TrainingsAugust 2-5Executive Summit
August 5BriefingsAugust 6ArsenalAugust 6Sponsored SessionsAugust 6Sponsored WorkshopsAugust 6BriefingsAugust 7ArsenalAugust 7Sponsored Sessions
August 7Sponsored WorkshopsAugust 7

Briefings | August 7


Download Schedule

08:00

Breakfast

Sponsored By
Sponsored By
Sponsored By

09:00

BadUSB - On Accessories that Turn EvilKarsten Nohl & Jakob LellLagoon K09:00 - 10:00
 
Epidemiology of Software Vulnerabilities: A Study of Attack Surface SpreadKymberlee Price & Jake KounsSouth Seas GH09:00 - 09:25
 
How Smartcard Payment Systems FailRoss AndersonSouth Seas F09:00 - 10:00
 
I Know Your Filtering Policy Better than You Do: External Enumeration and Exploitation of Email and Web Security SolutionsBen WilliamsSouth Seas IJ09:00 - 10:00
 
It Just (Net)works: The Truth About iOS 7's Multipeer Connectivity FrameworkAlban DiquetSouth Seas CD09:00 - 09:25
 
Mobile Security Roundtable: What Does Mobile Security Look Like Today? What Will it Look Like Tomorrow?Vincenzo Iozzo & Peiter Zatko & Ian Robertson & Dino Dai ZoviPalm A09:00 - 10:00
 
Reverse-Engineering the Supra iBox: Exploitation of a Hardened MSP430-Based DeviceBraden ThomasSouth Seas AB09:00 - 10:00
 
Stay Out of the Kitchen: A DLP Security Bake-OffZach Lanier & Kelly LumJasmine Ballroom09:00 - 10:00
 
The New Scourge of Ransomware: A Study of CryptoLocker and Its FriendsLance James & John BambenekMandalay Bay D09:00 - 10:00
 
Write Once, Pwn AnywhereYang YuSouth Seas E09:00 - 10:00
 

09:35

Abuse of CPE Devices and Recommended FixesJonathan Spring & Paul Vixie & Chris HallenbeckSouth Seas CD09:35 - 10:00
 
One Packer to Rule Them All: Empirical Identification, Comparison, and Circumvention of Current Antivirus Detection TechniquesAlaeddine Mesbahi & Arne SwinnenSouth Seas GH09:35 - 10:00
 

10:15

A Practical Attack Against VDI SolutionsDaniel Brodie & Michael ShaulovJasmine Ballroom10:15 - 11:15
 
Bitcoin Transaction Malleability Theory in PracticeDaniel Chechik & Ben HayakSouth Seas CD10:15 - 11:15
 
Building Safe Systems at Scale - Lessons from Six Months at YahooAlex StamosLagoon K10:15 - 11:15
 
Extreme Privilege Escalation on Windows 8/UEFI SystemsCorey Kallenberg & Xeno Kovah & Samuel Cornwell & John ButterworthMandalay Bay D10:15 - 11:15
 
ICSCorsair: How I Will PWN Your ERP Through 4-20 mA Current LoopAlexander Bolshev & Gleb CherbovSouth Seas AB10:15 - 11:15
 
Leviathan: Command and Control Communications on Planet EarthKenneth Geers & Kevin ThompsonSouth Seas F10:15 - 11:15
 
Medical Devices Roundtable: Is There a Doctor in the House? Security and Privacy in the Medical WorldJay RadcliffePalm A10:15 - 11:15
 
Saving CyberspaceJason HealeySouth Seas E10:15 - 11:15
 
Sidewinder Targeted Attack Against Android in the Golden Age of Ad LibsTao Wei & Yulong ZhangSouth Seas GH10:15 - 10:40
 
When the Lights Go Out: Hacking Cisco EnergyWiseMatthias Luft & Ayhan Soner KocaSouth Seas IJ10:15 - 11:15
 

10:50

Threat Intelligence Library - A New Revolutionary Technology to Enhance the SOC Battle Rhythm!Ryan TrostSouth Seas GH10:50 - 00:00
 

11:15

Coffee Service

Sponsored By
Sponsored By
Sponsored By

11:45

Abusing Microsoft Kerberos: Sorry You Guys Don't Get ItAlva Duckwall & Benjamin DelpySouth Seas CD11:45 - 12:45
 
Exploiting Unpatched iOS Vulnerabilities for Fun and ProfitYeongjin Jang & Tielei Wang & Byoungyoung Lee & Billy LauSouth Seas E11:45 - 12:45
 
GRR: Find All the Badness, Collect All the ThingsGreg CastleSouth Seas GH11:45 - 12:45
 
Internet Scanning - Current State and Lessons LearnedMark SchloesserSouth Seas IJ11:45 - 12:10
 
Mission mPOSsibleNils  & Jon ButlerLagoon K11:45 - 12:45
 
MoRE Shadow Walker: The Progression of TLB-Splitting on x86Jacob TorreySouth Seas AB11:45 - 12:45
 
Pragmatic Security Automation RoundtableRich MogullPalm A11:45 - 12:45
 
RAVAGE - Runtime Analysis of Vulnerabilities and Generation of ExploitsXiaoran Wang & Yoel GluckJasmine Ballroom11:45 - 12:45
 
