Week 22 In Review – 2017

Events Related AppSec EU 2017 - Techniques ICS/SCADA Systems for Penetration Testers: A Typical Engagement - It’s no secret that the devices that comprise process control systems are generally vulnerable to attack. This point has been made through endless research and has even been the subject of countless talks and trainings. Vulnerabilities Secure [...]

Week 14 In Review – 2017

Events Related Cyphercon 2.0 Videos - These are the videos from the Cyphercon 2.0 conference. DakotaCon - South Dakota’s premier security event. TROOPERScon - AIDE 2017 - Resources BlackHat 2017 - Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 1) - It’s a well understood fact that platform security is an [...]

Week 43 In Review – 2016

Events Related I’m back to Luxembourg for a new edition of In fact, I arrived yesterday afternoon to attend the MISP summit. It was a good opportunity to meet MISP users and to get fresh news about the project. 2016 Wrap-Up Day #1 - 2016 Wrap-Up Day #2 - 2016 [...]

Week 12 In Review – 2016

Events Related Pwn2Own 2016: Hackers Earn $460,000 for 21 New Flaws - On the first day, contestants earned $282,500 for vulnerabilities in Safari, Flash Player, Chrome, Windows and OS X. On the second day, Tencent Security Team Sniper took the lead after demonstrating a successful root-level code execution exploit in Safari via a use-after-free flaw in Safari [...]

Week 4 In Review – 2016

Events Related ShmooCon: LastPass design elements create perfect Phishing opportunity - Cassidy’s presentation at ShmooCon on Saturday morning outlined a clever Phishing attack against LastPass users, which is made possible due to design elements within the password manager’s core functions. BSides Conference BSides Columbus 2016 Videos - BSidesNYC2016 – Tools dnstwist - [...]

Week 38 In Review – 2015

Events Related Black Hat USA 2015 Course Review - Adaptive Red Team Tactics from Veris Group - Black Hat has something for everyone (across the defensive and offensive spectrum) and after considerable delibaration I decided to register for Adaptive Red Team Tactics from Veris Group. This is an interesting team in that a lot of the [...]

Week 37 In Review – 2015

Events Related 44CON - BSides Augusta 2015 Videos - Videos from the BSides Augusta conference. Resources Satellite Turla: APT Command and Control in the Sky - When you are an APT group, you need to deal with many different problems. One of them, and perhaps the biggest, is the constant seizure and takedown of [...]

Week 34 In Review – 2015

Events Related DEFCON This year marked the 23rd DefCon, the hacker conference that began as an informal gathering for hackers to meet in person and party in the desert. Imploding Barrels and Other Highlights From Hackfest DefCon - I spent the week with over 20,000 hackers in Las Vegas — here's what I saw [...]

Week 24 In Review – 2015

Resources HackerOne Connects Hackers With Companies, and Hopes for a Win-Win – HackerOne is a San Francisco tech start-up that aims to become a mediator between companies with cybersecurity issues and hackers who are looking to solve problems rather than cause them. They hope their outfit can persuade other hackers to responsibly report security flaws, [...]

Week 22 In Review – 2015

Events Related HITB Amsterdam Wrap-Up Day #1 – The HITB crew is back in the beautiful city of Amsterdam for a new edition of their security conference. Here is Xavier's wrap-up for the first day! HITB Amsterdam Wrap-Up Day #2 This is Xavier's quick wrap-up for the second day of Hack in the Box! Resources [...]