«
Expand/Collapse
30 items tagged "felix"
Related tags:
rich internet [+],
cisco event [+],
usa [+],
authors [+],
chaos communication congress [+],
video [+],
flash [+],
audio [+],
router [+],
ria [+],
internet applications [+],
forensics [+],
flash content [+],
exploitation [+],
cisco ios [+],
blitzableiter [+],
approach [+],
Release [+],
x google [+],
win [+],
vulnerabilities [+],
vendor [+],
transformation [+],
software vulnerabilities [+],
routing [+],
reverse engineer [+],
protocol attacks [+],
protocol [+],
paper [+],
mac os [+],
internet application [+],
integrity protection [+],
google [+],
engineering [+],
disassembler [+],
design [+],
content [+],
complex systems [+],
commercial tools [+],
client platforms [+],
client [+],
case [+],
blackberry [+],
apple [+],
analysing [+],
Software [+],
lindner [+],
yesterday today and tomorrow [+],
yesterday [+],
windows security [+],
windows [+],
vulnerability [+],
video router [+],
video clip [+],
unicode [+],
txtbomber [+],
tunneling [+],
tomorrow [+],
today [+],
talk [+],
security 2002 [+],
protection mechanism [+],
printer [+],
practical [+],
networked [+],
lessons [+],
learned [+],
hacks [+],
graffiti [+],
flash authors [+],
finding [+],
felix vorreiter [+],
class [+],
cisco vulnerabilities [+],
cisco guys [+],
attacking [+],
asia [+],
arduino [+],
applications flash [+],
adobe [+],
abu dhabi [+],
black hat [+]
-
-
![Permalink for '[Audio] Building Custom Disassemblers'](/themes/lilina/web//media/mark_off.gif)
21:38
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
reverse engineering Event:
Chaos Communication Congress 27th (27C3) 2010 Abstract: The Reverse Engineer occasionally faces situations where even his most advanced commercial tools do not support the instruction set of an arcane CPU. To overcome this situation, one can develop the missing disassembler. This talk is meant to be a tutorial on how to approach the task, what to focus on first and what surprises one may be in for. The primary focus will be on the transformation of byte code back into mnemonic representation where only the reverse transformation is available (i.e. you have the respective assembler). It also covers how to integrate your new disassembler into your reverse engineering tool chain.
-
-
4:12
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
reverse engineering Event:
Chaos Communication Congress 27th (27C3) 2010 Abstract: The Reverse Engineer occasionally faces situations where even his most advanced commercial tools do not support the instruction set of an arcane CPU. To overcome this situation, one can develop the missing disassembler. This talk is meant to be a tutorial on how to approach the task, what to focus on first and what surprises one may be in for. The primary focus will be on the transformation of byte code back into mnemonic representation where only the reverse transformation is available (i.e. you have the respective assembler). It also covers how to integrate your new disassembler into your reverse engineering tool chain.
-
-
22:36
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
Mac OS X Google iPhone Event:
Chaos Communication Congress 28th (28C3) 2011 Abstract: We will discuss the two different approaches Apple and Google take for the client platforms iPad and Chromebook, how they are similar and how they are not. From the security architecture and integrity protection details to your account and identity that links you firmly back to the respective vendor, we will provide the big picture with occasional close-up shots. Here is what powers the vendor has over you, or what powers he gives to arbitrary unwashed attackers at conferences through fails in logic, binary or HTML.
-
22:36
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
Mac OS X Google iPhone Event:
Chaos Communication Congress 28th (28C3) 2011 Abstract: We will discuss the two different approaches Apple and Google take for the client platforms iPad and Chromebook, how they are similar and how they are not. From the security architecture and integrity protection details to your account and identity that links you firmly back to the respective vendor, we will provide the big picture with occasional close-up shots. Here is what powers the vendor has over you, or what powers he gives to arbitrary unwashed attackers at conferences through fails in logic, binary or HTML.
-
-
21:52
»
SecDocs
-
-
21:34
»
SecDocs
-
-
21:49
»
SecDocs
-
-
2:02
»
SecDocs
-
-
21:38
»
SecDocs
-
-
21:53
»
SecDocs
-
-
21:38
»
SecDocs
-
-
21:44
»
SecDocs
-
-
21:25
»
SecDocs
-
-
22:54
»
SecDocs
-
-
0:00
»
SecDocs
-
-
5:56
»
SecDocs
-
-
1:48
»
SecDocs
-
-
0:40
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
Rich Internet Applications Flash Event:
Black Hat USA 2010 Abstract: The talk presents a simple but effective approach for securing Rich Internet Application (RIA) content before using it. Focusing on Adobe Flash content, the security threats presented by Flash movies are discussed, as well as their inner workings that allow such attacks to happen. Some of those details will make you laugh, some will make you wince. Based on the properties discussed, the idea behind the defense approach will be presented, as well as the code implementing it and the results of using it in the real world. After a year of development, we hope to release a working tool to the world, so you can apply the defense technique to your web browser.
-
-
13:05
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
Rich Internet Applications Flash Event:
Black Hat USA 2010 Abstract: The talk presents a simple but effective approach for securing Rich Internet Application (RIA) content before using it. Focusing on Adobe Flash content, the security threats presented by Flash movies are discussed, as well as their inner workings that allow such attacks to happen. Some of those details will make you laugh, some will make you wince. Based on the properties discussed, the idea behind the defense approach will be presented, as well as the code implementing it and the results of using it in the real world. After a year of development, we hope to release a working tool to the world, so you can apply the defense technique to your web browser.
-
-
13:18
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
Rich Internet Applications Flash Event:
Black Hat Abu Dhabi 2010 Abstract: The talk presents a simple but effective approach for securing Adobe Flash content before using it. The security threats presented by Flash movies are discussed, as well as their inner workings that allow such attacks to happen. Some of those details will make you laugh, some will make you wince. Based on the properties discussed, the idea behind the defense approach will be presented, as well as the code implementing it and the results of using it in the real world.
-
-
3:14
»
SecDocs
-
3:08
»
SecDocs
-
3:06
»
SecDocs
-
-
12:00
»
Hack a Day
The txtBomber is a high-tech graffiti printer developed by [Felix Vorreiter]. Details are a bit scarce but the video clip after the break proves that this works quite well. [Felix] admits this is Arduino powered but we’re going to have to guess at the rest of the setup from the pictures. He says there are [...]
-
-
5:33
»
SecDocs
-
5:33
»
SecDocs
-
-
3:04
»
SecDocs
-
3:04
»
SecDocs
-
3:02
»
SecDocs
-
-
21:04
»
SecDocs
Authors:
Felix 'FX' Lindner Tags:
Rich Internet Applications Flash Event:
Chaos Communication Congress 26th (26C3) 2009 Abstract: The talk will discuss a class of in-the-wild malware and exploits, reasons for it's success as well as reasons why protecting against it in common ways is not effective. This will be done by examining the internals of the attacked subject. Following this, the second part of the talk will present an alternative protection mechanism, which the presenter believes prevents large parts of this class of attacks. The mechanisms and code to do this will be presented and released. The talk presents a simple but effective approach for securing Rich Internet Application (RIA) content before using it. Focusing on Adobe Flash content, the security threats presented by Flash movies are discussed, as well as their inner workings that allow such attacks to happen. Some of those details will make you laugh, some will make you wince. Based on the properties discussed, the idea behind the defense approach will be presented, as well as the code implementing it and the results of using it in the real world.
