Rob Havelt, Director of Penetration Testing at Trustwave SpiderLabs
True Stories of Real Pen Tests - Featuring demos of complex hacks and how business systems can be used against an organization.
Earth vs. the Giant Spider: Amazingly True Stories of Real Pen-Tests brings the audience the most massive collection of weird, downright freaky, and altogether unlikely hacks ever seen in the wild. Through stories and demonstrations, we will take the audience into a bizarre world where odd business logic flaws get you almost free food (including home shipping), sourcing traffic from port 0 allows ownership of the finances a nation, and security systems are used to hack organizations.
This talk will focus on:
•Complex hacks found in real environments
•Showing effective attacks not found with automated methods
•Types of victim organizations and data accessed
By the end of this presentation we hope to have the audience thinking differently about systems and applications that organizations use every day, and how they may be used against them.