Share

To address the increasing importance of information security we are trying to get together the best known figures in the international security industry and local leading researchers for sharing the best practices and technology in the Information Security field. The most significant new discoveries about computer network hack attacks and ways of sec will be presented at annual Defcamp conference to be discussed.

  • We are glad to announce the opportunity to submit papers for the Defcamp 2013!
  • Do you have an interesting topic that you want to be heard by the world? Check Call for Papers page.
  • This page will be updated in the following weeks with DefCamp 2013 speakers.

Raoul "Nobody" Chiesa, President @The Security Brokers

Raoul “Nobody” Chiesa – Founder & President The Security Brokers

Raoul Chiesa was born in 1973. After having been among the first Italian hackers back in the 90′s (1986-1995), Raoul decided to move to professional InfoSec, establishing @ Mediaservice.net Srl in 1997, a vendor-neutral and well known international security advisory company, based in Italy.

Since 2003 he started its cooperation with the UN agency “UNICRI” (United Nations Interregional Crime and Justice Research Institute), working on “HPP”, the Hackers Profiling Project run by ISECOM and UNICRI; in 2005 he has been officially recognized as a cybercrime advisor. Nowadays his role at UNICRI is that of “Independent Senior Advisor on Cybercrime”.

Since February 2010, Raoul Chiesa is a Member of the European Network & Information Security Agency (ENISA) Permanent Stakeholders’ Group (PSG) covering the previous two mandates, 2010-2012 and 2012-2015. The PSG is composed of 30 high-level experts who have been appointed by the Executive Director of ENISA to serve as a sounding board for all relevant stakeholders on issues concerning network and information security across European Union.

On March 2012 Raoul left his operating duties @ Mediaservice.net and became a Principal at Cyberdefcon Ltd, a company operating in the fight against cybercrime, mainly working on Cyber Intelligence, along with Mr. Jart Armin (founder of HostExploit).

On Novemember 2012 Raoul launched its newco, “Security Brokers”, an innovative and global think-tank focused on vertical security issues, along with international networks of high-level InfoSec
professionals. Both Raoul and his associates work on research areas such as X.25 and PSDN networks, VoIP Security, malware analysis, social engineering, SCADA & industrial automation, home automation, satellite communication, mobile security, SS7 threats and much more.

Since 2001 he is a regular Speaker and Key Note at official and underground security events such as Hack in the Box (HITB), CONFidence, Hackito Ergo Sum (HES), National Security Observatory at the Italian MoD, Security Summit, CCDCoE/NATO in Estonia, World Institute for Nuclear Security (WINS), India’s Hacking conferences (Club Hack; C0c0n; nullcon), Italian Senate, HackCon Norway, Hacktivity Hungary, RACVIAC Croatia, Swiss Cyber Storm, Secure Poland by CERT-PL, GOV.CERT-NL, SANS, ESA (European Space Agency), ISF China (Internet Security Forum), IDC China (Internet Data Centers Conference) 8.8 (Chile) and many more.

Also, Raoul publishes books and white papers in English an Italian language as main author or contributor, and he’s a regular contact for worldwide medias (newspapers, TV and bloggers) when dealing with Information Security issues and IT security incidents.

Title of the Keynote Presentation:

Peering in the soul of Hackers: HPP (the United Nations Hacker’s Profiling Project by UNICRI) v2.0 reloaded


Carsten Eiram, Chief Research Officer @Risk Based Security

Carsten Eiram, Chief Research Officer @Risk Based Security

Carsten Eiram is the Chief Research Officer of Risk Based Security and previously worked for Secunia for 10 years, managing the Research team. Carsten has a reverse engineering background and extensive experience in the field of Vulnerability Intelligence, jokingly referring to himself as a vulnerability connoisseur. He has deep insights into vulnerabilities, root causes, and trends, and is also an avid vulnerability researcher, having discovered critical vulnerabilities in high-profile products from major vendors including: Microsoft, Adobe, Symantec, IBM, Apple, Novell, SAP, and Trend Micro. Carsten is also a regular contributor to the “Threat of the Month” column in SC Magazine, a credited contributor for the “CWE/SANS Top 25 Most Dangerous Software Errors” list since its launch, and member of the CVE Editorial Board and FIRST VRDX-SIG. He has previously presented at conferences such as FIRST, RSA, DEF CON, and RVAsec.

