| Date |
Type |
Title |
Author |
| June 30, 2011 |
Slides |
Observing the Tidal Waves of Malware
|
Stefano Zanero
|
| June 29, 2011 |
Paper |
The Art of Unpacking
|
Mark Vincent Yason
|
| June 29, 2011 |
Slides |
The Art of Unpacking
|
Mark Vincent Yason
|
| June 28, 2011 |
Slides |
OpenID: Single Sign-On for the Internet
|
Eugene Tsyrklevich
Vlad Tsyrklevich
|
| June 28, 2011 |
Paper |
OpenID: Single Sign-On for the Internet
|
Eugene Tsyrklevich
Vlad Tsyrklevich
|
| June 26, 2011 |
Paper |
Timing Attacks for Recovering Private Entries From Database Engines
|
Ariel Waissbein
Damian Saura
|
| June 26, 2011 |
Slides |
Timing Attacks for Recovering Private Entries From Database Engines
|
Ariel Waissbein
Damian Saura
|
| June 25, 2011 |
Paper |
Exposing Vulnerabilities in Media Software
|
David Thiel
|
| June 25, 2011 |
Slides |
Exposing Vulnerabilities in Media Software
|
David Thiel
|
| June 23, 2011 |
Slides |
Transparent Weaknesses in VoIP
|
Peter Thermos
|
| June 23, 2011 |
Paper |
Premature Ajax-ulation
|
Billy Hoffman
Bryan Sullivan
|
| June 22, 2011 |
Paper |
Just Another Windows Kernel Perl Hacker
|
Joe Stewart
|
| June 22, 2011 |
Slides |
Just Another Windows Kernel Perl Hacker
|
Joe Stewart
|
| June 21, 2011 |
Paper |
Blind Security Testing—An Evolutionary Approach
|
Scott Stender
|
| June 21, 2011 |
Slides |
Blind Security Testing—An Evolutionary Approach
|
Scott Stender
|
| June 19, 2011 |
Paper |
Heap Feng Shui in JavaScript
|
Alexander Sotirov
|
| June 19, 2011 |
Slides |
Heap Feng Shui in JavaScript
|
Alexander Sotirov
|
| June 17, 2011 |
Paper |
Building and Breaking the Browser
|
Mike Shaver
Window Snyder
|
| June 17, 2011 |
Slides |
Building and Breaking the Browser
|
Mike Shaver
Window Snyder
|
| June 16, 2011 |
Slides |
Strengths and Weaknesses of Access Control Systems
|
Eric Schmiedl
Mike Spindel
|
| June 16, 2011 |
Paper |
Anonymity and its Discontents
|
Len Sassaman
|
| June 15, 2011 |
Slides |
IsGameOver(), anyone?
|
Alexander Tereshkin
Joanna Rutkowska
|
| June 15, 2011 |
Paper |
NAC@ACK
|
Dror-John Roecher
Michael Thumann
|
| June 15, 2011 |
Slides |
NAC@ACK
|
Dror-John Roecher
Michael Thumann
|
| June 14, 2011 |
Slides |
Don't Tell Joanna, The Virtualized Rootkit Is Dead
|
Nate Lawson
Thomas Ptacek
|
| June 14, 2011 |
Paper |
Covert Debugging: Circumventing Software Armoring Techniques
|
Danny Quist
Val Smith
|
| June 14, 2011 |
Slides |
