Information Security Resources

CoreLabs Information Security Publications

Below is an index of publications, presentations and papers authored by members of the CoreLabs research team. Click on any title to get more information and access the publication on the CoreLabs extranet site

Title Authors Publication Date Venue / Publication
The ND2DB attack: Database content extraction using timing attacks on the indexing algorithms Ariel Futoransky, Damian Saura, and Ariel Waissbein. 08/13/07 First Workshop on Offensive Technologies (WOOT `07)
OpenBSD Remote Exploit Alfredo Ortega and Gerardo Richarte 08/13/07 Black Hat USA 2007 Briefings, August 1-2, 2007. Las Vegas, NV, USA.
Timing Attacks for Recovering Private Entries From Database Engines Ariel Futoransky, Damian Saura, and Ariel Waissbein 08/01/07 Black Hat USA 2007 
Security vulnerabilities, exploits and attack patterns: 15 years of art, pseudo-science, fun & profit Iván Arce 07/31/07 15th USENIX Security Symposium, July 31st –August 4th 2006, Vancouver, B.C. Canada
Binary Cryptography Carlos Sarraute 11/20/06 Jornadas de Criptografía y Códigos Autocorrectores
Advanced Software Protection Now Diego Bendersky, Ariel Futoransky, Luciano Notarfrancesco, Carlos Sarraute and Ariel Waissbein. 01/27/03 CoreLabs Technical Report (arXiv:1006.2356)
Building Computer Network Attacks Ariel Futoransky, Luciano Notarfrancesco, Gerardo Richarte and Carlos Sarraute 03/31/03 CoreLabs Technical Report (arXiv:1006.1916)
On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code Iván Arce 02/17/05 RSA Security Conference, 2005
Strong payload obfuscation and encryption Ariel Waissbein 12/01/06 PacSec Conference
Crypto in Forensics and Reverse-engineering Ariel Futoransky, Gerardo Richarte and Ariel Waissbein 10/06/05 FIRST Technical Colloquium. October 6, 2005. Palacio San Martín, Buenos Aires, Argentina.
Lessons Learned Writing Exploits Ivan Arce and Gerardo Richarte 05/02/05 CanSecWest '02. May, 2005. Alberta, Canada.
Tendencias de ataque en seguridad informática Iván Arce 10/03/05 2005 FIRST Technical Colloquium, Buenos Aires, Argentina
Bad Peripherals Iván Arce 02/01/05 IEEE Computer Society - Security & Privacy Magazine, Vol. 3, No. 1.
The Rise of the Gadgets Iván Arce 10/01/03 IEEE Security and Privacy, vol. 1, no. 5, pp. 78-81, Sept-Oct. 2003
Modern Intrusion Practices Gerardo Richarte 07/30/03 Black Hat Briefings 2003, Las Vegas, July 30-31, 2003.