Information Security Resources

CoreLabs Information Security Publications

Below is an index of publications, presentations and papers authored by members of the CoreLabs research team. Click on any title to get more information and access the publication on the CoreLabs extranet site

Title Authors Publication Date Venue / Publication
Don't try to block out the sun with your fingers! Nicolas Rodriguez 11/18/12 OWASP AppSec Latam 2012
Pentesting en AWS Aureliano Calvo 08/08/11 AWS User Group Argentina
Abusing the Windows WiFi native API to create a Covert Channel Andres Blanco, Ezequiel Gutesman 09/20/11 Hack.lu 2011
Snakes on a Payload Fernando Russ, Pedro Varangot 09/21/11 Ekoparty
An Algorithm to Find Optimal Attack Paths in Nondeterministic Scenarios Carlos Sarraute, Gerardo Richarte, Jorge Lucangeli Obes 10/21/11 ACM CCS Conference 2011
Some Research Directions in Automated Pentesting Carlos Sarraute 10/29/11 Hackers To Hackers (H2HC)
On Exploit Quality Metrics - and how to use them for Automated Pentesting Carlos Sarraute 11/18/11 8.8 Computer Security Conference
Decomposing the Network to perform Attack Planning under Uncertainty Carlos Sarraute 04/12/12 Hackito Ergo Sum (HES)
Les POMDP font de meilleurs hackers: Tenir compte de l'incertitude dans les tests de penetration Carlos Sarraute, Olivier Buffet, Joerg Hoffmann 05/22/12 JFPDA 2012
HTML5 Heap Sprays, Pwn All The Things Anibal Sacco & Federico Muttis 09/20/12 EuSecWest 2012
One firmware to monitor 'em all Andrés Blanco and Matías Eissler 09/21/12 Ekoparty 2012
One firmware to monitor 'em all - EkoParty 2012 Andrés Blanco and Matías Eissler 09/21/12 Ekoparty 2012
No toca BOTOn: Amazon Web Services desde python Ezequiel Gutesman, Fernando Russ 11/17/12 PyCon Argentina 2012
Sleepy - are snakes still sleeping Alejandro David Weil 11/17/12 PyCon Argentina 2012
Password Security Policies - Lessons Learned from Recent Password Leaks Brian Sutton, Flavio de Cristofaro 11/18/12 OWASP AppSec Latam 2012