Positive Hack Days (PHDAYS) - Vídeos

Ya están disponible los vídeos de la Positive Hack Days que se celebró los pasado 30 y 31 de mayo. Dónde por cierto, ¡los Int3pids consiguieron un gran tercer puesto! Go Int3pids! Bruse Schneier. video Datuk Mohd Noor Amin. video Sergey Gordeychik. How to hack a telecom and stay alive 2. Owning a billing video Evgeny Klimov, RISSPA. Telecom vs fraud. Who will win? video Mikhail Yemelyannikov. Why it is impossible to comply with Russian private data protection law?
Leer más

Derbycon 2011 Vídeos

De forma casual me he topado con los vídeos de la Derbycon del año pasado 2011 y después de buscar por el blog he visto que no teníamos una entrada con los vídeos de esta magnífica conferencia, que por cierto fue la primera edición. Así que aquí van: jimmy shah mobile app moolah profit taking with mobile malware mccorkle and rios 100 bugs in 100 days an analysis of ics scada software brent huston realize your hacker heritage do the needful mick douglas blue team is sexy refocusing on defense part ii all you baseline are belong to us thomas dotreppe mister x openwips ng joshua drake jduck exploiting java memory corruption vulnerabilities matthew becker 73o7ki survival hacking your way out of armageddon bart hopper avoiding the landmines in your own backyard georgia weidman throw it in the river towards real live actual smartphone security brian baskin walking the green mile how to get fired after a security incident infojanitor virtual trust virtual permission and the illusion of security boris sverdlik your perimeter sucks larry pesce you are the smart meter making and hacking of the 2011 ma ccdc electronic badges rob simon pentesting over powerlines bill sempf is locksport a sport raphael mudge dirty red team tricks keynote hd moore acoustic intrusions ben feinstein and jeff jarmoc get off of my cloud cloud credential compromise and exposure josh kelley winfang98 infectious media bypassing autorun once and for all chris nickerson compliance an assault on reason chris roberts a tribute to dr strangelove deviant ollam distinguishing lockpicks raking vs lifting vs jiggling and more joe schorr rule 1 cardio and 9 other rules to keep intruders out ryan linn collecting underpants to win your network jayson e street steal everything kill everyone cause total financial ruin or how i walked in and misbehaved bruce potter the details dont matter kevin mitnick dave kennedy adaptive penetration testing rick farina free floating hostility chris gates and rob fuller the dirty little secrets they didnt teach you in pentesting class johnny long hackers for charity update jamison scheeres social engineering is a fraud jack daniel surviving a teleporter accident it could happen to you kevin johnson and tom eston desktop betrayal exploiting clients through the features they demand closing rick hayes karthik rangarajan osint beyond the basics int0x80 of dual core anti forensics for the louise evan booth hide yo kids hide yo wife residential security and monitoring the bottom line atlas sploit me if you can charlie miller battery firmware hacking michael arpaia beat to 1337 creating a successful university cyber defense organization tony huffman myne us when fuzzers miss the no hanging fruit adrian dave martin welcome to derbycon 2011 intro to the con and events tottenkoph data mining for neuro hackers kyle osborne kos the hidden xss attacking the desktop thomas hoffecker exploiting pki for fun and profit or the next yellow padlock icon rafal los youre going to need a bigger shovel a critical look at software security assurance carlos perez darkoperator tactical post exploitation jason scott jason scotts shareware calvacade paul asadoorian john strand offensive countermeasures still trying to bring sexy back rick redman tomorrow you can patch that 0day but your users will still get you p0wn3d pat mccoy and chris silvers hook line and syncer the liar for hires ultimate tacklebox adrian crenshaw building a svartkast cheap hardware to leave behind on someone elses network peter van eeckhoutte and elliot cutright win32 exploit development with mona and the metasploit framework dennis kuntz mining sensitive information from images using command line ocr the penetration testing execution standard ptes panel adrian dave martin welcome to derbycon 2011 intro to the con and events keynote hd moore acoustic intrusions johnny long hackers for charity update kevin mitnick dave kennedy adaptive penetration testing the penetration testing execution standard ptes panel bruce potter the details dont matter chris nickerson compliance an assault on reason pat mccoy and chris silvers hook line and syncer the liar for hires ultimate tacklebox jason scott jason scotts shareware calvacade atlas sploit me if you can dennis kuntz mining sensitive information from images using command line ocr tottenkoph data mining for neuro hackers michael arpaia beat to 1337 creating a successful university cyber defense organization carlos perez darkoperator tactical post exploitation paul asadoorian john strand offensive countermeasures still trying to bring sexy back tony huffman myne us when fuzzers miss the no hanging fruit rafal los youre going to need a bigger shovel a critical look at software security assurance rick hayes karthik rangarajan osint beyond the basics int0x80 of dual core anti forensics for the louise rick redman tomorrow you can patch that 0day but your users will still get you p0wn3d brian baskin walking the green mile how to get fired after a security incident jack daniel surviving a teleporter accident it could happen to you adrian crenshaw building a svartkast cheap hardware to leave behind on someone elses network joe schorr rule 1 cardio and 9 other rules to keep intruders out thomas hoffecker exploiting pki for fun and profit or the next yellow padlock icon matthew becker 73o7ki survival hacking your way out of armageddon bart hopper avoiding the landmines in your own backyard chris gates and rob fuller the dirty little secrets they didnt teach you in pentesting class boris sverdlik your perimeter sucks evan booth hide yo kids hide yo wife residential security and monitoring the bottom line rick farina free floating hostility georgia weidman throw it in the river towards real live actual smartphone security brent huston realize your hacker heritage do the needful rob simon pentesting over powerlines larry pesce you are the smart meter making and hacking of the 2011 ma ccdc electronic badges bill sempf is locksport a sport infojanitor virtual trust virtual permission and the illusion of security ben feinstein and jeff jarmoc get off of my cloud cloud credential compromise and exposure jimmy shah mobile app moolah profit taking with mobile malware mccorkle and rios 100 bugs in 100 days an analysis of ics scada software charlie miller battery firmware hacking peter van eeckhoutte and elliot cutright win32 exploit development with mona and the metasploit framework ryan linn collecting underpants to win your network jamison scheeres social engineering is a fraud josh kelley winfang98 infectious media bypassing autorun once and for all kevin johnson and tom eston desktop betrayal exploiting clients through the features they demand jayson e street steal everything kill everyone cause total financial ruin or how i walked in and misbehaved deviant ollam distinguishing lockpicks raking vs lifting vs jiggling and more raphael mudge dirty red team tricks chris roberts a tribute to dr strangelove kyle osborne kos the hidden xss attacking the desktop mick douglas blue team is sexy refocusing on defense part ii all you baseline are belong to us thomas dotreppe mister x openwips ng joshua drake jduck exploiting java memory corruption vulnerabilities closing Podéis encontrar otros formatos de vídeo aquí
Leer más

