Training

Modern Web Application Penetration Testing

By Rigel Kent security

Trainer: Fred Ladouceur

Duration: 3 days, October 29-31, 2018

The Modern Web Application Penetration Testing course will give you a fresh look at the current frameworks and the new vulnerabilities found in today’s web applications. This fast-paced course will take students with little experience to a highly functional degree in performing web application penetration testing. During this course, students will learn to master Burp Suite against a multitude of vulnerabilities, abuse modern frameworks such as Node JS, AngularJS & Python frameworks, dive into the exploitation of serialization, XML, SQL injection, NoSQL injection and much more. Students will be given a diversity of exercises during the course of this training, where they will be able to test and explore their newly acquired skills.

For more information on the Modern Web Application Penetration Testing course, please click here.

Course Cost:

  • Early Bird rate: $3,000 plus HST for registrations received by July 15, 2018.
  • Regular rate: $3,200 plus HST for registrations received after July 15th but before October 14th, 2018.
  • Last minute rate: $3,400 plus HST for registration received after October 14th, 2018.

Cloud Security Fundamentals & FedRAMP

By Intrinsec Security

Trainer: Graham Thompson

Duration: 3 days, October 29-31, 2018

Intrinsec’s Cloud Security Fundamentals - COUNTERMEASURE Edition training seminar is a three-day cloud security knowledge course which provides students with foundational knowledge focusing on the relationship between cloud computing and cloud security, while also introducing some of the best practices commonly utilized by companies who are actively assessing cloud technologies.

More specifically, students who register for this course will spend much of the session analyzing governance challenges ranging from jurisdictional issues, vendor selection and assessing the outsourcing chain through investigating the various compliance standards often used by cloud service providers. Cloud Security Fundamentals will eventually conclude with a high-level discussion regarding the available technologies and tools that can be used to streamline IT and address security issues with cloud computing.

Exclusive to COUNTERMEASURE, this edition also addresses the FedRAMP cloud program that leverages the NIST 800-53 security controls.  Students will learn how the FedRAMP program is used to assess cloud service providers and how the Authority To Operate (ATO) operates through the implementation of a 3rd Party Assessor program.

For more information on the Cloud Security Fundamentals & FedRAMP course, please click here.

Course Cost:

  • Early Bird rate: $3,000 plus HST for registrations received by July 15, 2018.
  • Regular rate: $3,200 plus HST for registrations received after July 15th but before October 14th, 2018.
  • Last minute rate: $3,400 plus HST for registration received after October 14th, 2018.

Automating Open Source Intelligence – Classroom Edition

By Inverse Security Labs

Trainer: Karim Nathoo

Duration: 3 days, October 29-31, 2018

This course teaches you how to write code to automatically extract and analyze data from the web and social media.  This classroom training is based on selected topics from the popular online Master Course available at http://automatingosint.com and has been developed with permission and in co-operation with original course author Justin Seitz.  This course has been taken by hundreds of people from around the world from law enforcement, journalism, information security and more.  This classroom training has been developed for students seeking a classroom version of the course.

For more information on the Automating Open Source Intelligence – Classroom Edition course, please click here.

Course Cost:

  • Early Bird rate: $3,000 plus HST for registrations received by July 15, 2018.
  • Regular rate: $3,200 plus HST for registrations received after July 15th but before October 14th, 2018.
  • Last minute rate: $3,400 plus HST for registration received after October 14th, 2018.

The ARM IoT exploit laboratory

By Net-Square

Trainer: Saumil Shah

Duration: 3 days, October 29-31, 2018

ARM has emerged as the leading architecture in the Internet of Things (IoT) world. The ARM IoT Exploit Laboratory is a 3-day intermediate level class intended for students who want to take their exploit writing skills to the ARM platform. The class covers everything from an introduction to ARM assembly all the way to Return Oriented Programming (ROP) on ARM architectures. Our lab environment features hardware and virtual platforms for exploring exploit writing on ARM based Linux systems and IoT devices.

The class concludes with an end-to-end "Firmware-To-Shell" hack, where we extract the firmware from a popular SoHo router and an IP Camera, build a virtual environments to emulate and debug them, and then build exploits to gain a shell on the actual hardware devices.

For more information on the The arm IoT exploit laboratory course, please click here.

Course Cost:

  • Early Bird rate: $3,000 plus HST for registrations received by July 15, 2018.
  • Regular rate: $3,200 plus HST for registrations received after July 15th but before October 14th, 2018.
  • Last minute rate: $3,400 plus HST for registration received after October 14th, 2018.

Cancellation Policy

Substitutions can be made at any time. Unfortunately we cannot refund registration fees.

Each course requires a minimum number of students to run. Please see the detailed information on each course for this information. In the unlikely event that a course must be cancelled due to low enrolment, full refunds will be provided to registered students.

For more information on COUNTERMEASURE 2018 training, please contact us at This email address is being protected from spambots. You need JavaScript enabled to view it. or 613-725-2079.

Recent News

November 6, 2017

We are very please to welcome Chris Anderson as our guest MC for the third track of talks. Mr. Anderson has 30+ years of professional and corporate experience in financial services, telecommunications and the public sector in Business and IT Governance, Risk, Assurance and Compliance.

November 24, 2017

COUNTERMEASURE 2017 welcomed over 300 participants to discuss key topics in public sector IT security.  We have posted most of the presentation slides here, and two of our most talked about presentations are now available on our YouTube channel.  

Kelly Shortridge - The Red Pill of Resilience

Frode Hommedal - The Cyber Threat Intelligence Matrix: Taking the Red Pill of Attacker Eviction

Cancellation Policy

Substitutions can be made at any time. Unfortunately we cannot refund registration fees. Each course is subject to a minimum number of students. In the unlikely event that a course must be cancelled due to low enrolment, full refunds will be provided to registered students.

For more information on COUNTERMEASURE 2018, please contact us at This email address is being protected from spambots. You need JavaScript enabled to view it. or our office line at 613-725-2079.