Software Wydawnictwo

Opis wydarzenia

Część wykładów była prowadzona w formie BYOL (Bring Your Own Laptop). Wykłady te będą skierowane przede wszystkim do uczestników, którzy przyniosą na konferencję własne laptopy i dzięki temu mogli aktywnie uczestniczyć w sesjach.

Uczestnicy mogli wystartować swoje komputery ze specjalnie przygotowanej płyty CD zawierającej dystrybucję hakin9.live, a następnie włamać się do sieci testowej używając technik opisanych przez wykładowcę lub obronić się przed atakiem przeprowadzonym przez innych uczestników.

Tematy, które były poruszane podczas konferencji:

• Ataki na aplikacje Unix/Linux
• Ataki na aplikacje Windows
• Techniki przełamywania zabezpieczeń
• Analiza kodu binarnego, źródłowego
• Bezpieczeństwo usług Web Services
• Bezpieczeństwo baz danych
• Bezpieczeństwo sprzętu
• Skanowanie i analiza sieci
• Anonimowość i prywatność w Sieci
• Kryptografia
• Hardening systemów Unix/Linux
• Hardening systemów Windows
• Analiza powłamaniowa systemów Unix/Linux
• Analiza powłamaniowa systemów Windows
• Bezpieczeństwo sieci bezprzewodowych (Wi-Fi, Bluetooth)
• Rootkity, backdoory w systemach Unix/Linux
• Rootkity, backdoory w systemach Windows
• Ukryte kanały i steganografia sieciowa
• Analiza robaków, malware
• Certyfikaty bezpieczeństwa, PKI
• Inżynieria odwrotna
• Inżynieria społeczna
• Aspekty prawne

Prelegenci

Michał Szymański

Zajmuje się aspektami związanymi z bezpieczeństwem informacji od ponad 9 lat i obecnie specjalizuje się w bezpieczeństwie sieci bezprzewodowych, ukrytych kanałach sieciowych, steganografii sieciowej i całościowym zarządzaniu bezpieczeństwem informacji: systemy zarządzania bezpieczeństwem informacji, szacowanie i zarządzanie ryzykiem (RA, BIA), zarządzanie ciągłością działania (BCP, BRP, DRP), testy bezpieczeństwa i penetracyjne.
Jest autorem wielu publikacji w czasopismach specjalistycznych i wystąpień na konferencjach w kraju i za granicą.
Przeprowadził kilkanaście testów bezpieczeństwa i testów penetracyjnych w wielu znanych polskich firmach.
Obecnie współpracuje z kilkoma firmami na stanowisku inżyniera lub konsultanta ds. bezpieczeństwa informacji, jest również członkiem zespołu hakin9.lab, który jest grupą specjalistów ds. bezpieczeństwa związanych z magazynem hakin9.

Piotr Sobolewski

Jest specjalistą w zakresie bezpieczeństwa systemów informatycznych. Był redaktorem naczelnym magazynu “hakin9”, który tworzył od samego początku. Jako członek grupy hakin9.lab prowadzi badania oraz przeprowadza warsztaty i szkolenia poświęcone tematyce bezpieczeństwa systemów informatycznych.
Piotr Sobolewski jest absolwentem inżynierii oprogramowania na Uniwersytecie Szczecińskim oraz nawigacji na Wyższej Szkole Morskiej w Szczecinie.

Renaud Bidou

Has been working in the field of IT security for about 10 years. He first performed consulting missions for telcos, pen-tests and post-mortem audits, and designed several security architectures. In 2000 he built the first operational Security Operation Center in France which quickly became the 4th French CERT and member of the FIRST. He then joined Radware as the security expert for Europe, handling high criticity security cases.
In the mean time Renaud is an active member of the rstack team and the French Honeynet Project with studies on honeynet containment, honeypot farms and network traffic analysis. He regularly publishes research articles in the French security magazine MISC and teaches in several universities in France.

Jim Geovedi

Is an information security consultant. He has 7 years of experience wearing a suit in the Information Security industry. Over this period, he has worked with public, private, non-profit organisations, and governments. In his spare time, negative amuses himself as a contributor to open-source security software projects.

Sumit Siddharth

Is GIAC Certified Intrusion Analyst (GCIA) at NII< www.niiconsulting.com&gt; and also heads the Penetration Testing team. He has carried out vulnerability assessments and penetration testing assignments for a number of prestigious clients. He has discovered a number of vulnerabilities in various products and released advisories on them. Sumit has been a speaker at many international conferences including PAKCON 2005 and SHMOOCON 2006. He is a graduate from IIT Kanpur, India. He has also conducted trainings on ethical hacking and intrusion detection.

Saumil Udayan Shah

Founder and CEO, Net-Square Solutions.
Saumil continues to lead the efforts in e-commerce security research and product development at Net-Square. His focus is on researching vulnerabilities with various e-commerce and web based application systems, system architecture for Net-Square’s tools and products, and developing short term training programmes. Saumil also provides information security consulting services to Net-Square clients, specializing in ethical hacking and security architecture. He holds a designation of Certified Information Systems Security Professional. Saumil has had more than ten years experience with system administration, network architecture, integrating heterogenous platforms, and information security and has perfomed numerous ethical hacking exercises for many significant companies in the IT area.
Saumil is a regular speaker and trainer at security conferences such as BlackHat, RSA, etc.Previously, Saumil was the Director of Indian operations for Foundstone Inc, where he was instrumental in developing their web application security assessment methodology, the web assessment component of FoundScan – Foundstone’s Managed Security Services software and was instrumental in pioneering Foundstone’s Ultimate Web Hacking training class. Prior to joining Foundstone, Saumil was a senior consultant with Ernst & Young, where he was responsible for the company’s ethical hacking and security architecture solutions.
Saumil has also worked at the Indian Institute of Management, Ahmedabad, as a research assistant and is currently a visiting faculty member there.Saumil graduated from Purdue University with a master’s degree in computer science and a strong research background in operating systems, networking, infomation security, and cryptography. At Purdue, he was a research assistant in the COAST (Computer Operations, Audit and Security Technology) laboratory. He got his undergraduate degree in computer engineering from Gujarat University, India. Saumil is a co-author of “Web Hacking: Attacks and Defense” (Addison Wesley, 2002) and is the author of “The Anti-Virus Book” (Tata McGraw-Hill, 1996)

