Information Security Resources

CoreLabs Information Security Publications

Below is an index of publications, presentations and papers authored by members of the CoreLabs research team. Click on any title to get more information and access the publication on the CoreLabs extranet site

Title Authors Publication Date Venue / Publication
Assume Nothing, Article about design flaws using as example a Microsoft Windows Virtual P Gary McGraw and Iván Arce 04/30/10 InformIT
Heuristics applied to Binary Diffing Nicolas Economou 09/17/09 Ekoparty 2009
Tendencias de seguridad en tecnologías para aplicaciones Iván Arce 10/02/09 Jornadas de Seguridad Informática 2009 Presentation at the 10th aniversary of ARCERT, Argentina
Attacker-centric risk assessment and metrics (spanish) Ezequiel Gutesman, Fernando Miranda 10/21/09 Forum of Incident Response and Security Teams, FIRST 2009, Santiago, Chile
Probabilistic Attack Planning in Network + WebApps Scenarios Carlos Sarraute 11/28/09 H2HC Conference, São Paulo, Brazil
Internet Explorer Turns Your Personal Computer into a Public File Server Jorge Luis Alvarez Medina 02/03/10 Black Hat DC 2010
State of the Art Automation of Open Source Intelligence and Impersonation in Social Networks Pedro O. Varangot 03/04/10 RSA Security Conference 2010
Your risk is not what it used to be Ariel Waissbein 09/26/08 ToorCon X, September 26-28, 2008. San Diego, CA, USA
Responsible Vulnerability Disclosure: The viewpoint of an IT security research and IT security software vendor (1996-2008) Iván Arce 08/25/08 Process Control Systems Security Forum, PCSF 2008
Viral Infections in Cisco IOS Ariel Futoransky 08/06/08 BlackHat ’08 USA
Two very small reverse engineering tools: a python disassembling engine and an iterative reverse engineering framework Gerardo Richarte 06/15/08 ReCon 2008
Vulnerability Management at the Crossroads, part II Iván Arce 06/10/08 Network Security (Elseiver), Volumen 2008, Issue 6, pp. 9-12
Vulnerability Management at the Crossroads, part I Iván Arce 05/24/08 Network Security
Killing the myth of Cisco IOS rootkits:DIK (DA IOS ROOTKIT) Sebastián Miñiz 05/21/08 EuSecWest 2008, May 21-22. London, UK
A Penetration Testing Learning Kit Ariel Waissbein 04/23/08 Troopers08, April 23-24, 2008. Munich, Germany