IEEE SANER 2018
CENSUS researcher Chariton Karamitas and associate professor Athanasios Kehagias (University of Thessaloniki, Greece), presented the "Efficient Features for Function Matching between Binary Executables" paper at the IEEE SANER 2018 conference held in Campobasso, Italy on March 20-23 2018.
Windows 10 RS2/RS3 GDI data-only exploitation tales (OffensiveCon 2018)
Hello, I'm Nikos Sampanis, a security researcher working at CENSUS. On February 16th, 2018 I presented at OffensiveCon a talk with the title "Windows 10 RS2/RS3 GDI data-only exploitation tales". The presentation focused on a mitigation introduced in the Win32k component of Microsoft Windows to prevent the exploitation of memory corruptions in the session heap (due to GDI object abuse).
OffensiveCon 2018
CENSUS is proud to announce its participation in OffensiveCon 2018 as a Silver Sponsor.
The Known Beacons Attack (34th Chaos Communication Congress)
The recent key reinstallation attacks (KRACK) against the WPA2 protocol revealed how an adversary can easily eavesdrop, and in some cases tamper, a Wi-Fi connection secured by the WPA2 protocol. At the same time, Wi-Fi automatic association attacks achieve a similar result (man-in-the-middle position) not by attacking the WPA2 protocol directly but by enforcing Wi-Fi clients to join a rogue Access Point.