Neil Archibald

Is a security professional from Sydney Australia. He has a strong interest in programming and security research. Neil is employed by Suresec LTD as a Senior Security Researcher. He has coauthored two books published by Syngress – “Aggressive Network Self Defense” and “Nessus, Snort & Ethereal Power Tools”.

Ilja van Sprundel

Employed By Suresec Ltd. has a passion for somewhat offensive computer security. Among other things he has previously imlemented a secure creditcard transaction solution. Ilja also attended the RWTH-Aachen summerschool of applied I.T. security where he learned a great deal about offensive and defensive security mechanisms. He is also the winner of the 21c3 stacksmashing contest and a member of the Netric security research group.

Zeljko Vrba

Was born in 1977, obtained a computer engineering graduate degree in 2001. at the Faculty of Electrical Engineering and Computing in Zagreb, Croatia. After graduation, he has worked for several years in the industry as a UNIX system administrator on mission-critical systems (most notably, a commercial CA), C and C++ programmer. He also did some embedded systems programming in C (PalmOS) and assembler (Microchip PIC).
Currently, he is a PhD student at the Institute for Informatics at the University of Oslo, specializing in operating systems. His professional interests also include cryptography, computer security and applied mathematics.

Shawn Merdinger

Is a independent security researcher based in Austin, Texas. With over seven years in the security field, he has worked with leading network security companies like TippingPoint/3Com and Cisco Systems’ Security Technologies Assessment Team (STAT). Shawn holds two bachelor’s degrees from the University of Connecticut at Storrs, a master’s degree from the University of Texas at Austin. He specializes in network and application vulnerability assessments of devices, technologies and implementations, recently focusing on VoIP security. When not breaking stuff, he is a supporter of non-profit Austin FreeNet and other Austin Digital Divide efforts.

Presentation Title: VoIP SIP Phones: Advanced Security Analysis & Attack Methods

Abstract:
Building on previous analysis and presentations, this presentation covers a new round of advanced security analysis and testing methods applied to VoIP SIP phones, both desktop and wireless (802.11b/g). Attendees will learn the techniques and opensource tools needed to systematically evaluate the security posture of their VoIP SIP phones. Expect vulnerability/exploit demonstrations and the first public disclosure of security issues in several new-to-market VoIP phones. Also, the BYOL will provide the opportunity to have “hand’s on” interaction with the VoIP phones.

Alexander Kornbrust

is the founder and CEO of Red-Database-Security GmbH, a company specialised in Oracle security. He is responsible for Oracle security audits and Oracle Anti-Hacker trainings. Before that he worked several years for Oracle Germany, Oracle Switzerland and IBM Global Services as consultant. Alexander Kornbrust is working with Oracle products as DBA and developer since 1992. During the last 5 years found over 110 security bugs in different Oracle products. Publications and further information can be found at: www.red-database-security.com

Jakub Vrana

Is listed as one of eight authors of official PHP documentation. He has a blog on PHP tricks ( http://php.vrana.cz – in Czech) is author of several publications. Jakub lectures web applications (HTML, CSS, JS, PHP, SQL) on Charles University in Prague. He makes his living by programming PHP applications.

Dzień 1
8.30 – 9.00
Rejestracja
9.00 – 10.30
Ilja van Sprudel, Neil Archibald
Breaking Mac OS X
10.30 – 10.50
Przerwa kawowa
10.50-11.50
Sumit Siddharth
Evading NIDS
11.50 – 12.50
Zeljko Vrbe
Insecurity of smartcarts
12.50 – 13.50
Obiad
13.50 – 14.50
Shawn Merdinger
VoIP security
14.50 – 15.10
Przerwa
15.10 – 16.10
Zaljko Vrba Jakub Vrana
Insecurity of smartcards
Basics of PHP security (BYOL)
16.10 – 17.10
Shawn Merdinger Jakub Vrana
VoIP security (BYOL)
Basics of PHP security (BYOL)
17.10 – 17.20
Zakończenie 1 dnia

Sesja nocna
17.30 – 19.30
Michał Szymański
Windows usermode rootkis
17.30 – 22.00
Piotr Sobolewski
Format strong vulnerabilites – from basics to real life exploit

Dzień 2
9.00 – 10.00
Alexander Kornbrust
Oracle for pentester
10.00 – 10.20
Przerwa Kawowa
10.20 – 11.20
Jim Geovedi
Hotspot security
11.20 – 11.40
Break
11.40 – 12.40
Michał Szymański
Bypassing NACS: Network Steganography; part I
12.40 – 13.40
Lunch
Track A

Track B
13.40 – 14.40
Michał Szymański Renaud Bidou
Bypassing NACS: Network Steganography; part II (BYOL)

DCE-RPC tips and tick to evade intrusion decetion/ prevention
13.40 – 15.40
Saumil Shah Piotr Sobolewski
Writing metasploit plugins – from vulnerability to exploit (BYOL)

How to defeat application level fingerprinting
15.40 – 16.00
Break
16.00 – 17.00
Saumil Shah Piotr Sobolewski
Writing metasploit plugins – from vulnerability to exploit (BYOL)

How to defeat application level fingerprinting
17.00 – 17.20
End of the conference