Material Archives - List, 2008, 2007, 2006, 2005
2008
Saumil Shah - Net SquareBrowser Exploits - Attacks and Defense
Rich Smith - HP Labs
PhlashDance, discovering permanent denial of service attacks against embedded systems
Adam Laurie - RFIDIOt.org
Satellite Systems
Tim Burrell - Microsoft
Phoenix, and automated vulnerability finding
Alberto Revelli - Portcullis
Building the bridge between the Web Application and the OS: GUI access through SQL Injection
Martyn Ruks - MWR InfoSecurity
WebSphere MQ Security
Sebastian Muñiz - Core
Cisco IOS Rootkits
Collin Mulliner - trifinite
Attacking Near Field Communications (NFC) Mobile Phones
Alexander Klink - Cynops GmbH
Abusing X.509 certificate features
Luke Jennings - MWR InfoSecurity
One Token to Rule Them All: Post-Exploitation Fun in Windows Environments
Justin Ferguson
Advances in attacking interpreted languages
Aditya K Sood - SecNiche Security
Synthesizing PDF Attacks
2007
Greg Galford - MicrosoftThreats against and protection of Microsoft's internal network
Marcel Holtmann - Red Hat
Linux Kernel == Security Nightmare
Ollie Whitehouse - Symantec
/GS and ASLR in Windows Vista
Christian Wieser - Oulu University
Fuzzing: history, perspectives and limits
Matteo Meucci & Alberto Revelli - OWASP-Italy
The new OWASP Web Application Penetration Testing Methodology
Jose Nazario, Ph.D. - Arbor
Reverse Engineering Malicious Javascript
Ofir Arkin - Insightix
Bypassing NAC Systems
Adam Laurie - Trifinite
RFID
Jim Deleskie - Teleglobe
Protecting Next-Gen Networks @ Nx10G link sizes
Navid Jam - Sandia National Laboratories
Video Conferencing Security
Sun Bing
Software Virtualization Based Rootkits
Dustin D. Trammell - TippingPoint
VoIP Attacks!
Richard Johnston - Microsoft
Windows Vista Exploitation Countermeasures
Daniel Cuthbert - Corsaire
OSX Security
Emmanuel H
Distributed drone-based malware propagation and deployment automation
2006
Javier Burroni & Carlos Sarraute - Core Security TechnologiesAnalyzing OS fingerprints using Neural Networks and Statistical Machinery
van Hauser - thc
Attacking the IPv6 protocol suite
Yuji Ukai - eeye
Exploiting Real-Time OS Based Embedded Systems Using the JTAG Emulator
Nguyen Anh Quynh - Keio University
XEBEK: A Next Generation Honeypot Monitoring System
Fred Raynal - EADS
Malicious Crypto
Cesar Cerrudo - Argeniss
Windows Local Shellcode Injection
Andrew Cushman - Microsoft
Microsoft Security Fundamentals
Shreeraj Shahi - Net Square
Advanced Web Hacking - Attacks & Defense
Justin Clarke - Ernst & Young LLP
Practical Automated Web Application Attack Techniques
Andy Davis - IRM PLC
ColdFusion Security
Tim Hurman - Pentest Ltd.
ARMed combat: the fight for personal security
Raffael Marty - ArcSight
A Visual Approach to Security Event Management
Michael Boman - KPMG Singapore
Network Security Monitoring: Theory and Practice
Jim DeLeskie & Danny McPherson - Teleglobe, Arbor Networks
Protecting the Infrastructure
Andrea Barisani - Inverse Path
Lessons in Open Source Security: The Tale of a 0-Day Incident
2005
Javier Burroni & Carlos Sarraute - Core Security TechnologiesAnalyzing OS fingerprints using Neural Networks and Statistical Machinery
van Hauser THC / n.runs GmbH
Attacking the IPv6 protocol suite
Nguyen Anh Quynh - Keio University
XEBEK: A Next Generation Honeypot Monitoring System
Fred Raynal - EADS
Malicious Crypto
Cesar Cerrudo - Argeniss
Windows Local Shellcode Injection
Andrew Cushman - Microsoft
Microsoft Security Fundamentals
Barnaby Jack - eeye
Exploiting Real-Time OS Based Embedded Systems Using the JTAG Emulator
Shreeraj Shah - Net Square
Advanced Web Hacking - Attacks & Defense
Justin Clarke - Ernst & Young LLP
Practical Automated Web Application Attack Techniques
Andy Davis - IRM PLC
ColdFusion Security
Tim Hurman - Pentest Ltd.
ARMed Combat: The Fight For Personal Security
Raffael Marty - ArcSight
A Visual Approach to Security Event Management
Michael Boman - KPMG Singapore
Network Security Monitoring: Theory and Practice
Jim DeLeskie & Danny McPherson - Teleglobe, Arbor Networks
Protecting the Infrastructure
Andrea Barisani - Inverse Path
Lessons in Open Source Security: The Tale of a 0-Day Incident
