Download the FREE iPhone app to take your Blackhat schedule on-the-go »
Facebook
Twitter
MySpace
LinkedIn
Google
AIMWednesday July 28
8:00 AM
8:45 AM
9:00 AM
9:45 AM
10:00 AM
ExploitSpotting: Locating Vulnerabilities Out Of Vendor Patches Automatically Day 1 - Re...
Base Jumping: Attacking GSM Base Station Systems and mobile phone Base Bands Day 1 - Mo...
Malware Freak Show 2010: The Client-Side Boogaloo Day 1 - Ma...
The Chinese Cyber Army: An Archaeological Study from 2001 to 2010 Day 1 - Cy...
WPA Migration Mode: WEP is back to haunt you... Day 1 - Ne...
Optimizing the Security Researcher and CSO Relationship Day 1 - Ex...
Payload Already Inside: Data Re-Use for ROP Exploits Day 1 - Pr...
Attacking Kereberos Deployments Day 1 - OS...
Industrial Bug Mining - Extracting, Grading and Enriching the Ore of Exploits Day 1 - Bu...
CSA: Cloudersize: A cardio, strength & conditioning program for a firmer, more t... Day 1 - Sp...
The Emperor Has No Clothes: Insecurities in Security Infrastructure Day 1 - In...
10:30 AM
11:00 AM
11:15 AM
Crash Analysis using BitBlaze Day 1 - Re...
More Bugs In More Places: Secure Development On Moble Platforms Day 1 - Mo...
Malware Attribution: Tracking Cyber Spies and Digital Criminals Day 1 - Ma...
Balancing the Pwn Trade Deficit Day 1 - Cy...
Extreme-range RFID tracking Day 1 - Ne...
Systemic DNS Vulnerabilities and Risk Management: A Discussion with the Experts Day 1 - Ex...
Aleatory Persistent Threat Day 1 - Pr...
Understanding the Windows SMB NTLM Weak Nonce vulnerability Day 1 - OS...
Virtual Forensics Day 1 - Bu...
Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters Day 1 - In...
11:30 AM
12:00 PM
12:30 PM
1:30 PM
1:45 PM
Jackpotting Automated Teller Machines Redux Day 1 - Re...
These Aren't the Permissions You're Looking For Day 1 - Mo...
mod_antimalware: a novel apache module for containing web-based malware infectio... Day 1 - Ma...
Social Networking Special Ops: Extending data visualization tools for faster Pwn... Day 1 - Cy...
Burning Asgard - What happens when Loki breaks free Day 1 - Ne...
Cyber war... Are we at war? And if we are, how should we fight it? Day 1 - Ex...
Hacking Java Clients Day 1 - Pr...
Adventures in Limited User Post Exploitation Day 1 - OS...
Network Stream Debugging with Mallory Day 1 - Bu...
SCADA and ICS for Security Experts: How to avoid Cyberdouchery Day 1 - In...
2:00 PM
3:00 PM
3:15 PM
Blue Screen Of the Death is dead Day 1 - Re...
Everybody be cool this is a roppery! Day 1 - Mo...
BlindElephant: WebApp Fingerprinting and Vulnerability Inferencing Day 1 - Ma...
Finger Pointing for Fun, Profit and War? Day 1 - Cy...
Exploiting timing attacks in widespread systems Day 1 - Ne...
One on One Interview with General (Ret.) Michael V. Hayden Day 1 - Ex...
Harder, Better, Faster, Stronger: Semi-Auto Vulnerability Research Day 1 - Pr...
Hacking the Trading Floor Day 1 - OS...
JavaSnoop: How to hack anything written in Java Day 1 - Bu...
Hacker Court Day 1 - Sp...
Black Ops Of Fundamental Defense: Web Edition Day 1 - In...
4:30 PM
4:45 PM
TBA Day 1 - Re...
App Attack: Surviving the Mobile Application Explosion Day 1 - Mo...
Mastering the Nmap Scripting Engine Day 1 - Ma...
Getting In Bed With Robin Sage Day 1 - Cy...
PSUDP: A Passive Approach to Network-Wide Covert Communication Day 1 - Ne...
Security Innovation Network Panel: Connecting Buyers, Builders, and the Research... Day 1 - Ex...
SAP Backdoors: A ghost at the heart of your business Day 1 - Pr...
Standing on the shoulders of the blue monster - Hardening Windows applications Day 1 - OS...
Exploiting the Forest with Trees Day 1 - Bu...
Hacker Court Continued Day 1 - Sp...
