Publications

Slides

Static Analysis for Code and Infrastructure

Nick Jones presented "Static Analysis for Code and Infrastructure" at DevSecCon 2016. His talk covered the theory behind a number of the techniques commonly used to analyze applications.

+ read more

Slides

Windows Kernel Fuzzing

Nils presented Windows Kernel Fuzzing at T2.fi 2015.

+ read more

Slides

Fuzzing the Windows kernel

Yong Chuan Koh presented 'Windows kernel fuzzing' HITB GSEC, Singapore on Friday the 26th of August 2016. The session presented a python based fuzzing framework for the Windows kernel that can easily be scaled up and extended.

+ read more

Slides

Platform Agnostic Kernel Fuzzing

James Loureiro and Georgi Geshev presented 'Platform Agnostic Kernel Fuzzing' at Def Con 24.

+ read more

Publication

Bug hunting with static code analysis

Nick Jones presented "Bug hunting with static code analysis" at BSides London 2016. 

+ read more

Publication

Windows Kernel Exploitation 101: Exploiting CVE-2014-4113

The walkthrough aims to guide the reader through creating code to trigger and exploit CVE-2014-4113. It does this by starting from an Anti-Virus vendor report highlighting when the vulnerability was originally discovered being exploited in the wild.

+ read more

Whitepaper

LoRa Security: Building a secure LoRa solution

Robert Miller presented "LoRa the Explorer - Attacking and Defending LoRa Systems" at Syscan360.This whitepaper provides implementers and developers with an overview of the security features of LoRaWAN, a developer's responsibilities in make a solution secure...

+ read more

Slides

QNX: 99 Problems but a Microkernel ain't one!

Alex Plaskett and Georgi Geshev presented "99 Problems but a Microkernel ain't one!" at BSides NYC and TROOPERS16.

+ read more

Whitepaper

QNX: Security Architecture Whitepaper

Alex Plaskett and Georgi Geshev presented "99 Problems but a Microkernel ain't one!" at BSides NYC and TROOPERS16.

+ read more

Slides

The Pageantry of Lateral Movement

Stuart Morgan presented 'The Pageantry of Lateral Movement' at BSides NYC. 

+ read more

Slides

Warranty Void If Label Removed: Attacking MPLS Networks

Georgi Geshev presented “Warranty Void If Label Removed: Attacking MPLS Networks” at multiple security conferences including ekoparty in Argentina, PacSec in Japan, and ZeroNights in Russia.

+ read more

Slides

Journey Into Hunting The Attackers

Asif Matadar presented “Journey Into Hunting The Attackers” on the rookie track at the BSides Manchester 2015 security conference.

+ read more