| Presentation | Download | Conferences | Date |
| Hacking an altcoin node for ̶f̶u̶n̶ ̶a̶n̶d̶ profit | N/A | WarCon III | June 2018 |
| I Got 99 Trends and a # is All of Them! How We Found Over 100 RCE Vulnerabilities in Trend Micro Software | pdf slideshare | Hack In The Box 2017 Amsterdam | April 2017 |
| Augmented Reality in your web proxy | slideshare | HackPra Allstars - OWASP App Sec EU 2013 (Hamburg) | August 2013 |
| Cross Context Scripting attacks and exploitation | slideshare | HackPra (Ruhr-Universität Bochum) | November 2012 |
| Window Shopping: Browser Bug Hunting in 2012 | pdf . slideshare | Hack In the Box 2012 (Amsterdam) | May 2012 |
| Bridging The Gap: Security and software testing | pdf . slideshare | ANZTB Test Conference 2011 (Auckland) | Mar 2010 |
| Defending Against Application Level DoS Attacks | pdf . slideshare | OWASP New Zealand Day 2010 (Auckland) | Jul 2010 |
| Exploiting Firefox Extensions | pdf . slideshare . video | OWASP AppSec Asia & SecurityByte 2009 (Gurgaon, IN) DEFCON 17 (Las Vegas, US) EUSecWest 2009 (London, UK) | Nov 2009 |
| Reversing JavaScript | zip . slideshare | OWASP New Zealand Chapter | Mar 2009 |
| None More Black: The Dark Side of SEO | pdf . slideshare | Ruxcon 2008 (Sydney, AU) Kiwicon II (Wellington, NZ) | Oct 2008 |
| Browser Security | ppt . slideshare | OWASP New Zealand Chapter | Sep 2008 |
| Black Energy 1.8 - Russian botnet package analysis | ppt . slideshare | Hack In The Bush (Internal Training) | May 2008 |
| Web Spam Techniques | ppt . slideshare | OWASP New Zealand Chapter | Apr 2008 |
| XPath Injection | ppt . slideshare | OWASP New Zealand Chapter | Feb 2008 |
| Ajax Security | ppt . slideshare | OWASP New Zealand Chapter | Dec 2007 |
Have you ever encountered a zero client or a thin client? It looks something like this...
If yes, keep reading below, if not, then if you encounter one, you know what you can do if you read below...
The model above is a T520, produced by HP - this model and other similar models are typically employed to support a medium/large VDI (Virtual Desktop Infrastructure) enterprise.
These clients run a Linux-based HP ThinPro OS by default and I had a chance to play with image version T6X44017 in particular, which is fun to play with it, since you can get a root shell in a very short time without knowing any password...
Normally, HP ThinPro OS interface is configured in a kiosk mode, as the concept of a thin/zero client is based on using a thick client to connect to another resource. For this purpose, a standard user does not need to authenticate to the thin client per se and would just need to perform a connection - e.g. VMware Horizon View. The user will eventually authenticate through the c…
If yes, keep reading below, if not, then if you encounter one, you know what you can do if you read below...
The model above is a T520, produced by HP - this model and other similar models are typically employed to support a medium/large VDI (Virtual Desktop Infrastructure) enterprise.
These clients run a Linux-based HP ThinPro OS by default and I had a chance to play with image version T6X44017 in particular, which is fun to play with it, since you can get a root shell in a very short time without knowing any password...
Normally, HP ThinPro OS interface is configured in a kiosk mode, as the concept of a thin/zero client is based on using a thick client to connect to another resource. For this purpose, a standard user does not need to authenticate to the thin client per se and would just need to perform a connection - e.g. VMware Horizon View. The user will eventually authenticate through the c…