Author Archive

Last Call: DeepSec 2019 Call for Papers ends today!

July 31, 2019

If you ware interested in presenting at DeepSec 2019, then you have 12 hours left to submit your proposal. It will get tough, because we have received a lot of submissions already, and we are currently hard at work reviewing all of them. Nevertheless your content counts! Submit your presentation or your research. Do not […]

Tags: ,
Posted in Call for Papers Comments Off on Last Call: DeepSec 2019 Call for Papers ends today!

Thoughts on Geopolitics and Information Security

July 12, 2019

Geopolitics is a rather small word for very complex interactions, strategies, tactics, and the planning (of lack thereof) of events. Reading about topics connected to it is probably familiar to you. Few news articles can do without touching geopolitic aspects. Since politics has less technological content for most people, the connection to information security may […]

Tags: ,
Posted in Call for Papers, DeepIntel, Discussion, High Entropy Comments Off on Thoughts on Geopolitics and Information Security

Training Teaser: Black Belt Pentesting a.k.a. Bug Hunting Millionaire – Mastering Web Attacks with Full-Stack Exploitation

July 11, 2019

Modern web applications consist of far more components than HTML content and a few scripts. In turn properly attacking web applications requires a diverse set of skills. You need to know how the back-end and the front-end works. This includes all of the scripting languages, data storage technologies, user interface peculiarities, frameworks, hosting technologies, and […]

Tags: , , ,
Posted in Conference, Training Comments Off on Training Teaser: Black Belt Pentesting a.k.a. Bug Hunting Millionaire – Mastering Web Attacks with Full-Stack Exploitation

Reminder – Call for Papers DeepSec & DeepINTEL – Send your submissions!

July 8, 2019

We have been a bit radio silent since BSidesLondon. This is due to the hot weather in Austria, the preparations for the next DeepSec Chronicles book, some interesting features for DeepSec, and of course because of the submissions we received so far. We have a shortlist for the trainings which we will publish in the […]

Tags: , ,
Posted in Call for Papers Comments Off on Reminder – Call for Papers DeepSec & DeepINTEL – Send your submissions!

Use Handshake Data to create TLS Fingerprints

May 25, 2019

While the whole world busily works on the next round of the Crypto Wars, the smart people work on actual information security. TLS has always been in the focus of inspection. Using on-the-fly generated certificates to look inside is a features of many gadgets and filter applications. Peeking at the data is moot if you […]

Tags: , ,
Posted in Discussion, Security Comments Off on Use Handshake Data to create TLS Fingerprints

Getting ready for BSidesLondon – Support the Rookie Track!

May 24, 2019

Deadlines are great. They serve as a great syscall. Everything must be ready and be written to disk. The schedule of BSidesLondon was already stored and forwarded. Have a look! It’s worth it! The titles sound great. We recommend having some IPv6 as a starter (IPv4 is really getting scarce these days). The main dish […]

Tags: ,
Posted in Security Comments Off on Getting ready for BSidesLondon – Support the Rookie Track!

Eth(er)ical Hacking – Hacker Defined Radio and analysing Signals

April 4, 2019

There is a lot going on in the wireless world. 5G is all the fashion, because frequencies are being auctioned. This is only the tip of the iceberg. Wireless protocols have become ubiquitous. The IEEE 802.11 family is one widespread example. Bluetooth, mobile networks, ZigBee, Z-Wave, and other wireless transmissions are widely used. If you […]

Tags: , , ,
Posted in Call for Papers, High Entropy Comments Off on Eth(er)ical Hacking – Hacker Defined Radio and analysing Signals

BSidesLondon Rookie Track – Personalities, Stories, Presentations

April 3, 2019

In past articles we have written about the BSidesLondon Rookie Track. We also spread to call for mentors a while ago. Let’s talk about the people who will present at the Rookie Track and who haven’t spoken at conferences yet. While there exist a lot of helpful advice out there on how to speak, how […]

Tags: , ,
Posted in Communication, Conference Comments Off on BSidesLondon Rookie Track – Personalities, Stories, Presentations

Ongoing DeepSec Call for Workshops – Trainers welcome!

April 2, 2019

The Call for Workshops for the DeepSec conference in November 2019 is still open. If you have something to teach, let us know as soon as possible! We intend to inform potential trainees in the beginning of May about their options. This allows for a better planning and preparation, because we receive early requests for […]

Tags: , , ,
Posted in Call for Papers, Training 2 Comments »

Network Security right from the Beginning – Introducing DHCP-over-TLS (DoT)

April 1, 2019

Every security researcher knows: If you want to secure a system, do it as early as possible. This is why Trusted Computing, Secure Boot, Trusted Execution Technology, and many more technologies were invented – to get the operating system safely off the ground right at boot time. After the booting process additional components have to […]

Tags: , ,
Posted in High Entropy Comments Off on Network Security right from the Beginning – Introducing DHCP-over-TLS (DoT)

Remembering Mike Kemp (@clappymonkey)

March 26, 2019

This blog post has no tags, because we cannot come up with any. Mike Kemp, also known as @clappymonkey on Twitter, has died. He spoke at the DeepSec conference back in 2012. We regularly saw him at other events and kept in touch. We have lost a great colleague. It is impossible to express what […]

Posted in High Entropy Comments Off on Remembering Mike Kemp (@clappymonkey)

The fine Art of Mentorship

March 8, 2019

We will support the Rookie Track at BSidesLondon in 2019 again. This is a perfect way for rookies to get started on presenting at a conference. However it is much more – the stages before the presentation is held. Preparing for 15 minutes of talk will keep you busy for ten or twenty times the […]

Tags: ,
Posted in Discussion, Security 1 Comment »

DeepSec 2019 – Call for Papers – Security Research Results wanted!

February 18, 2019

The DeepSec 2019 In-Depth Security Conference is calling for presentations and trainings. We are interested in your information security research. Since 2007 DeepSec has aimed to provide in-depth analysis of design flaws, vulnerabilities, bugs, failures, and ways to improve our existing IT ecosystem. We need more high quality reviews of code and concepts we rely […]

Tags: ,
Posted in Call for Papers, Conference Comments Off on DeepSec 2019 – Call for Papers – Security Research Results wanted!

Supporting BSidesLondon “My Machine is not Learning” 2019

February 14, 2019

This year’s BSidesLondon is pondering the most important question of machine learning. What is my machine doing and learning? Well, it might be that “My Machine is not Learning” at all. Sounds a lot like the intelligence we all know from living beings. So, armed with this new motto, BSidesLondon is turning 9, and we […]

Tags: ,
Posted in Conference Comments Off on Supporting BSidesLondon “My Machine is not Learning” 2019

Save the Date for DeepINTEL and DeepSec 2019

February 8, 2019

We did some clean-up and dealt with the administrative issues of past and future events. Finally we can announce the dates for DeepINTEL 2019 and DeepSec 2019. Grab or calendars or log into them: DeepSec 2019 Trainings – 26/27 November 2019 DeepSec 2019 Conference – 28/29 November 2019 DeepINTEL 2019 – 27 November 2019 The […]

Tags: , , , ,
Posted in Administrivia, Conference, DeepIntel Comments Off on Save the Date for DeepINTEL and DeepSec 2019