Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

All Tags » Security Research   (RSS)

Know thy Enemy

I recently attended BlueHat for the second time and spoke about the SMS vulnerabilities Collin Mulliner and I discovered and exploited this summer. BlueHat is an interesting speaking venue because the audience consists entirely of Microsoft employees. Read More...
Posted Friday, November 06, 2009 10:23 AM by BlueHat | 0 Comments

The lighter side of the cloud

Billy Rios here. I’m giving a talk this week along with Nate McFeters entitled, “ Sharing the Cloud with Your Enemy .” It’s a fun, realistic talk on security in the cloud. Why cloud computing? Cloud computing, software as a service, infrastructure as Read More...
Posted Wednesday, October 21, 2009 9:00 AM by BlueHat | 0 Comments

Attacking SMS

This year at BlackHat USA in Las Vegas , we presented on the topic of attacking Short Message Service (SMS). Our presentation focused on the different ways in which SMS can be used to compromise mobile security. We’re excited to give an updated version Read More...
Posted Monday, October 19, 2009 10:05 AM by BlueHat | 0 Comments

Babel Hacking

Hello world! Remember Mad Libs? How about Scrabble, when you'd try making up words that sound legit just to be de-bluffed by your friend. Playing these games provides endless hours of fun with words and letters. In software and the Internet, words, letters, Read More...
Posted Tuesday, October 13, 2009 10:48 AM by BlueHat | 0 Comments

Collaborating on RIA Security

Microsoft and Adobe frequently work together on security. At this year's BlueHat , we will come together to share our security research in the area of Rich Internet Applications (RIAs). While we independently place considerable thought and effort into Read More...
Posted Tuesday, October 06, 2009 9:14 AM by BlueHat | 0 Comments

Black Hat USA Spotlight: ATL Killbit Bypass

There are only a few days left before Black Hat USA, and we, like most other speakers, are in the midst of the last-minute push to have all the materials finalized in time for our presentation. Our presentation this year, " The Language of Trust ," features Read More...
Posted Monday, July 27, 2009 6:59 PM by BlueHat | 0 Comments

Stainless steel bridge

Hi! Manuel Caballero here. I had the pleasure of penetration testing (pen-testing) the previous versions of Microsoft Silverlight, and now, for the last three weeks, I’ve been playing around with the beta version of Silverlight 3. When I say, "the pleasure", Read More...
Posted Monday, June 15, 2009 9:03 AM by BlueHat | 0 Comments

Token Kidnapping finally patched!

Here I am again writing on MS BlueHat blog, this time about Token Kidnapping. The first time I talked about Token kidnapping was a long time ago and now after a year the issues detailed in the presentation are finally fixed. Let's see what happened. Before Read More...
Posted Tuesday, April 14, 2009 10:22 AM by BlueHat | 1 Comments

!exploitable Crash Analyzer Now Available

At BlueHat v8 in October 2008, Dave Weinstein, Jason Shirk and Lars Opstad presented the topic of when it’s okay to stop fuzzing ( Fuzzed Enough? When It’s OK to Put the Shears Down ). As part of that presentation, Dave talked about a technique used within Read More...
Posted Wednesday, April 01, 2009 10:19 AM by BlueHat | 0 Comments

Learning by our mistakes

Mike Andrews here. With a very broad brush, the vulnerabilities we see can be split into two categories -- flaws and bugs. Flaws are inherent problems with the design of a system/application – Dan Kaminskys’ DNS vulnerability would be a good example. Read More...
Posted Monday, January 12, 2009 7:14 AM by BlueHat | 0 Comments

Good Things Come in Blue Packages

Hello everyone, Celene Temkin here from the MSRC Ecosystem Strategy Team . BlueHat v8: C3P0wned ended a month ago and the success of the con lives on in the outstanding training and networking done between Microsoft employees and external speakers and Read More...
Posted Thursday, November 20, 2008 2:47 PM by BlueHat | 0 Comments

State of the Union

I spent a lot of time trying to think about what to write for a BlueHat pre-conference blog entry and had a pretty hard time focusing on one topic. To handle this, I decided to comment on the state of security. While I've found plenty of things to be Read More...
Posted Thursday, October 16, 2008 1:05 PM by BlueHat | (Comments Off)
 
Page view tracker