Brett Moore

Having conducted vulnerability assessments, network reviews, and penetration tests for the majority of the large companies in New Zealand, Insomnia founder Brett Moore brings with him over eight years experience in information security. During this time, Brett has also worked with companies such as SUN Microsystems, Skype Limited and Microsoft Corporation by reporting and helping to fix security vulnerabilities in their products.

Brett has released numerous whitepapers and technical postings related to security issues and has spoken at security conferences both locally and overseas, including BlackHat, Defcon, Ruxcon, and the invitation only Microsoft internal security conference called BlueHat.

• Brett will be teaching:
• SyScan_10_01 Windows Exploitation 101

Cedric Blancher

Cedric has been working for 7 years in network security field, performing audits and penetration tests. In 2004, he joined EADS Innovation Works and now runs the Computer Security Research Lab in Suresnes, France. His research focuses on network security, wireless links and protocols security, Wi-Fi in particular. He is an active member of Rstack team and French Honeynet Project with studies on honeynet containment, honeypot farms and network traffic analysis. He had delivered technical resentations and trainings worldwide, written papers and articles on network security and wrote Wi-Fi traffic injection tool Wifitap. Cedric's website: http://sid.rstack.org/

• Cedric will be teaching:
• SyScan_10_04 Building Secure Wireless Network

Sheeraj Shah

B.E., MSCS, MBA, is the founder of Blueinfy, a company that provides application security services. Prior to founding Blueinfy, he was founder and board member at Net Square. He also worked with Foundstone (McAfee), Chase Manhattan Bank and IBM in security space. He is also the author of popular books like Web 2.0 Security (Thomson 07), Hacking Web Services (Thomson 06) and Web Hacking: Attacks and Defense (Addison-Wesley 03). In addition, he has published several advisories, tools, and whitepapers, and has presented at numerous conferences including RSA, AusCERT, InfosecWorld (Misti), HackInTheBox, Blackhat, OSCON, Bellua, Syscan, ISACA etc. His articles are regularly published on Securityfocus, InformIT, DevX, O’reilly, HNS. His work has been quoted on BBC, Dark Reading, Bank Technology as an expert.

• Sheeraj will be teaching:
• SyScan_10_05 Web Application Security - Threats and Countermeasures

Sheran Gunasekera

Sheran A. Gunasekera is the Founder and Director of Research & Development for ZenConsult Pte. Ltd. Before founding ZenConsult, Sheran was the Principal Consultant for Scanit Middle East in Dubai and Technical Advisor to the ISP services section of Emirates Telecommunications Corporation (ETISALAT) in the UAE. Gunasekera has extensive experience in web application security. He has developed tools and methodologies to improve results of security assessments and has trained consultants based on these methodologies. More recently, he focuses on mobile platforms and conducts research into BlackBerry handheld security. He has spoken at the 2009 Hack In The Box conference in Malaysia where he presented results of his research into BlackBerry lawful interception and spyware. He will also speak at the Troopers 2010 security conference in Germany on the same topic. His work has been quoted in online publications like Wired News, The Register, PC World, CNET News and Dark Reading. He maintains a website for application security, reverse engineering and mobile platform security. He has been credited with discovering security vulnerabilities in commercial applications and has also discovered several critical vulnerabilities in core banking and Internet banking applications from companies like Oracle Financial Services (previously iFlex), Polaris, ebWorx and SilverLake.

• Sheran will be teaching:
• SyScan_10_07 The Black Art of Blackberry Surveillance

Stefan Esser

Stefan Esser is best known in the security community as the PHP security guy. Since he became a PHP core developer in 2002 he devoted a lot of time to PHP and PHP application vulnerability research. However in his early days he released lots of advisories about vulnerabilities in software like CVS, Samba, OpenBSD or Internet Explorer. In 2003 he was the first to boot linux directly from the harddisk of an unmodified XBOX through a buffer overflow in the XBOX font loader. In 2004 he founded the Hardened-PHP Project to develop a more secure version of PHP, known as Hardened-PHP, which evolved into the Suhosin PHP Security System in 2006. Since 2007 he works as head of research and development for the german web application company SektionEins GmbH that he co-founded.

• Stefan will be teaching:
• SyScan_10_03 Advanced PHP Auditing at Source and Bytecode level

Van Hauser

My pseudonym is van Hauser, founder of the Hacker group The Hacker's Choice in 1995, and working as a security professional since 1997.

Tool publications: THC-Scan, hydra, amap, ipv6-attack-toolkit, secure_delete, and many more

Article publications: Attacking the IPv6 Protocol Suite, Anonymizing Unix Systems, Placing Backdoors through Firewalls, How to cover your tracks, and many more

Conference speaking engagements:
"Attacking the IPv6 Protocol Suite": Pacsec 2005, Tokyo; CCC Congress 2005, Berlin; Eusecwest 2006, London; Cansecwest 2006, Vancouver; Hack in the Box 2006, Kuala Lumpur; Hack LU 2006, Luxemburg; VNSec 2007, Saigon

IDC - Security Conference 2003: "Continuous Measuring of IT security in Corporations"

Information Systems Security Society of the Philippines 2003: "Global Intrusion Tracing"

Fraunhofer Institute: CAST Forum 2003: "Firewalls and Infrastructures", CAST Forum 2002: "Secure Operating Systems"

MiS - Superstrategies 2000, London, "Critical Risks in Unix"

Chaos Computer Club Congress 1999, Berlin, "Finding security vulnerabilities in source code"

Additionally numerous training engagements in (Anti-)Hacking, forensic, secure development etc. trainings, always with very high ratings from the attendees.

• Van will be teaching:
• SyScan_10_06 Attacking and Securing IPv6 Infrastructure

Wade Alcorn

Wade Alcorn has experience in numerous aspects of offensive information security assessments. This ranges from bluetooth, reverse engineering and web application assessments to managing large teams of security professionals. Prior to joining NGS, Wade had been responsible for cutting-edge PKI and VPN development using technologies including C/C++ and Java. He has presented at conferences including BlackHat and AusCERT.

Wade has received acclaim for publishing leading research papers and discovering vulnerabilities in numerous software products. He is the creator of the popular open source security tool BeEF (Browser Exploitation Framework).

• Wade will be teaching:
• SyScan_10_02 Web Application (In)Security