12th October 2004

  • The pictures from HITBSecConf2004 are now online -- you can check it out at here.
  • Due to unforseen demand ALL HITBSecConf2004 conference t-shirts were sold out (we made 250). As such we have requested for another reprint of 50. Those of you that want one, please e-mail me at dhillon -at- All orders are on a first come first serve basis. The t-shirts will be selling at USD10-USD12 including shipping (International Orders). For those in KL they are priced at RM20 each (about USD6) not including postage.
  • A fair number of you have been asking about the videos for HITBSecConf2004 -- we will be releasing this in about 4 weeks time as a Bit Torrent on As always, an announcement will be made on the main HITB page as well as here when this is made available.

    11th October 2004

  • The slides, code and materials from HITBSecConf2004 is now online -- check it out here.

    The official results for the CTF is as follows:

    1st: 1st (Malaysia)
    2nd: Red Puffer (Singapore)
    3rd: m0s (Malaysia)
    4th: Dot Slash Jack (Malaysia)
    5th: OCP (Malaysia)
    6th: Footmen (Brunei)

    Special Mentions:

    1.) m0s for catching up from dead last on the 1st day to finishing 3rd (Valentino Rossi Award!)
    2.) Footmen for having the 1st female CTF participant!
    3.) CTF Team for having the unmanned FreeBSD server finishing second.

    8th October 2004

  • HITBSecConf2004 has ENDED! We shall be updating the conference website over the weekend to upload all the pictures and speaker materials/slides etc. Full updates will be available by Monday. On behalf of the HITB Team I wish to extend my thanks to everyone who came and supported us this year, and we look forward to seeing all of you again next year!

    4th October 2004

  • There will be a team leaders briefing at the CTF Area immediately after the keynote session on the 6th (10:30am). CTF will commence at 11:30am! Teams are to be PROMPT and PUNCTUAL! If you miss the briefing please do not complain to us. For the health of your own servers, teams are advised to bring their own backup media. If teams are unhappy with the crimping of the cables at the event, please feel free to crimp your own! Extra cables WILL NOT BE PROVIDED!

    1st October 2004

  • Our Capture The Flag 'Live Hacking' Competition is now CLOSED. We have 8 teams registered to battle it out on the 6th and 7th. They are:

    1. m0s (Defending champion, 2003) - Malaysia
    2. dotslashjack (3rd placing, 2003) - Malaysia
    3. 1st - Indonesia
    4. OCP - Malaysia
    5. Footmen - Brunei
    6. XPLICIT - Malaysia
    7. Red Puffer - Singapore
    8. NSS - India/Malaysia

    Do come by to The Westin to check them out in action. The CTF, Open-Hack and Technology Showcase / Exhibition is FREE and open to the public! Walk in registrations for our TRIPLE TRACK Security Conference are also accepted.

    23rd September 2004

  • The Agenda for HITBSecConf2004's Triple Track Security Conference (6th and 7th October) is now online!
  • We are proud to announce that Airdefense will be monitoring the Wi-Fi data cloud at HITBSecConf2004. The press release regarding this is up on the Media and Press Release Page.

  • We are proud to announce the following Sponsors of HITBSecConf2004:

    Juniper Networks

    Transition Systems

    Internet Security Systems (ISS)

    NSS MSC Sdn. Bhd.

  • Our exhibition layout map and list of exhibitors is available here.

    15th September 2004

  • Captain Crunch has announced his keynote presentation for HITBSecConf2004 entitled Security Threats from Spamming.
  • Shreeraj Shah has also announced his paper entitled Web Services - Attacks and Defense Strategies, Methods and Tools.

    For further details on these papers and others, please see our Conference Speaker List.

    13th September 2004

  • It is with great honour that we are pleased to announce that the Malaysian Communications and Multimedia Commission (MCMC) has agreed to come on board as a Supporting Organization for HITBSecConf2004! Their GM of Monitoring and Enforcement Mr. Toh Swee Hoe will also be presenting a paper entitled "Information Network Security Issues in the Communications and Multimedia Industry". The press release can be viewed here

    8th September 2004

  • We are happy to announce the addition of 5 new speakers to our line up! They are:

    Fyodor Yarochkin
    Suresh Ramasamy
    Meder Kydyraliev
    Teo Sze Siong
    Chew Keong Tan

  • Adam Gowdiak has also announced his paper entitled "Java 2 Micro Edition (J2ME) Security Vulnerabilities". This paper will discuss Java 2 Micro Edition (J2ME) security in detail including several vulnerability exploitation techniques specific to mobile Java code.

    The talk will also present practical applications of reverse engineering techniques specifically uppn the example of the so called "closed" Nokia DCT4 cell phone. Step by step construction of a real life malicious Java midlet application will be also given in this part of the talk. To our knowledge, this is the FIRST EVER J2ME exploit!

  • SK Chong has also announced his paper entitled "Windows Local Kernel Exploitation" which will highlight mechanisms to exploit the Windows Kernel for useful local privilege escalation.

    1st September 2004

  • Our Call for Papers has ended. Thank you to everyone who submitted their papers for HITBSecConf2004! We shall announce the additional speakers from the CFP next week.

