| Date |
Type |
Title |
Author |
| September 28, 2011 |
Paper |
Blue Screen Of the Death is dead
|
Matthieu Suiche
|
| September 27, 2011 |
Paper |
Attacking Kerberos Deployments
|
Brad Hill
Rachel Engel
Scott Stender
|
| September 27, 2011 |
Slides |
Blue Screen Of the Death is dead
|
Matthieu Suiche
|
| September 27, 2011 |
Paper |
Balancing the Pwn Trade Deficit
|
Anthony Lai
Colin Ames
Val Smith
|
| September 27, 2011 |
Slides |
Attacking Kerberos Deployments
|
Brad Hill
Rachel Engel
Scott Stender
|
| September 27, 2011 |
Slides |
Finger Pointing for Fun, Profit and War?
|
Tom Parker
|
| September 27, 2011 |
Slides |
Lifting the Fog
|
Marco Slaviero
|
| September 26, 2011 |
Paper |
Keeping the Good Stuff In: Confidential Information Firewalling with the CRM114 Spam Filter & Text Classifier
|
William Yerazunis
|
| September 26, 2011 |
Slides |
dirtbox, a highly scalable x86/Windows Emulator
|
Georg Wicherski
|
| September 26, 2011 |
Slides |
Aleatory Persistent Threat
|
Nicolas Waisman
|
| September 25, 2011 |
Paper |
TitanMist: Your First Step to Reversing Nirvana
|
Mario Vuksan
Tomislav Pericin
|
| September 25, 2011 |
Slides |
TitanMist: Your First Step to Reversing Nirvana
|
Mario Vuksan
Tomislav Pericin
|
| September 25, 2011 |
Paper |
Hacking Java Clients
|
Stephen de Vries
|
| September 25, 2011 |
Slides |
Hacking Java Clients
|
Stephen de Vries
|
| September 24, 2011 |
Paper |
Network Stream Debugging with Mallory
|
Jeremy Allen
Raj Umadas
|
| September 24, 2011 |
Slides |
Network Stream Debugging with Mallory
|
Jeremy Allen
Raj Umadas
|
| September 24, 2011 |
Slides |
There's a party at Ring0 (and you're invited)
|
Julien Tinnes
Tavis Ormandy
|
| September 24, 2011 |
Slides |
BlindElephant: WebApp Fingerprinting and Vulnerability Inferencing
|
Patrick Thomas
|
| September 23, 2011 |
Paper |
Social Networking Special Ops: Extending data visualization tools for faster Pwnage
|
Chris Sumner
|
| September 23, 2011 |
Slides |
Social Networking Special Ops: Extending data visualization tools for faster Pwnage
|
Chris Sumner
|
| September 23, 2011 |
Paper |
Cryptographic Agility: Defending Against the Sneakers Scenario
|
Bryan Sullivan
|
| September 23, 2011 |
Slides |
Cryptographic Agility: Defending Against the Sneakers Scenario
|
Bryan Sullivan
|
| September 22, 2011 |
Paper |
pyREtic – Reversing obfuscated Python bytecode & live Python objects
|
Rich Smith
|
| September 22, 2011 |
Paper |
Hacking Oracle From Web Apps
|
Sumit Siddharth
|
| September 22, 2011 |
Paper |
Advanced AIX Heap Exploitation Methods
|
Tim Shelton
|
| September 22, 2011 |
Slides |
Advanced AIX Heap Exploitation Methods
|
Tim Shelton
|
| September 22, 2011 |
Paper |
Hacking Browser's DOM - Exploiting Ajax and RIA
|
Shreeraj Shah
|
| September 22, 2011 |
Slides |
Hacking Browser's DOM - Exploiting Ajax and RIA
|
Shreeraj Shah
|
| September 22, 2011 |
Paper |
Getting In Bed With Robin Sage
|
