HF 2022 - Call for Papers

Introduction to NFT stealing
10-30, 13:30–15:00 (Canada/Eastern), Track Workshop
Language: English

Overview of NFT related tools and platforms alongside a step by step guide on how to steal an NFT.

In this presentation we will cover from a high point of view what constitutes an NFT, and we'll look at some tools/websites to manipulate them at the blockchain level.

We'll leave some time for participants to setup the Metamask wallet. If you want to pre-prepare go to https://metamask.io/ and setup the browser plugin in a isolated browser profile.


Français disponible sur demande.

In this presentation we will cover from a high point of view what constitutes an NFT, and we'll look at some tools/websites to manipulate them at the blockchain level.

We'll leave some time for participants to setup the Metamask wallet. If you want to pre-prepare go to https://metamask.io/ and setup the browser plugin in a isolated browser profile.

We'll end on a step by step guide on how to steal the NFT that you can follow along and just watch. While stealing the NFT is actually easier than understanding how to steal, we'll also look at the hints that lead to the "exploitation" path.


Are you releasing a tool? – no Was this talk already given? – no

Jonathan is a board member of the OWASP Orange County chapter. Originally from Montreal, he is part of NorthSec CTF as a challenge designer. He is passionate about Application Security and enjoys architecture analysis, code review, threat modeling and debunking security tools. Jonathan holds a bachelor's degree in Software Engineering from ETS Montreal and has more than 18 years of experience in Information Technology and Security.