Farewell, WAF – Exploiting SQL Injection from Mutation to Polymorphism
Wireless Exploitation: Attacking IoT/OT with SDR
Code Execution Analysis in Mobile Apps
QiLing: Lightweight Advanced Binary Analyzer
Malware Classification using Deep Learning
Deep learning currently is an extremely popular tool that has been used to solve hard problems, ranging from computer vision until speech recognition. This talk is going to introduce the audience to how one can leverage this deep learning technique in order to predict/classify computer malware.
Attacking & Securing Healthcare Standards & Pentest Medical Devices
The Health Care Industry has evolved exponentially over the last decade. It’s no secret that advancement in technology & it’s adoption was the driving force behind this positive growth. Initially, interfaces between medical devices were custom designed & posed a huge challenge as far as interoperability was concerned. HealthCare standards like HL7 & DICOM standards have come to the rescue by providing interoperability to store, manage & exchange information among one or more devices, product, systems etc. Both of the standards are supported by the majority of vendors & hospitals however secure implementation of these standards is still a concern as security risks were given less importance while designing products (software & hardware) for healthcare services. This presentation will be primarily focused on HL7 2.x, FHIR & DICOM messages, their implementation, the sensitivity of the information and how to attack these messages. The talk will cover how to pentest medical devices / system in the hospital network and the approach that needs to be taken to pentest the hardened medical system. The talk will be concluded by sharing insights on the proper implementation of these standards to better defend healthcare devices & systems against cyber-attacks.