Thomas Ryan
|
| September 22, 2011 |
Slides |
Becoming the six-million-dollar man
|
Gunter Ollmann
|
| September 22, 2011 |
Paper |
Becoming the six-million-dollar man
|
Gunter Ollmann
|
| September 21, 2011 |
Slides |
USB - HID, The Hacking Interface Design
|
Richard Rushing
|
| September 21, 2011 |
Paper |
State of SSL on the Internet: 2010 Survey, Results and Conclusions
|
Ivan Ristic
|
| September 21, 2011 |
Slides |
State of SSL on the Internet: 2010 Survey, Results and Conclusions
|
Ivan Ristic
|
| September 21, 2011 |
Paper |
Burning Asgard - What happens when Loki breaks free
|
Daniel Mende
Enno Rey
|
| September 21, 2011 |
Slides |
Burning Asgard - What happens when Loki breaks free
|
Daniel Mende
Enno Rey
|
| September 20, 2011 |
Slides |
Lord of the Bing: Taking back search engine hacking from Google and Bing
|
Francis Brown
Rob Ragan
|
| September 20, 2011 |
Paper |
The DMCA & ACTA vs. Academic & Professional Research: How Misuse of this Intellectual Property Legislation Chills Research, Disclosure and Innovation
|
Christopher Mooney
Tiffany Rad
|
| September 20, 2011 |
Slides |
The DMCA & ACTA vs. Academic & Professional Research: How Misuse of this Intellectual Property Legislation Chills Research, Disclosure and Innovation
|
Christopher Mooney
Tiffany Rad
|
| September 20, 2011 |
Slides |
Reverse Engineering with Hardware Debuggers
|
Jason Cheatham
Jason Raber
|
| September 20, 2011 |
Paper |
Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters
|
Jonathan Pollet
|
| September 20, 2011 |
Paper |
Malware Freak Show 2010: The Client-Side Boogaloo
|
Jibran Ilyas
Nicholas J. Percoco
|
| September 20, 2011 |
Slides |
Malware Freak Show 2010: The Client-Side Boogaloo
|
Jibran Ilyas
Nicholas J. Percoco
|
| September 19, 2011 |
Paper |
ExploitSpotting: Locating Vulnerabilities Out Of Vendor Patches Automatically
|
Jeongwook Oh
|
| September 19, 2011 |
Slides |
ExploitSpotting: Locating Vulnerabilities Out Of Vendor Patches Automatically
|
Jeongwook Oh
|
| September 19, 2011 |
Paper |
Understanding the Windows SMB NTLM Weak Nonce vulnerability
|
Agustin Azubel
Hernan Ochoa
|
| September 19, 2011 |
Slides |
Understanding the Windows SMB NTLM Weak Nonce vulnerability
|
Agustin Azubel
Hernan Ochoa
|
| September 19, 2011 |
Paper |
Need a hug? I'm secure
|
Charles Henderson
Steve Ocepek
|
| September 19, 2011 |
Paper |
Attacking phone privacy
|
Karsten Nohl
|
| September 18, 2011 |
Paper |
Crash Analysis using BitBlaze
|
Charlie Miller
Noah Johnson
|
| September 18, 2011 |
Slides |
Industrial Bug Mining - Extracting, Grading and Enriching the Ore of Exploits
|
Ben Nagy
|
| September 17, 2011 |
Paper |
WPA Migration Mode: WEP is back to haunt you...
|
Diego Sor
Leandro Meiners
|
| September 17, 2011 |
Slides |
WPA Migration Mode: WEP is back to haunt you...
|
Diego Sor
Leandro Meiners
|
| September 17, 2011 |
Paper |
Memory Corruption Attacks: The (almost) Complete History...
