Quick Search

Enter word or key phrases

Advanced Search
SIFT is an "Australian Government Endorsed Supplier" of information security and information risk management services.

Announcements

SIFT Team Delivering 3 Presentations at Ruxcon! - 21 Nov 08


The Ruxcon information security conference is once again being held in Sydney on the 29th to the 30th of November. The not-for-profit conference is regarded throughout Australia and the world as one of the leading information security research events. With just a $60 conference entry fee, we would encourage everyone to attend the presentations of the cutting edge research to be showcased at Ruxcon.

Click here to visit the Ruxcon website

This year, three SIFT researchers have been accepted to present and the prestigious event. A short summary of each is provided below.

SCADA Penetration Testing: Hacking Modbus Enabled Devices - Daniel Grzelak (SIFT)

Modbus is a roughly 30 year old application messaging protocol for interacting with Supervisory Control and Data Acquisition (SCADA) devices. While people have been interested in SCADA security for a while now, specific information only started being published recently and there are now a few publicly-available testing toolkits. This presentation seeks to fill that gap by introducing a toolkit and methodology for Modbus security testing as well as providing some interesting insights on what is out there on the Internet.

Attacking Rich Internet Applications - Alex Kouzemtchenko (SIFT), Stefano Di Paola (Minded Security)

In recent years rich internet applications (RIAs) have become the mainstay of large internet applications and are becoming increasingly attractive to the industry due to their similarity to desktop applications. This presentation will examine the largely under-researched topic of RIA security in the hopes of illustrating how the complex interactions with executing environments and generally poor security practices can lead to exploitable applications.

Browser Rider: Your way to Fun Browsing - Benjamin Mosse (SIFT)

Browser exploitation is in fashion but there doesn’t appear to be a robust framework to build and run attacks. Browser Rider will try to fill the gap by providing a framework to build, deploy and manage payloads that exploit the browser. The long term aim of this project is to provide penetration testers with a powerful, simple and flexible interface to client side attacks and targets.

Other Upcoming Presentations
  • Same Origin Policy Weaknesses - Power of Community, Seoul & XCon, Beijing - Alex Kouzemtchenko (SIFT)


Other Recent Presentations
  • Mobile Device Security: spyPhones, HackBerrys & Smartphonies – Security 2008, Sydney – Victor Caringal (SIFT)
  • Blackhat Search Engine Optimisation – Security 2008 – Paul Theriault (SIFT)
  • Fatigue - Affecting the Culture of your Organisation – ISACA Oceania CACS 2008 – Nick Ellsmore (SIFT)
  • ITSEAG - Defence in Depth Presentation/User Access Management – SCADA Community of Interest, Sept 2008 – Nick Ellsmore (SIFT)



Top

Enter your email address to subscribe

SIFT Team Delivering 3 Presentations at Ruxcon!

21 Nov 08

The Ruxcon information security conference is once again being held in Sydney on the 29th to the 30th of November. The not-for-profit conference is regarded throughout Australia and the world as one of the leading information security research events.
more...

SIFT in 2008 BRW Fast 100

20 Nov 08

In the second half of 2008, SIFT was recognised for our rapid and consistent growth through inclusion in the 2008 BRW Fast 100.
more...
© 2000-2009 SIFT Pty Ltd. All rights reserved.
Terms & Conditions | Privacy Policy
Developed by Get Started Australia Pty Ltd