Resource Center

Building Tools: What, When, and How

CVE-2016-1764, fixed by Apple in March of 2016, is an application-layer bug that leads to the remote disclosure of all message content and attachments in plaintext by exploiting the OS X Messages client.

If You Can't Break Crypto, Break the Client

It is unlikely when a bug affects almost every CDN and it becomes vulnerable, but when this happens the possibilities are endless and potentially disastrous. This is a story of exploit development with fascinating consequences.

Bypass Surgery - Abusing CDNs with SSRF Flash and DNS

Have you ever attended an RFID hacking presentation and walked away with more questions than answers? This talk will finally provide practical guidance for penetration testers on hacking High Frequency (HF - 13.56 MHz) and Ultra-High Frequency (UHF – 840-960 MHz).

RFIDiggity - Pentester Guide to Hacking HF/NFC and UHF RFID

Brink's Smart Safe Hacking

It’s possible for a thief to plug a USB drive into Brink’s CompuSafe Galileo, automate hacking the safe, and steal the cash inside. Our video explains this exploit in under 60 seconds.

A vulnerability in the AirDroid application’s web interface made it possible for an attacker to essentially hijack a user’s phone. This video highlights the vulnerability’s implications and how an app’s permissions can become too pervasive.

Technical Briefings

AirDroid Exploit Demo

Read Briefing

Black Hat USA 2014 - CloudBots - Harvesting Crypto Coins like a Botnet Farmer

In this presentation, we explore how to (ab)use free trials to get access to vast amounts of computing power, storage, and pre-made hacking environments.

Take control over your neighbors’ TVs like in the movies! This talk will demonstrate how to hijack any Google Chromecast – even if it’s behind a secure Wi-Fi network – to do your bidding.

HOPE X (2014) - Rickrolling your neighbors with Google Chromecast

Untwister is a tool designed to help pentesters predict random number sequences when an application generates them using an insecure algorithm. This presentation focuses on weaponizing what used to be theoretical into our tool: untwister.

Bsides LV 2014 - Untwisting The Mersenne Twister: How I killed the PRNG

Video Demo - using Bishop Fox's "RickMote Controller" to wirelessly hijack someones nearby TV by taking over their Google Chromecast.

RickMote Controller - Hijacking TVs via Google Chromecast

Customer Stories

August: Built-in Security in IoT Devices

Secured a new voice-enabled speaker at launch by integrating security testing into every stage of development.

Read Story

This presentation will demonstrate how to hijack a Google Chromecast on any network to play videos of your choosing. Let no TV be safe.

ToorCon 15 (2013) - Rickrolling your neighbors with Google Chromecast

The Tastic RFID Thief can be concealed in a briefcase or messenger bag, and used to silently steal the proximity badge information from an unsuspecting employee as they physically walk near the concealed device. Learn how to get full coverage of all pockets as you walk by your target.

RFID Hacking: Over-the-head Move - Stealing Badges w Tastic RFID Thief

This presentation provides a thorough and objective review of the benefits, shortcomings, and trade-offs of static code analysis tools, black box application scanners, and expert analysis.

Microsoft BlueHat v8 - Real World Code Review

Threat modeling is heavily used by the Mozilla Security team in order to analyze potential threats and weaknesses in Firefox and also our other systems, such as addons.mozilla.org, browserID, etc. This video highlights the Trike methodology for threat modeling.

Mozilla Security Blog - Threat Modeling Using Trike

Learn about the differences in skill sets and qualities that make a good pen tester.

UAT - What Palpatine Can Teach About Pentesters

This presentation will give you actionable tips on where to start when securing a startup, and how to bridge the gap between your small company and a Fortune 1000 company you want to secure as a client.

BayThreat - Where To Start When Securing A Startup?

Prepare to watch trusted forensics tools crumble. James C. Foster and Vincent T. Liu share over eighteen months of continued private forensic research, including ground-breaking vulnerabilities and key weaknesses in some of the most popular tools used by forensic examiners.

Black Hat USA 2005 - Catch Me If You Can

HP Webinar-Harness the Power of Agile

Watch this webinar and learn how organizations have harnessed the power of Agile.

We once again tear down the basic assumptions about what Google/Bing Hacking is and the extent to which it can be exploited to target organizations and even governments.

Black Hat USA 2011 - Pulp Google Hacking

Check out all brand new tool additions to the Google Hacking Diggity Project - The Next Generation Search Engine Hacking Arsenal. We explore these tools and more in this DEMO rich presentation.

DEF CON 20 (2012) - Tenacious Diggity

Distance limitation of traditional RFID hacking tools. Stealing card info with the Proxmark3.

RFID Hacking: Distance Limitation - Proxmark3

Introducing the TasticRFID Thief - a long range RFID hacking tool.

RFID Hacking: Intro to Tastic RFID Thief

Take a closer look at the insides of the Tastic RFID Thief.

RFID Hacking: Look at Insides - Tastic RFID Thief