Sessions

While we strongly encourage participants in the society to buy a membership, it’s important that interested individuals have the opportunity to trial a session before joining. To that end, we offer one free session a year to non-members.

Our regular sessions are hosted in person and streamed on Blackboard Collaborate, every Monday at 18:00 - 19:30 (ish). Members will be given access to our Blackboard Collaborate Organisation, from which they can view all sessions and recordings.

Please bring a laptop to all sessions unless said otherwise. If you are not able to, please speak to someone on the committee.

Academic Year 2024/25

Permalink Intro to Linux

  1. Date: Mon 07 Oct 2024
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: Jason
  5. Location: Workroom 3, The Diamond

We’ll be showing you the basics of how to use the Bash shell to interact with a Linux system from the command line. As before, everyone is welcome - you just need to bring a laptop, and we’ll teach you everything you need to know.

This session should be accessible without any prerequisites.

Session files

  1. DownloadIntro_to_Linux_Slides.pdf

Permalink Intro to Web Hacking

  1. Date: Mon 30 Sep 2024
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: Echo
  5. Location: Workroom 3, The Diamond

Our first session of the year will be on web hacking where we will cover some basic web exploits. Please remember to bring a laptop along to have a go at using some of what you have learnt.

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeb_Hacking.pdf

Permalink PG-GIAG - Introduction to Hacking

  1. Date: Tue 24 Sep 2024
  2. Time: 10:00 - 12:00
  3. Beginner
  4. Presenter: Echo
  5. Location: Computer Room 2 2, The Diamond

Exclusive session for Post Grad cyber security and AI students.

A brief intro to ShefESH, who we are, what we do, and a bit about encryption, encodings, and web hacking. This is an intro session to show how our regular ShefESH sessions work, and we will look at everything we cover in more detail throughout the year.

This session should be accessible without any prerequisites.

Session files

  1. DownloadGive_it_a_Go_Autumn_2024.pdf

Permalink GIAG - Introduction to Hacking

  1. Date: Mon 23 Sep 2024
  2. Time: 16:15 - 17:30
  3. Beginner
  4. Presenter: Echo
  5. Location: Workroom 2, The Diamond

A brief intro to ShefESH, who we are, what we do, and a bit about encryption, encodings, and web hacking. This is an intro session to show how our regular ShefESH sessions work, and we will look at everything we cover in more detail throughout the year.

This session should be accessible without any prerequisites.

Session files

  1. DownloadGive_it_a_Go_Autumn_2024.pdf

Academic Year 2023/24

Permalink CTF Practice

  1. Date: Mon 15 Apr 2024
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: Echo
  5. Location: Computer Room 5, The Diamond

CTF Practice, preparing our team for the CTF in London, and putting what we’ve learned to pracice.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Guest Speaker - Being a pentester/red teamer & AGM

  1. Date: Mon 18 Mar 2024
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: Jack Barradell-Johns
  5. Location: Computer Room 5, The Diamond

Penetration testing involves simulating an attack on a system and is a key part of cyber security. This talk from a former Sheffield student about the experiences and perspective of a pentester/red teamer will be useful both for people looking to go into security as well as people involved in creating and developing systems software as it will need to be secure. Our AGM will also be held at this meeting.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Cryptography

  1. Date: Mon 11 Mar 2024
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: Echo
  5. Location: Computer Room 5, The Diamond

We will be looking at cryptography. We’ll look at some old methods and more modern cryptography, how it works, where its used, and how it can be broken.

This session should be accessible without any prerequisites.

Session files

  1. DownloadS_06_cryptography.pdf

Permalink Docker

  1. Date: Mon 04 Mar 2024
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: SESH and CompSoc
  5. Location: Computer Room 5, The Diamond

Containerisation is a very commonly used technology in industry for both infrastructure and software development. Join us and CompSoc as we teach you about what Docker is and how to use it.

This session should be accessible without any prerequisites.

Session files

  1. DownloadS_05_Docker.pdf

Permalink Enterprise Wifi and eduroam

  1. Date: Mon 26 Feb 2024
  2. Time: 18:00 - 19:30
  3. Intermediate
  4. Presenter: James
  5. Location: Computer Room 5, The Diamond

Enterpise Wifi networks (such as govroam, eduroam and many intra-organisation ones) provide seemless internet access across buildings for many users. We learn about the strenghts and weaknesses of these including a practical (in person only). It will be beneficial to have Linux on bare metal (including dual boot).

