Talks and Speakers
Chris Nickerson - TBA
Chris Nickerson, CEO of LARES, is just another "Security guy" with a whole bunch of certs whose main area of expertise is focused on Real world Attack Modeling, Red Team Testing and Infosec Testing. At Lares, Chris leads a team of security professional who conduct Risk Assessments, Penetration testing, Application Testing, Social Engineering, Red Team Testing and Full Adversarial Attack Modeling. Prior to starting Lares, Chris was Dir. of Security Services at Alternative Technology, a Sr. IT compliance at KPMG, Sr. Security Architect and Compliance Manager at Sprint Corporate Security. Chris is a member of many security groups and was also a featured member of TruTV's Tiger Team. Chris is the co host of the Exotic liability Podcast, the author of the upcoming "RED TEAM TESTING" book published by Elsevier/Syngress and a founding member of BSIDES Conference.
David Jacoby - Exploiting logical flaws on Linux systems
One problem that the entire security industry has is that people tend to spend way too much time, money and energy on protecting themselves against 0-days. The result of this is that people have forgotten about the logical and most trivial vulnerabilities. We also tend to rely more on the additional security layers, such as SELinux and GRSecurity than the built in security functions in the operating system, but even the additional security functions may include vulnerabilities. this presentation will show live demonstration of real events, attacks that have actually been performed by various hackers. How to bypass SELinux, exploit the lack of local hardening and demonstrate that a default configured Linux system includes a lot of “vulnerabilities”.
When David Jacoby joined Kaspersky in 2010 as a Senior Security Researcher for the Nordic region he was the first external researcher to join Kasperskys Global Research and Analysis Team. Due to David’s social background he is not only responsible for research, but also responsible for technical PR activities such as being the technical spoke person in the Nordic region. David has previously been working with vulnerability research, vulnerability management, customer experience, penetration testing and education. His research has taking him from the computer screen to security related events where he is a regular speaker presenting his material. Davids research focus on improving awareness about what threats we are exposed to on the Internet today and presenting it in a manner which will suit a broader audience.
Don Bailey - War Texting: Identifying and Interacting with Devices on the Telephone Network
Devices have been attached to the telephone network for years. Typically, we think of these devices in terms of modems, faxes, or TTY systems. Now, there is a growing shift in the nature of the devices that are accessible over the telephone network. Today, A-GPS tracking devices, 3G Security Cameras, Urban Traffic Control systems, SCADA sensors, Home Control and Automation systems, and even vehicles are now telephony enabled. These systems often receive control messages over the telephone network in the form of text messages (SMS) or GPRS data. These messages can trigger actions such as firmware updates, Are You There requests, or even solicitations for data. As a result, it is imperative for mobile researchers to understand how these systems can be detected by attackers on the global telephone network, then potentially abused.
These systems are increasingly capable of affecting the physical world around us. Additionally, devices attached to the phone network cannot be easily compartmentalized or firewalled from potential abusers the same way that IP enabled systems can. Therefore, understanding the threat models associated with these devices and the telephone network will allow mobile researchers and embedded engineers to correctly implement security solutions that minimize a device's exposure to threat actors.
Don A. Bailey is a Security Consultant with iSEC Partners, Inc. Don has discovered many unknown security vulnerabilities in well used software, analyzed new and proprietary protocols for design and implementation flaws, and helped design and integrate security solutions for up and coming internet software.
While Don's primary expertise is in developing exploit technologies, he is also well versed at reverse engineering, fuzzing, enterprise and embedded programming, source code auditing, rootkit detection and design, and network penetration testing. In addition, Don has helped develop and enhance risk management programs for several Fortune 500 companies and has been invited to speak about risk management from a CISO perspective at government organized conferences.
For the past six years, Don has presented research at several international security conferences discussing topics such as stealth root-kit design, zero-day exploit technology, DECT, GSM, and embedded security.
Patrik Karlsson & Martin Holst Swende - Web Application Analysis With Owasp Hatkit
This presentation will take a deep dive into two newly released Owasp tools; the Owasp Hatkit Proxy and the Owasp Hatkit Datafiddler. The name Hatkit is an acronym (of sorts) for Http Analysis Toolkit and consists of tools mainly for people who analyse the security of web applications. The tools make extensive use of MongoDB, in particular the advanced querying facilities available in this database. Prior knowledge of Javascript and Python is an advantage, but absolutely no requirement.
Patrik Karlsson is a Senior Security Expert with over ten years of experience in the field of IT- and Information Security. Patrik's area of expertise includes security penetration testing, vulnerability assessments, software application security audits and incident investigations. Patrik is an active Nmap contributer and runs the security related web site www.cqure.net.
