ZeroNights

Конференция по ИБ — «ZeroNights» 2021.

by Timcore
Просмотров: 48

Taras Ivaschenko – 2011_APP_SECURITY_2021:

https://www.youtube.com/watch?v=Sy3Kdd1jIvo

Alexander Ermolov, Dmitry Frolov – Data-only attacks against UEFI BIOS:

https://www.youtube.com/watch?v=k5Sw4Sjl4YM

Alexander Tarasikov – Exploring the Galaxy. Building emulators to find vulns in modern phones:

https://www.youtube.com/watch?v=BYwljEFuu3c

Alex Kovrizhnykh – Exploiting checkm8 with unknown SecureROM for the T2 chip:

https://www.youtube.com/watch?v=_nZiarKHm2U

Maxim Goryachy, Dmitry Sklyarov – How we achieved to execute arbitrary code inside Intel Atom CPUs:

https://www.youtube.com/watch?v=DVzHs8_gyQ4

Dima Turchenkov – LPE in Ring -3 / Intel ME:

https://www.youtube.com/watch?v=jUkDjjbIZNE

Aleksei Tiurin – Weird proxies/2 and a bit of magic:

https://www.youtube.com/watch?v=ADdG4MapO10

Andrey Zhukov – Lateral movement automation:

https://www.youtube.com/watch?v=OozkkWhtfpA

Ivan Agarkov – 8 ways to spy on your consoles:

https://www.youtube.com/watch?v=c3K6Ft9kPqU

Unnamed user, ValdikSS – Trojans and backdoors in feature phones sold in Russia:

https://www.youtube.com/watch?v=wnynVRRoGJw

Max Dmitriev – Apache 0day bug, which still nobody knows of, and which was fixed accidentally:

https://www.youtube.com/watch?v=bj_RdfufCQg

Pavel Sorokin – PD%00:

https://www.youtube.com/watch?v=OfEx8WG4LnE

Nikita Stupin, Sergey Bobrov – New ways to alert: Prototype Pollution:

https://www.youtube.com/watch?v=Zn1sb8B_XSw

Paul Axe – JVMyachni Otake:

https://www.youtube.com/watch?v=oF7O_jc6lqI

Denis Rybin – Metrics in practice:

https://www.youtube.com/watch?v=DK_H58Vg7is

Denis Efremov – CVEhound: check Linux sources for known CVEs:

https://www.youtube.com/watch?v=GG-YHLn5E1Q

Dmitriy Evdokimov – Container escapes: Kubernetes edition:

https://www.youtube.com/watch?v=JoLgVBTc73c

Ilya Zuev – IPMI backdoor not with your own hands:

https://www.youtube.com/watch?v=2AAqqifqODE

Vatclav Dovnar – Open Source DevSecOps: Tempest in a teapot:

https://www.youtube.com/watch?v=ZLJliVx—9Q

Alex Savelyev – Server exploitation of Prototype Pollution vulnerability:

https://www.youtube.com/watch?v=ggqLPR6TBDw

Aleksandr Kolchanov – Thank you for using URL shorteners: I know everything about your clients now:

https://www.youtube.com/watch?v=T4fpt8uDxbw

Dmitriy Teryoshin – The invisible hand of AppSec in release builds:

https://www.youtube.com/watch?v=gXPF9ufVQyU

Alexander Barabanov – Attacking the microservice applications: methods and practical tips:

https://www.youtube.com/watch?v=CzyAplZvSPU

Alexander Popov – Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG:

https://www.youtube.com/watch?v=n6YLiYiCIMA

Alexey Morozov – Hacker adventures on dating websites: