SEC-T 2008

Speaker list

Oded Horovitz is a Security Product Architect with VMware. Among the interesting things he gets to work on there are the VMSafe features of VMWares upcoming product line. Previously Oded performed security research for McAfee and worked on their HIPS solution.

Mikko Hyppönen is the Chief Research Officer for F-Secure. He named the Storm worm. He spoke at the legendary Rubicon conference in Detroit before it was shut down. He holds US patent 6,577,920. He does his own stunts.

Bosse Norgren has over 20 years experience in the swedish police force, including 8 years total at SÄPO. He is now head of operations at Rikskriminalens IT-brottssektion. In his life outside of law-enforcement he is an accomplished musician and published author of several crime-novels.

Robert E. Lee is the Chief Security Officer for Outpost24, a leading provider of proactive network security solutions including fully automated network vulnerability scanning and vulnerability management tools. Outpost24's OUTSCAN is the mostwidely deployed On-Demand security solution in Europe, performing scans for over 1000 customers last year.

Jack C. Louis is the VP of Research and Development for Outpost24. He has a background in core networking technologies, systems programming, and electronics. Jack is the creator of unicornscan -- a distributed port scanner, cruiser-- a web application fault injection framework and several other security testing tools. Jack has also been credited for discovering interesting vulnerabilities in widely installed applications.

Torbjörn Pettersson is a security consultant at Cybercom Group and specialises in hands on information security review and auditing. Areas of special interest to him are cryptography and computer forensics.

Mariano Nuñez Di Croce has been working as a security consultant at CYBSEC for the last 4,5 years, mainly involved in Penetration Testing and Vulnerability Research. He is the developer of sapyto, the first public framework for performing SAP Penetration Tests. Mariano has worked securing and assessing many SAP installations. In the research field, he has discovered vulnerabilities in Microsoft, Oracle and Watchfire products as well as more than 35 vulnerabilities in SAP systems, many of which have been disclosed to the public. He has also published papers and tools about this subject. Mariano has been invited to speak and hold trainings in many international security conferences and seminars in South America, Netherlands (Blackhat), Luxembourg (Hack.lu), Austria (Deepsec) and USA (Blackhat).

Martyn Ruks is an information security professional working for MWR InfoSecurity in the UK. His primary interest is in weird networking protocols and the software that uses them. Martyn has spoken about Websphere MQ security at a number of security conferences and after lots of interest in the subject was generated he decided to continue the research. His presentations always include up to the minute results from his research projects. He is also a big believer in the use of collaboration tools such as the dradis framework for security testing.

Christer Öberg is based in the UK. He enjoys discovering and exploiting new software vulnerabilities in pretty much everything except web applications. His Favorite targets are OS kernels and "unsual" things like OpenVMS. Christer has previously presented at Blackhat Europe, USA and Defcon.

Claes Nyberg is interested in vulnerability research and development of tools and exploits in both userland and kernel space. Claes has released popular tools such as MITM-SSL and MITM-SSH as well as one of the first public non listening shell servers, SAdoor. Claes has previously spoken at Blackhat US and Defcon.

James Tusini is a security consultant based in the UK, currently employed as a principal consultant for a London-based firm. During the last few years, James has been performing penetration tests and running bespoke projects against large corporate networks within the financial, retail and government sector.

Patrik Karlsson is the founder of the security related website cqure.net, where he publishes some of his security related work including security related tools used by security professionals all over the globe. For the last couple of years he has specialised in web application security and databases. He is currently a senior partner at Inspect it, where he is responsible for services such as penetration and vulnerability testing, application security assessments and secure software development.