Moti Joseph

Moti Joseph is currently a Senior Security Researcher with the Vulnerability Research Lab (VRL) of COSEINC. He has been involved in computer security since 2000 and has been working on reverse engineering exploit code and developing security products for CheckPoint and WebSense Secuirty Labs.

Moti has spoken in many conferences including

• Blackhat USA Las Vegas 2007
• Shanghai Jiao Tong University 2010
• SyScan2010 Taiwan, Taipe
• CONF2010 Poland, Karkow
• CONF2009 Poland, Warsaw
• ShakaCon 2009 USA
• POC 2009 South Korea and 2010 Seoul

Moti Joseph will be teaching:

• sys_12_01 Exploiting Software

Udi Shamir

Udi Shamir is a Senior Researcher with the Advanced Malware Labs of COSEINC. His work in the company includes research into Rootkits, Operating Systems, Virtualization Security and Kernel Hacking. A few of his projects includes:

• The BlueBox is watching Me, (Hacking the Linksys checksum)
• DirStat filesystem security event tracker, http://sf.net/projects/dirstat
• EM (Enforcement Module) http://sf.net/projects/em-module
• WMI (re-patch wmi version for linux)

Udi Shamir will be teaching:

• sys_12_02 Writing Linux Root Kits

Shreeraj

Shreeraj Shah, B.E., MSCS, MBA, is the founder of Blueinfy, a company that provides application security services. Prior to founding Blueinfy, he was founder and board member at Net Square. He also worked with Foundstone (McAfee), Chase Manhattan Bank and IBM in security space. He is also the author of popular books like Hacking Web Services (Thomson 06) and Web Hacking: Attacks and Defense (Addison-Wesley 03).

In addition, he has published several advisories, tools, and whitepapers, and has presented at numerous conferences including RSA, AusCERT, InfosecWorld (Misti), HackInTheBox, Blackhat, OSCON, Bellua, Syscan, ISACA etc. His articles are regularly published on Securityfocus, InformIT, DevX, O’reilly, HNS. His work has been quoted on BBC, Dark Reading, Bank Technology as an expert.

Shreeraj will be teaching:

• sys_12_03 Advanced Application Hacking – Attacks, Exploits & Defense

Almog Cohen

Almog Cohen is a programmer and security researcher with more than 15 years of experience in the security field. his fields of interest range from security code audit and exploit development to malware research and rootkit technology.

Almog Cohen will be teaching:

• sys_12_04 Windows security mechanisms

Saumil Shah

Saumil Shah is the founder and CEO of Net-Square, providing cutting edge information security services to clients around the globe. Saumil is an internationally recognized speaker and instructor, having regularly presented at conferences like Blackhat, RSA, CanSecWest, PacSec, EUSecWest, Hack.lu, Hack-in-the-box and others. He has authored two books titled "Web Hacking: Attacks and Defense" and "The Anti-Virus Book".

Saumil graduated with an M.S. in Computer Science from Purdue University, USA and a B.E. in Computer Engineering from Gujarat University. He spends his leisure time breaking software, flying kites, traveling around the world and taking pictures.

Saumil Shah will be teaching:

• sys_12_05 The Exploit Laboratory Advanced Edition

Neal Wise & Graeme Bell

Neal Wise Neal Wise is the Director of Assurance Pty Ltd. Neal is a regular presenter on wireless and mobility security at the Australian High Tech Crime Centre's (Australian Federal Police AHTCC), Kiwicon and AusCERT's annual conferences. Neal’s also served as a guest lecturer at Deakin, RMIT and Monash Universities. Many years ago Neal was an instructor for Foundstone's Ultimate Hacking courses in Australia and North America. Neal has also written for Australian Macworld and Secure Computing magazines. And, for what it’s worth, Neal holds several of those security industry certifications that start with C.

Graeme Bell is a Security Consultant with Assurance Pty Ltd. Graeme’s background is in network and platform security. Graeme also specialises in physical access control systems and has run lock-­‐picking competitions at Ruxcon for several years. Graeme also serves as an emcee for Ruxcon. Graeme’s boring boss wrote this bio.
Neal Wise & Graeme Bell will be teaching:

• sys_12_06 Assurance "Hands On" Wireless Security Auditing

Christian Heinrich

cmlh has presented at ToorCon (USA), Shmoocon (USA), SecTor (Canada), CONFidence (Europe), Hack In The Box (Europe), SyScan (Singapore), RUXCON (Australia), AusCERT (Australia), B-Sides (Australia) and the OWASP Conferences in USA, Australia and Europe and OWASP Chapters in the Netherlands, London and Sydney and Melbourne, Australia.
cmlh has a Public Profile on LinkedIn at http://www.linkedin.com/in/ChristianHeinrich

Christian Heinrich will be teaching:

• sys_12_07 Social Network Forensics

Simon Roses Femerling

Simon Roses holds a B.S. from Suffolk University (Boston), Postgraduate in E-Commerce from Harvard University (Boston) and Executive MBA from IE Business School (IE, Madrid).

