You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: editions/2025/index.md
+37-33Lines changed: 37 additions & 33 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,39 +11,42 @@ CFP is open ! Submit your talks : staff[at]sthack[dot]fr
11
11
12
12
## Program
13
13
14
+
Program is under construction :) come back soon !
15
+
14
16
### Breakfast
15
17
16
18
- Location : Cité du vin
17
19
- Speaker : Cannelés & Café
18
20
- Time : 9:00 - 9:45
19
21
- Infos : :)
22
+
<!--
20
23
21
24
### Keynote
22
25
23
26
- Location : Cité du vin
24
27
- Speaker : Jeremy Fetiveau
25
-
- Time : 9:45 - 10:15
28
+
- Time :
26
29
- Infos :
27
30
28
-
### Pivoting on Evolutions
31
+
### Rétro-ingénierie de code Objective-C
29
32
30
33
- Location : Cité du vin
31
-
- Speaker : Jared Wilson
32
-
- Time : 10:20 - 11:05
33
-
- Infos : In 2023 Mandiant released Permhash, an extensible framework to hash declared permissions to empower researchers to perform clustering, hunting, and pivoting. Permhash is currently applied to over 29 million samples. Since its release I have been using Permhash to help identify groups of functionality that are suspicious. I would like to share one highly interesting and novel permhash investigation that led to the identification of an active Android-based credential theft campaign targeting users associated with a South Asia Government and the Financial Sector. Using Permhash to perform this clustering, we identified this new malware family: SILENTSTEP. SILENTSTEP is an Android Package (APK) credential theft malware family that uses SMS for command and control. This research will include how Mandiant has closely tracked the evolutions of SILENTSTEP over the past three months and will dive into the specifics of these technical advancements - demonstrating how detection in depth can be applied to allow for persistent pursuit.
34
+
- Speaker :
35
+
- Time :
36
+
- Infos :
34
37
35
-
### Rétro-ingénierie de code Objective-C
38
+
### Reversing modern mobile games
36
39
37
40
- Location : Cité du vin
38
-
- Speaker : Victor Cutillas
39
-
- Time : 11:10 - 11:40
40
-
- Infos :
41
+
- Speaker : Thomas WEBER
42
+
- Time :
43
+
- Infos : A case study of reversing a recent mobile game
41
44
42
-
### A look at the security model of the Trezor Safe family
45
+
### Look at the Windows named pipe
43
46
44
47
- Location : Cité du vin
45
-
- Speaker : Marion Lafon & Charles Christen
46
-
- Time : 11:45 - 12:05
48
+
- Speaker : Thomas Borot
49
+
- Time :
47
50
- Infos :
48
51
49
52
### (Pause Déjeuner)
@@ -53,33 +56,33 @@ CFP is open ! Submit your talks : staff[at]sthack[dot]fr
53
56
- Time : 12:15 - 14:00
54
57
- Infos :
55
58
56
-
### (Slot libre)
59
+
### A look at the security model of the Trezor Safe family
57
60
58
61
- Location : Cité du vin
59
-
- Speaker :
60
-
- Time : 14:00 - 14:45
62
+
- Speaker : Marion Lafon & Charles Christen
63
+
- Time : 11:45 - 12:05
61
64
- Infos :
62
65
63
-
### Tesla Wallconnector
66
+
### Le risque de surveillance dans nos démocraties
64
67
65
68
- Location : Cité du vin
66
-
- Speaker : David Berard
67
-
- Time : 14:50 - 15:25
68
-
- Infos :
69
+
- Speaker : Elia Verdon & Yoann Nabat
70
+
- Time : 14:00 - 14:45
71
+
- Infos : Une présentation globale des dispositifs de surveillance en France et des risques qu'ils présentent pour nos libertés fondamentales.
69
72
70
-
### (Slot libre)
73
+
### Pivoting on Evolutions
71
74
72
75
- Location : Cité du vin
73
-
- Speaker :
74
-
- Time : 15:30 - 16:15
75
-
- Infos :
76
+
- Speaker : Jared Wilson
77
+
- Time : 14:50 - 15:35
78
+
- Infos : In 2023 Mandiant released Permhash, an extensible framework to hash declared permissions to empower researchers to perform clustering, hunting, and pivoting. Permhash is currently applied to over 29 million samples. Since its release I have been using Permhash to help identify groups of functionality that are suspicious. I would like to share one highly interesting and novel permhash investigation that led to the identification of an active Android-based credential theft campaign targeting users associated with a South Asia Government and the Financial Sector. Using Permhash to perform this clustering, we identified this new malware family: SILENTSTEP. SILENTSTEP is an Android Package (APK) credential theft malware family that uses SMS for command and control. This research will include how Mandiant has closely tracked the evolutions of SILENTSTEP over the past three months and will dive into the specifics of these technical advancements - demonstrating how detection in depth can be applied to allow for persistent pursuit.
76
79
77
-
### (Slot libre)
80
+
### Tesla Wallconnector
78
81
79
82
- Location : Cité du vin
80
83
- Speaker :
81
-
- Time : 16:20 - 17:05
82
-
- Infos :
84
+
- Time : 15:40 - 16:25
85
+
- Infos :-->
83
86
84
87
### RUMPS
85
88
@@ -107,12 +110,13 @@ At Sthack, teams are made up of 5 members max which fight for 12 hours. The poin
0 commit comments