Modern society is largely info-driven; embedded/IoT products based on our beloved Linux thrive.
Unfortunately, there's a huge gap in the security posture of many end-products. Hackers currently have a field day!
This session helps you understand why/where software vulnerabilities exist, while programming and after, what Linux app/OS Hardening techniques one can deploy, what tools and methodologies help mitigate security issues.
The session is heavily biased toward developers working on (embedded) Linux systems using the 'C' programming language,
for both application (user) and kernel-space (drivers, custom features), and the security challenges faced by them.

The tutorial consists of 3 parts:
Part 1: Security and Hacking Intro
Part 2: Deep dive into (some) software vulnerabilities, their root causes; CPU ABI basics geared to understanding the process / thread stack layout; understanding the BoF attack vector
Part 3: Modern OS Hardening Countermeasures (Linux), for both userspace apps and the kernel.

To make these discussions practical, a quick code-level demo of a simple BoF vuln on an ARM VM / hardware board will be performed (with all relevant code & docs provided on GitHub).