|
|
|
| F |
8:00am – 8:50am |
Breakfast |
| R |
9:00am – 9:50am |
Keynote Augustus Ballroom |
| E |
10:00am – 11:00am |
John McDonald & Chris Valasek: Practical Windows Heap Exploitation Augustus Ballroom 5-6 |
| I |
10:00am – 11:00am |
FX: Router Exploitation Roman Ballroom |
| L |
10:00am – 11:00am |
Rod Beckstrom: Beckstrom's Law Milano Ballroom 1-2-3-4 |
| M |
10:00am – 10:20am |
Dino Dai Zovi: Macsploitation with Metasploit Florentine 1-2-3-4 |
| P |
10:00am – 11:00am |
Wolfgang Kandek: The Laws of Vulnerabilities 2.0 Pompeiian Ballroom |
| V |
10:00am – 11:00am |
Billy Hoffman & Matt Wood: Veiled - A Browser Based Darknet Milano Ballroom 5-6-7-8 |
| K |
10:00am – 11:00am |
Peter Kleissner: Stoned Bootkit Augustus Ballroom 1-2 |
| T |
10:00am – 11:00am |
Michael Tracy, Chris Rohlf, & Eric Monti: Ruby for Pentesters Augustus Ballroom 3-4 |
| M |
10:20am – 10:40am |
Mike Kershaw: Kismet and MSF Florentine 1-2-3-4 |
| M |
10:40am – 11:00am |
Chris Gates: Breaking the 'Unbreakable' Oracle with Metasploit Florentine 1-2-3-4 |
| F |
11:00am – 11:15am |
Coffee Service |
| E |
11:15am – 12:30pm |
Nathan Hamiel & Shawn Moyer: Weaponizing the Web Augustus Ballroom 5-6 |
| I |
11:15am – 12:30pm |
Aaron LeMasters & Michael Murphy: Rapid Enterprise Triaging Roman Ballroom |
| L |
11:15am – 12:30pm |
Dmitri Alperovitch: Fighting Russian Cybercrime Mobsters Milano Ballroom 1-2-3-4 |
| M |
11:15am – 12:30pm |
Peter Silberman & Steve Davis: Metasploit Autopsy - Reconstructing the Crime Scene Florentine 1-2-3-4 |
| P |
11:15am – 12:30pm |
Bob West: CSO Panel - Black Hat Strategy Meeting Pompeiian Ballroom |
| V |
11:15am – 12:30pm |
Andrea Barisani & Daniele Bianco: Sniff keystrokes with Lasers / Voltmeters Milano Ballroom 5-6-7-8 |
| K |
11:15am – 12:30pm |
Dino Dai Zovi: Advanced Mac OS X Rootkits Augustus Ballroom 1-2 |
| T |
11:15am – 12:30pm |
Michael Eddington: Demystifying Fuzzers Augustus Ballroom 3-4 |
| F |
12:30pm – 1:45pm |
Lunch Forum Ballroom |
| E |
1:45pm – 3:00pm |
Moxie Marlinspike: More Tricks for Defeating SSL Augustus Ballroom 5-6 |
| I |
1:45pm – 3:00pm |
Graeme Neilson: Netscreen of the Dead Roman Ballroom |
| L |
1:45pm – 3:00pm |
Tiffany Rad & James Arien: Your Mind - Legal Status, Rights and Securing Yourself Milano Ballroom 1-2-3-4 |
| M |
1:45pm – 3:00pm |
Egypt: Using Guided Missiles in Drive-Bys - Automatic Browser Fingerprinting Florentine 1-2-3-4 |
| P |
1:45pm – 3:00pm |
Eli O : Analyzing Security Research in the Media Pompeiian Ballroom |
| V |
1:45pm – 3:00pm |
Nitesh Dhanjani: Psychotronica Milano Ballroom 5-6-7-8 |
| K |
1:45pm – 3:00pm |
Erez Metula: Managed Code Rootkits Augustus Ballroom 1-2 |
| T |
1:45pm – 3:00pm |
Eduardo Vela Nava & David Lindsay: Our Favorite XSS Filters and How to Attack Them Augustus Ballroom 3-4 |
| E |
3:15pm – 4:30pm |
Mark Dowd, Ryan Smith & David Dewey: The Language of Trust Augustus Ballroom 5-6 |
| I |
3:15pm – 4:30pm |
Dan Kaminsky: Something to do with Network Security? Roman Ballroom |
| L |
3:15pm – 4:30pm |