Session prerequisites

  1. We will be using Linux in this session. If you don’t already have a Linux machine, please set up a Kali virtual machine.

Session files

  1. DownloadS_04_EnterpriseWifi.pdf

Permalink Tor and Anonymity

  1. Date: Mon 19 Feb 2024
  2. Time: 18:00 - 19:30
  3. Intermediate
  4. Presenter: James
  5. Location: Computer Room 5, The Diamond

Take a look at how anonymous you are on the internet and real life, look at some solutions such as TOR and do a practical to assess its effectiveness.

This session should be accessible without any prerequisites.

Session files

  1. DownloadS_02_TorAnonymity.pdf

Permalink Bounty Hunting

  1. Date: Mon 20 Nov 2023
  2. Time: 18:00 - 19:30
  3. Intermediate
  4. Presenter: Abdelrhman
  5. Location: Workroom 2, The Diamond

This week we will be doing a session on bounty hunting. We’ll cover getting set up, where to start, and we’ll look at scope and the importance of it.

This session should be accessible without any prerequisites.

Session files

  1. DownloadA_09_Bug_Bounty.pdf

Permalink WiFi

  1. Date: Mon 13 Nov 2023
  2. Time: 18:00 - 19:30
  3. Intermediate
  4. Presenter: James
  5. Location: Workroom 2, The Diamond

We will be learning about WiFi and then have a go at hacking an access point.

This session should be accessible without any prerequisites.

Session files

  1. DownloadA_08_WiFi.pdf

Permalink DS Damian Speare "Policing in the Digital Age"

  1. Date: Mon 23 Oct 2023
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: DS Damian Speare
  5. Location: Workroom 2, The Diamond

Damian Speare: “Policing in the Digital Age” Guest talk covering the implications around the digital revolution on policing. Includes year in industry and career opportunities from the Yorkshire & Humber Regional Organised Crime Unit.

This session should be accessible without any prerequisites.

Session files

  1. DownloadA_05_Speare.pdf

Permalink OSINT

  1. Date: Mon 09 Oct 2023
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: James & Luca
  5. Location: Workroom 2, The Diamond

Open Source Intelligence is using publicly available services to collect information about a group or individual. It is an invaluable skill that is the starting point for many attacks as well as being used to find large amounts of accidentally exposed data.

This session should be accessible without any prerequisites.

Session files

  1. DownloadA_03_OSINT.pdf

Permalink Linux Introduction

  1. Date: Mon 02 Oct 2023
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: Atri
  5. Location: Workroom 2, The Diamond

Linux skills and knowledge are very important for security as well as most aspects of computer science. We will cover that as well as begin to touch on linux security.

This session should be accessible without any prerequisites.

Session files

  1. Downloadlinux_bash.pdf

Permalink Web Hacking

  1. Date: Mon 25 Sep 2023
  2. Time: 18:00 - 19:30
  3. Beginner
  4. Presenter: James
  5. Location: Workroom 2, The Diamond

Our first session of the year will be on web hacking where we will cover some basic web exploits. Please remember to bring a laptop along to have a go at using some of what you have learnt.

This session should be accessible without any prerequisites.

Session files

  1. DownloadA_01_Web_Hacking.pdf

Permalink GIAG - Introduction to Hacking - PGT

  1. Date: Fri 22 Sep 2023
  2. Time: 10:00 - 12:00
  3. Beginner
  4. Presenter: James
  5. Location: Computer Room, North Campus

We are looking forward to seeing some of you at our PGT Give It a Go session.

This session should be accessible without any prerequisites.

Session files

  1. Download00_giag_pdt.pdf
  2. Downloadslides5748.pdf

Permalink GIAG - Introduction to Hacking

  1. Date: Wed 20 Sep 2023
  2. Time: 16:00 - 17:30
  3. Beginner
  4. Presenter: James
  5. Location: Design Studio 1 (Floor D), Pam Liversidge

We are looking forward to seeing some of you at our Give It a Go session at 4pm today. It will be in Pam Liversidge Building - Design Studio 1 which is on Floor D. Please remember to bring a laptop if you have one and we look forward to seeing you there! (Tickets are free on the SU website.)

This session should be accessible without any prerequisites.

