Black Hat Webcasts RSS Feed Black Hat Briefings

Webcast Details

WebSync Version Audio version

Black Hat Webcast No. 10
Black Hat Mobility and Security
Thursday, May 21 1:00 pm PST/4:00 pm ET • FREE
Speakers:

* Jeff Moss, Founder and Director of Black Hat
* Alex Stamos
* Charlie Miller
* Vincenzo Iozzo
* Roberto Gassira'
* Roberto Piccirillo

link to web sync version of this webcastWebSync Version

link to audioAudio Version


Overview:
We're trying out a new format for the May 21 webcast on Mobility and Security. We're going to bring in some researchers and some industry folks and have a round-table discussion on the current state and future direction of securing the mobile devices we all can't live without. The idea behind this new style of presentation is to increase the amount of interactivity, both with the guests and the audience, so please join us and bring your ideas and questions.

Alex Stamos
Charlie Miller
Vincenzo Iozzo
Roberto Gassira'
Roberto Piccirillo

Webcast Details

WebSync Version Audio version

Black Hat Webcast No. 9
Black Hat Europe 09 Sneak Preview
Thursday, March 19 1:00 pm PST/4:00 pm ET • FREE
Speakers:

* Jeff Moss, Founder and Director of Black Hat
* Enno Rey and Daniel Mende
* Charlie Miller and Vincenzo Iozzo
* Stefano Zanero and Claudio Criscione
* Roberto Gassira' and Roberto Piccirillo

link to web sync version of this webcastWebSync Version

link to audioAudio Version


Overview:
Black Hat Europe is right around the corner - we'll be returning to Amsterdam April 14-17. We're very excited about the lineup of speakers we've put together, and this webcast will be a sort of sneak preview of what kind of presentations attendees will get to see at the live event. Webcast speakers include:

Enno Rey and Daniel Mende
All Your Packets Are Belong to Us - Attacking Backbone Technologies

Charlie Miller and Vincenzo Iozzo
Fun and Games Using In-Memory Execution on Mac OS X and iPhone

Stefano Zanero adn Claudio Criscione
Masibty: a Web Application Firewall Based on Anomaly Detection

Roberto Gassira' and Roberto Piccirillo
Hijacking Mobile Data Connections

Rich Internet Application (RIA) frameworks are seeing an enormous growth in popularity - technologies like Ajax and Flash create nearly unlimited opportunities to expand and improve the web user experience. They also bring with them a host of new security risks. The popularity of these frameworks among application developers insures that we'll see more attacks and issues in the months and years ahead.

Join Black Hat Founder and Director Jeff Moss and his guests Billy Hoffman of HP and Alex Stamos of iSec for a lively discussion of new issues and security implications in the world of Rich Internet Applications.

Overview:

Our seventh installment of the Black Hat Webcast Series arrives next week with an in-depth and fascinating look into the world of Mac Security. As the Mac platform grows in popularity both with the general public and the enterprise, we’ve seen an increase both in attacks and reasearcher interest in the topic of OS X Security.

Black Hat Speaker Jesse D’Aguanno will be presenting on the topic of "Crafting OS X Kernel Rootkits – Fundamentals." We’ll also have a presentation by Tiller Beauchamp of IOActive will be making a presentation called "OS X Security - A year in Review". Please join me and our guests for what is sure to be a fascinating conversation. Bring your questions - the last 30 minutes or so will be a question-and-answer session.

Database Forensics expert David Litchfield will discuss his new tool and paper with Black Hat Founder and Director Jeff Moss and take questions from our webcast audience. The tool, orablock, allows a forensic investigator to dump data from a "cold" Oracle data file - i.e. there's no need to load up the data file in the database which would cause the data file to be modified, so using orablock preserves the evidence. Orablock can also be used to locate "stale" data - i.e. data that has been deleted or updated. It can also be used to dump SCNs for data blocks which can be useful during the examination of a compromised Oracle box.

"Clickjacking" is all over the news lately. For the uninitiated, it's a set of techniques discovered by Jeremiah Grossman and Robert Hansen that allows an attacker to transparently capture a user's clicks, forcing the user to do all manner of unpleasant things ranging from adjusting security settings to unwittingly visiting websites with malicious code.