Black Hat: Pwnie Awards


Led by Dave Goldsmith, Dave Aitel, Dino Dai Zovi, HD Moore and Alexander Sotirov, the first ever pwnie awards were given. The categories were best server-side bug, best client-side bug, mass 0wnage, most innovative research, lamest vendor response, most overhyped bug, and best song.


I got there a bit late, so I only caught half of the awards. The above picture is when HD was rapping one of the vendor songs.


The winners can be found

Black Hat: Tactical Exploitation


With a double slot for talking, HD Moore and Valsmith took the stage talking about new tools and obscure techniques for penetration testing. They were the only ones to have a double slot, and lots of material was covered.

Here is a list of things they covered:

  • HTTP PUT and DELETE now in an AUX module in metasploit.
  • SMB version scanner now available. An apple patch came out yesterday, only after two months of the original advisory.
  • Paterva Evolution tool for information gathering.
  • NFS UDP scanning ids evasion techniques.
  • Searching websites for CVS or SVN repositories and backup files.
  • UDRW vs U3 technology for autorun USB keys.
  • WPAD – Web Proxy Autodiscovery Protocol.
  • SMB challenge/response to obtain NTLM hash.
  • Devices with old Samba version like NAS and printers.
  • Hijacking SSH.
  • Hijacking Kerberos.

HD posted the slides and some videos here.

Black Hat: Intranet Invasion with Anti-DNS Pinning


Anti-DNS pinning has been be a popular topic this year, and I was curious on how David Byrne would present this material. His presentation was right on, explaining how the process works, and then showing a demo of it.


Jeremiah Grossman, Robert Hansen, and Anurag Agarwal were also listening in on this talk. When I showed Jeremiah this picture, he said that he had his ‘I am going to take over the world’ look on.

Black Hat: Two Keynotes?

The morning started with Jeff Moss kicking off the conference, and introducing two keynote speakers. This was a first for Black Hat, and I am not sure I like the format. While it does give attendees the option of listening to the one that interests them the most, I felt like I was missing something important being said at the other keynote. The same thing can be said about the multiple tracks, but keynotes are a higher standard, and quite different type of talk. Yes, you can order the videos and watch it later, but you wouldn’t be able to feel the energy from the speaker, which I feel is an important factor on keynotes.


Richard Clarke talked about digital security in 2017, mainly referencing material from his book Breakpoint. The keynote was good, as he brought up many interesting points, and I enjoyed his comments about the current state of our government. 


Tony Sager talked about the information assurance directorate within the National Security Agency. Since I attended Richard Clarke’s keynote, I was not able to hear was Tony had to say, but I heard that it was also very good.