1. browse
  2. congress
  3. 2014
  4. Security & Hacking

31C3: a new dawn

Security & Hacking

Full playlist: Video / Audio
Tor: Hidden Services and Deanonymisation
63 min

Tor: Hidden Services and Deanonymisation

Virtual Machine Introspection
58 min

Virtual Machine Introspection

From the Outside Looking In

Now I sprinkle thee with crypto dust
61 min

Now I sprinkle thee with crypto dust

Internet reengineering session

UNHash - Methods for better password cracking
32 min

UNHash - Methods for better password cracking

The Perl Jam: Exploiting a 20 Year-old Vulnerability
29 min

The Perl Jam: Exploiting a 20 Year-old Vulnerability

Thunderstrike: EFI bootkits for Apple MacBooks
57 min

Thunderstrike: EFI bootkits for Apple MacBooks

DP5: PIR for Privacy-preserving Presence
59 min

DP5: PIR for Privacy-preserving Presence

EMET 5.1 - Armor or Curtain?
57 min

EMET 5.1 - Armor or Curtain?

Funky File Formats
51 min

Funky File Formats

Advanced binary tricks

Security Analysis of a Full-Body X-Ray Scanner
54 min

Security Analysis of a Full-Body X-Ray Scanner

Heartache and Heartbleed: The insider’s perspective on the aftermath of Heartbleed
29 min

Heartache and Heartbleed: The insider’s perspective on the aftermath of Heartbleed

The untold story of what really happened, how it was…

The Matter of Heartbleed
50 min

The Matter of Heartbleed

What went wrong, how the Internet reacted, what we can…

Too Many Cooks - Exploiting the Internet-of-TR-069-Things
53 min

Too Many Cooks - Exploiting the Internet-of-TR-069-Things

Mining for Bugs with Graph Database Queries
55 min

Mining for Bugs with Graph Database Queries

  • 55 min
  • 2014-12-28
  • 2816
  • fabs
Attacks on UEFI security, inspired by Darth Venamis's misery and Speed Racer
60 min

Attacks on UEFI security, inspired by Darth Venamis's misery and Speed Racer

Preserving arcade games
52 min

Preserving arcade games

Vor Windows 8 wird gewarnt
60 min

Vor Windows 8 wird gewarnt

Und nichts (Secure) Bootet mehr?

  • 60 min
  • 2014-12-28
  • 21350
  • ruedi
Finding the Weak Crypto Needle in a Byte Haystack
32 min

Finding the Weak Crypto Needle in a Byte Haystack

Automatic detection of key-reuse vulnerabilities

  • 32 min
  • 2014-12-28
  • 1549
  • Ben H.
Cyber Necromancy
55 min

Cyber Necromancy

Reverse Engineering Dead Protocols

Beyond PNR: Exploring airline systems
59 min

Beyond PNR: Exploring airline systems

  • 59 min
  • 2014-12-28
  • 16979
  • saper
Uncaging Microchips
61 min

Uncaging Microchips

Techniques for Chip Preparation

Switches Get Stitches
58 min

Switches Get Stitches

Industrial System Ownership

Crypto Tales from the Trenches
61 min

Crypto Tales from the Trenches

SS7map : mapping vulnerability of the international mobile roaming infrastructure
60 min

SS7map : mapping vulnerability of the international mobile roaming infrastructure

Rocket Kitten: Advanced Off-the-Shelf Targeted Attacks Against Nation States
61 min

Rocket Kitten: Advanced Off-the-Shelf Targeted Attacks Against Nation States

A Deep Technical Analysis

  • 61 min
  • 2014-12-27
  • 4744
  • tw and gadi
ECCHacks
55 min

ECCHacks

A gentle introduction to elliptic-curve cryptography

AMD x86 SMU firmware analysis
54 min

AMD x86 SMU firmware analysis

Do you care about Matroshka processors?

(In)Security of Mobile Banking
56 min

(In)Security of Mobile Banking

Ich sehe, also bin ich ... Du
60 min

Ich sehe, also bin ich ... Du

Gefahren von Kameras für (biometrische)…

Code Pointer Integrity
61 min

Code Pointer Integrity

... or how we battle the daemons of memory safety

Mobile self-defense
63 min

Mobile self-defense

Glitching For n00bs
58 min

Glitching For n00bs

A Journey to Coax Out Chips' Inner Secrets

  • 58 min
  • 2014-12-27
  • 4950
  • exide
SS7: Locate. Track. Manipulate.
60 min

SS7: Locate. Track. Manipulate.

You have a tracking device in your pocket

Revisiting SSL/TLS Implementations
55 min

Revisiting SSL/TLS Implementations

New Bleichenbacher Side Channels and Attacks

Practical EMV PIN interception and fraud detection
58 min

Practical EMV PIN interception and fraud detection

osmo-gmr: What's up with sat-phones ?
60 min

osmo-gmr: What's up with sat-phones ?

Piecing together the missing bits

Reproducible Builds
63 min

Reproducible Builds

Moving Beyond Single Points of Failure for Software…

SCADA StrangeLove: Too Smart Grid in da Cloud
47 min

SCADA StrangeLove: Too Smart Grid in da Cloud