Cormac Herley: Economics and the Underground Economy Milano Ballroom 5-6-7-8 |
| M |
3:15pm – 3:50pm |
I)ruid: MSF & Telephony Florentine 1-2-3-4 |
| P |
3:15pm – 4:30pm |
Amit Yoran: DC Panel - Update from Washington Pompeiian Ballroom |
| V |
3:15pm – 4:30pm |
Steve Topletz, Jonathan Logan & Kyle Williams: Global Spying Milano Ballroom 5-6-7-8 |
| K |
3:15pm – 4:30pm |
Jeff Williams: There's a Fox in the Henhouse Augustus Ballroom 1-2 |
| T |
3:15pm – 4:30pm |
Stefan Esser: State of the Art Post Exploitation in Hardened PHP Environments Augustus Ballroom 3-4 |
| M |
3:50pm – 4:30pm |
Val Smith, Colin Ames & David Kerb: MetaPhish pt. 1 Florentine 1-2-3-4 |
| F |
4:30pm – 4:45pm |
Coffee Service |
| E |
4:45pm – 6:00pm |
Thomas Ptacek, David Goldsmith & Jeremy Rauch: Hacking Capitalism '09 Augustus Ballroom 5-6 |
| I |
4:45pm – 6:00pm |
Andrew Fried, Paul Vixie & Christopher Lee: Internet Special Ops Roman Ballroom |
| L |
4:45pm – 6:00pm |
Jennifer Granick: Computer Crime Year in Review Milano Ballroom 1-2-3-4 |
| M |
4:45pm – 6:00pm |
Val Smith, Colin Ames & David Kerb: MetaPhish pt. 2 Florentine 1-2-3-4 |
| P |
4:45pm – 6:00pm |
Rich Mogul: VC Panel - Security Business Strategies During a Recession Pompeiian Ballroom |
| V |
4:45pm – 6:00pm |
Alessandro Acquisti: I just found 10 Million SSNs Milano Ballroom 5-6-7-8 |
| K |
4:45pm – 6:00pm |
Alexander Tereshkin & Rafal Wojtczuk: Introducing Ring -3 Rootkits Augustus Ballroom 1-2 |
| T |
4:45pm – 6:00pm |
Riley Hassell: Exploiting Rich Content Augustus Ballroom 3-4 |
| F |
6:00pm – 7:30am |
Gala Reception |
| F |
6:00pm – 7:30am |
Johnny Long: Me to We Florentine Ballroom |
| F |
6:00pm – 7:30am |
Pwnie Awards Roman Ballroom |
July 30 • Thursday |
| F |
8:00am – 8:00am |
Breakfast |
| R |
8:50am – 9:50am |
Keynote 2 Augustus Ballroom |
| C |
10:00am – 11:00am |
Ales Stamos, Andrew Becherer & Nathan Wilcox: Cloud Computing Models Augustus Ballroom 3-4 |
| H |
10:00am – 11:00am |
Rafal Wojtczuk & Alexander Tereshkin: Attacking IntelĀ® Bios Milano Ballroom 5-6-7-8 |
| B |
10:00am – 11:00am |
Zane Lackey & Luis Miras: Attacking SMS Milano Ballroom 1-2-3-4 |
| P |
10:00am – 11:00am |
Hacker Court Pompeiian Ballroom |
| R |
10:00am – 11:00am |
Datagram: Lockpicking Forensics Augustus Ballroom 5-6 |
| S |
10:00am – 11:00am |
Jeongwook Oh: Fight Against 1-Day Exploits Augustus Ballroom 1-2 |
| U |
10:00am – 10:30am |
Alfredo Ortega: Deactivate the Rootkit Roman Ballroom |
| U |
10:30am – 11:00am |
Kevin Stadmeyer: Worst of the Best of the Best Roman Ballroom |
| F |
11:00am – 11:15am |
Coffee Service |
| C |
11:15am – 12:30pm |
Matt Conover: SADE: Injecting agents in to VM guest OS Augustus Ballroom 3-4 |
| H |
11:15am – 12:30pm |
Travis Goodspeed: A 16-bit Rootkit and Second Generation Zigbee Chips Milano Ballroom 5-6-7-8 |
| B |
11:15am – 12:30pm |
Charlie Miller & Collin Mulliner: Fuzzing the Phone in your Phone Milano Ballroom 1-2-3-4 |
| P |
11:15am – 12:30pm |
Hacker Court (continued) Pompeiian Ballroom |
| R |
11:15am – 12:30pm |
