Matasano Security Research
Code
- Kivlad A new Dalvik bytecode decompiler with a web interface for navigation
- Nerve A scriptable debugger built on Ragweed
- Ragweed Cross platform native code debugging with Ruby
Text
- From CVE-2010-0738 to the recent JBoss worm An overview of JBoss security issues, including the recent worm outbreak targeting CVE-2010-0738 (OWASP 2011)
- Attacking Client Side JIT Compilers JIT compilers and application security (Blackhat 2011)
- Crypto For Pentesters Web app crypto disasters (Blackhat 2011)
- Escaping the Sandbox Win32 sandboxes, tools and techniques (SyScan/EuSecWest/ReCon 2010)
- Ruby For Pentesters The Ruby blackbag and lots more (Blackhat 2009)
- Intro to NT Kernel Security Development NT kernel reversing, debugging and fuzzing (uCon 2009)
- Native Client Contest Matasano consultants won 2nd place in the NaCL security contest (2009)
- Hacking Capitalism Security and financial protocols (Blackhat 2007)
- Defeating DLP Breaking data leak prevention systems (Blackhat 2007)
- Virtualized Rootkits Don't tell Joanna, The Virtualized Rootkit Is Dead (Blackhat 2007)
- PDB Protocol Debugger The Protocol Debugger (Blackhat 2006)
- IT Agents Do Enterprise Management Systems Dream of Electric Sheep? (Blackhat 2006)