Session files

  1. Download00 Give it a Go Autumn 2023.pdf

Academic Year 2022/23

Permalink AGM + Email Security

  1. Date: Mon 24 Apr 2023
  2. Time: 19:00 - 20:00
  3. Unknown difficulty
  4. Presenter: James
  5. Location: Workroom 3, The Diamond

Today is our AGM plus a session from James on email security

This session should be accessible without any prerequisites.

Session files

  1. DownloadEmail Security.pdf

Permalink CTF Prep

  1. Date: Mon 27 Mar 2023
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Mac
  5. Location: Online session

Today’s session will be on preparation for the CTF - we’ll look at some challenges from last year and have a quick intro to reverse engineering, so try to download Ghidra (https://ghidra-sre.org/InstallationGuide.html) beforehand

Session prerequisites

  1. Please install Ghidra for this session.

Session files

  1. DownloadCTF Prep.pdf

Permalink Cryptography

  1. Date: Mon 06 Mar 2023
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Atri and Ella
  5. Location: Workroom 1, The Diamond

Join us for a session on cryptography and discover the art of encryption. Explore the techniques used to secure information and gain insight into the world of code-breaking before our visit to Bletchley. This session is open to all members of SESH, CompSoc and SWICS.

This session should be accessible without any prerequisites.

Session files

  1. DownloadCryptography2023.pdf

Permalink Web Hacking Part 3

  1. Date: Mon 27 Feb 2023
  2. Time: 19:00 - 20:00
  3. Beginner
  4. Presenter: Mac
  5. Location: F28, Hicks Building

More advanced web hacking including deserialisation, NoSQL injection, and some cool supply chain attacks.

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeb Hacking Advanced.pdf

Permalink Active Directory

  1. Date: Mon 20 Feb 2023
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: James & Ayyub
  5. Location: BB15a, Bartolome House

An estimated 90% of the Global Fortune 1000 use Active Directory. Learn how it works, what its weaknesses are and have ago at exploiting what makes up most companies core infrastructure.

This session should be accessible without any prerequisites.

Session files

  1. DownloadActive Directory Spring 2023.pdf

Permalink Windows Security

  1. Date: Mon 13 Feb 2023
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Mac & Atri
  5. Location: Workroom 1, The Diamond

We’ll teach you some theory and crucial commands, then test some exploits old and new, including Follina, Eternal Blue, and Potato Attacks

This session should be accessible without any prerequisites.

Session files

  1. DownloadWindows Security.pdf

Permalink Xmas CTF 🎅

  1. Date: Mon 05 Dec 2022
  2. Time: 19:00 - 20:00
  3. Unknown difficulty
  4. Presenter: Mac
  5. Location: Lecture Theatre 9, The Diamond

We have a fun mini-CTF for you for our last session of the semester. Christmas jumpers encouraged! Sign up for a https://tryhackme.com account and login to our room at: https://tryhackme.com/jr/seshxmasctf2022

Session prerequisites

  1. Please register an account on Try Hack Me for this session.

There are no files associated with this session.

Permalink Hack the Box - RedPanda

  1. Date: Mon 28 Nov 2022
  2. Time: 19:00 - 20:30
  3. Expert
  4. Presenter: Mac
  5. Location: Lecture Theatre 8, The Diamond

We will be doing a Hack the Box machine (RedPanda) which is still available on free tier HacktheBox but has retired. This is a great session for practicing and recapping all the skills from this semester, and will ship with slides summarising everything we’ve done so far

Session prerequisites

  1. Please register an account on Hack The Box for this session.

Session files

  1. DownloadHack the Box 2022.pdf

Permalink Networking & Hacking Practice

  1. Date: Mon 21 Nov 2022
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Mac + Atri
  5. Location: Lecture Theatre 10, Hicks Building

This week we’ll take you over some important networking concepts and let you apply them to a hacking challenge! You can practice your enumeration, shell popping, and SSH tunneling skills before we do our first boot2root next week.

This session should be accessible without any prerequisites.

Session files

  1. DownloadNetworking 2022.pdf

Permalink AWS Workshop with CompSoc

  1. Date: Mon 14 Nov 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: James + Felix
  5. Location: Lecture Theatre 8, The Diamond

AWS (Amazon Web Services) provides on-demand cloud computing platforms and APIs to individuals and companies. Learning how to utilise them (and cloud services in general) is extremely beneficial both for your career and personal development. We will cover S3, static pages with S3, EC2, how to host a website on EC2 and how to do all this securely.