Currently works as an independent security researcher, driving security innovation. Former Microsoft, PriceWaterhouseCoopers and @Stake.

Simon has authored and cooperated in several security Open Source projects like OWASP Pantera and LibExploit. He has also published security advisories in commercial products.

Frequent speaker at security industry events including RSA, OWASP, SOURCE. DeepSec and Microsoft Security Technets.

CISSP, CEH y CSSLP. Blog: www.simonroses.com

Simon Roses Femerling will be teaching:

• sys_12_08 Practical Software Security Assurance (Runner Edition)

Nils & Rafael Dominguez Vega

Nils is heading the security research at MWR InfoSecurity. He likes to break and exploit stuff, which he demonstrated at pwn2own 2009 and 2010. He has spent most of 2010 researching different mobile platforms and how to evade the exploitation mitigations techniques in place on these platforms.

Rafa works in the UK as a Security Consultant and Security Researcher for MWR InfoSecurity. He enjoys testing "out of the ordinary" technology and is particularly interested in embedded devices and hardware hacking. He has previously presented innovative research on topics such as USB drivers exploitation and Smart card hacking at various well known security conferences (T2, Defcon, Sec-T, DeepSec).
Nils & Rafael Dominguez Vega will be teaching:

• sys_12_09 Android Security Workshop

Marc Heuse

Marc “van Hauser” Heuse is performing security research since 1993, having found vulnerabilities in firewalls, DNS servers, SAP middleware, etc. and is the author of various well known security and pentest tools like hydra, amap, THC-Scan, secure_delete, SuSEFirewall and many more.

He is performing security research on IPv6 since 2005 and has spoken on many international conferences on this topic since then. Additionally he has programmed the solely available pentest toolkit for ipv6: the thc-ipv6 protocol attack suite.

In 1995 he founded the renowned security research group “The Hacker’s Choice”, which was the first group to e.g. crack A5 GSM in 2006 within a minute. Since 1997 he is working as a security consultant in the top-5 enterprise consultant companies, since 2007 he is working as an independent security consultant.

Marc Heuse will be teaching:

• sys_12_10 Pentesting & Security IPv6

Aaron Hackworth & Ross Kinder

Aaron Hackworth is the Director of Malware Analysis at Dell SecureWorks researching malicious code and attacker tradecraft. Prior to joining Dell SecureWorks, Aaron was a senior member of the Malicious Code team at CERT, and has worked as a network engineer and security specialist for some of the world's largest companies.

Ross Kinder is a security researcher at Dell SecureWorks working to understand and mitigate the effects of malicicious software. He was previously a reverse engineer at CERT/CC supporting the United States government. An electrical engineer by training, he is a graduate of Carnegie Mellon University. He lives in San Franciso with his family where he enjoys hiking, hacking and building hot air balloons. Marc “van Hauser” Heuse is performing security research since 1993, having found vulnerabilities in firewalls, DNS servers, SAP middleware, etc. and is the author of various well known security and pentest tools like hydra, amap, THC-Scan, secure_delete, SuSEFirewall and many more.

He is performing security research on IPv6 since 2005 and has spoken on many international conferences on this topic since then. Additionally he has programmed the solely available pentest toolkit for ipv6: the thc-ipv6 protocol attack suite.

In 1995 he founded the renowned security research group “The Hacker’s Choice”, which was the first group to e.g. crack A5 GSM in 2006 within a minute. Since 1997 he is working as a security consultant in the top-5 enterprise consultant companies, since 2007 he is working as an independent security consultant.

Aaron Hackworth & Ross Kinder will be teaching:

• sys_12_11 Patterns in Reverse Engineering

Alex Ionescu

Alex is coauthor of Windows Internals 5th edition and is currently working on the 6th Edition. He teaches Windows OS internals to Microsoft employees and other security and government organizations worldwide through David Solomon Expert Seminars as well as his own company, Winsider Seminars & Solutions Inc., which also produces low-level system tools. He has also had the chance to contribute to some of Mark Russinovich's Sysinternals tools, such as Process Explorer. He is also very active in the security research community, discovering and reporting several vulnerabilities related to the Windows kernel and presenting talks at conferences such as Blackhat and Recon.

Previously, Alex was the lead kernel developer for ReactOS, an open source clone of Windows XP/2003 written from scratch, where he wrote most of the NT-based kernel. In the last four years, he has also contributed to patches and development in two major commercially used operating system kernels.


Alex Ionescu will be teaching:

• sys_12_12 Windows Internals for Reverse Engineers