Title of the Keynote Presentation:

10 Years Later: Are We There Yet?


Kizz MyAnthia, Senior Penetration Tester - Shadowlabs at HP Enterprise Security

Kizz MyAnthia, Senior Penetration Tester – Shadowlabs at HP Enterprise Security

Infosec specialist whose qualifications include an indepth understanding of security principals and practices; C|EH, MCSE+Security designations; and detailed knowledge of security tools, technologies and development. Seven years of security experience in the creation and deployment of solutions protecting networks, systems and information assets for diverse companies and organizations, with over 10 years overall in the industry.

Title of the Presentation:

Into The Worm Hole: Metasploit for Web PenTesting


Nathan LaFollette 'httphacker', Global Dynamic AppSec Manager – HP ShadowLabs

Nathan LaFollette “httphacker”, Global Dynamic AppSec Manager – HP ShadowLabs

Nathan LaFollette (httphacker) is a Global Dynamic AppSec Manager – HP ShadowLabs, a division of HP Fortify. Nathan has been leading international security engagements in the areas of Web Application Penetration Testing for many years. Nathan’s vast experience with web vulnerability analysis is unmatched in the industry. Currently as a Global Dynamic AppSec Manager, Nathan has advised and performed Web Application Penetration Testing for some of the world’s largest publicly and privately traded companies. Nathan brings a great deal of international security threat expertise and corporate security experience to the information security community.

Title of the Presentation:

HTTP Header Analysis


Robert Knapp, Co-Founder & CEO CyberGhost SRL

Robert Knapp, Co-Founder & CEO CyberGhost SRL

Robert Knapp is co-founder and CEO of CyberGhost SRL. CyberGhost is one of the most known VPN suppliers worldwide. The company consists of 20 employees, who established in an extremely short time an extraordinary service with more than 2.5 million users! As a CEO, he sets the short, mid, and long term milestones for the company and leads the people in the right direction. He always keeps his office door open and his eyes on the revenue. He started his own company when he was 18, and since then he was self-employed, first in music and event-business, later in IT and internet. Since then, he learned everything from his own mistakes and managed to cultivate a love-hate relationship with attorneys and accountants. He’s a sucker for excel sheets with numbers, conversion rates, St. Pauli soccer team, tattoos and Italian coffee.

Title of the Presentation:

The NSA activities are a violation of the human rights and it is time to take action


Milan Gabor, Founder and CEO of Viris

Milan Gabor, Founder and CEO of Viris

Milan Gabor is a Founder and CEO of Viris, Slovenian company specialized in information security. He is security professional, pen-tester and researcher. Milan is a distinguished and popular speaker on information security. He has previously been invited to speak at various events at different IT conferences in Slovenia and loves to talk to IT students at different Universities. He also does trainings regarding ethical hacking. His passion is hacking and chasing new bugs in everyday applications, learning all kind of new things and of course breaking up things. In his previous life he was senior developer and he has been developing software for big international clients. This knowledge helps him a lot, when testing all sorts of software applications, which are his speciality. He is always on a hunt for new and uncovered things and he really loves and enjoys his job.

Title of the Presentation:

AAA – Analyzing Android APKs (our way)


Danijel Grah, Security Consultant at Viris

Danijel Grah, Security Consultant at Viris.

Danijel Grah has a Bachelor degree in Computer Science at the University of Ljubljana, Slovenia. He is a Security Consultant at Viris for some time and is involved in penetration testing, security reviews, programing, consulting and research. He has deep understanding into threats, vulnerabilities and trends. He likes to practice Information Security in everyday life. Danijel is devoted to his work, open minded, enjoys new challenges and he never stops studying.

Title of the Presentation:

AAA – Analyzing Android APKs (our way)


Bogdan Alecu, System Administrator at Levi9

Bogdan Alecu, System Administrator at Levi9

Bogdan Alecu (@msecnet) works as a System Administrator for Levi9 (www.levi9.com ) IT Services company and, during his free time, he is an Independent Security Researcher. He received his BSc in Business Information Systems from the “Alexandru Ioan Cuza” University of Iasi. Bogdan has researched for many years in mobile security, starting with Voice over IP and continuing with GSM. One of his research in the GSM security could allow a potential attacker to perform a remote SMS attack which can force mobile phones to send premium-rate text messages. Bogdan is also a frequent speaker at security conferences like DEF CON, DeepSec, EUSecWest and DefCamp. For more details about him check http://www.m-sec.net

Title of the Presentation:

0class2DOS


Adrian Furtuna, Security Consultant at KPMG

Adrian Furtuna, Security Consultant at KPMG, PhD, OSCP, CEH

Adrian Furtuna has a PhD in Computer Science obtained at the Military Technical Academy of Bucharest, Romania. During his PhD program he has extensively studied various attack techniques utilized in Red Teaming engagements and he has designed a few scenarios for cyber defense exercises. He currently works as a Security Consultant at KPMG Romania where he is involved in penetration testing projects against web applications, mobile applications and network infrastructures. Adrian is also a lecturer at several master programs from Bucharest universities, teaching practical aspects of systems security testing and he is the founder of pentest-tools.com, a place where penetration testers can find a collection of ethical hacking tools that can be used online in their engagements.