This session should be accessible without any prerequisites.

Session files

  1. DownloadAWS Workshop.pdf

Permalink BadUSB

  1. Date: Mon 24 Oct 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: James
  5. Location: Seminar Room DB13, Bartoleme House

This week we will be learning how you can instantly exploit in-person targets using hardware. We will be programming DigiSparks to emulate a keyboard in order to automate tasks, exploit targets and learn how these types of attacks can be mitigated or prevented.

Session prerequisites

  1. Please install the Arduino IDE for this session.

Session files

  1. DownloadBadUSB 2022_10_24.pdf

Permalink EGM and Enumeration

  1. Date: Mon 17 Oct 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Mac Goodwin & James
  5. Location: Workroom 1, The Diamond

This week’s session will be on Enumeration. This will go over some of the most common tools and services and will be an interactive session which will use Hack The Box, and will require prior setup. There is also an EGM this week which will take place for the final half hour.

Session prerequisites

  1. We will be using Linux in this session. If you don’t already have a Linux machine, please set up a Kali virtual machine.

  2. You should be comfortable using the Linux command line for this session.

  3. Please register an account on Hack The Box for this session.

Session files

  1. DownloadEnumeration Tools and Techniques.pdf

Permalink Guest Talk from YHROCU

  1. Date: Mon 10 Oct 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: DS Damian Speare
  5. Location: Workroom 1, The Diamond

Come along to our first guest talk of the year and find out about the work of the Yorkshire and Humber Regional Organised Crime Unit (YHROCU) and their internship opportunities.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Intro to Linux

  1. Date: Mon 03 Oct 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: James Lawford & Mac Goodwin
  5. Location: K14, Hicks Building

An introduction to Unix-based operating systems and the tools you will use as an ethical hacker A linux instance is not required as we are using SSH as it is a beginner session, but if you have it already any distro is fine.

This session should be accessible without any prerequisites.

Session files

  1. DownloadIntroduction to Linux and Bash 2022.pdf
  2. Downloadlinux-1---navigating-the-file-system.pdf
  3. Downloadlinux-2---downloading-files-and-packages.pdf
  4. Downloadtemp.pdf

Permalink Meet our Societies Talk (with DCS)

  1. Date: Tue 20 Sep 2022
  2. Time: -
  3. Beginner
  4. Presenter: Mac Goodwin
  5. Location: Online session

Our introduction to the society, including our goals for the year. Made for the Department of Computer Science intro week talks for students in Intro Week.

This session should be accessible without any prerequisites.

Session files

  1. DownloadIntro to SESH 2021-22.pdf

Academic Year 2021/22

Permalink Blue Teamers's viewpoint

  1. Date: Mon 09 May 2022
  2. Time: 19:00 - 20:30
  3. Unknown difficulty
  4. Presenter: John
  5. Location: Online session

2nd part of a 2 session series on Red and Blue teaming. Watch a certified Blue teamer discover how the red teamer compromised the system, tools for logging and post-compromise response.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Red Teamers's viewpoint

  1. Date: Mon 02 May 2022
  2. Time: 19:00 - 20:00
  3. Unknown difficulty
  4. Presenter: Jack
  5. Location: Online session

1st part of a 2 session series on Red and Blue teaming. Watch an OSCP certified penetration tester exploit an application, see how they discover vulnerabilities and compromise the target.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Tor, Cryptocurrencies, & AGM

  1. Date: Mon 25 Apr 2022
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Vlad & Nicki
  5. Location: Online session

We talk about anonymising technologies, and elect next year’s committee

This session should be accessible without any prerequisites.

Session files

  1. DownloadTor and Cryptocurrency.pdf

Permalink HTB Session

  1. Date: Mon 04 Apr 2022
  2. Time: 19:00 - 20:30
  3. Unknown difficulty
  4. Presenter: TBD
  5. Location: Online session

TBC - we may run a HTB session over Easter if people are interested

Session prerequisites

  1. Please register an account on Hack The Box for this session.

There are no files associated with this session.

Permalink CTF Preparation Session

  1. Date: Mon 28 Mar 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Mac and Seb
  5. Location: Workroom 1, The Diamond

We’ll teach you everything you need to know about Capture the Flag competitions, ahead of our GroceryTF CTF challenge this weekend!