Smart Nest Thermostat: A Smart Spy in Your HomeYier Jin & Grant Hernandez & Daniel BuentelloMandalay Bay D11:45 - 12:45
 
Thinking Outside the Sandbox - Violating Trust Boundaries in Uncommon WaysBrian Gorenc & Jasiel SpelmanSouth Seas F11:45 - 12:45
 

12:20

From Attacks to Action - Building a Usable Threat Model to Drive Defensive ChoicesTony SagerSouth Seas IJ12:20 - 12:45
 

12:45

Lunch

14:15

48 Dirty Little Secrets Cryptographers Don't Want You To KnowThomas Ptacek & Alex BalducciLagoon K14:15 - 15:15
 
Be Mean to Your Code Roundtable: Security in the Age of Continuous Integration & DeploymentMatt JohansenPalm A14:15 - 15:15
 
MiniaturizationJason LarsenSouth Seas AB14:15 - 15:15
 
"Nobody is Listening to Your Phone Calls." Really? A Debate and Discussion on the NSA's ActivitiesMark Jaycox & Jamil JafferSouth Seas F14:15 - 15:15
 
SVG: Exploiting Browsers without Image Parsing BugsRennie deGraafSouth Seas CD14:15 - 14:40
 
The Devil Does Not Exist - The Role of Deception in CyberMark Mateski & Matt DevostSouth Seas E14:15 - 15:15
 
The State of Incident ResponseBruce SchneierMandalay Bay D14:15 - 15:15
 
Time Trial: Racing Towards Practical Timing AttacksDaniel Mayer & Joel SandinJasmine Ballroom14:15 - 15:15
 

14:50

Static Detection and Automatic Exploitation of Intent Message Vulnerabilities in Android ApplicationsDaniele GallinganiSouth Seas CD14:50 - 15:15
 

15:15

Break

15:30

A Journey to Protect Points-of-SaleNir ValtmanSouth Seas IJ15:30 - 16:30
 
Call To Arms: A Tale of the Weaknesses of Current Client-Side XSS FilteringMartin Johns & Ben Stock & Sebastian LekiesMandalay Bay D15:30 - 16:30
 
Catching Malware En Masse: DNS and IP StyleDhia Mahjoub & Thibault Reuille & Andree ToonkSouth Seas AB15:30 - 16:30
 
Fingerprinting Web Application Platforms by Variations in PNG ImplementationsDominique BongardSouth Seas GH15:30 - 15:55
 
Lifecycle of a Phone Fraudster: Exposing Fraud Activity from Reconnaissance to Takeover Using Graph Analysis and Acoustical AnomaliesVijay Balasubramaniyan & Raj Bandyopadhyay & Telvis CalhounSouth Seas E15:30 - 16:30
 
SAP, Credit Cards, and the Bird that Talks Too MuchErtunga ArsalSouth Seas F15:30 - 16:30
 
SATCOM Terminals: Hacking by Air, Sea, and LandRuben SantamartaLagoon K15:30 - 16:30
 
Security and Software Defined Networking Roundtable: New Exposures or New Opportunities?Robert StrattonPalm A15:30 - 16:30
 
Understanding IMSI PrivacyRavishankar Borgaonkar & Swapnil UdarJasmine Ballroom15:30 - 16:30
 
Why You Need to Detect More Than PtHMatthew Hathaway & Jeff MyersSouth Seas CD15:30 - 16:30
 

16:05

Investigating PowerShell AttacksRyan Kazanciyan & Matt HastingsSouth Seas GH16:05 - 16:30
 

16:30

Coffee Service

Sponsored By
Sponsored By
Sponsored By

17:00

Capstone: Next Generation Disassembly FrameworkQuynh Nguyen AnhSouth Seas CD17:00 - 18:00
 
Creating a Spider Goat: Using Transactional Memory Support for SecurityIgor Muttik & Alex NayshtutSouth Seas E17:00 - 18:00
 
Exposing Bootkits with BIOS EmulationLars HaukliSouth Seas AB17:00 - 18:00
 
Hacking the Wireless World with Software Defined Radio - 2.0Balint SeeberLagoon K17:00 - 18:00
 
Poacher Turned Gamekeeper: Lessons Learned from Eight Years of Breaking HypervisorsRafal WojtczukMandalay Bay D17:00 - 18:00
 
Probabilistic Spying on Encrypted TunnelsBrandon Niemczyk & Prasad RaoSouth Seas IJ17:00 - 17:25
 
The New Page of Injections Book: Memcached InjectionsIvan NovikovSouth Seas F17:00 - 18:00
 
Understanding TOCTTOU in the Windows Kernel Font Scaler EngineYu WangJasmine Ballroom17:00 - 18:00
 
Unwrapping the Truth: Analysis of Mobile Application Wrapping SolutionsRon Gutierrez & Stephen KomalSouth Seas GH17:00 - 18:00
 

17:35

Badger - The Networked Security State Estimation ToolkitEdmond Rogers & William Rogers & Gabe WeaverSouth Seas IJ17:35 - 18:00
 

18:00

End of Day

FEATURED SITES: Black Hat | USA | Europe | Asia | Archives | Sponsorships | Latest Intel
OUR MARKETS: Business Technology | Electronics | Game & App Development
WORKING WITH US: Advertising Contacts | Contact Us | Code of Conduct
Terms of Service | Privacy Statement | Copyright © 2013 UBM Tech, All Rights Reserved