Our Blog

Our news

All you need to know

SensePost at BlackHat & Defcon 2017

Reading time: ~2 min
July is our favourite time of year, when thousands descend into Las Vegas for Blackhat/Defcon, or more commonly referred to...

Pentesting Enterprise Infrastructure – Journeyman Level

Reading time: ~2 min
Sophisticated attacks aim to hide from endpoint solutions Advanced hacking. Expert approaches We are inundated by advanced this, expert that,...

Womens Training Scholarship

Reading time: ~1 min
SensePost and BlackHat are proud to announce a new scholarship initiative for a woman in the information security field. The...

What to look for in a training provider

Reading time: ~6 min
In the last few years, the infosec training scene has exploded. Arguably, the largest training provider is Blackhat, and in...

SensePost at Blackhat & Defcon 2016

Reading time: ~2 min
The annual Hacker Summer Camp is nearly upon us, everyone at SensePost is getting ready. This is a brief overview...

PwnBank en route to Vegas

Reading time: ~3 min
Everyone has a mobile phone (ok some have two) and the wealth of information people put into them is staggering....

Where SensePost meets the real world

Reading time: ~5 min
SensePost Training at Blackhat USA What is SensePost infrastructure training about and what does it give you as a novice pentester?...

Into The Cloud

Reading time: ~12 min
SensePost Training in the Cloud Picture this. Every year, a group of Plakkers (our nickname for those who work at...

Mobile Application Bootcamp – Journeyman Level – Black Hat Vegas 2015

Reading time: ~2 min
Mobile Course, O RLY? The mobile app market, and app usage, grew 76% in 2014 [1]. From shopping, utilities, productivity...

Break the Web at BlackHat Singapore

Reading time: ~2 min
Web application security training in 2015? It’s a valid question we get asked sometimes. With the amount of books available...

SensePost Training

Reading time: ~3 min
Over those years, we’ve trained thousands of students in the art of offensive and defensive security through our Hacking by...

SensePost Challenge – Winners and Walkthrough

Reading time: ~10 min
We recently ran our Black Hat challenge where the ultimate prize was a seat on one of our training courses...

Hacking Challenge: Drive a tank through it

Reading time: ~1 min
At SensePost we get to enjoy some challenging assessments and do pretty epic things.  Some days it feels like the...

Mobile Hacking on the West Coast

Reading time: ~2 min
December sees SensePost presenting Hacking by Numbers: Mobile at  BlackHat West Coast Trainings. This course was first presented at BlackHat...

BlackHat Conference: Z-Wave Security

Reading time: ~1 min
We are publishing the research paper and tool for our BlackHat 2013 USA talk on the Z-Wave proprietary wireless protocol...

Rogue Access Points, a how-to

Reading time: ~12 min
In preparation for our wireless training course at BlackHat Vegas in a few weeks, I spent some time updating the...

BlackHat Challenge – 2013

Reading time: ~2 min
One of the things we try and get across in our training – is that pen-testing requires out of the...

Honey, I’m home!! – Hacking Z-Wave & other Black Hat news

Reading time: ~7 min
You’ve probably never thought of this, but the home automation market in the US was worth approximately $3.2 billion in...

Black Hat Vegas 2013 – Course Summaries

Reading time: ~3 min
We have an updated breakdown of our BlackHat courses here With the ‘early registration’ discount period coming to an end...

BlackOps Hacking Training – Las Vegas

Reading time: ~4 min
BlackOps you say? At SensePost we have quite a range of courses in our Hacking by Numbers series. We feel...

Stay low, move fast, shoot first, die last, one shot, one kill, no luck, pure skill …

Reading time: ~2 min
We’re excited to be presenting our Hacking By Numbers Combat course again at Black Hat USA this year. SensePost’s resident...

Wifi Hacking & WPA/2 PSK traffic decryption

Reading time: ~3 min
When doing wireless assessments, I end up generating a ton of different scripts for various things that I thought it...

Black Hat Europe – Bootcamp Training

Reading time: ~1 min
SensePost will be at Black Hat Europe 2013 to deliver the Bootcamp module of the Hacking by Numbers series. This...

Black Hat Training Classes Update

Reading time: ~2 min
Hey All, We’re about locked and loaded down here in ZA – ready to tackle the looooong journey to Vegas...

Solution for the BlackHat Challenge

Reading time: ~4 min
We had published a network protocol analysis challenge for free entry to our BlackHat 2012 Vegas training courses and received...

BlackHat Challenge

Reading time: ~2 min
This year marks a special anniversary for us at SensePost in that we’ve been training at BlackHat for over a...

BlackHat 2011 Presentation

Reading time: Less than a minute
On this past Thursday we spoke at BlackHat USA on Python Pickle. In the presentation, we covered approaches for implementing...

SensePost Black Hat Course Summary & chosing the right courses

Reading time: ~1 min
As we draw nearer to Black Hat Vegas we get a lot of requests from people who need help choosing...

Hacking By Numbers: W^3 Edition

Reading time: Less than a minute
Well, we’re ramping up with the new Hacking By Numbers W^3 edition course we will be presenting at BlackHat Vegas...

Hacking by Numbers: BlackOps Edition

Reading time: Less than a minute
The brand new BlackOps HBN course makes its debut in Vegas this year. The course finds its place as a...

Hacking by Numbers: Bootcamp Edition

Reading time: ~2 min
Salut à tous, It’s that time of the year again and like every year, we’ll once again be running our...

Cadet Training

Reading time: ~1 min
You’ve seen the movies. You’ve seen the cooler than life characters hacking systems using obscure keyboards and operating systems that...

Training – lots of stuff(c)

Reading time: ~2 min
Hey. Charl here. Lots of stuff is happening on the training front right now (ed: right now!), and I wanted...

Playing with Python Pickle #3

Reading time: ~8 min
[This is the third in a series of posts on Pickle. Link to part one and two.] Thanks for stopping...

Playing with Python Pickle #2

Reading time: ~12 min
[This is the second in a series of posts on Pickle. Link to part one.] In the previous post I...

Playing with Python Pickle #1

Reading time: ~6 min
In our recent memcached investigations (a blog post is still in the wings) we came across numerous caches storing serialized...

Black Hat Abu Dhabi – Full … NOT!

Reading time: Less than a minute
The bad news is that our course at Black Hat Abu Dhabi is completely full. The good news is …...

Sensepost Training in November

Reading time: ~1 min
Our next scheduled training sessions have been planned for November. If you’re interested in attending, the dates and locations are:...

Memcached talk update

Reading time: ~1 min
Wow. At some point our talk hit HackerNews and then SlashDot after swirling around the Twitters for a few days....

BlackHat Write-up: go-derper and mining memcaches

Reading time: ~7 min
[Update: Disclosure and other points discussed in a little more detail here.] Why memcached? At BlackHat USA last year we...

Go-derper: mining your memcacheds

Reading time: Less than a minute
Today at BlackHat USA 2010 we released a tool for manipulating memcached instances; we still need to write it up...

SensePost’s Training @ Black Hat Vegas ’10 (win something)

Reading time: ~1 min
After hearing our talk was accepted at BlackHat, we’re happy to announce that our training will be back for it’s...

SensePost at BlackHat USA 2010

Reading time: ~1 min
A brief update from South Africa on some recent talks as well as the upcoming BH USA: our talk proposal...