Adam Laurie is a freelance security consultant. He also help maintain Apache-SSL and am a member of The Trifinite Group.

Feng Xue, a.k.a. "sowhat" is the Technical Lead at Nevis Labs and focuses on uncovering vulnerabilities and analyzing them. He has discovered over 30 vulnerabilities in popular applications from companies like Microsoft, Symantec, Apple, Trend Micro, HP and Real Networks, among others. Sowhat is a frequent speaker at conferences and has presented at XCON 2005.

Kostya (Miami, FL) joined the team from EADS France in 2006. Kostya is an industry-recognized security researcher. He has published numerous vulnerabilities and is an expert exploit developer, reverse engineer and web application assessment specialist. Kostya is consistently responsible for being first to develop exploits for Microsoft vulnerabilities when they are announced. He has spoken at most of the major industry conferences and teaches Immunity vulnerability analysis classes.

Kurt Grutzmacher is a penetration tester for Pacific Gas & Electric, one of the largest utilities in the United States. Formerly a Manager and tester at the Federal Reserve Bank, overseeing the security testing of all FRB districts, large enterprise applications, vendor products, etc. He has also presented at the local OWASP chapter and BayLISA but mostly internally for the companies that he worked for.

The Grugq has been researching anti-forensics for almost 10 years. Grugq has worked to secure the networks and hosts of global corporations, and he's also worked for security consulting companies. His work as a security consultant was cut short by the publication of an article on anti-forensics. Grugq has presented to the UK's largest forensic practitioner group where he scared the police. In his spare time, Grugq likes to drink and rant.

Nanika is a member of the Vulnerability Research Lab (VRL) of COSEINC. His research work is focused on the Windows platform and has discovered numerous Windows vulnerabilities.

Pedro Bueno is an Anti-Virus Research Engineer at McAfee AvertLabs. In a recent past he was responsible for the CSIRT at one of the Brazil's largest Telecom companies. He is one of the volunteers handlers at the SANS Institute's Internet Storm Center, and authored a series of the Malware Analysis Quizes. He is also a member of The SANS Top 20 Internet Security Vulnerabilities (former SANS/FBI Top 20) expert's Team for about 6 years. Pedro is also the author of SANS Course Identifying and Removing Malwares.

Philippe Langlois is a founder and Senior Security Consultant for Telecom Security Task Force, a research and consultancy outfit. He founded and led technical teams in several security companies (Qualys, WaveSecurity, INTRINsec) as well as security research teams (Solsoft, TSTF). He founded Qualys in 1999 and led the R&D for this world-leading vulnerability assessment service. He founded Intrinsec, a pioneering network security company in 1995, as well as Worldnet, France's first public Internet service provider, in 1993. He has proven expertise in network security, from Internet to less well known networks - X25 and other legacy systems mostly used in banking, travel and finance. Philippe was also lead designer for Payline, one of the first e-commerce payment gateways on Internet. He has written and translated security books, including some of the earliest references in the field of computer security, and has been giving speeches on network security since 1995 (RSA, COMDEX, Interop). Philippe Langlois is a regular contributor of french-speaking security portal vulnerabilite.com. and a writer for ITaudit, the magazine of the International Association of Internal Auditors.

Weidong Shao has over 13 years of experience in software development, system integration, network security, and VoIP systems. He has an MS degree in Electrical Engineering from University of Maryland, College Park, USA and BSEE from Tsinghua University in Beijing, China. His prior employers inculdes Bell Atlantic (now Verizon Communications), Ambernetworks, Nokia, and Cisco Systems. At Cisco, he had worked on network management products in data networking. He was also the tech lead on the security of CallManager, the leading VoIP systems for enterprises. He has CISSP and CCSP (Cisco Certified Security Professional) certifications. He is now a security consultant.