19th-20th November 2011 - Melbourne, Australia
The Ruxcon Team have established monthly meetings in Melbourne and Sydney. The aim of the meetings is to encourage individuals to perform a short presentation on computer security or a related topic in front of a small audience. The monthly meetings are open to everyone and free to attend.
The presentations are intended to be short (between 5-20 minutes), a projector and screen will be provided. We encourage participation from everyone and hope to see a variety of presentations over the coming months. Any topic is welcome, a presentation could be as simple as speaking for 5 minutes about a project you are currently working on, or day to day work tasks within your given field.
If you would like to give a presentation at Ruxmon please email: ruxcon@ruxcon.org.au.
We would like to thank the following for making Ruxmon possible:
Attention Sydney Ruxmon attendees: The Google office requires that all visitors wear name-tags and therefore registration is required prior to attendance. Please follow the registration instructions below and make sure you register at least two days prior to Ruxmon. Basic catering will be provided.
* Ruxmon reserves the right to refuse registration and entry to this event at its sole discretion.
| Info | Melbourne | Sydney |
|---|---|---|
| When: | Friday, February 24th, 2012 | Friday, March 2nd, 2012 |
| Where: | RMIT, City Campus: Building 8, Level 9, Rooom 42 | Google Sydney, 5/48 Pirrama Road, Pyrmont. |
| Time: | 6:00PM | 6:00PM |
| Registration: | No registration required | E-mail syd-ruxmon-register@ruxcon.org.au with your name in subject line and empty message body to reserve entry for the upcoming Ruxmon |
Defiling Mac OS X Redux - Snare
At Ruxcon 2011, snare gave a talk on various techniques that can be used in rootkits for the unholy fusion of Mach and BSD that is the XNU kernel. This talk will revisit some of those techniques and maybe some new ones.
Simseer - A Software Similarity Web Service - Silvio
Determining the similarity between software is a problem which can be used to identify malware variants, detect software theft, reveal plagiarism and discover duplicate fragments of code. In this talk I will discuss the academic approach to tackle this problem. I will also demonstrate Simseer - a new web service that scores the similarity between submitted programs and renders an evolutionary which visualises program relationships and families.
DufDuf Transmitter Hunting: Radio Direction Finding (RDF) with Software Defined Radio (SDR) - Balint Seeber
Trying to find someone annoying who is causing interference on your frequency? RDF is an important tool for both radio professionals and amateurs. It was used in World War II (e.g. British Signals Intelligence's Ystations for locating U-boats in the Atlantic), and now can be bought as a solid-state kit to mount on your car's rooftop. I have taken this a step further by doing as much in software as possible with open source tools (USRP & GNU Radio), and attached it to a fancy GUI that talks to you while you drive.
A run-through of reliably exploiting a Firefox client-side - Fionnbarr Davies
Fionnbarr will be discussing 100% reliable exploitation of CVE-2011-2371 (found by Chris Rohlf) by using an infoleak and no heap spraying techniques. There won't be any spamming the address space and relying on the sayonara ROP chain - this will instead go over how exploit writers are supposed to ball to produce quality and reliable exploits.
RMIT Building 8 entrance is off Swanston Street (just past Swanston and La Trobe). Please take the lift to Level 9 and make your way to Room 41. We will have directions posted up in the building.
The Google office is located within the Accenture building at 5/48 Pirrama Road, Pyrmont . The Google office is a short walk from the Star City Metro Light Rail stop. Attendees should either walk up to level 5 or take elevator. There will be a registration desk where name-tags will be handed out (please note the registration requirement above) to attendees.
| Date | Presentation 1 | Presentation 2 |
|---|---|---|
| August 2011 | Introduction to Malware Analysis - James Wakefield [ coming soon ] | iSniff: SSL man-in-the-middle tool targeting iOS devices - Hubert [ code ] |
| July 2011 | Abrupt, WebApp Pentest Framework - Thiébaud Weksteen [ code ] | Drop it Like it's Hot - Aggertron2000 [ coming soon ] |
| June 2011 (2) | Max Kilger (Honeynet Project) | Jason Scott (TEXTFILES.COM) |
| June 2011 | Common Malware Techniques - Ash Fox | Defcon CTF quals - [_] |
| May 2011 | Sifting through Twitter - MattJ [ tool | slides ] | iPwn your iPhone - Hubert Seiwert [ slides ] |
| April 2011 | Backdooring like its 1999 - Fionnbharr Davies | Hostile Exploitation under win32 - Steven Seeley [ slides ] |
| March 2011 | Simple Bugs and Vulnerabilities in Linux Distributions - Silvio Cesare [ slides ] | Turning SMB Client Side Bug To Server Side - Laurent Gaffie [ coming soon ] |
| Date | Presentation 1 | Presentation 2 |
|---|---|---|
| September 2011 | DNS Tunnelling with Metasploit - Peter Danhieux [ coming soon ] | A Blackhatters Guide to Internet Marketing - Mark Blaszczyk [ coming soon ] |
| August 2011 | Observations and Analysis of Mobile Phone Malware - Jason Solomon | Sifting through Twitter - MattJ [ tool | slides ] |
| July 2011 | Proprietary Protocols RCE : Research leads - Jonathan Brossard [ slides ] | Backdooring like its 1999 - Fionnbharr Davies |