Main Menu

Search Our Site


Join us on Facebook

September 5 – Practical Malware Analysis and Passwords on a Phone – 555 California St. RSVP

Written by Doug Spindler
Wednesday, 02 August 2017 14:47

This month Sam Bowne will give two workshop demonstrations – Practical Malware Analysis and Passwords on a Phone created by and presented by Sam Bowne.

Meeting will be at Microsoft at 555 California Street, start time 6:30.  Be sure to RSVP for building security http://www.pacitpros.org/meeting-rsvp/

1. Practical Malware Analysis
Sam will demonstrate the CTF-style hands-on workshop I presented at DEF CON and BSidesLV this summer. If you have a computer that can run a virtual machine, you can do it yourself. If not, I’ll show you the tools and techniques used to analyze malware. All materials are on this page, freely available:  https://samsclass.info/126/126_DC_2017.shtml

2. Passwords on a Phone
This is the talk Sam gave at DEF CON in the Packet Hacking Village.

Android apps are appallingly insecure, and most of them save extra copies of your password on your phone instead of using cookies like normal websites do. There is no good reason for this, and it’s a terrible practice. Many apps use encryption, but all the apps Sam has tested implement encryption incorrectly so it does little or no good.

Sam will demonstrate and explain the various worthless and insecure methods used by Staples, Safeway, Home Depot, Walgreens, and many other apps. All these companies have been notified, but very few fixed the problems.