Wardriving the Smart Grid: Practical Approaches to Attacking Utility Packet Radi... Day 1 - In...
6:00 PM
Thursday July 29
8:00 AM
8:45 AM
9:45 AM
10:00 AM
Memory Corruption Attacks: The (almost) Complete History... Day 2 - Ex...
CLOUDINOMICON: Idempotent Infrastructure, Survivable Systems & Bringing Sexy Bac... Day 2 - Cl...
How to Hack Millions of Routers Day 2 - Cl...
Microsoft Powershell - It's time to own Day 2 - Tu...
State of SSL on the Internet: 2010 Survey, Results and Conclusions Day 2 - Bi...
CSI: TCP/IP Day 2 - Me...
Utilizing Code Reuse/Return Oriented Programming in PHP Web Application Exploits Day 2 - We...
Changing Threats To Privacy: From TIA To Google Day 2 - Pr...
pyREtic – Reversing obfuscated Python bytecode & live Python objects Day 2 - Re...
Breakout Session: Regional Collegiate Cyberdefense Competition Day 2 - Sp...
Keeping the Good Stuff In: Confidential Information Firewalling with the CRM114... Day 2 - Wh...
10:30 AM
11:00 AM
11:15 AM
There's a party at Ring0 (and you're invited) Day 2 - Ex...
Secure Use of Cloud Storage Day 2 - Cl...
HTTPS Can Byte Me Day 2 - Cl...
You will be billed $90,000 for this call Day 2 - Tu...
Becoming the six-million-dollar man Day 2 - Bi...
Panel: Policy, Privacy, Deterrence and Cyber War Day 2 - Me...
Constricting the Web: Offensive Python for Web Hackers Day 2 - We...
Unauthorized Internet Wiretapping: Exploiting Lawful Intercept Day 2 - Pr...
Voyage of the Reverser: A Visual Study of Binary Species Day 2 - Re...
Your Career = Your Business Day 2 - Sp...
Hacking Oracle From Web Apps Day 2 - Wh...
11:45 AM
12:30 PM
1:45 PM
Return-Oriented Exploitation Day 2 - Ex...
Virtually Pwned: Pentesting Virtualization Day 2 - Cl...
Blitzableiter - the Release Day 2 - Cl...
Elevation of Privilege: The easy way to threat model Day 2 - Tu...
Defenseless in Depth Day 2 - Bi...
Human Intel Day 2 - Me...
GWT Security: Don’t get distracted by bright shiny objects Day 2 - We...
The DMCA & ACTA vs. Academic & Professional Research: How Misuse of this Intelle... Day 2 - Pr...
TitanMist: Your First Step to Reversing Nirvana Day 2 - Re...
Things You Wanted To Know But Were Afraid To Ask About Managing Your Information... Day 2 - Sp...
Token Kidnapping's Revenge Day 2 - Wh...
2:15 PM
2:45 PM
3:00 PM
3:15 PM
Understanding the Low-Fragmentation Heap: From Allocation to Exploitation Day 2 - Ex...
Virt-ICE: next generation debugger for malware analysis Day 2 - Cl...
Hacking Browser's DOM - Exploiting Ajax and RIA Day 2 - Cl...
SprayPAL: How capturing and replaying attack traffic can save your IDS Day 2 - Tu...
Need a hug? I'm secure. Day 2 - Bi...
Panel: Ex-Fed Confessions Day 2 - Me...
How I Met Your Girlfriend Day 2 - We...
Attacking phone privacy Day 2 - Pr...
NEPTUNE: Dissecting Web-based Malware via Browser and OS Instrumentation Day 2 - Re...
Panel: ISSA Day 2 - Sp...
Hacking and protecting Oracle Database Vault Day 2 - Wh...
3:45 PM
4:15 PM
4:30 PM
4:45 PM
Advanced AIX Heap Exploitation Methods Day 2 - Ex...
dirtbox, a highly scalable x86/Windows Emulator Day 2 - Cl...
Bad memories Day 2 - Cl...
USB - HID, The Hacking Interface Design Day 2 - Tu...
Lord of the Bing: Taking back search engine hacking from Google and Bing Day 2 - Bi...
Meet the Fed's Reception Day 2 - Me...
Deconstructing ColdFusion Day 2 - We...
Carmen Sandiego is On the Run! Day 2 - Pr...
Goodware drugs for malware: on-the-fly malware analysis and containment Day 2 - Re...
Cryptographic Agility: Defending Against the Sneakers Scenario Day 2 - Wh...