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeek 8 - Playing a CTF.pdf

Permalink Advanced Web Hacking

  1. Date: Mon 21 Mar 2022
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: TBD
  5. Location: Online session

We’ll be learning about some more complex exploits, such as Server-Side Template Injection, Server-Side Request Forgery, Remote File Inclusion, and more to prepare you for the CTF!

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeek 7 - Advanced Web Application Hacking.pdf

Permalink Cryptography

  1. Date: Mon 14 Mar 2022
  2. Time: 19:00 - 20:30
  3. Unknown difficulty
  4. Presenter: Rong
  5. Location: Workroom 2, The Diamond

Learn the basic theory of cryptography and run some attacks against RSA, hashes, and more!

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeek 6 - Cryptography.pdf

Permalink WiFi Hacking

  1. Date: Mon 07 Mar 2022
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Vlad Cranga
  5. Location: Workroom 2, The Diamond

This session covers Wi-Fi security, various attacks and tools, and practising password cracking. New to the society? Come to your first session for free, just message a committee member!

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeek 5 - WiFi Hacking.pdf

Permalink Mike Jones RFID

  1. Date: Mon 28 Feb 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Mike Jones
  5. Location: Online session

Mike Jones, a reformed ex-anonymous hacker, will be demonstrating how we can use RF (Radio Frequency) to exfiltrate data. The session will be on BlackBoard and will require a membership to join. New to the society? Come to your first session for free, just message a committee member!

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeek 4 - RFhack.pdf

Permalink BadUSB

  1. Date: Mon 21 Feb 2022
  2. Time: 19:00 - 20:30
  3. Unknown difficulty
  4. Presenter: Nick
  5. Location: Workroom 2, The Diamond

Instantly exploit in-person targets using hot pluggable attacks with a BadUSB. We will be programming DigiSparks to emulate a keyboard in order to automate tasks and exploit targets!

Session prerequisites

  1. Please install the Arduino IDE for this session.

Session files

  1. DownloadWeek 3 - BadUSB.pdf

Permalink Active Directory

  1. Date: Mon 14 Feb 2022
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Mac
  5. Location: Workroom 2, The Diamond

A look at the most common corporate network infrastructure, and how to break it! This is an info-packed session, and you may find it easier to follow if you’ve looked at our Reconnaisance, Shells, OS Security and Privilege Escalation sessions - but you should be fine without!

Session prerequisites

  1. You should be comfortable using the Linux command line for this session.

  2. Please set up a virtual machine running Kali Linux before attending this session.

Session files

  1. DownloadWeek 2 - Active Directory.pdf

Permalink Recap and TryHackMe

  1. Date: Mon 07 Feb 2022
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Mac & Seb
  5. Location: Online session

A quick recap of last semester and a fun TryHackMe Boot2Root

This session should be accessible without any prerequisites.

Session files

  1. DownloadWeek 1 - Recap.pdf

Permalink Holiday Hackers

  1. Date: Mon 13 Dec 2021
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Mac, Nick, Nicki, Vlad, Seb
  5. Location: Online session

TBD

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Hack the Box

  1. Date: Mon 06 Dec 2021
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: TBD
  5. Location: Online session

TBD

Session prerequisites

  1. Please register an account on Hack The Box for this session.

There are no files associated with this session.

Permalink Privilege Escalation

  1. Date: Mon 29 Nov 2021
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Seb, Mac, Nicki, Nick
  5. Location: Online session

Come and learn Windows and Linux local enumeration and privilege escalation

Session prerequisites

  1. You should be comfortable using the Linux command line for this session.

Session files

  1. DownloadPrivilege Escalation 2021.pdf

Permalink Shells

  1. Date: Mon 22 Nov 2021
  2. Time: 19:00 - 20:30
  3. Intermediate
  4. Presenter: Mac & Nick
  5. Location: Workroom 1, The Diamond

Kali VM recommended, as well as TryHackMe account. Linux Command Line Fundamental Skills will be useful!

