About two months ago (April 15th 2015) I visited Miami and presented at the
INFILTRATE Security Conference
a talk on Firefox heap exploitation, titled “OR’LYEH? The Shadow over Firefox”. The organization of the conference was flawless and the people I met there were amazing. A special thank you to the Immunity team for being great hosts and for their helpful feedback.
CENSUS researcher Andrzej Dyjak delivered a presentation on the use of DTrace for dynamic analysis on the OSX platform, entitled "DTrace + OS X = Fun” at the CONFidence 2015 conference.
CENSUS was one of the sponsors of the 5th InfoCom Security conference, that was held on April 1st, 2015 at the Divani Caravel hotel in Athens, Greece.
At the 17:30 session, our director of Security Testing services Mr Nikolaos Tsagkarakis delivered
a presentation entitled “‘Malicious’ Technologies” in which he showed how
technologies and techniques used by attackers can be used for the production of more secure systems.
I recently presented a talk on heap exploitation abstraction at two conferences, namely
ZeroNights 2014 (Moscow, Russia) and
BalCCon 2014 (Novi Sad, Serbia). The talk titled “Project Heapbleed”, collected the experience of exploiting allocators in various different target applications and platforms. The talk focused on practical, reusable heap attack primitives that aim to reduce the exploit development time and effort.