This post is designed to collect all the materials (priority presentation) of the ZeroNights conference held on November 25 in St. Petersburg, before their “official” publication on the conference website (for whom it is unbearable, and may help the organizers). It is useful to those who were not, and those who want to once again review / re-read the materials.
- all presentations in upd 2 ---
')
I would very much like to thank the Bitworks company , where I work not so long ago, but which sent me to this conference at my own expense — from snowy Siberia to rainy Petersburg.
2. The report by Jonathan Brossar “Analysis of memory after it was damaged.” Was replaced by a report on SCADA systems, unfortunately not present at it (I don’t even know exactly what to look for).
5. Vladimir Vorontsov - “Vulnerabilities in HTTP response splitting, header injection, and cache infection: back into service”
FASTTRACK
#Aleksandr Polyakov - "Do not touch, otherwise it will fall apart: hacking of business applications in extreme conditions"
# Nikita Abdullin - “Methods of the study of embedded MIPS devices on the example of DrayTek SOHO routers”
# Dmitry Chastukhin - "Practical attacks on Internet kiosks and payment terminals"
#Andrey Labunets - “Methods of tracing network traffic to search for vulnerabilities”
The presentation at http://www.slideshare.net/Sciurus/windbgshark-tool is not available.
#Dmitry „D1g1“ Evdokimov - “DBI: Intro”
Artyom Shishkin - “The method of intercepting print by modifying Windows GDI”
# Alexey Krasnov - “We all learned a little, something, and something” [video 9.00 min]
# Maxim Sukhanov - “Fraud in the RBS systems: problems arising in the production of judicial computer-technical expertise”
#Alexander Matrosov, Evgeny Rodionov - “Win32 / Duqu: the involution of the Stuxnet worm”
#Vladimir kropotov - “The evolution of a drive-by-download attack before and after the publication of vulnerabilities through the eyes of an information security analyst.”
=== I personally advise Fedor Yarochkin's performance, very sensible and interesting ===
PS The post will be updated. In the comments we leave the links to the materials (I saw the way, some shot the video, will also be necessary) and I will immediately add them to the post.