This talk will focus on a new method to profile user-mode and kernel-mode activity by hooking executive objects in the Windows kernel. It is a nice alternative to traditional API hooking and can be used to detect all current rootkits. Virtually all important operations in Windows are associated with an executive object--be it drivers, devices, files, sockets, registry keys, etc. By hooking these objects, we can observe the behavior of the kernel or user-mode application at a very low level, making it far more difficult for malware/rootkits to hide.

In November 2003, Adam Laurie discovered serious flaws in the authentication and data transfer mechanisms on some Bluetooth enabled devices, and, in particular, mobile phones including commonly used Nokia, Sony Ericsson and Motorola models. Shortly thereafter, Martin Herfurt of Salzburg Research Forschungsgesellschaft mbH expanded on these problems, and teamed up with Adam to investigate further. At EuroFoo in August 2004, Adam and Marcel Holtmann met, and agreed to collaborate on looking into the underlying causes of the problems, as well as sharing information and resources to try and gain a better foothold for the Open Source community within the official Bluetooth organizations.

This talk will cover the issues arising out of the flaws, as well as the actual stack methodologies and tools used, and an update on the industry's response and progress since the original discoveries.

This will be a fun talk and a real eye-opener for those with Bluetooth enabled devices, and will start with an introduction into the Bluetooth architecture and the security mechanisms offered by it so that it is possible to understand how and why the different attacks are working. Further there will be an introduction into the Linux Bluetooth stack BlueZ that will be used for doing the attacks and showing exactly how these attacks are working.

Web security is becoming very critical as .Net framework is evolving. New set of vulnerabilities are coming up at web application level. Web Services are also becoming integral part of web application and creating next generation threat for emerging web application layer. There are new set of methodology is required to attack .Net applications and to provide defense new strategies are evolving. This presentation will brief about both attacks and defense with new set of tools.

To be updated soon…

Major Malfunction spends a lot of time travelling. Consequently he spends a lot of time in Hotels. Hotels have Pay-Per-View. Hotels have infra-red remote controlled TVs. And so, to while away the hours, MMIrDA was born...Infra Red is all around us. Most of us will use an Infra Red controller on more or less a daily basis, to change the TV channel, or open a car or garage door, but how often have you thought about how it actually works? This talk will describe not only how to analyse the signals being sent by your remote, but also how to use that information to find hidden commands and reveal functions you didn't even know your systems had. You will learn how to brute force garage doors, car doors, hotel pay-per-view TV systems, take over LED signs, vending machines and even control alarm systems, using cheap or home made devices and free software.