gannimo

Mathias Payer is a security researcher and an assistant professor in computer science at EPFL and Purdue University, leading the HexHive group. His research focuses on protecting systems in the presence of vulnerabilities, with a focus on memory corruption and type violations. He is interested in system security, binary exploitation, effective mitigations, and strong sanitization using a combination of binary analysis and compiler-based techniques. Before joining Purdue in 2014 he spent two years as PostDoc in Dawn Song’s BitBlaze group at UC Berkeley. He graduated from ETH Zurich with a Dr. sc. ETH in 2012, focusing on low-level binary translation and security. He worked on a systematization of memory corruption and looked into enforcing integrity for a subset of data (e.g., code pointers). All prototype implementations are open-source. In 2014, he founded the b01lers Purdue CTF team.

Infos

Event(s):
36th Chaos Communication Congress, 34. Chaos Communication Congress, 32. Chaos Communication Congress, 31. Chaos Communication Congress, 30. Chaos Communication Congress
Language(s):
English
Track(s):
Security, Security & Hacking, Security & Safety
Links:
Hexhive group
Homepage
Hexhive group
Homepage

Statistics

Nothing yet? :(
Create more subtitles!

17.8% Checking done17.8%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
82.2% Nothing done yet82.2%


No source, no problem! High speed binary fuzzing

Event
36c3
Date
Dec. 29, 2019, 3:10 p.m.
Language
English
Video-Duration
00:59:28
Statistics
Average whole talk
160.6 wpm
912.6 spm
Speaker
Nspace
gannimo
en:
100.0% Checking done100.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
0.0% Nothing done yet0.0%
Last revision: 3 years, 11 months ago


Type confusion: discovery, abuse, and protection

Event
34c3
Date
Dec. 30, 2017, 3:30 p.m.
Language
English
Video-Duration
00:56:38
Speaker
gannimo
en:
0.0% Checking done0.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
100.0% Nothing done yet100.0%
Last revision: 7 years, 11 months ago


New memory corruption attacks: why can't we have nice things?

Event
32c3
Date
Dec. 27, 2015, 8:45 p.m.
Language
English
Video-Duration
00:54:31
Speaker
npc@berkeley.edu
gannimo
en:
0.0% Checking done0.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
100.0% Nothing done yet100.0%
Last revision: 4 years, 10 months ago


Code Pointer Integrity

Event
31c3
Date
Dec. 27, 2014, 7:30 p.m.
Language
English
Video-Duration
01:01:24
Speaker
gannimo
en:
0.0% Checking done0.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
100.0% Nothing done yet100.0%
Last revision: 4 years, 10 months ago


WarGames in memory

Event
30C3
Date
Dec. 29, 2013, 7:30 p.m.
Language
English
Video-Duration
00:56:02
Speaker
gannimo
en:
0.0% Checking done0.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
100.0% Nothing done yet100.0%
Last revision: 4 years, 8 months ago


Triggering Deep Vulnerabilities Using Symbolic Execution

Event
30C3
Date
Dec. 27, 2013, 1 p.m.
Language
English
Video-Duration
00:45:52
Speaker
gannimo
en:
0.0% Checking done0.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
100.0% Nothing done yet100.0%
Last revision: 4 years, 10 months ago