[DeepSec 2015]50 Shades of WAF

[DeepSec 2015]50 Shades of WAF

| | conference, deepsec, security
Mastodon 50 Shades of WAF – Exemplified at Barracuda & Sucuri Ashar Javed (Hyundai AutoEver Europe GmbH) This talk will present 50 (25*2) bypasses of Barracuda and Sucuri’s WAF default signatures that ...
DeepSecLogo

[DeepSec 2015] File Format Fuzzing in Android – Giving a Stagefright to the Android Installer

| | conference, deepsec, security
File Format Fuzzing in Android – Giving a Stagefright to the Android Installer Alexandru Blanda (Intel Corporation)  The presentation focuses on revealing a fuzzing approach that can be used to uncover different types ...
DeepSecLogo

[DeepSec 2015]How to Break XML Encryption – Automatically

| | conference, deepsec, security
How to Break XML Encryption – Automatically Juraj Somorovsky (Ruhr University Bochum) In recent years, XML Encryption became a target of several new attacks. These attacks belong to the family of adaptive ...
DeepSecLogo

[DeepSec 2015] Hacking Cookies in Modern Web Applications and Browsers

| | conference, deepsec, security
Hacking Cookies in Modern Web Applications and Browsers Dawid Czagan (Silesia Security Lab) Since cookies store sensitive data (session ID, CSRF token, etc.) they are interesting from an attacker’s point of view ...
DeepSecLogo

[DeepSec 2015] Can societies manage the SIGINT monster?

| | conference, deepsec, security
Can societies manage the SIGINT monster? Duncan Campbell (IPTV Ltd) Behind closed doors, ubiquitous surveillance systems have evolved in parallel to and hidden within the global communications infrastructure. Developments in signals intelligence ...
DeepSecLogo

[DeepSec 2014] Advanced Powershell Threat: Lethal Client Side Attacks using Powershell

| | conference, deepsec, security
Advanced Powershell Threat: Lethal Client Side Attacks using Powershell – Nikhil Mittal APT – A buzzword which refuses to die. Lets have some fun with it, lets move it to powershell. This talk would ...