- Remorse, Textella: An Alternative Application of Peer to Peer
Structured Networks
- Matt Miller, Cthulhu: A software analysis framework built on Phoenix
- Scott Moulton, Advanced Hacking Flash/Hard Drive Recoveries
- Jerome Athias, Speeding up the exploits' development process
- Richard Johnson, AutoHacking with Phoenix Enabled Data Flow Analysis
- Travis Goodspeed, Exploiting Wireless Sensor Networks over 802.15.4
- Brandon Enright, Exposing Stormworm
- Jason Medeiros, The Last Stand: 100% Automatic 0day, Achieved,
Explained, and Demonstrated.
- Alexander Lash, CDMA Unlocking and Modification
SpiderPig is a project created for performing and visualizing data flow
analysis of a selected binary program. SpiderPig was created in the purpose
of providing a tool which would be able to help vulnerability and security
researchers with tracing and analyzing any necessary data and it's further
propagation. Such tasks are very often crucial in the vulnerability
discovering/identifying process and typically require a lot of time
consuming manual work. Following paper discusses methods and techniques
implemented in SpiderPig in order to perform semi-automatic data flow
analysis.
- Remorse, Textella: An Alternative Application of Peer to Peer
Structured Networks
- Matt Miller, Cthulhu: A software analysis framework built on Phoenix
- Scott Moulton, Advanced Hacking Flash/Hard Drive Recoveries
- Jerome Athias, Speeding up the exploits' development process
- Richard Johnson, AutoHacking with Phoenix Enabled Data Flow Analysis
- Travis Goodspeed, Exploiting Wireless Sensor Networks over 802.15.4
- Brandon Enright, Exposing Stormworm
- Jason Medeiros, The Last Stand: 100% Automatic 0day, Achieved,
Explained, and Demonstrated.
- Alexander Lash, CDMA Unlocking and Modification
- Doctrine of using cyber power, deterrence
Cyber Battlefield Intelligence
- Tactical and Operational issues: target selection, validation and
prioritisation, collateral damage, risk management, traffic flow
analysis
- Attribution and anonymity
- Information gathering from the underground hacker community
- Situational awareness and management in cyberspace
- Heuristic and early warning notification, event identification, data
correlation and ranking