Covert Debugging: Circumventing Software Armoring Techniques
|
Danny Quist
Val Smith
|
| June 13, 2011 |
Paper |
PyEmu: A multi-purpose scriptable x86 emulator
|
Cody Pierce
|
| June 12, 2011 |
Paper |
Securing the Tor Network
|
Mike Perry
|
| June 12, 2011 |
Slides |
Securing the Tor Network
|
Mike Perry
|
| June 11, 2011 |
Paper |
Social Network Site Data Mining
|
Stephen Patton
|
| June 11, 2011 |
Slides |
Social Network Site Data Mining
|
Stephen Patton
|
| June 09, 2011 |
Slides |
RFID for Beginners++
|
Chris Paget
|
| June 09, 2011 |
Paper |
(un)Smashing the Stack
|
Shawn Moyer
|
| June 09, 2011 |
Slides |
(un)Smashing the Stack
|
Shawn Moyer
|
| June 08, 2011 |
Paper |
Type Conversion Errors: How a Little Data Type Can Do a Whole Lot of Damage
|
Jeff Morin
|
| June 08, 2011 |
Slides |
Type Conversion Errors: How a Little Data Type Can Do a Whole Lot of Damage
|
Jeff Morin
|
| June 07, 2011 |
Paper |
Tactical Exploitation
|
H.D. Moore
Val Smith
|
| June 07, 2011 |
Slides |
Tactical Exploitation
|
H.D. Moore
Val Smith
|
| June 06, 2011 |
Slides |
Defeating Information Leak Prevention
|
Dan Moniz
Eric Monti
|
| June 05, 2011 |
Paper |
Other Wireless: New ways of being Pwned
|
Luis Miras
|
| June 05, 2011 |
Slides |
Other Wireless: New ways of being Pwned
|
Luis Miras
|
| June 05, 2011 |
Paper |
It's All About the Timing
|
Haroon Meer
Marco Slaviero
|
| June 05, 2011 |
Slides |
It's All About the Timing
|
Haroon Meer
Marco Slaviero
|
| June 04, 2011 |
Paper |
Simple Solutions to Complex Problems from the Lazy Hacker’s Handbook
|
Robert Graham
|
| June 01, 2011 |
Paper |
OpenBSD Remote Exploit
|
Alfredo Ortega
|
| June 01, 2011 |
Slides |
OpenBSD Remote Exploit
|
Alfredo Ortega
|
| June 01, 2011 |
Slides |
Database Forensics
|
David Litchfield
|
| May 30, 2011 |
Paper |
Attacking the Windows Kernel
|
Jonathan Lindsay
|
| May 30, 2011 |
Slides |
Attacking the Windows Kernel
|
Jonathan Lindsay
|
| May 27, 2011 |
Paper |
Anonymous Authentication— Preserving Your Privacy Online
|
Andrew Lindell
|
| May 27, 2011 |
Slides |
Anonymous Authentication— Preserving Your Privacy Online
|
Andrew Lindell
|
| May 24, 2011 |
Slides |
Point, Click, RTPInject
|
Alex Garbutt
Zane Lackey
|
| May 23, 2011 |
Slides |
RFIDIOts!!!– Practical RFID Hacking (Without Soldering Irons or Patent Attorneys)
|
Adam Laurie
|
| May 23, 2011 |
Paper |
A Picture's Worth...
|
Neal Krawetz
|
| May 23, 2011 |
Slides |
A Picture's Worth...