Jeremiah Grossman & Trey Ford: Mo' Money Mo' Problems Augustus Ballroom 5-6 |
| S |
11:15am – 12:30pm |
Nick Harbour: Win at Reversing Augustus Ballroom 1-2 |
| U |
11:15am – 11:40am |
Daniel Raygoza: Automated Malware Similarity Analysis Roman Ballroom |
| U |
11:40am – 12:30pm |
Chris Weber: Unraveling Unicode Roman Ballroom |
| F |
12:30pm – 1:45pm |
Lunch |
| C |
1:45pm – 3:00pm |
Haroon Meer: Clobbering the Cloud! Augustus Ballroom 3-4 |
| H |
1:45pm – 3:00pm |
Joe Grand, Jacob Appelbaum & Chris Tarnovsky: 'Smart' Parking Meter Implementations, Globalism, and You Milano Ballroom 5-6-7-8 |
| B |
1:45pm – 3:00pm |
Kevin Mahaffey, Anthony Lineberry & John Hering: Is Your Phone Pwned? Milano Ballroom 1-2-3-4 |
| P |
1:45pm – 3:00pm |
DHS Roundtable Pompeiian Ballroom |
| R |
1:45pm – 3:00pm |
Hristo Bojinov, Elie Bursztein & Dan Boneh: Embedded Management Interfaces Augustus Ballroom 5-6 |
| S |
1:45pm – 3:00pm |
Danny Quist & Lorie Liebrock: Reverse Engineering by Crayon Augustus Ballroom 1-2 |
| U |
1:45pm – 2:10pm |
Bryan Sullivan: Defensive Rewriting Roman Ballroom |
| U |
2:10pm – 2:35pm |
Rachel Engel: Gizmo Roman Ballroom |
| U |
2:45pm – 3:05pm |
Tony Flick: Hacking the Smart Grid Roman Ballroom |
| C |
3:15pm – 4:30pm |
Kostya Kortchinsky: Cloudburst - Hacking 3D and Breaking out of VMware Augustus Ballroom 3-4 |
| H |
3:15pm – 4:30pm |
Chris Tarnovsky: What the Hell is In there? Milano Ballroom 5-6-7-8 |
| B |
3:15pm – 4:30pm |
Jesse Burns: Exploratory Android Surgery Milano Ballroom 1-2-3-4 |
| P |
3:15pm – 4:30pm |
Meet the Feds: Feds vs. Ex-Feds Pompeiian Ballroom |
| R |
3:15pm – 4:30pm |
Alexander Sotirov & Mike Zusman: Breaking the Security Myths of Extended Validation SSL Certificates Augustus Ballroom 5-6 |
| S |
3:15pm – 4:30pm |
K. Chen: Reversing and Exploiting an AppleĀ® Firmware Update Augustus Ballroom 1-2 |
| U |
3:15pm – 3:40pm |
Marc Bevand: MD5 Chosen Roman Ballroom |
| U |
3:40pm – 4:05pm |
Steve Ocepek: Long-Life Sessions Roman Ballroom |
| U |
4:05pm – 4:30pm |
Peter Guerra: How Economics and Information Security Affects Cyber Crime Roman Ballroom |
| F |
4:30pm – 4:45pm |
Ice Cream Sundae Social |
| C |
4:45pm – 6:00pm |
Bruce Schneier: Reconceptualizing Security Augustus Ballroom 3-4 |
| H |
4:45pm – 6:00pm |
Mike Davis: Recoverable Advanced Metering Infrastructure Milano Ballroom 5-6-7-8 |
| B |
4:45pm – 6:00pm |
Vincenzo Iozzo & Charlie Miller: Post Exploitation Bliss - Loading Meterpreter on a Factory iPhone Milano Ballroom 1-2-3-4 |
| P |
4:45pm – 6:00pm |
A Black Hat Vulnerability Risk Assessment Pompeiian Ballroom |
| R |
4:45pm – 6:00pm |
Bill Blunden: Anti-Forensics: The Rootkit Connection Augustus Ballroom 5-6 |
| S |
4:45pm – 6:00pm |
Mario Vuksan: Fast & Furious Reverse Engineering with TitanEngine Augustus Ballroom 1-2 |
| U |
4:45pm – 5:10pm |
Michael Brooks: BitTorrent hacks Roman Ballroom |
| U |
5:10pm – 5:35pm |
Mikko Hypponen: The Conficker Mystery Roman Ballroom |
| U |
5:35pm – 6:00pm |
Muhaimin Dzulfakar: Advanced MySQL Exploitation Roman Ballroom |