Archives

DELIVERY: VIRTUAL LIVE STREAM  DATE: 26 August 2021 TIME: 20:00 to 22:00 SGT/GMT+8 Overview Threat actors build their tradecraft for each campaign, they need to select the right tactics, techniques. Most of the time they use open source or commercial, but publicly available tools. They even re-purpose or pack existing malware acquired from other threat […]

DELIVERY: VIRTUAL LIVE STREAM  DATE: 27 August 2021 TIME: 20:30 to 22:30 SGT/GMT+8 The purpose of this presentation is to use python scripts to perform some tests of efficiency and detection in various endpoint solutions, during our demonstration we`ll show a defensive security analysis with an offensive mind performing an execution some python scripts responsible […]

DELIVERY: VIRTUAL LIVE STREAM  DATE: 26 August 2021 TIME: 19:00 to 21:00 SGT/GMT+8 Automotive security is a field of rising importance worldwide. Vehicles are becoming smarter than ever, equipped with processors, sensors, and new communication technologies to improve road safety and consumer comfort. Despite hosting a myriad of different technologies, the most fundamental factor differentiating […]

DELIVERY: VIRTUAL LIVE STREAM  DATE: 27 August 2021 TIME: 18:30 to 20:30 SGT/GMT+8 Overview RF communications are present in major devices to exchange important data over the air, but also for our current use through our mobile phone by example. Nevertheless, as there is no wire to directly interact with such communication we need the […]

DELIVERY: VIRTUAL LIVE STREAM  DATE: 26 August 2021 TIME: 22:00 to 00:00 SGT/GMT+8 Overview Malware authors go to great lengths to bypass enterprise security to deliver malware, avoid detection after the initial intrusion and maintain persistence to compromise an organization. To achieve this, malware authors employ a wide variety of obfuscation and anti-analysis techniques at […]

PRESENTATION SLIDES (PDF) Our recent collaborative effort yielded a set of critical vulnerabilities in the popular NicheStack TCP/IP stack, used by several major vendors of embedded systems – including many in operational technology and critical infrastructure – for more than 20 years. The vulnerabilities affect most levels of the stack (from Network to Application layer) […]

PRESENTATION SLIDES (PDF) In recent years, we have witnessed many major companies being penalized by regulators due to violations of personal data privacy. Many countries and territories, such as the US, the EU and China, have put in place strict regulations for security compliance and privacy. Users’ concerns on how applications collect and use their […]

PRESENTATION SLIDES (PDF) Webview: An in-app Web Browser created to ensure seamless user experience without context switching between browser and mobile application. It allows developers to display web content directly into their mobile application and supports the concept of code reuse thus Webviews are extensively used in current mobile application development. This presentation will cover […]

PRESENTATION SLIDES (PDF) Discovering and identifying malicious activities in large networks is challenging as they can blend in, use commercial services or just go under radar with newer protocols. Another challenge is while defensive teams expect Red Team to assist on simulations, Red Team goes for their own objectives. Furthermore, cyber defence teams using real […]

PRESENTATION SLIDES (PDF) Thinking of fuzzing applications on OS X can quickly lead to a passing conversation of “ooh exotic Mac stuff”, “lets fuzz the kernel” or it can otherwise not be thought of as an exciting target, at least for looking for crashes in stuff other than Safari or the iPhone. While there are […]