|
Neal Krawetz
|
| May 21, 2011 |
Paper |
Vulnerabilities in Wi-Fi/Dual-Mode VoIP Phones
|
Krishna Kurapati
|
| May 21, 2011 |
Slides |
Vulnerabilities in Wi-Fi/Dual-Mode VoIP Phones
|
Krishna Kurapati
|
| May 21, 2011 |
Slides |
Black Ops 2007: Design Reviewing The Web
|
Dan Kaminsky
|
| May 18, 2011 |
Paper |
Status of Cell Phone Malware in 2007
|
Mikko Hypponen
|
| May 18, 2011 |
Slides |
Status of Cell Phone Malware in 2007
|
Mikko Hypponen
|
| May 15, 2011 |
Slides |
Active Reversing: The Next Generation of Reverse Engineering
|
Greg Hoglund
|
| May 15, 2011 |
Paper |
The Little Hybrid Web Worm that Could
|
Billy Hoffman
John Terrill
|
| May 13, 2011 |
Paper |
Vista Network Attack Surface Analysis and Teredo Security Implications
|
Jim Hoagland
|
| May 13, 2011 |
Slides |
Vista Network Attack Surface Analysis and Teredo Security Implications
|
Jim Hoagland
|
| May 12, 2011 |
Paper |
Attacking Web Service Security: Message Oriented Madness, XML Worms and Web Service Security Sanity
|
Brad Hill
|
| May 12, 2011 |
Slides |
Attacking Web Service Security: Message Oriented Madness, XML Worms and Web Service Security Sanity
|
Brad Hill
|
| May 12, 2011 |
Slides |
Hacking the Extensible Firmware Interface
|
John Heasman
|
| May 11, 2011 |
Paper |
Stealth Secrets of the Malware Ninjas
|
Nick Harbour
|
| May 11, 2011 |
Slides |
Stealth Secrets of the Malware Ninjas
|
Nick Harbour
|
| May 10, 2011 |
Paper |
A Dynamic Technique for Enhancing the Security and Privacy of Web Applications
|
Ariel Waissbein
Ezequiel D. Gutesman
|
| May 10, 2011 |
Slides |
A Dynamic Technique for Enhancing the Security and Privacy of Web Applications
|
Ariel Waissbein
Ezequiel D. Gutesman
|
| May 09, 2011 |
Paper |
Hacking Intranet Websites from the Outside (Take 2)—"Fun With and Without JavaScript Malware"
|
Jeremiah Grossman
Robert 'Rsnake' Hansen
|
| May 09, 2011 |
Slides |
Hacking Intranet Websites from the Outside (Take 2)—"Fun With and Without JavaScript Malware"
|
Jeremiah Grossman
Robert 'Rsnake' Hansen
|
| May 06, 2011 |
Paper |
Greetz from Room 101
|
Kenneth Geers
|
| May 06, 2011 |
Slides |
Greetz from Room 101
|
Kenneth Geers
|
| May 06, 2011 |
Slides |
Hacking Capitalism
|
Jeremy Rauch
|
| May 05, 2011 |
Paper |
SQL Server Database Forensics
|
Kevvie Fowler
|
| May 05, 2011 |
Slides |
SQL Server Database Forensics
|
Kevvie Fowler
|
| May 05, 2011 |
Paper |
Understanding the Heap by Breaking It
|
Justin Ferguson
|
| May 05, 2011 |
Slides |
Understanding the Heap by Breaking It
|
Justin Ferguson
|
| May 04, 2011 |
Paper |
CaffeineMonkey: Automated Collection, Detection and Analysis of Malicious JavaScript
|
Ben Feinstein
Daniel Peck
|
| May 04, 2011 |
Slides |
CaffeineMonkey: Automated Collection, Detection and Analysis of Malicious JavaScript
|
Ben Feinstein
Daniel Peck
|
| May 03, 2011 |
Paper |
Kernel Wars
|
|
| May 03, 2011 |
Slides |
Kernel Wars
|
|
| May 02, 2011 |
Paper |
Something Old (H.323), Something New (IAX), Something Hollow (Security), and Something Blue (VoIP Administrators)
|
Himanshu Dwivedi
Zane Lackey
|
| May 02, 2011 |
Slides |
Something Old (H.323), Something New (IAX), Something Hollow (Security), and Something Blue (VoIP Administrators)
|
Himanshu Dwivedi
Zane Lackey
|
| May 02, 2011 |
Slides |