Title of the Presentation:

Scanning Romania with Nessus


Andrei Costin, PhD student with EURECOM & Co-Founder/Lead-Researcher @ Firmware.RE

Andrei Costin, PhD student with EURECOM & Co-Founder/Lead-Researcher @ Firmware.RE

Andrei is a Computer Science graduate of the Politechnic University of Bucharest where he did his thesis work in Biometrics and Image Processing. While starting out his IT-career in the Computer Games industry, he has worked in the Telecom field and also was a senior developer at a specialized firm programming various GSM/UMTS/GPS sub-systems. Andrei entered security scene by authoring the RFID MiFare Classic Universal toolKit (MFCUK), the first publically available (FOSS) card-only key cracking tool for the MiFare Classic RFID card family. He is also a contributor to Proxmark3 repository. Andrei is also known as the “mister-printer guy” for his “Hacking MFPs” and “Hacking PostScript” series of hacks & talks at various international conferences. Andrei’s latest research was about practical hacking of air-traffic, specifically ADS-B protocol for which he contributed with “Ghost is in the Air(Traffic)”. He is passionate about security in a holistic fashion. Currently he is a PhD candidate with EURECOM in field of “Security of embedded devices”. As part of his commitment to security community, Andrei have been a speaker at some security conferences such as: BlackHat US, CCC Berlin, HITB Amsterdam, EuSecWest, SyScan, PowerOfCommunity, HashDays, ZeroNights, PHDays, T2.fi, SEC-T, HackCon, Hack.lu.

Title of the Presentation:

Exploring Bucharest for Free with RATB/Metrorex – RFID Mifare Classic attacks, frauds and countermeasures


Bogdan Manolea, Executive Director of Association for Technology and Internet - APTI Romania

Bogdan Manolea, Executive Director of Association for Technology and Internet – APTI Romania

Bogdan Manolea is the Executive Director of Association for Technology and Internet – APTI Romania. Bogdan a has a legal background and a vast experience in the Law and IT&C and is interested in digital civil rights (Freedom of expression online, privacy and open copyright). Author of presentations and articles on subject related to IT&C Law in national and international conferences. Owner of the only Romanian web page dedicated to the IT Law – Internet Laws – www.legi-internet.ro where he also regularly blogs about ITC & legal issues. He is also the editor of EDRi-gram, a biweekly newsletter on digital civil rights in Europe, since 2006.

Title of the Presentation:

A few cybercrime cases that could make us think…


Dan Catalin Vasile, Board Member of OWASP Romania

Dan Catalin Vasile, Board Member of OWASP Romania

Dan VASILE is an infrastructure and application security consultant with more than 15 years in IT out of which 12 are related to the information security world. He has a master degree in Information Security and he is also a CISSP. He is a board member of the OWASP and ISC(2) Romanian Chapters, organizing and presenting at local events. Among the specialties, his focus is on Information Security Management, Penetration Testing, Operational Security Services and Compliance (ISO 27001, PCI DSS).

Title of the Presentation:

Does it pay to be a black-hat hacker?


Marius Barat, Malware Researcher at Bitdefender

Marius Barat, Malware Researcher at Bitdefender

Marius Barat has a MSc in Distributed Systems. Now, a Phd student in the 2nd year at the Faculty of Computer Science from Iasi, focusing his research activity on genetic programming and other machine learning techniques. He succesfully combines academic research with the computer security industry, working as a Malware Researcher at Bitdefender Laboratories for more than 5 years. He is in a continuous research process of formalizing computer science problems in order to solve them using artificial intelligence and machine learning.

Title of the Presentation:

Android hacking techniques


Alexandru Cîtea, Junior Malware Researcher at Bitdefender

Alexandru Cîtea, Junior Malware Researcher at Bitdefender

Alexandru Cîtea is an undergraduate in his second year at the Faculty of Computer Science in Iasi, former freelancing developer and now a Junior Malware Researcher at Bitdefender Laboratories. He takes pleasure in popping the hood of any application for analysis and reverse engineering, constantly searching for security issues and possible malicious intent.

