John Torakis

IT Security Researcher, Engineer Census S.A.

BIOGRAPHY

Working as a PenTester for a living. While 8 out of 10 projects are about testing mobile applications. Enjoying it anyway! Pythonista with a chance of C programming. Loves to develop stuff. In IT Security the last 4 years, worked as a SOC analyst in the past. Tried to enjoy that too, failed to do so and quitted because life is not only finite, but also short. Still an Undergraduate Student, for the same reason.

Main research topic is backdoors and covert/alternative Communication Channels. Proud owner of the securosophy.com blog, that projects human behaviours in IT Security situations – the whole “people are hackable” hype exaggerated to the point of nonsensical deductions!

Unexpected Shells with “covertutils”

The presentation is about using covert channels to maintain access in compromised hosts. All that with sole purpose I[D|P]S/Firewall evasion and censoring/DLP bypassing. Under this context the covertutils Python Package will be introduced and a brief “what is a backdoor anyway” topic will arise for modelling purposes.

There also will be code slides with covertutils usage examples, to create functional backdoors. The final step will be to create a network steganography backdoor as presented in:

  • https://www.exploit-db.com/docs/40891.pdf
  • https://www.exploit-db.com/docs/40897.pdf

Be prepared for 45’ of a noir presentation full of nostalgical references to things like Godfather and South Park that could very well be omitted without affecting the content at all.

Disclaimer:

No philosophical arguments will be placed during the presentation. It is a promise. We are technical – be prepared.

Reference:
  • https://github.com/operatorequals/covertutils

Are you the next cyber security superstar?

If you are passionate about an information security topic or you have strong technical skills developing researches on your own, you should definitely Apply at Call for Papers. By submitting you will have the chance to showcase your work to +2000 attendees.

Other speakers joining this year

Paul Coggin

Red Team Engineer Financial Institution

Steve McGregory

Senior Director of Application and Threat Intelligence Ixia, a Keysight business

Dr.-Ing. Martin Pohlack

Principal Software Dev Eng Amazon Web Services

Ready for this year's presentations?

By registering you will unlock access to 60+ speakers and two full days with cyber security news & showcases from worldwide leaders.

0
SPEAKERS
0
COUNTRIES
0
ATTENDEES
0
HACKING
COMPETITIONS
0
COMPANIES

Sponsors & Partners

They help us make this conference possible.

POWERED BY

As an infrastructure operator, technology integrator and IT&C services provider, Orange Business Services supports businesses and public entities in their digital transformation. Collect, transport, protect, store and process and analyze: they orchestrate every phase of the data journey, for your business to create even more value.

WWW.ORANGE.RO

PLATINUM PARTNERS

Ixia provides testing, visibility, security solutions, network testing tools and virtual network security solutions to strengthen applications across physical and virtual networks.

WWW.IXIACOM.COM

Secureworks provides threat intelligence-driven security solutions for organizations to prevent, detect, rapidly respond and predict cyberattacks.

WWW.SECUREWORKS.COM

GOLD PARTNERS
SILVER PARTNERS
GAMING PARTNERS
VIP & SPEAKER LOUNGE PARTNER
BRONZE PARTNERS
COMMUNITY & MEDIA PARTNERS