Breaking C++ Applications
|
John McDonald
Mark Dowd
Neel Mehta
|
| May 01, 2011 |
Paper |
PISA: Protocol Identification via Statistical Analysis
|
Rob King
Rohit Dhamankar
|
| May 01, 2011 |
Slides |
PISA: Protocol Identification via Statistical Analysis
|
Rob King
Rohit Dhamankar
|
| May 01, 2011 |
Paper |
Revolutionizing the Field of Grey-box Attack Surface Testing with Evolutionary Fuzzing
|
Jared DeMott
|
| May 01, 2011 |
Slides |
Revolutionizing the Field of Grey-box Attack Surface Testing with Evolutionary Fuzzing
|
Jared DeMott
|
| April 29, 2011 |
Paper |
VoIP Security: Methodology and Results
|
Barrie Dempster
|
| April 29, 2011 |
Slides |
VoIP Security: Methodology and Results
|
Barrie Dempster
|
| April 29, 2011 |
Slides |
The Security Analytics Project: Alternatives in Analysis
|
|
| April 29, 2011 |
Paper |
The Security Analytics Project: Alternatives in Analysis
|
|
| April 28, 2011 |
Slides |
Side Channel Attacks (DPA) and Countermeasures for Embedded Systems
|
Job de Haas
|
| April 28, 2011 |
Paper |
Building an Effective Application Security Practice on a Shoestring Budget
|
David Coffey
John Viega
|
| April 28, 2011 |
Slides |
Building an Effective Application Security Practice on a Shoestring Budget
|
David Coffey
John Viega
|
| April 28, 2011 |
Slides |
Computer and Internet Security Law—A Year in Review 2006–2007
|
Robert Clark
|
| April 27, 2011 |
Paper |
Unforgivable Vulnerabilities
|
Steve Christey
|
| April 27, 2011 |
Slides |
Unforgivable Vulnerabilities
|
Steve Christey
|
| April 27, 2011 |
Slides |
Black Box Scanning Tool + White Box Testing Tool
|
|
| April 27, 2011 |
Paper |
Iron Chef Blackhat
|
|
| April 27, 2011 |
Slides |
Iron Chef Blackhat
|
|
| April 27, 2011 |
Slides |
Defeating Web Browser Heap Spray Attacks
|
Moti Joseph
Stephan Chenette
|
| April 26, 2011 |
Slides |
Reverse Engineering Automation with Python
|
Ero Carrera
|
| April 26, 2011 |
Slides |
Traffic Analysis—The Most Powerful and Least Understood Attack Methods
|
|
| April 26, 2011 |
Slides |
Intranet Invasion With Anti-DNS Pinning
|
David Byrne
|
| April 26, 2011 |
Paper |
Intranet Invasion With Anti-DNS Pinning
|
David Byrne
|
| April 26, 2011 |
Slides |
Blackout: What Really Happened...
|
Jamie Butler
Kris Kendall
|
| April 20, 2011 |
Paper |
Remote and Local Exploitation of Network Drivers
|
Yuriy Bulygin
|
| April 20, 2011 |
Slides |
Remote and Local Exploitation of Network Drivers
|
Yuriy Bulygin
|
| April 20, 2011 |
Paper |
Smoke 'em Out!
|
Keith Jones
Rohyt Belani
|
| April 20, 2011 |
Paper |
Injecting RDS-TMC Traffic Information Signals a.k.a. How to freak out your Satellite Navigation
|
Andrea Barisani
Daniele Bianco
|
| April 20, 2011 |
Slides |
Injecting RDS-TMC Traffic Information Signals a.k.a. How to freak out your Satellite Navigation
|
Andrea Barisani
Daniele Bianco
|
| April 19, 2011 |
Slides |
Windows Server Virtualization & The Windows Hypervisor
|
Brandon Baker
|
| April 19, 2011 |
Paper |
Fuzzing Sucks! (or Fuzz it Like you Mean it!)
|
Aaron Portnoy
Pedram Amini
|
| April 19, 2011 |
Paper |
Dangling Pointer
|
Jonathan Afek
|
| April 19, 2011 |
Slides |
Dangling Pointer
|
Jonathan Afek
|
| April 19, 2011 |
Paper |
The Psychology of Security
|
Bruce Schneier
|
Event: Black Hat USA 2007
or on facebook 
top