Publications
Recent publications produced by MWR InfoSecurity are listed below in date order. On this page you can also find recent presentations and White Papers from MWR InfoSecurity consultants.
Full TextBrave New 64-Bit World
Jun 02, 2010
Memory requirements on server and desktop systems have risen considerably over the past few years, to the point where 32-bit architectures are not capable of addressing the required amount of memory. A variety of 64-bit CPUs and operating systems have been introduced to resolve this architecture imposed limitation and these are now being widely adopted. However, any porting of software to 64-bit compatibility can have unexpected security implications. This paper discusses some of these implications and how to resolve them.
Journey to the Centre of the Breach
Jun 02, 2010
Computer forensics is no longer exclusively the domain of law enforcement investigators. The same techniques applied to gathering evidence for use in court can also be applied to investigating a security incident in order to provide the victim with information and assurance. In this report, a case study is presented that details the tools and techniques used in the investigation of a breach of an FTP server, from the initial log file analysis through to reverse engineering the discovered malware.
This document was produced as an academic report and as such does not follow the typical MWR InfoSecurity formatting.
Presentation: ShmooCon 2010 - How To Be An RSol: Effective Bug Hunting in Solaris
Mar 05, 2010
Matt Hillman presented at ShmooCon 2010 in Washington DC about his research in Solaris bug hunting. The presentation included demos of his software which provides a Ruby based debugging interface to Solaris, allowing implementation of tools to perform fault monitoring for fuzzers, code coverage, run tracing, code profiling and fault injection.
Weapons of Mass Pwnage: Attacking Deployment Solutions - DeepSec 2009
Dec 03, 2009
Luke Jennings presented at DeepSec '09 in Vienna, Austria regarding the security of deployment solutions and some of the recent vulnerabilities he discovered in Symantec's Altiris Deployment Solution. The slides for this presentation are available from the download link above.
USB Attacks: Fun with Plug and 0wn - T2'09
Oct 29, 2009
On Thursday 29th October 2009 Rafa gave an updated version of his "USB Attacks: Fun with Plug and 0wn" presentation at T2'09 in Helsinki, Finland. The slides from the presentation can be downloaded from the link above.
Additionally, the advisory detailing the vulnerability which was the focus of the presentation has now been released and can be downloaded here.