DEF CON 31 War Stories - New Isn’t Always Novel Grep Your Way to $20K at Pwn2Own - Horseman, Hanley | allinfosecnews.com

Sept. 14, 2023, 11:52 p.m. | DEFCONConference

DEFCONConference www.youtube.com

The year is 2023 and we’re still finding very basic vulnerabilities in enterprise software.

In this presentation, we detail how the hacker mindset can be applied to seemingly daunting tasks to make them more approachable. We will show how we approached our first Pwn2Own contest and how we discovered a command injection RCE vulnerability affecting nearly every Lexmark printer. We’ll take a look at why we think it went unnoticed in previous research and why current open-source static analysis tools …

basic con def def con def con 31 enterprise enterprise software hacker isn mindset novel presentation pwn2own software stories vulnerabilities war

More from www.youtube.com / DEFCONConference

DEF CON 31 DCGVR Village - Allen Baranov -What Is A GRC Hacker 1 month ago | www.youtube.com

con def def con def con 31 +5

DEF CON 31 - There Are No Mushroom Clouds in Cyberwar - Mieke Eoyang 7 months, 2 weeks ago | www.youtube.com

clouds con conflict culture +20

DEF CON 31 - A Broken Marriage Abusing Mixed Vendor Kerberos Stacks - Ceri Coburn 7 months, 2 weeks ago | www.youtube.com

abusing active directory authority con +19

DEF CON 31 - Contactless Overflow Code Execution in Payment Terminals & ATMs - Josep … 7 months, 2 weeks ago | www.youtube.com

atm atms code code execution +20

DEF CON 31 - The GitHub Actions Worm - Asi Greenholts 7 months, 2 weeks ago | www.youtube.com

actions attacker attackers con +14

DEF CON 31 - Defeating VPN Always On - Maxime Clementz 7 months, 2 weeks ago | www.youtube.com

access always on attack attack surface +22

DEF CON 31 Car Hacking Village - Automotive USB Fuzzing - Euntae Jang, Donghyon Jeong, … 7 months, 2 weeks ago | www.youtube.com

automotive automotive industry car car hacking +17

DEF CON 31 - Contextualizing The Vulkan Leaks & State Sponsored Offensive Ops - Joe … 7 months, 2 weeks ago | www.youtube.com

analysis con def def con +17

DEF CON 31 Car Hacking Village - Abusing CAN Bus Spec for DoS in Embedded … 7 months, 2 weeks ago | www.youtube.com

abusing automotive bus can bus +18

DevSecOps Engineer

@ Material Bank | Remote

View on infosec-jobs.com

Instrumentation & Control Engineer - Cyber Security

@ ASSYSTEM | Bridgwater, United Kingdom

View on infosec-jobs.com

Security Consultant

@ Tenable | MD - Columbia - Headquarters

View on infosec-jobs.com

Management Consultant - Cybersecurity - Internship

@ Wavestone | Hong Kong, Hong Kong

View on infosec-jobs.com

TRANSCOM IGC - Cybersecurity Engineer

@ IT Partners, Inc | St. Louis, Missouri, United States

View on infosec-jobs.com

Manager, Security Operations Engineering (EMEA)

@ GitLab | Remote, EMEA

View on infosec-jobs.com