Interact with the security community
CanSecWest, the world's most advanced conference focusing on applied digital security, is about bringing the industry luminaries together in a relaxed environment which promotes collaboration and social networking. The conference lasts for three days and features a single track of thought provoking presentations, each prepared by an experienced professional and talented educator who is at the cutting edge of his or her field. We give preference to new and innovative material, highlighting important, emergent technologies, techniques, or best industry practices.
The conference is single track, with one hour presentations over the duration beginning at 9:00 a.m. The registration fee includes the catered meals, and there will be a vendor display and lounge/eating area, where wireless internet access will be available (as well as in the speaking theater). The conference discount hotel room booking system can be found here.
2013-01-28-18:09:00 Agenda Announcements
Some agenda announcements:
- Keynote: DARPA's Peiter "mudge" Zatko
- Facebook's Ryan McGeehan and Chad Greene will be talking about an unusual incident at the beginning of 2012
- Vladimir Katalov, ElcomSoft,@vkatalov Cracking and analyzing Apple iCloud backups, Find My iPhone, document storage.
- Stephan Esser @i0n1c will be talking about iOS
- Joshua J. Drake @jduck1337 - An Android Hacker's Journey: Challenges in Android Security Research
- Oded Horovitz and Steve Weis @sweis - Physical Privilege Escalation and Mitigation in the x86 world.
- Mike "dd" Eddington @sockstail will be talking about "Godel's Gourd. Fuzzing for logic issues"
- Yu Yang "tombkeeper" will be talking about DEP/ASLR bypass without ROP/JIT
- Peter Vreugdenhil @WTFuzz will be talking about the Adobe Reader XI Sandbox.
- @beist will be talking about Smart TV Security
- Rahul Sasi @fb1h2s - SMS to Meterpreter, Fuzzing USB Modems
- James Forshaw @tiraniddo - Reflecting on Reflection: Exploiting Reflection Vulns in Managed Languages (Java, .NET)
- Yuriy Bulygin, McAfee - Evil Maid Just Got Angrier: Why Full-Disk Encryption With TPM is Insecure on Many Systems
- Rob Beck - MS-SQL Post Exploitation Shenanigans: You're In, Now What?
- Chris Astacio, Websense - Shining Some Light on the Evolution of Blackhole
- CanSecWest 2013: Julia Wolf @foxgrrl - Analysis of a Windows Kernel Vulnerability: From Espionage to Criminal Use.
2013-01-18-09:10:00 PWN2OWN 2013
CanSecWest PWN2OWN: HP and Google co-ordinate, pool resources, over a half million dollars in prize money (!), now browser plug-ins are also in scope... Details here on the ZDI blog
We just ordered the first of the prize laptops yesterday, Thinkpad X1 Carbon Touch i7 ...
2013-01-17-09:14:00 Technology Enhancement: Dojos Online
Advanced and intermediate security training and technology enhancement for information security professionals. The Dojo registration system is up. We might add a course after reviews are done. Stand by for agenda.
- Guillaume Valadon & Nicolas Fischbach - IPv6 Network Security: From Theory to Practice With Scapy
- Nicolas Bareil - Mastering the Network With Scapy
- Saumil Shah & Josh Ryder - Introductory Exploit Lab
- Jason Geffner & Scott Lambert - Introduction to Malware Analysis
- Joseph Karpenko - Network Threat Defense, Countermeasures, and Controls
- Saumil Shah & Josh Ryder - Advanced Exploit Lab
- Micheal Eddington - Peach Fuzz
- Marc "van Hauser" Heuse - Pentesting and Securing IPv6 Networks
- Marc Schoenefeld - Java Security, Attack and Defense
- Jason Geffner & Scott Lambert - Advanced Malware Deobfuscation
- Joseph Karpenko - Network Threat Defense, Countermeasures, and Controls
- Aaron Portnoy & Zef Cekaj - Breaking Binary Applications
- Stephen A. Ridley & Stephen Lawler - Practical ARM Exploitation
- James "egyp7" Lee & Rob "mubix" Fuller - Metasploit Mastery
2012-12-12-12:12:12 Mudge Keynotes CanSecWest2013
We are very pleased to announce that Peiter "mudge" Zatko from DARPA will be giving a keynote presentation at CanSecWest 2013.
Now get those talk submissions in please...
(Hint: when a deadline is set for Friday, We know some who tend to procrastinate will need until Monday. Monday deadlines are more significant. :)
2012-12-01-02:12:12 CanSecWest13 CFP Open Until December 14
The CFP is open and a new conference rushes forward. The shorter version: Package up your PII/contact info that we need so we can book flights and figure out visas, put together a summary of who you are and what you want to talk about that is cool new security research, and email them to our jaded, grumpy reviewers (some of whom still use mutt so make sure you include a little ascii at least :-) at secwest13 [at] cansecwest.com before Friday, December 14th, 2012. Full details can be found on the Speakers tab.
Oh, and make sure to leave room in your schedule for the weekend after, when a lot of folks go up to Whistler. We are now trying to put together a plan for Tronapalooza 3 (Insert Witty Sub-title Here), sponsors, it's a good time to chat.
If you aren't submitting a talk, now is a great time to make lower-cost bookings. Happy Holidays.