Art work for some of the conferences can be found here

Pushing the Camel through the Eye of a Needle

In 2007 SensePost demonstrated the how DNS and Timing attacks could be used for a variety of attacks. This year we take those attacks further and show how small footholds in a target network can be converted into portals we can (and do) drive trucks through!

Download the presentation

It's all about the Timing

Presentation given at BlackHat 2007. This talk introduced our new squeeza tool, which can be used to extract data from SQL Injectable applications through DNS, Timing and HTTP Error message communication channels. The talk also explored XSRT (Cross Site Request Timing) which allows an attacker with a little bit of finesse to kick the cross domain policy in the shins.

Download the Paper
Download the presentation
Read more about Squeeza

A Tale of Two Proxies

Presentation given at BlackHat 2006. The presentation demonstrates the usage of 2 new tools in the SensePost arsenal, Suru and SP_LR, a web proxy and a generic TCP Proxy respectively.

Download the presentation (2.0 MB)

Truth or Scare?

This presentation was given at the ITWeb Security Summit in Johannesburg, South Africa. The presentation tries to give a different perspective on computer hacking, expert opinions and conventional wisdom.

Download the presentation (10.7 MB)

The 2005 SensePost toolshed

These 135 slides describe the tools SensePost developed during 2005. The talk includes details of upcoming tools and concepts.

Download the presentation (8570 kb)

Assessment Automation: Deux ex Machina or Rube Goldberg machine?

This talk centered around a BiDiBLAH - the implementation of a significant part of the SensePost external assessment methodology. The talk received positive reviews - read them here , here, and here.

The BiDiBLAH home page can be found here.

Download the presentation (1969 kb)

Revolutions in web server/application assessment tools

Over the last few years the thinking on web server and web applications assessment tools haven't seen major changes. During this presentation SensePost would like to showcase some of the technologies that have been in development in the SensePost labs for the last 9 months as well as demonstrating our thinking and problem solving approaches on the topic.

Download the presentation (1957 kb)

IIS6 : An attackers Perspective

This paper presented at Microsoft Tech-Ed 2004 and covers the new protection mechanisms built into Windows 2003 Server and IIS6 in particular. Common attack vectors will be discussed and demonstrated against IIS5.x & IIS6 servers for comparison.

Download the presentation (2.0MB)

When the tables turn

What happens when system administrators turn black hat? This presentation discusses "active" defenses that administrators could implement to confuse, distract, misdirect and generally bully attackers. While these methods are not everyone's cup of tea, it could just free your mind to explore the edges of the "dark side" (while keeping your job).

Syngress turned this talk into a complete book. You can read our chapter here

Download the paper (3.7MB)
Download the presentation (677 kb)
Download the source (263 kb)

Shatter Attacks

SensePost internal presentation to demonstrate and discuss the new wave of Shatter Attack possibilities.

Download the presentation

Spammer methodology and Spam controls

This paper presented at Information Security South Africa gave the audience a chance to look at spamming from a spammer's perspective. The paper explores the sinister world of viral campaigns, list makers and email farming while also providing some real world defenses against IT's current number one threat.

Download the presentation (626 kb)

Putting the tea back into CyberTerrorism

This paper looks at a methodology and framework that cyber terrorists could use to perform targeted, high impact attacks. The presentation caused quite a stir at BlackHat/Defcon.
Robert Vamosi of ZDNet did a nice write-up of the presentation which can be found here

Download the presentation (3,828 kb)
Download the paper (720 kb)

The role of Non-obvious relationships in the Footprinting process

In Internet security today, its often less about securing an Internet-facing host, and more about knowing where the insecure hosts are located. This applies for both the attacker and defender. This paper looks at smart ways to automate the footprinting process. It focuses on finding domains (and hosts and subnets) that do not seem to be related to the main domains by using content matching and link extraction.

Download the presentation (979 kb)
Download the paper (763 kb)

Attacking Web Applications

This presentation (and paper) focuses on the growing threat of Web Application Hacking. Common web application programming mistakes will be highlighted along with the current attack trends found in the wild today. Topics covered will include Database query injection, Command Execution and Information Leakage attacks.

Download the paper
Download the presentation

Setiri

At BlackHat/Defcon 2002 SensePost released a paper on the now-famous
Trojan called Setiri. Today Setiri still bypasses all known defenses (including personal firewalls, IDSes, content level firewalls etc). While the Trojan was demonstrated (with great success) the source was never released. SensePost has since been contacted by many "anti-virus vendors" in order to obtain the source. An interesting write-up by Kim Zetter (then PCWorld, now Wired) can be found here
In his book on Malware Ed Skoudis dedicates an entire section on Setiri.
You can read it here

Download the presentation (7,229 kb)
Download the paper (1,100 kb)

Worst Fears II

Worst Fears I (also called Worst NightMares Come Alive) caused a stir when it was first released on HNN (L0pht, now @stake) in 1999. This paper presented at FIRST provides the blueprint for a far more complex, more robust and even more devastating worm.

Download the presentation (1,332 kb)
Download the paper (400 kb)

Practical Assessment of Web Servers

Presented at SummerCon in Amsterdam, this paper gives the reader a good understanding of the practical aspects of assessing HTTP(s) servers.

Download the paper (247 kb)