Cyber War
- People's Republic of Cyber Warfare: Comparing China Iran & Russia Militarization of Cyberspace(駭客人民共和國: 中國伊朗跟俄羅斯網軍的分析與比較)
- Global Cyber Espionage and Chinese Hacker Threats, Internet Survillance and PRISM(全球間諜:互聯網監控全球趨勢 棱鏡門與中國駭客威脅論)
- APT1: Technical Backstage(APT1: 反攻網軍後台)
- How South Korea Makes White-hat Hackers(南韓如何培養白帽駭客?)
- How does Japan dea with Targeted Attack and SCADA Security(目標鎖定攻擊與工控系統安全:日本如何應對兩大趨勢)
Cyber War is the main topic of HITCON 2013. Hence many session about global cyber activity are included.
In first two presentation talk about national power of cyber war, include China, Iran and Russia. And also mention about chineese hacker and Internet survillance of U.S.
Second, Paul Rascagneres from malware.lu share their experience to track APT1 hacker,which probable come from china.
Then, national strategy of Japan and Korean, which are two countries near TW, is mentioned.
In first two presentation talk about national power of cyber war, include China, Iran and Russia. And also mention about chineese hacker and Internet survillance of U.S.
Second, Paul Rascagneres from malware.lu share their experience to track APT1 hacker,which probable come from china.
Then, national strategy of Japan and Korean, which are two countries near TW, is mentioned.
APT
- APT defense from the view of security architecture(從系統設計建置面談 APT 防禦)
- Visual Data Analytics - Graphing your Indicators(APT 特徵的視覺資料分析法)
- Digital Eagle Eye System: Use Cyber Intelligence against APT Attacks(數位鷹眼系統: 以網路數位情資對抗 APT 攻擊)
- APT Cyber Shuttle: From Automated Analysis to TTP Observation(APT網際飛梭:從自動化分析到拆解 APT 後台駭客活動)
- Light & Shadow about Banking $ecurity @Japan(光與影 日本銀行業的資訊安全)
Notice that, the session "APT Cyber Shuttle: From Automated Analysis to TTP Observation" proposed by Xecure-Lab & Academia Sinica will give a session in Black Hat US 2013.
Malware
- Building new weapons for malware analysts(建立惡意軟體分析的新武器)
- Advance Malware Evasion and Hiding Techniques(惡意軟體的進階免殺技巧)
- Static Analysis and Dynamic Instrumentation for Intelligent Exploit Analysis(靜態與動態智慧型漏洞文件分析系統)
Mobile
- Escaping Android Dynamic Analysis; Chinese New Year Train Ticket Ordering Day(逃離安卓動態檢測 & 訂票助手一日談)
- Dex Education 201: Anti-Emulators(深入Dalvik Dex教學:反制模擬器)
- Android Hooking Attack
- Review of Security Vulnerabilities on the Android Platform(Android平臺安全性漏洞回顧)
- GSM Security Research using Open Soruce Tools(以開源軟體進行GSM安全研究)
With exponent usage of mobile device, sessions about mobile are also increasing. The first two sessions mention about how malware evade security analysis mechanism. Then the following two sessions is about technique employed by malware. Especially, "Review of Security Vulnerabilities on the Android Platform" ,proposed by 肖梓航 Claud, which overview the android vulnerabilities in current year is worthy to read.
Exploit & Vulnerability
- Life of Coder: The adventure through the landscape of bugs(程序員的蟲洞漂流)
- Analysis on the EPATHOBJ Exploit(請謹慎編碼,哪怕它只是一句錯誤處理— 來自 win32k!EPATHOBJ::pprFlattenRec 漏洞的啟示)
- Killing AV in x64(戳戳防毒軟體死穴)
- 0-Day Easy Talk - Happy Fuzzing Internet Explorer(0-Day 輕鬆談 - Happy Fuzzing Internet Explorer)
- How can i have 100 0day for just 1day(超級祕訣 - 一天擁有 100 個 0day!)
- Exploiting JRE (JRE安全机制与漏洞挖掘研究)
Exploit and Vulnerability is an interesting topic this year. An 0 day sharing activity is also include in this year's HITCON.
In first three sessions, the authors analysis some known exploit and share their implementation. The fourth session, the author demonstrate the 0-day he found and share his experience.
The fifth talk present an idea to fuzz numerous of application at once. The last one session conclude java vulnerabilities in current day and the direction to fuzz java platform.
In first three sessions, the authors analysis some known exploit and share their implementation. The fourth session, the author demonstrate the 0-day he found and share his experience.
The fifth talk present an idea to fuzz numerous of application at once. The last one session conclude java vulnerabilities in current day and the direction to fuzz java platform.
Others
- The undisclosed files of incidents by the data scientist(資料科學家未曾公開之資安研究事件簿)
- OS X Rootkits Stuff(那些洞,我們一起追的 OS X Rootkits)
- Spears and shields on online game(線上遊戲矛盾大對決)
- Breaking image CAPTCHA for fun(CAPTCHA 好好玩)
- Protocol and physical analysis of EMV POS devices.(EMV晶片卡POS裝置的實體與溝通協定分析)
- Browser and Local Zone(瀏覽器和本地域)
The session "The undisclosed files of incidents by the data scientist" talk about some research topic of professor 陳昇瑋. Social network and malicious phone call are both special and interesting topic.
Also web security are widely discussed in Black Hat 2013, there are less topic about web security in this year's HITCON.
沒有留言:
張貼留言