Exetools

Exetools (https://forum.exetools.com/index.php)
-   General Discussion (https://forum.exetools.com/forumdisplay.php?f=2)
-   -   RECON 2017 (Montreal) SLIDES (and other ARCHIVED slides) (https://forum.exetools.com/showthread.php?t=18323)

TechLord 07-21-2017 14:09
RECON 2017 (Montreal) SLIDES (and other ARCHIVED slides)
 
SLIDES from Recon 2017 (Montreal) :

Get them HERE .
Quote:
LIST OF SLIDES :

BASS Automated Signature Synthesizer Mariano Graziano, Jonas Zaddach

BinCAT: purrfecting binary static analysis Philippe Biondi, Xavier Mehrenberger, Raphaël Rigo, Sarah Zennou

Bochspwn Reloaded: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking - Mateusz “j00ru” Jurczyk

Bubble Struggle - Call Graph Visualization with Radare2 - Marion Marschalek

You can run, but you can’t hide - Vlad Sabaka

Crypton - Exposing malware’s deepest secrets - Julia karpin, Anna Dorfman

Reverse Engineering DSSS - Michael Ossmann

Exporting IDA Debug Information - Adam Schwalm

FreeCalypso: a fully liberated GSM baseband - Mychaela Falconia

POSTSCRIPT - FreeCalypso: a fully liberated GSM baseband - Mychaela Falconia

Hacking Cell Phone Embedded Systems -Keegan Ryan

The Life-Changing Magic of IDAPython: Embedded Device Edition - Maddie Stone

MazeWalker - Enriching static malware analysis - Yevgeniy Kulakov

Miasm: reverse engineering framework - Fabrice Desclaux, Camille Mougey

ZapZap! bangBang! - Ang Cui, Rick Housley

ALL ARCHIVES of RECON (SLIDES, VIDEOS etc) :

Link here .

t3xc0d3 07-21-2017 18:31
The slides of Recon Montreal 2017 are still missing in the archive. However, they are linked here:

https://recon.cx/2017/montreal/slides/

edit:

Quote:
Originally Posted by TechLord (Post 109843)
[B][I]No, please see the FIRST LINK in my first post above.
oh, I missed it. sorry for that!

TechLord 07-22-2017 11:14
Quote:
Originally Posted by t3xc0d3 (Post 109830)
The slides of Recon Montreal 2017 are still missing in the archive. However, they are linked here:

https://recon.cx/2017/montreal/slides/
No, please see the FIRST LINK in my first post above.
It's right under the title.

They are NOT missing in my first post above :)

It contains the links to the slides for 2017 !

professor.frink 07-22-2017 18:12
Bochspwn Reloaded: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking - Mateusz “j00ru” Jurczyk

recommended

deepzero 07-22-2017 18:32
Quote:
Bochspwn Reloaded: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking - Mateusz “j00ru” Jurczyk

recommended
Yes, great talk indeed. Can anyone speculate why he used bochs over qemu for this?

sh3dow 08-27-2017 02:09
Quote:
Originally Posted by deepzero (Post 109845)
Can anyone speculate why he used bochs over qemu for this?
from j00ru blog
"We decided to use Bochs because it is by far easier to write instrumentation for, i.e. it has a very intuitive and simple instrumentation API, documentation and examples you can use to cleanly and elegantly implement the desired logic. As far as we are concerned, hacking on qemu is much more difficult because of lacking instrumentation support and horribly written code."


All times are GMT +8. The time now is 18:40.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX