Last month was the SOURCE Boston conference, and I heard it was a great event. Congrats to Stacy Thayer for running a successful conference. For those that weren't able to attend, they are starting to put the presentations and videos online. Also, AJolly and Cedric Blancher have their pictures online. I wish I could have [...]
April looks like a very busy month with 11 different events going on. Sharkfest '08: March 31 - April 2 Notacon 5: April 4 - 6 RSA Conference: April 7 - 11 UPSEC '08: April 14 LEET '08: April 15 SANS 2008: April 18 - 25 ToorCon Seattle 2008: April 18 - 20 Texas Regional [...]
Another great event ran by Dragos and crew. I want to thank them for letting me cover the event on Twitter and the Infosec Events blog. My pictures are now up on flickr, and Ryo's flickr page has a ton of pictures as well. Now lets celebrate another successful event by opening a champagne bottle [...]
Most Informative Talk: Intelguardians' cold memory forensics workshop. They leveraged the Princeton/Wind River/EFF research paper, and created two tools to extract passwords from a memory dump. The tools weren't released at the conference, but they promise that it will be available soon. Two people from the original research (Jacob Appelbaum and William Paul) was also [...]
Most Informative Talk: Oded Horovitz's talk on VMware. He showed off some upcoming features of the product, like VMSafe, security APIs, and session replay. With VMSafe and the security APIs, you will be able to run code inside the hypervisor! In one demo, he showed how VMSafe can detect malware that was modified to bypass [...]
After posting my RSA schedule, I noticed that the "Research Revealed" track wasn't included in my booklet. So for those that were relying on the booklet to figure out your schedule, and interested in research topics, refer to RSA's detailed agenda. Now to go back and figure out if I need to adjust my schedule [...]
I just finished the scapy dojo with Philippe, and it was awesome. We covered lots of ground for a one day class, but I wish we had at least another day for additional topics. Out of the course outline, we covered everything except the fuzzing and wifi sections. One highlight of the class was when [...]
One thing that I really hate about multi track conferences, is that it takes me forever to determine what I want to see. And with the upcoming RSA conference, they didn't make it easy with 20 tracks to choose from! Here is the workflow that I used to figure out my RSA schedule. The first [...]
I just put together a google shared calendar for all infosec events in North America. If I am missing an event (which is likely), please contact me.
CanSecWest is just around the corner, and TippingPoint just announced some additional incentives to the PWN to OWN contest. Like last year, TippingPoint is giving cash prizes away, but this year they are giving away at least $20,000! For those that aren't familiar with the contest, several machines are setup, with the latest OS patches [...]