Information Security Resources

CoreLabs Information Security Publications

Below is an index of publications, presentations and papers authored by members of the CoreLabs research team. Click on any title to get more information and access the publication on the CoreLabs extranet site

Title Authors Publication Date Venue / Publication
Penetration Testing == POMDP Solving? Carlos Sarraute, Olivier Buffet, Joerg Hoffmann 07/18/11 IJCAI'11
Automated SQL Ownage Techniques (OWASP) Sebastian Cufre 10/30/09 OWASP AppSec Brasil 2009
802.11 Massive Monitoring Andrés Blanco, Andrés Gazzoli 08/08/15 DEF CON 23
Exploiting Adobe Flash Player in the Era of Control Flow Guard Francisco Falcon 11/13/15 Black Hat Europe 2015
Uncovering SAP vulnerabilities: reversing and breaking the Diag protocol Martin Gallo 07/29/12 Defcon 20 Conference
Deep Boot Nicolas Economou, Andres Lopez Luksenberg 09/20/11 Ekoparty
One firmware to monitor 'em all - EkoParty 2012 Andrés Blanco and Matías Eissler 09/21/12 Ekoparty 2012
No toca BOTOn: Amazon Web Services desde python Ezequiel Gutesman, Fernando Russ 11/17/12 PyCon Argentina 2012
Sleepy - are snakes still sleeping Alejandro David Weil 11/17/12 PyCon Argentina 2012
An Oblivious Password Cracking Server Aureliano Calvo, Ariel Futoransky, Carlos Sarraute 08/31/12 41th JAIIO
Password Security Policies - Lessons Learned from Recent Password Leaks Brian Sutton, Flavio de Cristofaro 11/18/12 OWASP AppSec Latam 2012
Blackberry Pwnage - the Bluejay Strikes Federico Muttis 02/28/13 RSA 2013
HTML5 Heap Sprays, Pwn All The Things Anibal Sacco & Federico Muttis 09/20/12 EuSecWest 2012
Do you know who's watching you?: An in-depth examination of IP cameras attack surface Nahuel Riva, Francisco Falcon 09/26/13 Ekoparty 2013
HoneySAP: Who really wants your money Martin Gallo 03/18/15 Troopers