BlueHat, Day 2: Morning of Mobile, Afternoon of Cool Tools

Hello world!  Katie Moussouris here at BlueHat.  Yesterday’s talks certainly set the bar high.  We saw topics range from Mark Russinovich’s clarification of security boundaries to Halvar Flake’s automated malware classification to Roberto Preatoni’s discussion of his exploit marketplace project, better known as WabiSabiLabi.


I spent the day recording audio podcasts with each of our BlueHat speakers, getting a brief inside look at each fascinating topic – look for these in the near future on the technet website.  Think of them as fireside hacker chats.  J


Today we’re kicking off the day with the Morning of Mobile, beginning with Ollie Whitehouse.  Ollie was kind enough to do a guest blog post for us yesterday.  Look for more guest bloggers today, plucked from our all-rock-star line-up.


This afternoon, we’ll be diving into Cool Tools and Techniques, with Jeff Forristal of HP talking about the pitfalls of virtualized platforms first.  Then we’ll be shown the methods of reverse engineers, as they go from patch to exploit, presented by Lurene Grenier of Sourcefire.  Pedram Amini and Aaron Portnoy of TippingPoint will close us out with their new tool that definitely lives up to the afternoon’s theme:  Sully, the automated extensible fuzzing framework.  From what I heard during our podcasting session yesterday, Sully will make it so that you’ll never have to babysit your fuzzing again. Sort of like the RonCo Rotisserie of fuzzing – you can set it and forget it!


Stay tuned for more updates to this blog today – I’m going back to listening to the Morning of Mobile!