Linux Audio Conference 2012 - Presentaciones y vídeos disponibles

La conferencia de Linux Audio es una conferencia internacional sobre software música, sonido, etc de fuente abierta o open source cuyo sistema principal es Linux. Este año tuvo lugar en los EEUU por primera vez, concretamente en California en la Universidad de Stanford. Aquí tenéis la lista con las distintas charlas con sus respectivas diapositivas y vídeos: Conference Welcome - Video The IEM Demosuite, a large-scale jukebox for the MUMUTH concert venue - Paper (PDF) Slides Video Network distribution in music applications with Medusa - Paper (PDF) Slides Video Luppp - A real-time audio looping program - Paper (PDF) Slides Video Csound as a Real-­time Application - Paper (PDF) Slides Video Csound for Android - Paper (PDF) Slides Video Ardour3 - Video Integration - Paper (PDF) Slides Video INScore - An Environment for the Design of Live Music Scores - Paper (PDF) Slides Video A Behind-the-Scenes Peek at World's First Linux-Based Laptop Orchestra -- The Design of L2Ork Infrastructure and Lessons Learned - Paper (PDF) Slides Video Studio report: Linux audio for multi-speaker natural speech technology - Paper (PDF) Slides Video A framework for dynamic spatial acoustic scene generation with Ambisonics in low delay realtime - Paper (PDF) Slides Video A Toolkit for the Design of Ambisonic Decoders - Paper (PDF) Slides Video JunctionBox for Android: An Interaction Toolkit for Android-based Mobile Devices - Paper (PDF) Slides Video An Introduction to the Synth-A-Modeler Compiler: For Modular and Open-Source Sound Synthesis using Physical Models - Paper (PDF) Slides Video pd-faust: An integrated environment for running Faust objects in Pd - Paper (PDF) Slides Video The Faust Online Compiler: a Web-Based IDE for the Faust Programming Language - Paper (PDF) Slides Video FaustPad : A free open-source mobile app for multi-touch interaction with Faust generated modules - Paper (PDF) Slides Video Composition With AVSynthesis - Video Field Report II - Capturing Chroma XII by Rebecca Saunders - Paper (PDF) Video GRE (Graduate Rhythmic Examination) - Video Demo: A framework for dynamic spatial acoustic scene generation with Ambisonics in low delay realtime - Video The why and how of with-height surround production in Ambisonics - Paper (PDF) Slides Video Keynote - Slides Video From Jack to UDP packets to sound, and back - Paper (PDF) Video Controlling adaptive resampling - Paper (PDF) Slides Video Signal Processing Libraries for FAUST - Paper (PDF) Slides Video The Integration of the PCSlib PD library in a Touch-Sensitive Interface with Musical Application - Paper (PDF) Video Rite of the Earth -- composition with frequency-based harmony and ambisonic space projection - Paper (PDF) Slides Video Birches for viola and electronic sounds - Video Princesa Chontales - Video Debb and Duff play the music you ate your first crawdad by - Video Luppp & Harry - Video Compositions in Loops nos.
Leer más