Session prerequisites

  1. You should be comfortable using the Linux command line for this session.

  2. Please set up a virtual machine running Kali Linux before attending this session.

Session files

  1. DownloadShells.pdf

Permalink Docker (CompSoc Collab)

  1. Date: Mon 15 Nov 2021
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Nick, Felix, and Mac
  5. Location: Workroom 1, The Diamond

Session prerequisites

  1. You should be comfortable using the Linux command line for this session.

  2. Please set up Docker for this session.

Session files

  1. DownloadUsing Docker.pdf

Permalink Social Engineering

  1. Date: Mon 01 Nov 2021
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Nicki
  5. Location: Online session

TBD

This session should be accessible without any prerequisites.

Session files

  1. DownloadSocial Engineering.pdf

Permalink Yorkshire & Humber Regional Organised Crime Unit talk

  1. Date: Mon 18 Oct 2021
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: DS Spinks
  5. Location: Lecture Theatre 5, Hicks Building

DS Spinks will be giving you an insight into fighting Cyber Crime and will be talking about a year in industry placement opportunity.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink Give it a Go 2021 - Web Hacking

  1. Date: Wed 29 Sep 2021
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Nicki & Mac
  5. Location: Gallery Room 3, Students Union

Our Web Hacking Give it a Go session, where we’ll teach you some basic Web Application attacks and methodologies!

This session should be accessible without any prerequisites.

Session files

  1. DownloadGIAG Web App Hacking.pdf

Permalink Meet our Societies Talk (with DCS)

  1. Date: Mon 20 Sep 2021
  2. Time: 19:00 - 20:30
  3. Beginner
  4. Presenter: Nick Ruffles
  5. Location: Online session

Our introduction to the society, including our goals for the year. Made for the Department of Computer Science intro week talks

This session should be accessible without any prerequisites.

There are no files associated with this session.

Academic Year 2020/21

Permalink 🏴󠁢󠁳󠁢󠁹󠁿 Raspberry Pi CTF 🏴󠁢󠁳󠁢󠁹󠁿

  1. Date: Mon 17 May 2021
  2. Time: 18:00 - 20:00
  3. Expert
  4. Presenter: Mac Goodwin
  5. Location: Online session

Our bakery-themed CTF, featuring challenges for players of all skill levels, and a chance to win a Raspberry Pi and a SESH hoodie!

This session should be accessible without any prerequisites.

Session files

  1. DownloadBakeryTF Intro Talk.pdf
  2. DownloadBakeryTF Intro Talk.pptx

Permalink 📡 Wifi Sniffing 📡

  1. Date: Mon 10 May 2021
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Brooks Rady
  5. Location: Online session

An exploration of the airwaves! Come along to learn some Wireshark snooping, MAC spoofing, and WiFi cracking.

This session should be accessible without any prerequisites.

Session files

  1. Downloadwifi_hacking.pdf

Permalink 👨‍💻 Mike Jones Anonymous talk 👨‍💻

  1. Date: Mon 26 Apr 2021
  2. Time: 18:00 - 20:00
  3. Unknown difficulty
  4. Presenter: Mike Jones
  5. Location: Online session

Mike Jones, a reformed ex-member of the Anonymous hacking group talks about his experiences! You won’t want to miss this talk

This session should be accessible without any prerequisites.

Session files

  1. DownloadMikeJones.pdf

Permalink 🗳️ AGM 🗳️

  1. Date: Mon 19 Apr 2021
  2. Time: 18:00 - 20:00
  3. Unknown difficulty
  4. Presenter: Nick, Chloe and Sohyun
  5. Location: Online session

Vote for the next committee members!

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink 🎮 Game Breaking 🎮

  1. Date: Mon 22 Mar 2021
  2. Time: 18:00 - 20:00
  3. Expert
  4. Presenter: Nick
  5. Location: Online session

A quick dive into reverse engineering games and making them misbehave. You might want to brush up on your assembly for this one.

This session should be accessible without any prerequisites.

Session files

  1. DownloadGame_Hacking.pdf
  2. DownloadGame_Hacking.pptx

Permalink 🗔 Web app hacking 🗔

  1. Date: Mon 15 Mar 2021
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Mac
  5. Location: Online session

A deeper dive into some web hacking techniques covered in first semester, and some brand new ones - from SSTI to Deserialisation!

This session should be accessible without any prerequisites.

Session files

  1. DownloadAdvanced Web Hacking - PDF.pdf
  2. DownloadAdvanced Web Hacking.pptx

Permalink 🏁 Making a CTF 🏁

  1. Date: Mon 08 Mar 2021
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Nicola
  5. Location: Online session

A guide to creating and deploying a Capture the Flag challenge using AWS and Flask!

