The blog of Jonathan Brossard

 
DISCLAIMER
This site contains sexy engineering

Latest Research

The Witchcraft Compiler Collection

Witchcraft Compiler Collection

Defcon 24 (Las Vegas), Blackhat EU 2016 (London), H2HC (Sao Paolo), Intel ISecCon (Hillsboro), BSides (San Francisco) 2017

Blackhat Europe Conference (London) 2016 presentation

Defcon 24 Conference (Las Vegas) 2016 presentation

SMBv2: Sharing more than just your files

SMBv2: Sharing more than just your files

Blackhat (Las Vegas) 2015
  • First Windows 10 exploit

    Dark Readings article on our Blackhat presentation. Read here. "Affects Internet Explorer running on all versions of Windows, even in the newly released Windows 10. It would be the first remote code exploit for the new operating system. It also affects Windows Edge, the researchers said."
  • Whitepaper

    The original whitepaper is archived on the Blackhat website. The latest version is available on slideshare.
  • Slides

    The material of our presentation is available here.

Blackhat Conference (Las Vegas) 2015 Presentation

DEMO - Remote Shell over the Internet, hacking Internet Explorer over SMB

DEMO - Exploiting Microsoft Edge/Windows 10  over SMB

Filecry : the new age of XXE
(co-author)

Filecry : the new age of XXE (co-author)

Blackhat Conference (Las Vegas) 2015

Rakshasa : Hardware Backdooring is Practical

Hardware backdooring is practical

Blackhat (Las Vegas) 2012, Defcon 20 (Las Vegas) 2012, Intel IsecCon (Hillsboro) 2012, NoSuchCon (Paris) 2012, Ruxcon (Melbourne) 2012, NullCon (Goa) 2013

NullCon Conference (Goa) 2012 Presentation

Post Memory Corruption Memory Analysis

PMCMA

Blackhat (Las Vegas), CCC (Berlin), Hack In the Box (Kuala Lumpur), NoSuchCon (Paris), Ruxcon (Melbourne), Kiwicon (New Zealand) 2011
  • Codebase

    The PMCMA debugger is free software (Apache License) and is available on github.
  • Whitepaper

    The technical whitepaper is archived on the Blackhat website.
  • Slides

    The slides of the presentation are available on slideshare.

CCC, 28c3 Conference (Berlin) 2011 Presentation

Blackhat Conference (Las Vegas) 2011 Presentation

Ruxcon Conference (Melbourne) 2011 Presentation

Hack In The Box (Kuala Lumpur) 2011 Presentation

Breaking virtualization by switching the cpu to 8086 mode

Breaking virtualization by switching the cpu to 8086 mode

HITB (Kuala Lumpur), HITB (Amsterdam), H2HC (Sao Paolo), Ruxcon (Melbourne), Hackito Ergo Sum (Paris) 2010
  • Gallery

    Some pictures from the HITB Conference.
  • Presentation

    Slides are available here.
  • Slides

    The slides of this research are archived here.

Bypassing Pre-Boot Authentication Passwords By Instrumenting The BIOS Keyboard Buffer (Practical Low Level Attacks Against x86 Pre-Boot Authentication Software)

Bypassing Pre-boot Authentication Passwords

Defcon 16 Conference (Las Vegas) 2008
  • Audio Recordings

    The audio recordings of the presentation are available from the DEF CON archives.
  • Code

    All of the exploits presented during the conference are available from a single zip archive.
  • Conference Material

    The slides of the presentation are available on slideshare. The technical whitepaper is available here.

endrazine

Information Security
Engineer



Member of the review
board of:

- Shakacon (Hawaii)           2011-Present
- NBT (San Francisco)        2015-Present
- Opcde (Dubai)                   2016-Present
- NoSuchCon (Paris)           2013-2016
- Hackito Ergo Sum (Paris) 2008-2013
  • Jonathan Brossard
  • San Francisco, California
  • endrazine@gmail.com
  • endrazine.com
  • /tmp/lab
  • 0x491d58cd463ddefe