Martin Holst Swendeis a Senior Security Consultant working with application security- and penetration testing. Martin has a background as a Java/J2me-programmer but nowadays finds more joy in Python and Javascript. Martin is project leader for the Owasp Hatkit Proxy/Datafiddler projects and contributor to open source security projects such as Webscarab and Nmap.
The two both work for the swedish security firm 2Secure AB.
Stefan Burschka - Analysis of information leakage from encrypted VoIP conversations
Voice over IP (VoIP) has experienced a tremendous growth over the last few years and is now widely used among the population and for business purposes. The security of such VoIP systems is often assumed, creating a false sense of privacy. Stefan will present research into leakage of information from Skype, a widely used and protected VoIP application. Experiments have shown that isolated phonemes can be classified and given sentences identified. By using the dynamic time warping (DTW) algorithm, frequently used in speech processing, an accuracy of 60% can be reached. The results can be further improved by choosing specific training data and reach an accuracy of 83% under specific conditions.
Stefan Burschka is a physicist who has studied quantum optics, microwave technology, optical communications, robotics and AI. After a long industry experience in hardware/software development, call center design, data mining and IP security, he currently heads the "Malware and Traffic Mining Lab" at Ruag Defence AG.
Travis Goodspeed - Packets in Packets; or, Remotely Exploiting the PHY Layer
This lecture describes the Packet In Packet (PIP) technique for injecting raw Layer 1 frames into remote wireless networks. In such an attack, a carefully crafted string becomes misinterpreted at the PHY layer as a standalone packet, allowing an attacker to inject raw frames at a remote location without exploiting any software bug. The technique is portable to all digital radio protocols which lack cryptography and allow for variable length packets.
Travis Goodspeed is an independent hacker of embedded systems from Southern Appalachia. He has discovered methods for extracting keys and firmware remotely from a few ZigBee chips, locally from nearly all of them. In his spare time, he maintains an open JTAG debugger, fiddles with pink pagers and tries without success to introduce India Pale Ale to Germany. He has neighbors everywhere.
Jakob Schlyter - How to use DNSSEC to keep PKI on a leash
This talk will show how to use DNSSEC to constrain, and possible supersede, trust in the current Public Key Infrastructure using DANE (DNS-based Authentication of Named Entities).
Jakob Schlyter is an IT security advisor at Kirei in Göteborg. He has been working with DNSSEC for more than 12 years and is responsible for the birth of Unbound and OpenDNSSEC, as well as for several Internet Drafts and Requests for Comments in the DNS and DNSSEC areas.
Walter Belgers - Social Engineering
Technical people look at security mostly from a technical standpoint. Are systems fully patched? Have SQL-injection problems been eliminated? Truth is, the technical aspect of security is just a small part of the problem. People are probably the biggest security problem to fix. Social engineering is conning people into giving you information or access to systems or buildings. It is, in most cases, far more easy than breaking in electronically. In this talk, we will look at what makes social engineering work, how to come up with working scenario's and how to try to avoid these problems. The lecture includes examples from actual social engineering assignments and some hilarious clips from the internet. After the talk, the attendees will hopefully understand the importance of security awareness within their companies, being more alert to attacks at the same time.
Walter Belgers is the founder of the Eindhoven chapter of TOOOL, The Open Organisation of Lockpickers in the Netherlands. He is a multiple winner of the TOOOL championships. He works for Madison Gurkha as an ethical hacker.
Ertunga Arsal - Rootkits and Trojans on Your SAP Landscape
SAP systems are the heart of many enterprises. Many critical business functions run on SAP Applications and the complexity of these systems makes it very difficult to protect against attackers. Default setups, forgotten/unimplemented security configurations, weak password management and change processes that apply to one ‘unimportant’ system can result in complete compromise of the SAP landscape. The legal consequences, lost/damaged business and reputation can be disastrous depending on the type of the attack. While companies invest a lot to secure SAP systems at the business process level for example by designing authorization concepts, implementing separation of duties or by using GRC (Governance Risk and Compliance) tools, the security at the technical level mostly lacks attention. Ertunga will present several attack paths exploiting configuration weaknesses at the technical level, leading to the compromise of single systems, whole SAP landscapes and finally the entire enterprise network. By demonstrating creative exploitation of configuration weaknesses the necessity to safeguard a SAP system at the technical level is revealed.
Ertunga Arsal is the founder of ESNC, a company specialized in SAP security. ESNC develops software for security audits and forensic examinations of SAP systems. Previously, he worked with Tech Data for five years as a security consultant and was responsible for SAP and application security in the EMEA region. Being part of the incident response team, he took lead on several investigations. Ertunga has reported numerous security vulnerabilities in SAP systems ranging from medium to extremely critical. He currently lectures Systems and Network Security at Sabanci University grad school.
