Fb1h2s aka Rahul Sasi's Blog

Here goes my second part the HITB ventures , could read the BLackhat diary form here.

I was in Europe twice this year , in March for BlackHat Presenting on IVR Security. And in May for HITB presenting on "CXML VXML Auditing" . So now many months since these conferences have ended and I finally got some time, I have managed to write up my thoughts on them.

Before I even start with HITB, let me just mentioned if you ever get the chance to attend an HITB event , For The Love of God Dont ever miss It .

Hack-In-Box [Amsterdam] :


I was selected to talk in HITB malasia in 2011, but could not make it due to some unavoidable reasons. And now in 2012 I got another opportunity.

My flight was via germany, got down walked around in munich and continued to Amsterdam. I am a big fan of trying out food, so the entire day I went around, tried different local food and fruits .

Vikings Market Munich Germany:




HITB was simply awesome, the conference , the crowd, the crew everything was simply w00t w00t. The HITB crew headed by Dhillon (@l33tdawg) did a great job, the event venu was a sexy five start hotel lil far from the AMS city center. It Had a great view from room which let me to keep an eye on the entire AMS.

View form my HITB Room at Okura Hotel Amsterdam:




Amy was the first HITB crew member whom I met, one sweet lady. She handed over me my speaker kit, which had my speaker badge, t-shirt and few other goodies. *She also introduced me to Mirko Zorz of Help Net Security *(@helpnetsecurity), whom I had an interview with the next day . I got my interview schedule from Mirko and I was done with the registration.*

There was a pre con party hosted my Microsoft were I met Itzhak (Zuk) Avraham (@ihackbanme) and one of our Inactive :P member Nir Goldshlager (@Nirgoldshlager) an 31137 web hacker View Profile: goldshlager - Garage4hackers Forum .They both had the presentation on the next day titled "Killing a bounty program, Twice. -". Met few other people who I met at Blackhat . Dhanesh Dan K was there attending the event along with his co-worker, and as promised I took him out and showed him places around, since I was already familiar with In and Out of AMS city. Am I bet he had some good time #amsterdam. I even went to our AMS office and said hai Mr Pallav [My senior at work "who later joined us on the HITB party" ,and others there .

Like all other security conferences you could see a lot of open laptops , where attendees stare at there laptops rather than the person presenting there #multitasking. And hacking conferences are all about hanging out with other hackers and working out things. But HITB had a lot more going on, people were hacking locks in the cafeteria, there were lot of huge lego projects, and a bunch of electronics projects to look at.

Lock Picking by Tools.nl




There were lot of exhibition stalls , and two very interesting people I met were Gynvael Coldwind and Mateusz "j00ru" Jurczyk
form google security Team. Had a lot of great discussions with them, and since I was going to Switzerland the next day , got an invitation to visit google Zurich office , but unfortunately I was leaving from Swiss on sunday so, missed that opportunity.



Before my talk on the second day, I met Nicolas Gregoire (@Agarri_FR)'s he was talking on "Attacking XML processing", and was a great one.

Few great talks I attended and people I met were:

mr_me Net Ninja , and too bad I dint knew his real name, till I met him :P.

http://blog.malerisch.net/:
malerisch.net his talk on browser exploits titled "window_shopping_browser_bug_hunting_in_2012".

Automatically Searching for Vulnerabilities: Nikita Tarak

Steven Seeley : Ghost in the Windows 7 Allocator

Claudio Guarnieri (@botherder) on of my colleagues talk, "One flew over the cuckoo's nest" on there coooku sandbox-.

Zarul Shahrin [my colleagues as well as HITB crew ].

Nikita Tarakanov - @NTarakanov. Automatically Searching for Vulnerabilities -

Hemil Shah, [ Sreeraj and Hemil Shah were both there with there workshops ], could only meet hemil as , shreeraj left a day early .

Me Talking on VXML|CXML auditing.



There was a post con party , and the venu looked liked a cruise boat.
Had some champagne and get to talks with the following people.

HITB Post Con Party:



Dave from , Microsoft Security Team .

CYRIL / @pod2g (Member, Chronic-Dev Team)
JOSHUA HILL / @p0sixninja (Team Lead, Chronic-Dev Team)
GAL DISKIN (Intel Corp)

TOMISLAV PERICIN (Chief Security Architect, ReversingLabs)
MARIO VUKSAN (Chief Executive Officer, ReversingLabs)
Belinda from HITB crew.
Smoked Chicken CTF team.

Saumil shah
Thifane Albuquerque

[Damn .. Forgot many names ]



Over all, HITB is a Great Con,there were no boring non-technical talks all the tracks were running core techi stuffs, and the crew is one bunch of SWEET people. All the appreciation goes to them as well as all the people who where there.

So next time if you get it be in an HITB event don't *UCKing miss it.