Information Security Resources

CoreLabs Information Security Publications

Below is an index of publications, presentations and papers authored by members of the CoreLabs research team. Click on any title to get more information and access the publication on the CoreLabs extranet site

Title Authors Publication Date Venue / Publication
The ND2DB attack: Database content extraction using timing attacks on the indexing algorithms Ariel Futoransky, Damian Saura, and Ariel Waissbein. 08/13/07 First Workshop on Offensive Technologies (WOOT `07)
Smartphones (in) security Nicolas Economou and Alfredo Ortega 10/02/07 Ekoparty '08
Zombie 2.0 Fernando Russ, Diego Tiscornia 10/18/07 Hack.lu. '07
An Attack on MySQL's Login Protocol Iván Arce, Agustín Azubel, Emiliano Kargieman, Gerardo Richarte, Carlos Sarraute and Ariel Waissbein 01/31/01 CoreLabs Technical Report (arXiv:1006.2411)
State of the Art Security from an Attacker's Viewpoint Ivan Arce and Gerardo Richarte 11/05/03 PacSec Conference, Tokyo, Japan, November 6, 2003.
Advanced Software Protection Now Diego Bendersky, Ariel Futoransky, Luciano Notarfrancesco, Carlos Sarraute and Ariel Waissbein. 01/27/03 CoreLabs Technical Report (arXiv:1006.2356)
Una técnica de protección para agentes móviles contra estaciones (hosts) maliciosas Ariel Waissbein 11/21/05 3er Congreso Iberoamericano de Seguridad Informática (CIBSI), Valparaiso, Chile. ISBN: 956-7051-10-0.
Enforcing Privacy in Web Applications A. Futoransky and A. Waissbein 10/11/05 Third Annual Conference on Privacy, Security and Trust. October 12-14, 2005. The Fairmont Algonquin, St. Andrews , New Brunswick, Canada.
On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code Iván Arce 02/17/05 RSA Security Conference, 2005
Analyzing OS fingerprints using Neural Networks and Statistical Machinery Javier Burroni and Carlos Sarraute 02/20/06 EUSecWest, London
Building Computer Network Attacks Ariel Futoransky, Luciano Notarfrancesco, Gerardo Richarte and Carlos Sarraute 03/31/03 CoreLabs Technical Report (arXiv:1006.1916)
Automated SQL Ownage Techniques Sebastian Cufre (presented by Fernando Russ) 03/24/10 CanSecWest Vancouver 2010
State of the Art Automation of Open Source Intelligence and Impersonation in Social Networks Pedro O. Varangot 03/04/10 RSA Security Conference 2010
Internet Explorer Turns Your Personal Computer into a Public File Server Jorge Luis Alvarez Medina 02/03/10 Black Hat DC 2010
Probabilistic Attack Planning in Network + WebApps Scenarios Carlos Sarraute 11/28/09 H2HC Conference, São Paulo, Brazil