *beneath* the OS using Intel VT-x. Hidden hooks, TLB splitting, EPT-based monitoring: reverse engineering's secret weapon. Debuggers 3301: HyperDbg ost2.fyi/Dbg3301 by @Intel80x86

English

14

81

4.8K

OpenSecurityTraining2@OpenSecTraining·4 May

📢Call for beta testers! (Round 2)📢 The "Architecture 1901: From zero to QEMU - A Gentle introduction to emulators from the ground up!" course by Antonio Nappa @jeppojeps / @fuzzsociety_org will begin May 20th. Sign up here: forms.gle/rB4mtU4BQtPo7u… This class has received a bunch of revisions based on student feedback! This course explores the fascinating world of emulation, guiding learners from the fundamentals of CPU design to the internals of QEMU and advanced instrumentation techniques. You will start by understanding what emulation truly means—how software can imitate hardware—and progressively build your own 8-bit CPU emulator in Python (SimpleProc-8), extend it with interrupts, I/O, and MMIO, and finally instrument real-world emulators like QEMU. The course combines hands-on labs, in-browser exercises, and conceptual lectures to bridge theory and practice, preparing students to tackle topics such as system emulation, hardware-assisted execution, and fuzzing of embedded targets. By the end, you’ll not only understand how emulators work—you’ll be able to build, modify, and analyze them for research, debugging, and vulnerability discovery.

English

11

44

4K

OpenSecurityTraining2@OpenSecTraining·27 Nis

Your BIOS is out of sight, out of mind: and that's exactly where attackers hide. Learn firmware security, SPI flash, SMM & how to RTFM like a pro. Architecture 4001: x86-64 Intel Firmware Attack & Defense by @XenoKovah is at ost2.fyi/Arch4001

English

5

29

1.7K

OpenSecurityTraining2@OpenSecTraining·20 Nis

Your CPU speaks assembly. Shouldn't you? Master x86-64 with the most common instructions and unlock reverse engineering, exploit dev & OS internals. But this is no skim class; it takes ~28h on average (not counting the final lab). Get started on Architecture 1001: x86-64 Assembly ost2.fyi/Arch1001 by @XenoKovah today for mad skillz tomorrow!

English

2

11

146

6.4K

OpenSecurityTraining2 retweetledi

jeppojeps - Antonio Nappa@jeppojeps·18 Nis

Soon again the second beta of @OpenSecTraining of From Zero to QEMU course, with free lab downloadable via dockerhub or directly in browse via fuzzsociety.org Given the huge traction we are fixing details and shipping a new release candidate.

English

8

37

2.5K

OpenSecurityTraining2@OpenSecTraining·13 Nis

If you're serious about reverse engineering, you need to master a powerful debugger. Dbg1103 walks you through Binary Ninja's debugger hands-on, so you can hit the ground running on real targets. ost2.fyi/Dbg1103 by Xusheng Li

English

7

58

2.9K

OpenSecurityTraining2@OpenSecTraining·6 Nis

Why would anyone learn about Windows kernel exploitation?! Take ost2.fyi/Exp4011 by @saidelike and learn about Windows kernel internals, vulnerability exploitation engineering, heap grooming, race condition, UAF, and what it takes to find your own exploitation primitives!

English

13

110

5.3K

OpenSecurityTraining2@OpenSecTraining·30 Mar

Why spend time on fake vulnerabilities at a CTF when you could learn 38 *real* CVEs? Take "C-Family Software Implementation Vulnerabilities" ost2.fyi/Vulns1001 by @xenokovah and @glitchnsec today!

English

16

135

6.9K

OpenSecurityTraining2@OpenSecTraining·23 Mar

Why read about TPM 2.0 in a spec when you can drive it with Python? 🐍 TC2202 teaches real-world TPM programming with tpm2-pytss, taught by its author, Bill Roberts. Hardware-backed crypto, hands-on labs, no fluff. ost2.fyi/TC2202

English

4

34

2.2K

OpenSecurityTraining2@OpenSecTraining·16 Mar

Move from basic fuzzing to a high-performance workflow. Fuzzing 1001 ost2.fyi/Fuzz1001 bridges the gap between theory and practical research. Master AFL++, PCGUARD, LTO, and ASAN using real CVEs from Xpdf and tcpdump.

English

25

123

7.4K

OpenSecurityTraining2@OpenSecTraining·9 Mar

Tired of guessing inputs? Let the computer do the work! Learn about symbolic execution from @barbieauglend in "Reverse Engineering 3201" ost2.fyi/RE3201 and use SMT solvers to find the exact inputs to reach vulnerable code. Stop guessing, start solving!

English

15

79

8K

OpenSecurityTraining2@OpenSecTraining·9 Mar

We're happy to say that we're now over 34k students at OST2! 🙌🥳🚀

English

0

33

1.4K

OpenSecurityTraining2 retweetledi

Xeno Kovah@XenoKovah·6 Mar

HMU at that email below if you're interested in getting funded to create a class and make it freely available to the world!

OST2 is putting out a request for proposals for an opportunity to be funded to create classes on UEFI and/or ACPI. If you are interested, please reach out to teach🌀ost2.fyi with a proposed class syllabus. ost2.fyi/Training-RFPs.…

English

2

7

1.8K

OpenSecurityTraining2 retweetledi

Xeno Kovah@XenoKovah·6 Mar

We're in discussion to form a partnership with the UEFI Forum. But as part of that we need to propose classes that can be taught on the topics they're involved with. Things like UEFI Measured Boot in particular would make a lot of sense now that we have robust TPM classes at OST2

OST2 is putting out a request for proposals for an opportunity to be funded to create classes on UEFI and/or ACPI. If you are interested, please reach out to teach🌀ost2.fyi with a proposed class syllabus. ost2.fyi/Training-RFPs.…

English

2

5

17

2.1K

OpenSecurityTraining2@OpenSecTraining·6 Mar

OST2 is putting out a request for proposals for an opportunity to be funded to create classes on UEFI and/or ACPI. If you are interested, please reach out to teach🌀ost2.fyi with a proposed class syllabus. ost2.fyi/Training-RFPs.…

English