Title of the Presentation:

Android hacking techniques


Ionut Popescu, Security Consultant at KPMG

Ionut Popescu, Security Consultant at KPMG

Ionut Popescu (Nytro) currently works as a Security Consultant at KPMG Romania where he performs penetration testing and security research projects. Before this position he worked as a software developer. In his free time, Ionut focuses in low level research (asm, shellcodes, reverse engineering) and he is a Windows Internals certified professional. Also, he is the main administrator of biggest Romanian hacking and security community: Romanian Security Team – rstforums.com , supporting the “White Hat” research projects and initiatives.

Title of the Presentation:

SSL Ripper – All your encrypted traffic belongs to us


Alexandru George Andrei, CSO CCSIR

Alexandru George Andrei, CSO CCSIR

I am a young computer enthusiast passionate about all things security. I like to break things to see how they work, enjoy long complicated puzzles where the solution is allways in the corner of your eye! I’d like to think that we live in a magical world where super heros exists and the S on Superman’s chest stand for Security!

Title of the Presentation:

Hack The Machine: The Impossible Penetraton Test


Alex Negrea, Co-founder at docTrackr.com

Alex Negrea, Co-founder at docTrackr.com

Alex spent a short time in both academic & corporate world pursuing innovation before deciding to take the path of entrepreneurship. As a security researcher at INRIA French labs, he was in charge of building a low footprint TLS implementation using Elliptic Curve Cryptography for a highly constrained embedded web server. Alex also worked in Gemalto’s innovation labs on a prototype project concerning internet of things and cloud computing. Todayhe is Co-founder & CTO at docTrackr.com, a TechStars 2012 graduate which has the mission to democratize document security by empowering virtually anyone to easily use tools for digital rights management and encryption that are otherwise cumbersome to install or manage and are usually found only in large entreprises.

Title of the Presentation:

DRM to p0wn NSA in a few easy steps


Bogdan-Ioan Şuta, Independent Security Researcher

Bogdan-Ioan Şuta, Independent Security Researcher

Former automotive engineer passionate about vehicles and the automotive industry as a whole. I enjoy making and hacking embedded electronics as well as being passionate about computers in general.

Title of the Presentation:

An overview of in vehicle CAN network security


Radu Stanescu, IT Security Consultant & Trainer Sandline

Radu Stanescu, IT Security Consultant & Trainer Sandline

Radu Stanescu has 9 years of experience in the IT Sec industry, focused on network and web application penetration testing and training services. He worked as an IT Security Consultant for several large companies from the public sector and among his certifications you can find CEH, ECSA, LPT, CEI,Security+, ISS, CCNA, CCAI and APT. Radu makes speaking appearances and gives seminars at security events such as HackerHalted and Hacktivity. In early 2007 he started “Sandline” – an IT Security company focused on penetration testing and consultancy services. In 2010, as the business evolved, he started iOS Dev, the programming division of Sandline.

Title of the Presentation:

Cybersecurity in the era of Cyber war and Cyber espionage


Brindusa Stefan Cristian, Lead-Developer at RogentOS GNU/Linux

Brindusa Stefan Cristian, Lead-Developer at RogentOS GNU/Linux

Has experience in Linux over 10 years of daily use. Using Gentoo systems since 2008, became a developer at Sabayon Linux in 2011. Specialized in UNIX-like Systems Administration and occasionally Algorithms, created RogentOS GNU/Linux fork in 2012 early June based on Gentoo and Sabayon. Devoted political pirate. Clear supporter and evangelist of whistleblowers, Internet freedom and privacy, Copyright and digital, social and cultural patents and rights reforms, Free Software / Open source and Creative Commons activist. Experienced with law flaws, interpretations and reforms, also economical and IT law flaws and reforms. Known as “Noxis, the Teacher”.

Title of the Presentation:

The limit between law and surveillance


Andrei Avădănei, DefCamp Founder & President at CCSIR

Andrei Avădănei, DefCamp Founder & President at CCSIR

Andrei is the founder and the coordinator of DefCamp, one of the most important hacking & INFOSEC events in Romania. Throughout the seven years he has been involved in the IT domain, Andrei has been awarded at numerous national and international competitions of web and software programming, algorithmics and security. His passion for web security developed in the first few months he got involved in the IT domain, but increased during the last six years when he realized how important this field is. Among other things, he owns the IT blog dedicated to Romanian audience, worldit.info, and he is involved in various projects and initiatives. He also is President at Cyber Security Research Center from Romania – CCSIR. Andrei spotted the gap Romania has in the INFOSEC field and got down into business.

Title of the Presentation:

Opening session


  • We are glad to announce the opportunity to submit papers for the Defcamp 2013!
  • Do you have an interesting topic that you want to be heard by the world? Check Call for Papers page.
  • This page will be updated in the following weeks with DefCamp 2013 speakers.