Papers

Papers & presentations published by VNSECURITY members. Copyright and all rights therein are maintained by the authors or by other copyright holders.

2012

• Thanh Nguyen, Cyber Warfare, Keynote, Tetcon, Jan 2012.
• Thai Duong, Những lỗ hổng ít được biết đến và cách phòng chống, Presentation, Tetcon, Jan 2012. (slides)
• Pham Van Toan, Phát hiện lỗi phần mềm thông qua kỹ thuật fuzzing thông minh, Presentation, Tetcon, Jan 2012. (slides)

2011

• KaiJern Lau, Malware Sandboxing the Xandora Way, Presentation, Hack in The Box Malaysia, October 2011.
• Thai Duong & Juliano Rizzo, BEAST: Surprising crypto attack against HTTPS, Presentation, Ekoparty, Sept 2011. (paper)
• Le Dinh Long & Thanh Nguyen, ARM Exploitation ROPmap, Presentation, Black Hat USA, August 2011 and PacSec Japan, November 2011. (slides)
• Thai Duong & Juliano Rizzo, Cryptography in the Web: The Case of Cryptographic Design Flaws in ASP.NET, Technical Paper, IEEE Symposium on Security & Privacy, May 2011. (paper)

2010

• Le Dinh Long & Thanh Nguyen, Payload already inside: data re-use for ROP exploits, Presentation, Hack in The Box Malaysia, October 2010 and DeepSec Austria, November 2010. (slides)
• Nguyen Anh Quynh, Detecting Malicious Documentations, Presentation, SyScan HCM, September 2010.
• Thai Duong & Juliano Rizzo, Padding Oracles Everywhere, Presentation, Ekoparty, September 2010.
• Nguyen Anh Quynh, Operating System Fingerprinting for Virtual Machines, Presentation, Defcon 18, July 2010 and SyScan Taipei, August 2010. (slides)
• Nguyen Anh Quynh, Virt-ICE: next generation debugger for malware analysis, White paper and Presentation, Black Hat USA, July 2010. (papers, slides)
  
• Le Dinh Long, Payload already inside: data re-use for ROP exploits, White paper and Presentation, Black Hat USA, July 2010 and SyScan HCM, September 2010. (papers, slides)
• Thai Duong & Juliano Rizzo, Practical Crypto Attacks Against Web Applications, White paper and Presentation, Black Hat Europe, April 2010 and USENIX Workshop on Offensive Technologies, August 2010. (papers, slides)

2009

• Nguyen Anh Quynh, eKimono: A Malware Scanner for Virtual Machines, Presentation, DeepSec Austria, November 2009 and Hack in The Box Malaysia, October 2009. (slides)
• Thai Duong & Juliano Rizzo, Flickr’s API Signature Forgery Vulnerability, Technical paper, September 2009. (paper)
• Nguyen Anh Quynh, Memory forensic and incident response for live virtual machine (VM), Presentation, FRHACK France, September 2009.
• Nguyen Anh Quynh, Detecting rootkits inside Virtual Machine, Presentation, XCON China, August 2009.
• Nguyen Anh Quynh, Outspect: Live Memory Forensic and Incident Response for Virtual Machine, Presentation, Syscan Singapore, July 2009.

2007

• Nguyen Anh Quynh, Hijacking Virtual Machine Execution, Presentation, Black Hat Japan, October 2007.
• Thanh Nguyen (Red Dragon) and Mikado, Cheating Massively Multiplayer Online Game for Fun and Profit, Presentation, VNSECON, July 2007.
• Nguyen Anh Quynh Hijacking Virtual Machine Execution for Fun and Profit, Presentation, VNSECON, July 2007 and Bellua Cyber Security Asia, October, 2008 and DeepSec Austria, December 2007. (slides)
• Nam Nguyen, Unintrusive Back in Time Java Tracers: Methods and Practices, Presentation, VNSECON, July 2007.
• Thai Duong, Zombilizing The Web Browsers Via Flash Player 9, Presentation VNSECON, July 2007.
• Thanh Nguyen (Red Dragon), UPnP Hacking – You Plug n Pray, Presentation, VNSECON, July 2007.

2006

• Nguyen Anh Quynh, XEBEK: A Next Generation Honeypot Monitoring System, Presentation, EUSecWest Amsterdam, 2006. (slides)
• Nguyen Anh Quynh, Towards an Invisible Honeypot Monitoring System, Presentation, Hack in The Box Malaysia, September 2006 and Hack.lu Luxembourg, October 2006. (video, slides)

2003

• Thanh Nguyen (Red Dragon),  Advanced Linux Kernel Keylogger, Presentation, Hack In The Box Malaysia, December 2003.

2002

• Thanh Nguyen (Red Dragon), Writing Linux Kernel Keylogger, Technical paper, Phrack Magazine #59, June 2002.