|
Haroon Meer
|
| September 16, 2011 |
Slides |
App Attack: Surviving the Mobile Application Explosion
|
Kevin Mahaffey
John Hering
|
| September 15, 2011 |
Paper |
Payload already inside: data re-use for ROP exploits
|
Long Le
|
| September 15, 2011 |
Slides |
Payload already inside: data re-use for ROP exploits
|
Long Le
|
| September 15, 2011 |
Slides |
Microsoft Powershell - It's time to own
|
David Kennedy
Joshua Kelley
|
| September 14, 2011 |
Paper |
Adventures in Limited User Post Exploitation
|
Nathan Keltner
Tim Elrod
|
| September 14, 2011 |
Paper |
How I Met Your Girlfriend
|
Samy Kamkar
|
| September 14, 2011 |
Slides |
How I Met Your Girlfriend
|
Samy Kamkar
|
| September 14, 2011 |
Slides |
Everybody be cool this is a roppery!
|
Ralf-Philipp Weinmann
Tim Kornau
Vincenzo Iozzo
|
| September 13, 2011 |
Paper |
Constricting the Web: Offensive Python for Web Hackers
|
Marcin Wielgoszewski
Nathan Hamiel
|
| September 13, 2011 |
Paper |
Blitzableiter - the Release
|
Felix 'FX' Lindner
|
| September 13, 2011 |
Slides |
Constricting the Web: Offensive Python for Web Hackers
|
Marcin Wielgoszewski
Nathan Hamiel
|
| September 12, 2011 |
Paper |
The Emperor Has No Clothes: Insecurities in Security Infrastructure
|
Ben Feinstein
Dan King
Jeff Jarmoc
|
| September 12, 2011 |
Slides |
Blitzableiter - the Release
|
Felix 'FX' Lindner
|
| September 12, 2011 |
Paper |
Deconstructing ColdFusion
|
Brandon Creighton
Chris Eng
|
| September 12, 2011 |
Slides |
The Emperor Has No Clothes: Insecurities in Security Infrastructure
|
Ben Feinstein
Dan King
Jeff Jarmoc
|
| September 11, 2011 |
Slides |
You will be billed $90,000 for this call
|
Mikko Hypponen
|
| September 11, 2011 |
Paper |
How to Hack Millions of Routers
|
Craig Heffner
|
| September 11, 2011 |
Slides |
How to Hack Millions of Routers
|
Craig Heffner
|
| September 11, 2011 |
Slides |
The Black Art of Binary Hijacking
|
Nick Harbour
|
| September 11, 2011 |
Paper |
HTTPS Can Byte Me
|
Josh Sokol
Robert 'Rsnake' Hansen
|
| September 10, 2011 |
Slides |
Base Jumping: Attacking GSM Base Station Systems and mobile phone Base Bands
|
|
| September 10, 2011 |
Video |
Mastering the Nmap Scripting Engine
|
David Fifield
Fyodor
|
| September 10, 2011 |
Paper |
Harder, Better, Faster, Stronger: Semi-Auto Vulnerability Research
|
Lurene Grenier
Richard Johnson
|
| September 10, 2011 |
Audio |
Mastering the Nmap Scripting Engine
|
David Fifield
Fyodor
|
| September 10, 2011 |
Paper |
Mastering the Nmap Scripting Engine
|
David Fifield
Fyodor
|
| September 10, 2011 |
Slides |
Mastering the Nmap Scripting Engine
|
David Fifield
Fyodor
|
| September 09, 2011 |
Paper |
Hacking and protecting Oracle Database Vault
|
Esteban Martínez Fayó
|
| September 09, 2011 |
Slides |
Hacking and protecting Oracle Database Vault
|
Esteban Martínez Fayó
|
| September 09, 2011 |
Slides |
Utilizing Code Reuse/Return Oriented Programming in PHP Web Application Exploits
|
Stefan Esser
|
| September 09, 2011 |
Paper |
SprayPAL: How capturing and replaying attack traffic can save your IDS
|
Josh Pauli
Kyle Cronin
Patrick Engebretson
