event (‘dates’):
July 26, 2025 -
August 10, 2025
August 10, 2025
(‘language’) of participation:
=English
‘event location’ and (‘format’):
(in-person in Moscow)
Positive Hack Camp
Event
Positive Hack Camp, organized by Positive Technologies with support from the Russian Ministry of Digital Development, has concluded in Moscow. This prestigious international event, held over two weeks, gathered 70 cybersecurity experts from around the globe to gain insights from leading Russian specialists in IT infrastructure protection and cybersecurity.
ways to elevate privileges in information systems, websites, operating systems and network infrastructures.
You will
how to imitate attacks on IT-infrastructure and investigate security systems using vulnerability exploitation tools
tools for analyzing network and protocol traffic and adjusting client-service communication.
Participation
flight to Moscow and back
(From.You)
Complimentary
visa (if required)
you know how internet and local networks work
your english is at least at B1 level
you are a student
Please note that you will definitely need to bring a laptop with you
Feel free to submit an application if:
!Requirements!
you know how to work with Linux or Windows at an advanced user level (installing packages/programmes and configuring basic functions)
you know what virtualisation (VMware) is and how it works
training
accommodation
cultural program
meals
laptop requirements
Modern operating system (Minimum: Windows 10 x64, Linux, MacOS)
Support for hardware virtualisation (Intel VT-x, AMD-V)
HDD/SSD hard drive with at least 256 GB of free space
Processor with at least eight cores with a frequency of at least 2.3 GHz
8GB of DDR3 RAM
Course
/Introduction/ to the course:
Preparing the working environment for the practical assignments, Preparing the cloud environment for practical tasks.
Module description will be added later.
/white/ hacking:
Introduction.
White hacker's roadmap.
White hacker's roadmap.
Module description will be added later.
/level 1/ Reconnaissance in the customer’s external infrastructure:
Organization domain name search.
Network scanning.
Network nodes scanning.
Port scanning.
Network scanning.
Network nodes scanning.
Port scanning.
Module description will be added later.
/level 2/:
Primary Access Attacks
Module description will be added later.
/level 2.1/ Web-application hacking:
Authentication bypass vulnerabilities.
OS command injection vulnerabilities.
Access control vulnerabilities.
Directory access control vulnerabilities.
SQL injection vulnerabilities.
XML external entity injection vulnerabilities.
Cross-site scripting (XSS) attacks.
OS command injection vulnerabilities.
Access control vulnerabilities.
Directory access control vulnerabilities.
SQL injection vulnerabilities.
XML external entity injection vulnerabilities.
Cross-site scripting (XSS) attacks.
Module description will be added later.
/level 2.2/ Known vulnerabilities in network services exploitation:
Exploiting one-day vulnerabilities in network services.
Module description will be added later.
/level 2.3/ social engineering:
Research for email addresses of employees in an organization.
Module description will be added later.
/level 3/ securing access:
Obtaining legitimate access to the system.
Practice "Securing access".
Practice "Securing access".
Module description will be added later
/level 4/ Privilege escalation on server systems:
Exploitation of Linux administration errors.
Practice "Privilege escalation on server systems in Linux".
Practice "Privilege escalation on server systems in Linux".
Module description will be added later.
/level 5/ Going beyond the DMZ:
Network Scanning.
Analyze DMZ network traffic.
MitM attacks on nodes in a DMZ network.
Analyze DMZ network traffic.
MitM attacks on nodes in a DMZ network.
Module description will be added later.
/level 6/ Network traffic forwarding:
Using standard protocols for traffic forwarding.
Practice "Traffic Forwarding".
Practice "Traffic Forwarding".
Module description will be added later.
/level 7/ Network reconnaissance and compromise of Windows machines:
Detecting Windows machines on the network.
Compromising Windows machines on a network.
Compromising Windows machines on a network.
Module description will be added later.
/level 8/ Privilege escalation on local network nodes:
Extracting secrets and credentials.
Exploiting Windows OS configuration vulnerabilities.
Exploiting known Windows OS vulnerabilities.
Exploiting Windows OS configuration vulnerabilities.
Exploiting known Windows OS vulnerabilities.
Module description will be added later.
/level 9/ Capturing network infrastructure management:
Exploitation of domain controller node vulnerabilities.
Collecting information about objects in the domain.
Exploitation of service misconfigurations in AD.
Collecting information about objects in the domain.
Exploitation of service misconfigurations in AD.
Module description will be added later.
/level 10/ Detection and response counteraction:
Reducing activity on the network.
Use of encrypted communication channels.
Using IP switching tools.
Use of encrypted communication channels.
Using IP switching tools.
Module description will be added later.
/hacker/ development:
Ethics.
Independent study materials.
Independent study materials.
Module description will be added later.
Seats are full, but don’t count yourself out!
Our Positive Hack Camp event in Moscow has reached maximum capacity—the buzz has been incredible!
Good news, plans can change. If any of our registered guests can’t make it, we’ll contact someone on the waiting list to fill their spot. Simply complete the registration form to secure your place.
Stay ready. Your chance to join the action might be closer than you think.
Good news, plans can change. If any of our registered guests can’t make it, we’ll contact someone on the waiting list to fill their spot. Simply complete the registration form to secure your place.
Stay ready. Your chance to join the action might be closer than you think.
Our Positive Hack Camp event in Moscow has reached maximum capacity—the buzz has been incredible!
Good news, plans can change. If any of our registered guests can’t make it, we’ll contact someone on the waiting list to fill their spot. Simply complete the registration form to secure your place.
Stay ready. Your chance to join the action might be closer than you think.
Good news, plans can change. If any of our registered guests can’t make it, we’ll contact someone on the waiting list to fill their spot. Simply complete the registration form to secure your place.
Stay ready. Your chance to join the action might be closer than you think.
Seats are full, but don’t count yourself out!
for
Positive Hack Camp 2025
Thanks for signing up for Positive Hack Camp. Unfortunately, all seats are currently taken, so we can’t confirm tour participation just yet.
But don’t worry--if a spot opens up, you’ll be the first to know. Stay tuned, and we’ll keep you updated.
But don’t worry--if a spot opens up, you’ll be the first to know. Stay tuned, and we’ll keep you updated.
Your application has been submitted!
Company Name: Joint Stock Company “Positive Technologies”
Legal Address: 107061, Moscow, intracity territory of the municipal district Preobrazhenskoye, Preobrazhenskaya Square, Building 8, Room 60
INN (Taxpayer Identification Number): 7718668887
OGRN (Primary State Registration Number): 1077761087117
Email: pt@ptsecurity.com
Phone: +7 (495) 744-01-44
Legal Address: 107061, Moscow, intracity territory of the municipal district Preobrazhenskoye, Preobrazhenskaya Square, Building 8, Room 60
INN (Taxpayer Identification Number): 7718668887
OGRN (Primary State Registration Number): 1077761087117
Email: pt@ptsecurity.com
Phone: +7 (495) 744-01-44
If you have any questions please email us:
powered by
Cookie Preferences
When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.