Material de la conferencia ACK Security 2012 disponible para descargar

Desde este enlace (torrent) o este otro (descarga directa) puedes bajar todo el material más extras del evento ACK Security Conference que se celebró en Colombia del 26 al 30 marzo en la ciudad de Manizales. Aquí puedes ver la relación de ponentes. No os perdáis el material disponible. Web del evento DragonJar
Leer más

Material oficial de la Blackhat Europe 2012 disponible

Ya está disponible el material de la recién acabada BlackHat 2012 Europa. Parece que faltan algunas charlas. Si las ponen actualizaremos esta entrada. Axelle Apvrille - Guillaume LovetAn Attacker's Day into Virology: Human vs Computer White Paper Slides Antonios Atlasis - Attacking IPv6 Implementation Using Fragmentation White Paper Slides Archivo Michael BakerFinding Needles in Haystacks (The Size of Countries) White Paper Slides Andrey Belenko - Dmitry Sklyarov"Secure Password Managers" and "
Leer más

Vídeos de la Source Boston 2011

Esta es la lista de vídeos de la SOURCE celebrada en Boston en abril del año pasado. Un poco tarde, pero han sido publicados recientemente. Algunas de las charlas tienen muy buena pinta: Secure Development Lifecycle In The Mobile World What The Post-PC Era Means For Enterprise Security When Prevention Fails, The Tough Get Responding Tokenization Bringing Sexy Back, Defensive Measures That Actu… On The Use Of Prediction Markets In Information … Building Security Integrity Across The Security … Grey Hat Ruby Cyber Crime War Connecting The Dots Among The Blind The Squinter Rules James Beeson Keynote Improving Application Security Vulnerability Res… Streamline Incident Types For Efficient Incident… Network Stream Hacking With Mallory Attacking Oracle Web Applications With Metasploit Adam Meyers - Reversing Obfuscation Reverse Engineering Flash Files With SWFREtools Higher Education’s Ability To Conduct Relevant R… The Real Cost Of Software Remediation Dino Dai Zovi Keynote Jack Of All Formats Nailing Down Security Regulation Security Convergence Fuel For Pwnage Secure Development For iOS Hugh Njemanze Keynote PTES Speed Debates Adding Another Level Of Hell To Reverse Engineer… You Got That SIEM, Now What Do You Do Fireshark v2 How To Isotope Tag A Ghost Building Bridges, Forcing Hackers And Business T… Tinker Tailor Soldier A-GPS Further Down The EXIF Hole Security Toolbox Getting Stuff Done Will We Ever Be Secure The 2011 Verizon Data Breach Investigation Report James Beeson - KeynoteFuente (aquí también puedes encontrar las presentaciones)
Leer más

Presentaciones de la DeepSec 2011

La conferencia sobre seguridad DeepSec 2011 se celebró el pasado 15-18 de noviembre en Viena. Esta son las presentaciones que se dieron: DeepSec_2011_Adrian_Wiesmann_-_compliance_can_make_sense.pdf DeepSec_2011_Alan_Kakareka_-_Insight_Into_Russian_Black_Market.pdf DeepSec_2011_Arron_Finnon_-_Reassemble_or_GTFO!_-_IDS_Evasion_Strategies.pdf DeepSec_2011_Bogdan_Alecu_-_SMS_Fuzzing-SIM_Toolkit_Attack.pdf DeepSec_2011_Jagadesh_Chandraiah_-_ .pdf DeepSec_2011_Khash_Kiani_-_Identity X.0 - Securing the Insecure.pdf DeepSec_2011_Matthias_Luft_-_Do_They_Deliver_-_Practical_Security_and_Load_Testing_of_Cloud_Service_Providers.pdf DeepSec_2011_Michele_Orru_-_Ground BeEF_- Cutting,_devouring_and_digesting_the_legs_off_a_browser.pdf DeepSec_2011_Mikhail_Utin_-_US experience_-_laws,_compliance_an_real_life_-_when_everything_seems_right_but_does_not_work.pdf DeepSec_2011_Mitja Kolsek_-_How_to_rob_an_online_bank_and_get_away_with_it.pdf DeepSec_2011_Morgan_Marquis-Boire_-_Armageddon Redux_-_The_Changing_Face_of_the_Infocalypse.pdf DeepSec_2011_Peter_Wolkerstorfer_-_Human_Factors_Engineering_for_IT_Security.pdf DeepSec_2011_Sourabh_Satish_-_Behavioral_Security.pdf DeepSec_2011_Tam_Hanna_-_Attack_vectors_on_mobile_devices.pdf DeepSec_2011_Toby_Foster_-_Solving_Social_Engineering_Attacks.pdf DeepSec_2011_Toralv_Dirro_-_Malware_Trends_2011.pdf DeepSec_2011_Victor_Julien_-_Advances_in_IDS_and_Suricata.pdf DeepSec_2011_laurent_weber-extending_Scapy_by_a_GSM_interface.pdf Deepsec_2011_Alex_Plaskett_-_Windows_Pwn_7_OEM.pdf Deepsec_2011_Duncan_Campbell_-_How_Terrorists_Encrypt.pdf Deepsec_2011_Fernando_Gont_-_Results_of_a_Security_Assessment_of_IPv6.pdf Deepsec_2011_Mariano_Nunez_Di_Croce_-_Your crown jewels online_-_Further_Attacks_to_SAP_Web_Applications.pdf Deepsec_2011_Stefan_Schumacher_-_On-Cyber-Peace.pdf Fuente
Leer más