|
| September 09, 2011 |
Slides |
SprayPAL: How capturing and replaying attack traffic can save your IDS
|
Josh Pauli
Kyle Cronin
Patrick Engebretson
|
| September 09, 2011 |
Paper |
SAP Backdoors: A ghost at the heart of your business
|
Mariano Nunez Di Croce
|
| September 09, 2011 |
Slides |
Deconstructing ColdFusion
|
Brandon Creighton
Chris Eng
|
| September 08, 2011 |
Paper |
mod_antimalware: a novel apache module for containing web-based malware infections
|
Neil Daswani
|
| September 08, 2011 |
Slides |
mod_antimalware: a novel apache module for containing web-based malware infections
|
Neil Daswani
|
| September 08, 2011 |
Slides |
Return-Oriented Exploitation
|
Dino Dai Zovi
|
| September 08, 2011 |
Paper |
JavaSnoop: How to hack anything written in Java
|
Arshan Dabirsiaghi
|
| September 08, 2011 |
Slides |
JavaSnoop: How to hack anything written in Java
|
Arshan Dabirsiaghi
|
| September 08, 2011 |
Slides |
Unauthorized Internet Wiretapping: Exploiting Lawful Intercept
|
Tom Cross
|
| September 07, 2011 |
Slides |
Virtually Pwned: Pentesting Virtualization
|
Claudio Criscione
|
| September 07, 2011 |
Paper |
Voyage of the Reverser: A Visual Study of Binary Species
|
Greg Conti
Sergey Bratus
|
| September 07, 2011 |
Slides |
Voyage of the Reverser: A Visual Study of Binary Species
|
Greg Conti
Sergey Bratus
|
| September 07, 2011 |
Paper |
Token Kidnapping's Revenge
|
Cesar Cerrudo
|
| September 07, 2011 |
Slides |
Token Kidnapping's Revenge
|
Cesar Cerrudo
|
| September 06, 2011 |
Paper |
Bad Memories
|
Baptiste Gourdin
Elie Bursztein
Gustav Rydstedt
|
| September 06, 2011 |
Paper |
Secure Use of Cloud Storage
|
Grant Bugher
|
| September 06, 2011 |
Slides |
Secure Use of Cloud Storage
|
Grant Bugher
|
| September 06, 2011 |
Paper |
Carmen Sandiego is On the Run!
|
Don Bailey
Nick DePetrillo
|
| September 05, 2011 |
Paper |
PSUDP: A Passive Approach to Network-Wide Covert Communication
|
Kenton Born
|
| September 05, 2011 |
Slides |
PSUDP: A Passive Approach to Network-Wide Covert Communication
|
Kenton Born
|
| September 05, 2011 |
Slides |
Goodware drugs for malware: on-the-fly malware analysis and containment
|
Christiaan Schade
Damiano Bolzoni
|
| September 05, 2011 |
Slides |
Standing on the shoulders of the blue monster - Hardening Windows applications
|
|
| September 05, 2011 |
Paper |
Standing on the shoulders of the blue monster - Hardening Windows applications
|
|
| September 04, 2011 |
Slides |
Virtual Forensics
|
Christiaan Beek
|
| September 04, 2011 |
Paper |
Hadoop Security Design? Just Add Kerberos? Really?
|
Andrew Becherer
|
| September 04, 2011 |
Slides |
Hadoop Security Design? Just Add Kerberos? Really?
|
Andrew Becherer
|
| September 04, 2011 |
Slides |
SCADA and ICS for Security Experts: How to avoid Cyberdouchery
|
James Arlen
|
| September 04, 2011 |
Paper |
Virt-ICE: next generation debugger for malware analysis
|
Kuniyasu Suzaki
Quynh Nguyen Anh
|
| September 04, 2011 |
Slides |
Virt-ICE: next generation debugger for malware analysis
|
Kuniyasu Suzaki
Quynh Nguyen Anh
|
Event: Black Hat USA 2010
or on facebook 
top