Slide 1
Slide 1
Slide 1
Slide 1
Slide 1
Slide 1

PRESENTATION MATERIALS

PHOTOS / VIDEOS

Official conference photos and HD videos will be made available in the next 2-3 weeks. Please follow @hitbsecconf on Twitter for links or join our Facebook Group

Xavier Mertens (Security Consultant)

SIGINT TITLE:  pastemon.pl & leakedin.com

SIGINT ABSTRACT:

pastebin.com is a well-known website used primarily by developers to exchange code and technical details. But for a while, this website has been hijacked from its main purpose and is also used by “bad” guys to store plenty of interesting information. From an OSINT (Open Source Intelligence) point of view, pastebin.com became a goldmine and must be monitored! I wrote a tool to scan the website and generate alerts based on regular expressions. What’s interesting to search for? IP addresses, logins, domain names & much more. To increase people awareness about the risks of posting sensitive data to pastebin.com, I also started a blog called leakedin.com where interesting found content is published 24×7.

My talk will present you the tool pastemon.pl and its benefits.

ABOUT XAVIER MERTENS

Xavier Mertens is a Security Consultant and security blogger. His job focuses mainly on “security monitoring” solutions such as log management, SIEM, incident management but also on audits and some pentests. Instead of following vendors, he prefers to find the best solutions to solve security issues. One of his preferred topic at the moment is OSSEC and OSINT. He wrote several blog articles about this software to increase its performance or visibility. In parallel to his daily job and blog, Xavier offers some spare time and resources to initiatives like BruCON (the Belgian security conference) and EuroTrashSecurity.

Okura Hotel Amsterdam
Ferdinand Bolstraat 333, 1072 LH Amsterdam,
The Netherlands

1-Day Intensive Training Sessions – 21st of May / 0900 – 1800

 

SPECIAL OPS 1  - WIRELESS SECURITY KUNGF00

SPECIAL OPS 2  – THE ART OF EXPLOITING SQL INJECTION FLAWS

SPECIAL OPS 3 – MOBILE APPLICATION HACKING – ATTACK & DEFENSE



2-Day Hands on Training Sessions – 22nd – 23rd of May / 0900 – 1800

TECH TRAINING 1  – HUNTING WEB ATTACKERS

TECH TRAINING 2  – ADVANCED LINUX EXPLOITATION METHODS

TECH TRAINING 3  - ADVANCED APPLICATION HACKING – ATTACKS, EXPLOITS & DEFENSE

 

 



3-Day Hands on Training Sessions – 21st, 22nd & 23rd of May / 0900 – 1800

TECH TRAINING 4  – THE EXPLOIT LABORATORY: ADVANCED EDITION




QUAD TRACK CONFERENCE – 24th & 25th of May / 0900 – 1800

Featuring keynotes by BRUCE SCHNEIER and ANDY ELLIS



EVENT ORGANIZER

LOCAL PARTNER

PLATINUM SPONSORS

GOLD SPONSORS

TITANIUM SPONSOR (POST CONFERENCE RECEPTION + SPEAKER RECEPTION)

SILVER SPONSOR

HACKWEEKDAY SPONSOR

ALCO_PWN SPONSOR (POST CONFERENCE RECEPTION)

HITB LAB / SIGINT SPONSOR

NETWORK SPONSORS AND UPLINK

ADDITIONAL SUPPORT BY

SUPPORTING MEDIA

FRIENDS OF HITB

Copyright © 2012 Hack In The Box | http://www.hackinthebox.org

( / 10 )