{"id":228077,"date":"2014-11-24T11:03:25","date_gmt":"2014-11-24T10:03:25","guid":{"rendered":"http:\/\/securite.intrinsec.com\/?p=1601"},"modified":"2014-11-24T11:03:25","modified_gmt":"2014-11-24T10:03:25","slug":"conference-nosuchcon-2014-jour-1","status":"publish","type":"post","link":"https:\/\/www.intrinsec.com\/en\/conference-nosuchcon-2014-jour-1\/","title":{"rendered":"NoSuchCon 2014 Conference \u2013 Day 1"},"content":{"rendered":"

As part of its monitoring activities, Intrinsec attended the second edition of the NoSuchCon international conference, which took place from November 19 to 21, 2014, at the Niemeyer space at the headquarters of the French Communist Party (PCF) in Paris. The presentations were in English, technical, and straightforward. (bullshit-free)<\/em>.<\/p>\n

\"image15\"<\/a>(source : http:\/\/www.nosuchcon.org\/<\/a>)<\/p>\n

We offer summaries of the various presentations from the conference: day 1 (this article), Day 2<\/a> And day 3<\/a>.<\/p>\n

We would also like to thank the organizers and student volunteers who managed this event very well, as well as the speakers who shared their knowledge and discoveries.<\/p>\n

Day 1<\/h1>\n

\u00abKeynote: Program Synthesis in Reverse Engineering\u00bb \u2013 Rolf Rolles (M\u00f6bius Strip Reverse Engineering)<\/h2>\n

\"image02\"<\/a>Slides: http:\/\/www.nosuchcon.org\/talks\/2014\/D1_01_Rolf_Rolles_Program_Synthesis_in_reverse_Engineering.pdf<\/a><\/p>\n

The opening keynote, which was quite technical, provided an ideal introduction to this event.\u00ab\u00a0bullshit<\/em>"Free hardcore technical." Rolf Rolles presented the academic discipline of "program synthesis," whose goal is to automatically generate programs from desired behavior (input and output pairs). Using an intermediate language and a processor simulator, it is thus possible to automate reverse engineering tasks. Rolf demonstrated, for example, how to automatically deobfuscate a disassembled program by generating rules on the fly.<\/p>\n

#NSC14<\/a> pic.twitter.com\/biVVtrFhLo<\/a>
\n\u2014 Aristotle (@Aristotle) November 19, 2014<\/a><\/p><\/blockquote>\n

 <\/p>\n

\u00abYour Q is my Q\u00bb \u2013 Georgi Geshev (MWR Labs)<\/h2>\n

\"image06\"<\/a>Slides: http:\/\/www.nosuchcon.org\/talks\/2014\/D1_02_Georgi_Geshev_Your_Q_is_my_Q.pdf<\/a><\/p>\n

THE middleware <\/em>based on message queues (Message Queuing Service<\/em>) enable communication between different processes via a broker<\/em>, asynchronously (messages remain in the queue until they are retrieved) and on a point-to-point model (1 sender \u2013 1 receiver) or publish-subscribe<\/em> (N senders \u2013 M recipients, the latter subscribing to the broker<\/em> to the desired message types).<\/p>\n

The vulnerabilities presented are not specific to these products, but have been discovered on several implementations.<\/p>\n

The vulnerabilities are as follows:<\/p>\n