Presentations

How many bugs can a time server have?

Published 07/11/2014 | By TMB

Presentation on vulnerabilities in the Symmetricom (Micro Semi) S350i time server (as given at EMF Camp 2014). Continue reading →

Posted in Presentations | Tagged analysis, conference, CVE-2014-5061, CVE-2014-5062, CVE-2014-5063, CVE-2014-5064, CVE-2014-5065, CVE-2014-5066, CVE-2014-5067, CVE-2014-5068, CVE-2014-5069, CVE-2014-5070, CVE-2014-5071, emfcamp2014, exploit, hardhack, root

44CON uncovered

Published 21/06/2014 | By TMB

Presentation on system level vulnerabilities (as given at BT’s SnoopCon 2014). Continue reading →

Posted in Presentations | Tagged 44CON, conference, exploit, imisslsd, root, SnoopCon, UNIX

I miss LSD

Published 15/09/2013 | By TMB

Presentation on system level vulnerabilities (as given at 44CON 2013). Continue reading →

Posted in Presentations | Tagged 44CON, conference, exploit, imisslsd, root, UNIX

Big Game Hunting: Simple techniques for bug hunting on big iron UNIX

Published 10/09/2012 | By TMB

Presentation on auditing and bug hunting on AIX (as given at 44CON 2012). Continue reading →

Posted in Presentations | Tagged 44CON, conference, exploit, root, UNIX

Breaking the Links: Exploiting the Linker

Published 27/03/2012 | By TMB

Presentation on exploiting linkers based on my paper (as given at Uncon 0×12 and CRESTCon 2010). Continue reading →

Posted in Presentations | Tagged analysis, conference, CRESTCon, exploit, UNIX

Attacking Windows Domains

Published 16/02/2011 | By RUS

CRESTCon presentation looking at the Windows Domain Authentication model. Continue reading →

Posted in Presentations

Introducing Heyoka: DNS Tunneling 2.0

Published 24/03/2009 | By AYR

Slides from SOURCE Boston 2009, presenting heyoka, a new DNS tunneling tool that uses spoofed traffic to avoid detection and multiple encodings to improve speed. Continue reading →

Posted in Presentations

OWASP AU 2009 Slides

Published 19/03/2009 | By SID

Slides from OWASP Appsec Australia 2009. Continue reading →

Posted in Presentations

Insecure Trends in Web 2.0 Applications

Published 31/10/2008 | By FM

Non technical talk about insecure trends in Web 2.0 applications. Explains what’s wrong with today’s Web 2.0 applications and why new comers keep repeating these.

Continue reading →

Posted in Presentations

Flash Security

Published 31/10/2008 | By FM

This presentation given at RIATalks, it’s about fundamental flash security issues, attack surface of Flash and secure development.

Continue reading →

Posted in Presentations