CONFidence 2009 coming up soon!

The new edition of CONFidence is coming up soon! CONFidence, which has become one of the biggest technical IT security conferences in Europe, is taking place on 15-16 May in the beautiful city of Krakow.

This is the fifth year CONFidence is taking place, and there have been several changes introduced. First of all there will be two simultaneous tracks after lunch time, whereas previous editions only offered one track all day. [...]

more | comments | comments rss | posted by

Audio From Black Hat USA 2008

We’ve got some audio from the past Black Hat conference I’ve already talked about over here and here.

Keep in mind that without the slides it will probably sound very boring. Both parts of the presentation can be found here and here.

more | comments | comments rss | posted by

Black Hat Las Vegas Baby

So, Black Hat is next week. Great! I will be happy to see you all there. You may even join me on the 6th at 13:45 – the Client-side Security talk. The details of my talk are here, which btw is the improved version of what I have over here.

I am still working on my slides, trying to add that edge-ness I am always striving to achieve combined with a severe doze of simplicity. Don’t you know? Simple is the new black.

This time around I am visiting the conference as a tourist. [...]

more | comments | comments rss | posted by

OWASP Europe 2008 Ghent

This year’s OWASP Europe event was based in Ghent, Belgium. I had to take an early train from London to Brussels, which is by the way dead easy from where I live. As usual the event was excellent.

Now there were a few funny things but the most funnies of all was that I’ve got flagged by Seba for having a sales pitch within my slides. Actually, my intentions were totally different. Moreover, it is silly to sell very niche services to wide-range of Web app guys. [...]

more | comments | comments rss | posted by

CONFidence 2008

CONFidence was great! We would like to thank to Andrzej, Anna and everybody else in the CONFidence team for making this event one of the greatest experiences of a lifetime. Thanks again. We are looking forward for the next one. :)

There were many interesting presentations. We’ve tried to attend all of them although it was really hard to do so when the weather in Krakow was so nice (very different from the weather in cloudy/rainy London). [...]

more | comments | comments rss | posted by

Black Hat Europe 2008

The Black Hat Europe 2008 event took place on the 27th and 28th of March. In this post, you will be able to find information regarding my talk and research.

My presentation was titled Client-side Security. Here is the abstract:

The event was very interesting and very well organized. I met a lot of people and had very interesting discussions all together. You can download the conference materials from here. The paper is located here and the slides over here. [...]

more | comments | comments rss | posted by

Black Hat Europe 2008 Amsterdam

I am just using the opportunity to let everybody (mainly pals who expect to see me there) know that I am heading off to Black Hat Europe 2008 in Amsterdam (as usual).

Supposedly, there are four full tracks for two days but I can see only two – or is that four track for two days – sounds more like it? I am speaking in track two on the first day, first slot, of the event, starting at 10:00 and finishing at 11:15, if everything goes as planned. [...]

more | comments | comments rss | posted by

HITB Dubai 2008: we can’t wait!

One of the things I like about the hacker/security community is how much ideas exchanging takes place. Most researchers soon realize that there is nothing like a good session of sharing ideas with other peers in order to come up with even more interesting thoughts!

We’re happy to say that GNUCITIZEN will be part of one of the events we were the most interested in: HITB Dubai 2008. Both pdp (client-side hacking), and my (embedded devices hacking) material were accepted by the HITB folks. [...]

more | comments | comments rss | posted by

Web2.0 is not AJAX

I am going to speak at OWASP’s mini-conference in Brussels on 6th of September about the dangers of Web2.0. I am going to reveal some of the research that I have been conducting in the past couple of months on what exactly is Web2.0 hacking. During the conference I am also going to drop a paper and a conceptual tool called Renaissance. So stay tuned. If you have a chance, come visit the GC group in Brussels. It will be fun.

Here is the outline of my talk:

What is Web2.0? [...]

more | comments | comments rss | posted by

6th OWASP Conference

Here you will be able find all materials that I used for my presentation at the 6th OWASP Conference. Further discussion and clarification on the subject to be expected very soon.

Be aware that the slides may not be very descriptive. In general, I try not to put too much information into my presentations in order to avoid unnecessary clutter. Feel free to drop a comment if something is unclear. [...]

more | comments | comments rss | posted by