Speakers
Troopers09 will again have some of the hottest and „leet“ speakers from all around the world.
Baier, Dominick DE
Dominick Baier works as a security consultant at thinktecture (www.thinktecture.com). His main focus is security, identity and access control in distributed applications using the Microsoft technology stack. He's the author of "Writing more-secure ASP.NET Applications" (MS Press) and the security curriculum lead at Developmentor. You can find his blog at www.leastprivilege.com.
Belenko, Andrey RU
Andrey is a security researcher and software engineer at Elcomsoft (www.elcomsoft.com), a password recovery company. He is involved in analysis of real-world security systems. Area of his research interest includes practical cryptography, high-performance and distributed computing (including that on GPUs and special hardware).
Branco, Rodrigo BRAZIL
Rodrigo Rubira Branco (BSDaemon) is a Security Expert at Check Point Software Technologies and a Vulnerability Research Senior Consultant at the Vulnerability Research Lab (VRL) of COSEINC. He worked as a software Engineer at IBM, member of the Advanced Linux Response Team (ALRT), part of the IBM Linux Technology Center (IBM/LTC). He is the maintainer of many open-source projects and has talks at the most important security-related conferences in the world. Rodrigo is also a member of the RISE Security (www.risesecurity.org).
Bratus, Sergey US
Sergey Bratus is a Research Assistant Professor the Computer Science Dept. at Dartmouth College. His research interests include designing new operating system and hardware-based features to support more expressive and developer-friendly debugging, secure programming and reverse engineering; Linux kernel security (kernel exploits, LKM rootkits, and hardening patches); data organization and other AI techniques for better log and traffic analysis; and all kinds of wired and wireless network hacking.
Before coming to Dartmouth, he worked on statistical learning methods for natural text processing and information extraction at BBN Technologies. He has a Ph.D. in Mathematics from Northeastern University.
Chiesa, Raoul IT
Raoul "Nobody" Chiesa (OPST, OPSA), Founder & CTO, Mediaservice.net - Italy. Mr. Chiesa has been active in the field of computer security research at a high level since 1986; from 1997, as a member of a team of experts and researchers, he contributed to national and international Security R&D projects. Raoul is a co-author of the books (in english) "Hacking Linux Exposed, ISECOM Edition" (2008) and Profiling Hackers (2008), along with a huge list of contributions and papers in Italy.
Fite, Bryan US
Angus Blitter (AKA Bryan Fite): Angus is the creator of PacketWars™ (packetwars.com) the World's premier Cyber Sport. Angus believes diversity is good for the species and hackers are a national resource. Old school, grey hat and previously plump, Angus still likes to eat, drink and hack.
Gauci, Sandro MALTA
Sandro Gauci is the owner and Founder of EnableSecurity (www.enablesecurity.com) where he performs R&D and security consultancy for mid-sized companies. Sandro has over 8 years experience in the security industry and is focused on analysis of security challenges and providing solutions to such threats. His passion is vulnerability research and has previously worked together with various vendors such as Microsoft and Sun to fix security holes. Sandro is the author of the free VoIP security scanning suite SIPVicious (sipvicious.org).
Henrique, Wendel Guglielmetti BRAZIL
Wendel Guglielmetti Henrique is a consultant for penetration testing at Trustwave's SpiderLabs, the advanced security team within Trustwave focused on forensics, ethical hacking, and application security testing for premier clients. He has worked with IT since 1997, during the last 7 years he has worked in the computer security field. He found vulnerabilities in many softwares like Webmail systems, Access Points, Citrix Metaframe, etc. Some tools he wrote already were used as examples in articles in national magazines like PCWorld Brazil and international ones like Hakin9 Magazine. Recently spoke in YSTS 2.0, Defcon 16, H2HC and others. During the past 3 years he has been working as a Penetration Tester.
Kemp, Michael UK
Michael is an experienced UK based security consultant, with a specialism in the penetration testing of web applications and the testing of compiled code bases and DB environments to destruction. As well as the day job, Michael has been published in a range of journals and magazines, including heise, Network Security, Inform IT and Security Focus, and is currently preparing his first book length technical manuscript. To date, Michael has worked for NGS Software, CSC (Computer Sciences Corporation), and a host of freelance clients throughout the globe. When not breaking things, Michael enjoys loud music, bad movies, weird books and writing about himself in the third person.
Mende, Daniel DE
Daniel Mende is a German security researcher specialized on network protocols and technologies. He's well known for his Layer2 extensions of the SPIKE and Sulley fuzzing frameworks and has presented on protocol security at many occasions including Troopers08, CCC Easterhegg, IT Underground/Prague and ShmooCon. Usually he releases a new tool when giving a talk.
Rey, Enno DE
Rich, Simon DE
Simon Rich is a German security researcher specialized on network protocols and technologies. He has contributed to finding several protocol flaws in the past and is known for innovative approaches to (depending who's the customer) implementing or breaking the security of technologies. He is also well known for his Layer2 extensions of the SPIKE and Sulley fuzzing frameworks and have presented on protocol security at many occasions including CCC Easterhegg, Daycon, IT Underground and Troopers08.
Siddharth, Sumit UK
Sumit Siddharth (sid) works as senior IT security consultant for Portcullis Computer security in U.K. Sid has authored a number of articles, advisories, white papers, tools over the years and has been a speaker at a number of IT security conferences. He also owns the popular IT security blog www.notsosecure.com.
Sood, Aditya K INDIA
Aditya K Sood is an independent security researcher and founder of SecNiche Security. He goes with a handle of 0kn0ck. He is working in the security field since last 5 years. He holds a BE and a MS in Cyber Law and Information Security. He is an active speaker at conferences like EuSecwest, XCON, XKungfoo, OWASP, Clubhack, CERT-IN etc. His research interests include penetration testing, reverse engineering and web application security. His work has been quoted at eWeek, SCMagazine, ZDNet, internetnewsetc. Aditya's research has been featured in USENIX login and Elsevier Network Security Journal. He is also a Lead author for Hakin9 Group for writing hacking and security related papers Aditya's research projects include CERA, Cutting Edge Research Analysis on Web Application Security, Mlabs and TrioSec project. He has also released number of security related papers on packetstormsecurity, infosecwriters, Xssed and also given number of advisories to fore front companies. On professional front he works for KPMG as penetration tester.
Thumann, Michael DE
Michael Thumann is Chief Security Officer and head of the ERNW "Research" and "Pen-Test" teams. He has published security advisories regarding topics like 'Cracking IKE Preshared Keys' and Buffer Overflows in Web Servers/VPN Software/VoIP Software. Michael enjoys sharing his self-written security tools (e.g. 'tomas—a Cisco Password Cracker', ikeprobe—IKE PSK Vulnerability Scanner' or 'dnsdigger—a dns information gathering tool') and his experience with the community. Besides numerous articles and papers he wrote the first (and only) German Pen-Test Book that has become a recommended reading at German universities. In addition to his daily pentesting tasks he is a regular conference-speaker and has also contributed exploit code to the Metasploit Framework. With more than 10 years of experience in computer security Michaels' main interest is to uncover vulnerabilities and security design flaws from the network to the application level.