Another great event ran by Dragos and crew. I want to thank them for letting me cover the event on Twitter and the Infosec Events blog. My pictures are now up on flickr, and Ryo’s flickr page has a ton of pictures as well. Now lets celebrate another successful event by opening a champagne bottle [...]

Most Informative Talk: Intelguardians‘ cold memory forensics workshop. They leveraged the Princeton/Wind River/EFF research paper, and created two tools to extract passwords from a memory dump. The tools weren’t released at the conference, but they promise that it will be available soon. Two people from the original research (Jacob Appelbaum and William Paul) was also [...]

Most Informative Talk: Oded Horovitz’s talk on VMware. He showed off some upcoming features of the product, like VMSafe, security APIs, and session replay. With VMSafe and the security APIs, you will be able to run code inside the hypervisor! In one demo, he showed how VMSafe can detect malware that was modified to bypass [...]

After posting my RSA schedule, I noticed that the "Research Revealed" track wasn’t included in my booklet. So for those that were relying on the booklet to figure out your schedule, and interested in research topics, refer to RSA’s detailed agenda. Now to go back and figure out if I need to adjust my schedule [...]

I just finished the scapy dojo with Philippe, and it was awesome. We covered lots of ground for a one day class, but I wish we had at least another day for additional topics. Out of the course outline, we covered everything except the fuzzing and wifi sections.
One highlight of the class was [...]

One thing that I really hate about multi track conferences, is that it takes me forever to determine what I want to see. And with the upcoming RSA conference, they didn’t make it easy with 20 tracks to choose from!
Here is the workflow that I used to figure out my RSA schedule. The first [...]

I just put together a google shared calendar for all infosec events in North America. If I am missing an event (which is likely), please contact me.

CanSecWest is just around the corner, and TippingPoint just announced some additional incentives to the PWN to OWN contest. Like last year, TippingPoint is giving cash prizes away, but this year they are giving away at least $20,000!
For those that aren’t familiar with the contest, several machines are setup, with the latest OS patches [...]

The Jericho Forum will be holding a half day conference during RSA on Thursday April 10th, 2008. There will be three presentations, and a roundtable discussion on data security solutions. It is free to attend, and you can find the full agenda and registration link at Jericho Forum. The roundtable discussion sounds interesting, and [...]

Today, Richard Bejtlich at TaoSecurity posted his ten recurring themes that he observed from recent conferences. They are:

Permanent compromise is the norm, so accept it.
We can not stop intruders, only raise their costs.
Anyone of sufficient size and asset value is being targeted.
Less Enterprise Protection, more Enterprise Defense.
Less Prevention, more Detection, Response, Disruption.
Less Vulnerability Management, more [...]