Vídeos de la conferencia SOURCE de Barcelona

Ya se pueden acceder a los vídeos y algunas de las presentaciones de las charlas dadas en la conferencia de seguridad SOURCE celebrada en Barcelona los pasados 16 y 17 de noviembre. Adapting to the Age of Anonymous Vídeo Presentación Wfuzz para Penetration Testers Vídeo Presentación Advanced (Persistent) Binary Planting Vídeo Presentación All Your Crimeware Are Belong To Us! Vídeo Are Agile and Secure Development Mutually Exclusive? Vídeo Presentación Canales Cubiertos en Redes Sociales Vídeo Metasploit: Hacker's Swiss Army Knife Vídeo Show Me Your Kung-Fu Vídeo RESTful Services, the Web Security Blind Spot Vídeo Presentación Steganography Vídeo Presentación Men in the server meets the Man In The Browser Vídeo Presentación Security Goodness with Ruby on Rails Presentación Security Convergence - Goldmines & Pitfalls Vídeo La calificación y su aplicación al cloud computing Vídeo How NOT to do a Penetration Test Vídeo There’s an App for That: Evolving Mobile Security into a Business Advantage Vídeo Data Exfiltration - the way Q would have done it Vídeo Presentación Legal/technical strategies addressing data risks as perimeter shifts to Cloud Vídeo Gaining Acceptance for a New Approach to Software Development Vídeo Web de las charlas
Leer más

Presentaciones de la Ruxcon 2011

Ya podemos acceder a las presentaciones de la Ruxcon 2011 celebrada el 19 y 20 del pasado mes de noviembre en Melbourne, Australia: 2011 Data Breach Investigations Report - Verizon, US Secret Service, Dutch High Tech Crime Unit - Mark Goudie An Embarrassingly Simple Solution to the Problem of Protecting Browser Users - Peter Gutmann APCO P25 Security Revisited - The Practical Attacks! - Steve Glass and Matt Robert Automated Detection of Software Bugs and Vulnerabilities in Linux - Silvio Cesare Digital Forensic Evidence: From Certainty to Shades of Grey - Dr.
Leer más

Vídeos de la W3Conf

Los pasados 15 y 16 de noviembre se celebró en Redmon la W3Conf, la primera conferencia sobre estándares web y la plataforma web abierta (Open Web Platform). encabezada por la W3C. A continuación podéis encontrar la lista de las presentaciones (vídeos) que se dieron. WELCOME: CONTRIBUTING TO OPEN STANDARDS - Vídeo TESTING TO PERFECTION - Vídeo COMMUNITY GROUPS: A CASE STUDY WITH WEB PAYMENTS - Vídeo SHORTCUTS: DEVELOPER DOCUMENTATION - Vídeo 5 CSS MAGIC POTIONS FOR YOUR LAYOUT TROUBLES FROM THE FUTURE - Vídeo WEB GRAPHICS – A LARGE CREATIVE PALETTE - Vídeo WEB PERFOMANCE: MAKING THE WEB FASTER - Vídeo SHORTCUTS: GETTING OFF (LINE) WITH THE HTML5 APPCACHE - Vídeo THE N-SCREENS PROBLEM: BUILDING APPS IN A WORLD OF TV AND MOBILES - Vídeo THE GREAT HTML5 DIVIDE: HOW POLYFILLS AND SHIMS LET YOU LIGHT UP YOUR.
Leer más
Siguiente
Anterior
Libros

Docker: SecDevOps LibroMicrohistorias

Machine Learning aplicado a Ciberseguridad: Técnicas y ejemplos en la detección de amenazas Kubernetes para profesionales: Desde cero al despliegue de aplicaciones seguras y resilientes

Buscar
Entradas Recientes
Categorías
Enlaces