4 portuguese security researchers presented at DEF CON this year. I’m sure that was a record 🙂 Paulo Silva and I with API (in)Security TOP 10: Guided tour to the Wild Wild World of APIs (which you can check the recording on Youtube). Pedro Umbelino and João Morais with Android Bug Foraging (check the talk… Continue reading Our DEF CON 28 day was a blast
Even in safemode, DEF CON 28 will be legendary, specially because for the first time… I’ll be a speaker 🙂 Some of my research was already present at DEF CON but now I’ll be actually speaking at the best security event in the world. Paulo Silva and I will be talking about API (in)Security TOP… Continue reading DEF CON 28 here I go
Last wednesday I gave a talk at ENEI2020 with the topic – “Do I need a hoodie to hack a bank?”. It was focused on a red-team assessment I did and it was to show computer students a little bit about security, specially: Recon Social Engineering Implants Dead-drops It was quite interesting because I got… Continue reading Speaker at ENEI2020
Last week BSidesLisbon was legendary. More than 400 attendees, beer, “pastel de nata” and of course – amazing talks. This was my third participation as a speaker and first time co-presenting a talk with my friend and colleague Pedro Umbelino. We worked very hard on this topic during the last year and we wanted to… Continue reading Exfiltrate all the things at BSidesLisbon18
The video got public and I needed to share this with all my followers. It was, that I know of, the first time my research was presented on DEFCON. It was presented on the IoT Village by Erez Yalon, who I have the pleasure to work with. It covers Privacy on IoT devices and that… Continue reading Part of my research shown on DEFCON 26
So I scheduled my last talks for this year. At 31 October, I’ll be at FEUP in Semana Informática to present – Breaking IoT! And for the third time, I’ll have the honor to be at BSides Lisbon on 29th and 30th November giving a talk with my friend and collegue Pedro Umbelino – Exfiltrate… Continue reading Semana Informática and BSides Lisbon
On 13th March I did a webinar for Checkmarx showing in around 30 minutes what is and how you can exploit the web vector Reflected File Download. You can still watch the recorded version at RFD: Still Threatening the Biggest Names on the Web. Had a lot of fun doing it because it was my… Continue reading Reflected File Download webinar
BSides Lisbon 2017 was great \o/ It was my second BSides Lisbon (both as a speaker) and it’s amazing that the organization keeps improving this con. It had awesome talks, and with the help of my great friend Duarte – we hosted a mini lockpicking village which had a great success. I didn’t saw as… Continue reading BSides Lisbon 2017 was awesome
… you’re right! This guy 🙂 After my presentation last year, I decided to submit again a talk to the best infosec event in Portugal – BSides Lisbon. My talk GTFO Mr. User will be about: In this talk, the author will present real case scenarios (aka hacking to PoC) showing the danger of large… Continue reading Guess who’s coming to BSides Lisbon 2017?
Guys I’ll be a speaker at BSides Lisbon 2016 with the talk – “The way of the bounty”. If you want to know some of my tips and secrets on bug bounty programs don’t forget to schedule in your calendar – 11th November.