This session should be accessible without any prerequisites.

Session files

  1. DownloadMaking a CTF - PDF.pdf
  2. DownloadMaking a CTF.pptx

Permalink 🚶 HTB Walkthrough 🚶

  1. Date: Mon 01 Mar 2021
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: ???
  5. Location: Online session

A walkthrough of the Academy machine on HTB.

This session should be accessible without any prerequisites.

There are no files associated with this session.

Permalink 👩‍💻 Intro to Assembly 👩‍💻

  1. Date: Mon 22 Feb 2021
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Nick and Brooks
  5. Location: Online session

An overview of assembly code & computer memory, and a couple of demos!

This session should be accessible without any prerequisites.

Session files

  1. DownloadIntro to Assembly - PDF.pdf
  2. DownloadIntro to Assembly.pptx

Permalink 📧 Social Engineering 📧

  1. Date: Mon 15 Feb 2021
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Nicola
  5. Location: Online session

Focussing mainly on phishing, this session will show you techniques used for launching an effective phishing campaign and then how to best prevent one.

This session should be accessible without any prerequisites.

Session files

  1. DownloadSocial Engineering - PDF.pdf
  2. DownloadSocial Engineering.pptx

Permalink 🕵🏼 Online Anonymity 🕵🏼

  1. Date: Mon 08 Feb 2021
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Mac and Brooks
  5. Location: Online session

A look at the technologies behind VPNs and Tor, their vulnerabilities, and how to setup your own.

This session should be accessible without any prerequisites.

Session files

  1. DownloadOnline Anonymity.pdf
  2. DownloadOnline Anonymity.pptx

Permalink 🎅 Holiday Hackery?! 🎅

  1. Date: Mon 14 Dec 2020
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: ???
  5. Location: Online session

Our final session of the semester! We’ll tackle TryHackMe’s advent of cyber challenges in a laid-back session, and there may even be some prizes up for grabs…

This session should be accessible without any prerequisites.

Session files

  1. DownloadHoliday Hackery - PDF.pdf
  2. DownloadHoliday Hackery.pptx

Permalink 🔓 Hack The Box 🔓

  1. Date: Mon 07 Dec 2020
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Mac & Brooks
  5. Location: Online session

Put your skills to the test! Drawing together everything you’ve learned from throughout the semester, join our committee in an applied hacking challenge from Hack The Box. Come ready to contribute ideas or even with your own machine to follow along!

This session should be accessible without any prerequisites.

Session files

  1. DownloadHTB_traceback.pdf
  2. DownloadHTB_traceback.pptx

Permalink 🔎 Open-Source Intelligence (OSINT) 🔎

  1. Date: Mon 30 Nov 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Chloe & Sohyun
  5. Location: Online session

Open Source Intelligence and social engineering are often one of the most important parts of cyber attacks and defense. Join us to learn about various tools and take part in a CTF.

This session should be accessible without any prerequisites.

Session files

  1. DownloadOSINT.pdf
  2. DownloadOSINT.pptx

Permalink ␛ Privilege Escalation ␛

  1. Date: Mon 23 Nov 2020
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Sohyun
  5. Location: Online session

What would happen if a user can access the administrator control? This week, we will look into what privilege escalation is, what is the purpose of this attack and what are the ways of doing it. We will also explore some demos about getting root access on Linux.

This session should be accessible without any prerequisites.

Session files

  1. DownloadPrivilege Escalation - PDF.pdf
  2. DownloadPrivilege Escalation.pptx

Permalink 🧾 Enumeration 🧾

  1. Date: Mon 16 Nov 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Mac & Nick
  5. Location: Online session

Dive into the world of enumeration - from discovering devices and services on a network and scoping out a way in, to finding paths for lateral movement and escalation vectors, we’ll show you some of the most crucial tools and techniques.

This session should be accessible without any prerequisites.

Session files

  1. DownloadEnumeration.pdf
  2. DownloadEnumeration.pptx

Permalink 🐚 All the Shells! 🐚

  1. Date: Mon 09 Nov 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Nick
  5. Location: Online session

This week we will be looking into the different kinds of shells that are available on Linux, what they do, how they work and how we can use them to gain access to remote machines. We will also be looking into port forwarding and the capabilities of Metasploit!