    24th August 2004

  • We are proud to announce that Zone-H will be coming to Malaysia! Roberto Preatoni, the founder of Zone-H will be down to present "Asymmetric Warfare and Interception Revealed" together with Fabio Ghioni, one of the leading experts in asymmetric interception and intrusion management! You do not want to miss this presentation! Click here for further details.

  • Capture The Flag is now open for registration! There is only space for 10-teams, so you are encouraged to register now. Please do read the rules and overview of the gameplay closely!

  • The Venue Page has been updated. Pricing for hotel accomodation at The Westin for all HITBSecConf2004 participants is RM300/night without breakfast, and RM330/night with. Please quote "Hack In The Box Security Conference 2004" when making your reservation.

    4th August 2004

    Important notice regarding the venue!

  • The venue for HITBSecConf2004 has been changed to The Westin Kuala Lumpur! In the heart of Kuala Lumpur's business and shopping district, The Westin Kuala Lumpur is the newest five-star hotel in Malaysia's Golden Triangle. All 384 guest rooms feature views of either the spectacular KLCC Twin Towers or the historical city of Kuala Lumpur.

  • We are also pleased to announce that we will be ADDING an additional track to the 2-day security conference (October 6th & 7th) making it a TRIPLE TRACK event that's not to be missed! Stay tuned for the announcement of our additional speakers in the coming weeks.

    2nd August 2004

  • Early bird conference registration has ENDED! If you have yet to register, you are strongly encouraged to do so now as seats are limited and available on a first come first serve basis! You can register here. All registrants for HITBSecConf2004 will be provided with EXCLUSIVE access to our video footage of HITBSecConf2003.

    25th July 2004

  • We are proud to announce 4 new additions to our speaker line up! These are:

    Along with that we would also like to announce that Theo De Raadt and John Draper (Captain Crunch) have been named as the keynote speakers for HITBSecConf2004! The event itinerary will be made available in the coming days.

  • Do note that the Early Bird Registration ends August 1st 2004.

    5th July 2004

    • Conference Registration is now open! We are currently working on getting our credit card payment gateway ready.
    • We will be conducting a hands-on technical training session at this years event. For further details on our trainers and the training outline, please take a look at our Training Page
    • We have also updated our Speakers Page.

    23rd June 2004

    • Call for papers (CFP) is now open. All submissions should be sent to cfp -at- no later than 1st September 2004.

    7th June 2004

    • Call for papers (CFP) will open 23rd June 2004.
    • Conference Registration will be opened 5th of July 2004.

    Welcome to Hack In The Box Security Conference 2004. Our upcoming security conference and training event to be held in The Westin Kuala Lumpur Malaysia, from October 4th till the 7th.

    Event Details:

    Venue: The Westin Kuala Lumpur

    Date: October 4th - 7th 2004

    Time: 0900 - 1700

    Expected Capacity: 500 pax Conference / 60 pax Training

    Who Should Attend:

             Head of Network Management

             Senior Executives

             Network Security Consultants / Engineers

             Technical Director 

    All major corporations who value network security.


    Training & Conference:

    Item Cost
    Technical Training Track 1 + Conference RM1,860.00
    Technical Training Track 2 + Conference RM1,860.00
    Business Training + Conference RM1,860.00

    Training Only:

    Item Cost
    Technical Training Track 1 Only RM1,500.00
    Technical Training Track 2 Only RM1,500.00
    Business Training Only RM1,500.00

    Conference Only:

    Item Cost
    Conference Only RM450.00

    Note: Students will be charged RM250 per participant to attend the 2-day TRIPLE Track security conference (6th & 7th October). Please produce your student card upon arrival at the venue. There is no student price for training.


    The main aim of HITBSecConf2004 is to enable the dissemination, discussion and sharing of network security information. Presented by respected members of both the mainstream network security arena as well as the underground or BlackHat community, this years conference promises to deliver a look at several new attack methods that have not been seen or discussed in public before.

    Event Date Time Venue
    Dual-Track Deep-Knowledge Technical Training 4th & 5th October 9am to 5pm The Westin Kuala Lumpur.
    Single Day Training: Hacking for CEOs 5th October 9am to 5pm The Westin Kuala Lumpur.
    Triple-Track Security Conference 6th & 7th October. 8:30am to 5:30pm The Westin Kuala Lumpur.
    Capture The Flag 'Live' Hacking Competition 6th & 7th October 9am to 5pm The Westin Kuala Lumpur.
    Technology Exhibition & Showcase 6th & 7th October 9am to 5pm The Westin Kuala Lumpur.

    Our Sponsors

    Our Speakers are Supported By:

    Supporting Organizations:

    Malaysian Communications and Multimedia Commission

    Special Interest Group in Security & Information InteGrity Singapore

    XFOCUS Team

    Zone-H - IT Security Information Network

    Wireless Security Monitored By


    HITB Partner


    Media Partners

    Official Media Partner


    2004 Hack In The Box (M) Sdn. Bhd.
    HTML and PHP by spoonfork (mel at hackinthebox dot org)