Information Security Resources

CoreLabs Information Security Publications

Below is an index of publications, presentations and papers authored by members of the CoreLabs research team. Click on any title to get more information and access the publication on the CoreLabs extranet site

Title Authors Publication Date Venue / Publicationsort descending
On Exploit Quality Metrics - and how to use them for Automated Pentesting Carlos Sarraute 11/18/11 8.8 Computer Security Conference
Attack Planning in the Real World Jorge Lucangeli Obes, Carlos Sarraute and Gerardo Richarte 07/12/10 AAAI 2010
An Algorithm to Find Optimal Attack Paths in Nondeterministic Scenarios Carlos Sarraute, Gerardo Richarte, Jorge Lucangeli Obes 10/21/11 ACM CCS Conference 2011
Foundations and applications for secure triggers Ariel Futoransky, Emiliano Kargieman, Carlos Sarraute, Ariel Waissbein. 02/15/06 ACM Transactions on Information and System Security (TISSEC)
Risk assessment tactics optimizing efficiency and threat-space coverage Ariel Waissbein (presented by Fred Pinkett) 06/22/09 Annual Computer Network Defense Research and Technology Workshop
Simulation of Computer Network Attacks Fernando Miranda, Jose Orlicki and Carlos Sarraute 08/01/07 Argentine Symposium on Computing Technology (AST) 2007
Pentesting en AWS Aureliano Calvo 08/08/11 AWS User Group Argentina
LeakedOut: the Social Networks You Get Caught In Jose Orlicki 09/30/08 BaCon (Buenos Aires Conference) '08
Modern Intrusion Practices Gerardo Richarte 07/30/03 Black Hat Briefings 2003, Las Vegas, July 30-31, 2003.
Automating Penetration Tests - a new challenge for the IS industry? Ivan Arce and Max Caceres 07/11/01 Black Hat Briefings, Las Vegas, July 11-12, 2001
Internet Explorer Turns Your Personal Computer into a Public File Server Jorge Luis Alvarez Medina 02/03/10 Black Hat DC 2010
Exploiting Adobe Flash Player in the Era of Control Flow Guard Francisco Falcon 11/13/15 Black Hat Europe 2015
Syscall Proxying - Simulating remote execution Maximiliano Cáceres 08/01/03 Black Hat USA '03
OpenBSD Remote Exploit Alfredo Ortega and Gerardo Richarte 08/13/07 Black Hat USA 2007 Briefings, August 1-2, 2007. Las Vegas, NV, USA.
A dynamic technique for enhancing the security and privacy of web applications Futoransky, Ariel; Gutesman, Ezequiel; Waissbein, Ariel. 08/13/07 Black Hat USA 2007