This session should be accessible without any prerequisites.

Session files

  1. DownloadAll_the_shells.pptx
  2. Downloadall_the_shells.pdf

Permalink 🌐 Networking 🌐

  1. Date: Mon 02 Nov 2020
  2. Time: 18:00 - 20:00
  3. Intermediate
  4. Presenter: Brooks
  5. Location: Online session

Hacking as a discipline wouldn’t really exist if you had to cart a keyboard with you to every machine you wanted to break into – computer networks enable remote machines to communicate with each other and make things like the Internet possible. This session will explore both the theory behind these networks and some of the practical tools for exploring and understanding them.

This session should be accessible without any prerequisites.

Session files

  1. DownloadNetworking - PDF.pdf
  2. DownloadNetworking.pptx

Permalink 🐍 Automation in Python 🐍

  1. Date: Mon 26 Oct 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Mac
  5. Location: Online session

This week we’ll be looking at automation, one of the most crucial tools for cybersecurity; whether it’s repeating menial tasks, or rebuilding a common tool to understand how it works. We will take you over some tools we have written, and show you how they can be used on things like Juice Shop!

This session should be accessible without any prerequisites.

Session files

  1. DownloadAutomation in Python - PDF.pdf
  2. DownloadAutomation in Python.pptx
  3. DownloadSession 5 Worksheet - Automation in Python.docx

Permalink 👮 Guest Presentation - Yorkshire and Humber Regional Organised Crime Unit 👮

  1. Date: Mon 19 Oct 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Guest Speaker Chris
  5. Location: Online session

Chris will be in this week to talk us through some of the career opportunities available with the police! Make sure to come along to this one to hear about an exciting area of work and make some new links with industry professionals! You can sign up with this link if you are not already a member. If you are a member, you should be able to see the room in Blackboard Collaborate.

This session should be accessible without any prerequisites.

Session files

  1. DownloadYHROCU Guest Talk - PDF.pdf
  2. DownloadYHROCU Guest Talk.pptx

Permalink 🧃 Juice Shop II 🧃

  1. Date: Mon 12 Oct 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Nick
  5. Location: Online session

OWASP (Open Web Application Security Project) Juice Shop is an intentionally vulnerable web application that shows off multiple common and advanced exploits that can appear in web applications. Learn how the vulnerabilities exist and how to exploit them yourself. This will be a more advanced follow up from the GIAG session.

This session should be accessible without any prerequisites.

Session files

  1. DownloadJuice Shop Session - PDF.pdf
  2. DownloadJuice Shop Session.pptx
  3. DownloadSession 3 Solutions.docx
  4. DownloadSession 3 Worksheet - Juice Shop Revisited.docx

Permalink 💻 Introduction to Linux 💻

  1. Date: Mon 05 Oct 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Chloe & Brooks
  5. Location: Online session

Learn how to use the Linux terminal, a vital tool of developers and cybersecurity professionals alike. Control local and remote machines by mastering the fundamental commands and test your newfound skills by breaking into the Bandit machines hosted by OverTheWire.

This session should be accessible without any prerequisites.

Session files

  1. DownloadLinux-Session - PDF.pdf
  2. DownloadLinux-Session.pptx
  3. DownloadSession - 2 - Worksheet - Introduction to Linux SOLUTIONS.pdf
  4. DownloadSession - 2 - Worksheet - Introduction to Linux.pdf

Permalink 🧃 Juice Shop I (Give it a Go) 🧃

  1. Date: Mon 28 Sep 2020
  2. Time: 18:00 - 20:00
  3. Beginner
  4. Presenter: Nick & Mac
  5. Location: Online session

OWASP (Open Web Application Security Project) Juice Shop is an intentionally vulnerable web application that shows off multiple common and advanced exploits that can appear in web applications. Learn how the vulnerabilities exist and how to exploit them yourself. More details here

This session should be accessible without any prerequisites.

Session files

  1. DownloadGive it a Go - An Introduction to Web Hacking - PDF.pdf
  2. DownloadGive it a Go - An Introduction to Web Hacking.pptx
  3. DownloadSession 1 Solutions.docx
  4. DownloadSession 1 Worksheet - An Introduction to Web Hacking.docx

Academic Year 2019/20

Academic Year 2018/19