Matasano Qualifications

Experience

  • Combined Experience: Over 50 Years
  • Current Minimum Experience: 10 Years
  • Cofounder: Secure Networks
  • Cofounder: SecurityFocus
  • Cofounder: @stake
  • Cofounder: Internet Security Systems X-Force
  • Cofounder: KSRT Linux Research Team
  • Led: Security strategy for Microsoft Windows XP SP 2
  • Led: Development for Arbor Peakflow DoS
  • Led: NYC practice at @stake
  • Led: Training division at @stake
  • Led: Operations at EnterAct, Most Popular Indie ISP in Chicago

Code Shipped

  • Secure Networks Ballista Scanner
  • ISS Scanner
  • ISS RealSecure
  • Sonicity Multicast Router
  • Arbor Networks Peakflow DoS
  • Arbor Networks Peakflow X
  • Microsoft Windows Server 2003
  • Microsoft Windows XP SP 2
  • Tellium Aurora A-512 and A-128 Optical Switch
  • Axent Webthority

Accomplishments

  • Co-Author: Threat Modeling (Microsoft Press)
  • Invented: IDS Evasion Attacks
  • Invented: Remote Promiscuous Sniffer Detection
  • Invented: Remote Firewall Reverse Engineering (Firewalking)
  • Invented: NetFlow Whitelist Quarantine
  • Invented: DNS Recursion Tunnelling
  • Invented: 802.11 Trusted Network Association Attacks (Karma)
  • Invented: Ident Scanning
  • First: Published x86 Stack Overflow Exploit
  • First: Published Remote Router Code Flaw
  • First: Published Storage Appliance Auth Bypass
  • First: iFCP Storage Appliance Code Flaw
  • First: RADIUS Protocol Attack
  • Speaking Engagements: Black Hat, CanSecWest, SysCAN, PacSec, Interzone West, SANS, ISSA,

Skills Profile

  • Languages: C, C++, Assembly (x86, SPARC, MIPS, PPC, Embedded), C#, Objective C, Java, Python, Ruby, Lisp, Tcl
  • Platforms: Win32, POSIX, Linux/BSD Kernel, VxWorks, .NET/ASP.NET, J2EE/WebSphere/Tomcat/JBoss, SOA/SOAP/REST/XMLRPC, OSX.
  • Technologies: Secure coding, Crytography, Routing, Service Provider Security, Binary Reverse Engineering, Concurrency, Computer Architecture, Network Hardware Acceleration, Protocol Testing, Kernel Development, Web Services, Security Operations.
  • Operations: SOX/COBIT, PCI, HIPAA, GLBA, Change Management, Network Monitoring, Forensics.
  • Published Vulnerabilities On: Win32, Solaris, Linux, FreeBSD, OpenBSD, NetBSD, Irix, OSX, VxWorks
  • Protocols Implemented: (ask us where!) IP/UDP/TCP/ICMP, FTP, HTTP 1.1, SMB/CIFS/NetBIOS, RADIUS, iSCSI, iFCP, BGP4, NetFlow v5/v7/v9, SNMP, LDAP, SOAP, XMLRPC, ONC RPC, SunRPC, DCE RPC, CORBA/IIOP, SSL/TLS, X.509, SSH, POP3, IMAP, SMTP/STARTTLS.
Who We Are

Since 1994, Matasano researchers have had founding roles in the first security research labs, discovered new classes of vulnerabilities, secured operating systems, and shipped large software projects. We’ve been behind some of the first breaks in SAN technology, virtualization, and financial protocols. Our work has been featured in Network World, eWeek, Forbes, Macworld, Wired, and the Washington Post, and at conferences ranging from Black Hat to Gartner.