Speakers

  • George Fekkas

Encode Group, Athens, GR (www.encodegroup.com)

George holds and MSc in Information Security and Computer Crime. He has over 9 years experience in the security industry, as a member of ENCODE Group, all of them in consulting. Mainly focus on penetration testing, vulnerability assessments, technical audits and security research.

  • Alberto Revelli

Cigital Software Security, London, UK (www.cigital.com)

Alberto (aka icesurfer) works as a security consultant and researcher for Cigital, spending his time breaking into anything that happens to tickle his curiosity. Thanks to a considerable amount of free time he developed sqlninja, which has become a ‘weapon of choice’ when exploiting SQL Injection vulnerabilities on Microsoft SQL Server, and heyoka, a proof-of-concept of a stealth DNS tunnel. He is the Technical Director of the Italian chapter of OWASP, has co-authored the OWASP Testing Guide, and is a contributing author of the book “SQL Injection Attacks and Defense”. Alberto has been invited as a speaker to a number of security conferences, including EuSecWest, CONFidence, Shakacon, SOURCE. He lives and works in London, where he enjoys the bad weather and the astronomical cost of living.

  • Rodrigo Marcos

SECFORCE, London, UK (www.secforce.co.uk)

Rodrigo Marcos is a Information Security consultant, founder and technical director at SECFORCE. SECFORCE is a UK-based IT security consultancy that offers vendor-independent and impartial IT security advice to companies across all industry fields. Rodrigo is a contributor to the OWASP project and a security research.
He is particularly interested in network protocol analysis via fuzzing testing. Among other projects, he has released TAOF, a protocol agnostic GUI fuzzer, and proxyfuzz, a TCP/UDP proxy with fuzzes network traffic on the fly. Rodrigo has also contributed to the web security field byreleasing bsishell, a python interactive blind SQL injection shell and developing TCP socket reusing attacking techniques.

  • Bernardo Damele A. G.

IT Security Researcher, London, UK (http://sqlmap.sourceforge.net)

Bernardo is a father of two kids, a penetration tester and an avid spear-fisher. He is based in rainy London where he spends his time breaking into computer networks for a living and raising his girls for a fun.
He is sqlmap (http://sqlmap.sourceforge.net) lead developer Metasploit contributor and speaker at Conferences like Black Hat Europe, EUSecWest, SOURCE Barcelona and CONfidence Warsaw.

  • Iftach Ian Amit

Security & Innovation, Tel-Aviv, Israel (www.securityandinnovation.com)

With more than 10 years of experience in the information security industry, Ian (Iftach) Amit brings a mixture of software development, OS, network and Web security expertise as a Managing Partner of the top-tier security consulting and research firm Security & Innovation. Prior to Security & Innovation, Ian was the Director of Security Research for the Content Security Business Unit at Aladdin Knowledge Systems, where he created the AIRC (Attack Intelligence Research Center). Prior to joining Aladdin, Amit was Director of Security Research at a global Internet security company, leading its security research while positioning it as a leader in the Web security market. Amit has also held leadership roles as founder and CTO of a security startup in the IDS/IPS arena, developing new techniques for attack interception, and director at Datavantage responsible for software development and information security, as well as designing and building a financial datacenter. Prior to Datavantage, he managed the Internet application and UNIX worldwide. Amit holds a Bachelor’s degree in Computer Science and Business Administration from the Interdisciplinary Center at Herzlya.

  • Marco Bonetti

CutAway S.r.l, Milan, Italy (http://www.cutaway.it)

Marco Bonetti is a Computer Science engineer with a lot of passion for free and open source operating systems. As he didn’t find any suitable distribution for his PowerBook, he created Slackintosh: the unofficial PowerPC port of the famous Slackware Linux distribution.  Interested in privacy and security themes, he’s following the emerging platforms for the protection of privacy in hostile enviroments.   He’s currently working as a security consultant for CutAway.

  • Dimitrios Glynos

Census Inc., Greece (http://census-labs.com)

Dimitrios Glynos (BSc. in Computer Science, MSc in Computer & Information Networks) is a member of the NetLab group at the University of Piraeus, where he is pursuing a PhD in the field of security for programmable architectures. He has worked as a contracted developer for companies in Greece and abroad, as a research fellow for the R&D dept. of OTE, and as a digital forensics expert for various law firms. In 2008, his passion for IT security led to the formation of Census, a company that builds on strong research foundations to offer specialised services to customers worldwide.

  • Sandro Gauci

EnableSecurity, Malta (http://www.enablesecurity.com)

Sandro Gauci is the owner of EnableSecurity (enablesecurity.com) where he performs R&D and security consultancy for mid-sized companies. Sandro has over 10 years experience in the security industry and is focused on analysis of security challenges and providing solutions to such threats. His passion is vulnerability research and has previously worked together with various vendors such as Microsoft and Sun to fix security holes. Sandro is the author of the free VoIP security scanning suite SIPVicious as well as commercial solutions like VOIPPACK for CANVAS and VOIPSCANNER.com.

  • Fotis Hantzis

University of Patras (http://www.upatras.gr)

Fotis Hantzis is an undergraduate student at the Computer Engineering and Informatics Department at the University of Patras (Greece) and an independent security researcher interested in network protocols’ exploitation, kernel internals and low-level stuff in general. He has published several papers and tools concerning the above areas. The most noteworthy is the Phrack article on “Exploiting TCP and the Persist Timer Infiniteness” ( http://phrack.org/issues.html?issue=66&id=9#article ) The rest of his work can be found at his site sock_raw ( http://sock-raw.org ). He has also developed Ncrack ( http://nmap.org/ncrack ), a high-speed network bruteforcer under the Nmap toolset, for Google Summer of Code 2009.

  • Chariton Karamitas

Aristotle University of Thessaloniki, Greece (http://www.auth.gr)

Chariton is an undergraduate student at the Electrical Engineering and Computer Engineering Department of the Aristotle University of Thessaloniki (Greece) and at the same time he works as a part time systems administrator at the same department. He has participated in several open source projects (e.g GRnet – http://www.grnet.gr) and has participated as a speaker in several conferences and meetings (e.g ADAE — http://www.adae.gr). His research interests include static analysis, compilers, reverse engineering and source code auditing. He also enjoys spending his free time studying discrete mathematics, theory of computation, complex analysis and of course, coding 0day exploits! He’s the author of “Yet another free() exploitation technique” published in phrack #66 (http://www.phrack.org/issues.html?issue=66&id=6#article).

  • Dr. Corrado Leita

Symantec Research Labs Europe (http://www.symantec.com/about/profile/researchlabs.jsp)

Dr. Corrado Leita is a Researcher in Symantec Research Labs Europe. Dr.Leita is currently involved in the WOMBAT project (www.wombat-project.eu). His main interests are collection of Internet threat landscape informationand the exploitation of such information to gather better insight into the threats economy. Before joining Symantec, Dr. Leita worked for his Ph.D. research work at EURECOM (Sophia Antipolis, France) and obtained his Ph.D. in 2008 from the University of Nice. During his Ph.D. he created SGNET, a distributed honeypot deployment that leverages protocol learning to collect information on malware propagation.

  • Nick Nikiforakis

Katholieke Universiteit Leuven, Belgium (http://www.kuleuven.be)

Nick Nikiforakis is a PhD student at the Katholieke Universiteit Leuven, in Belgium. He is a member of the DistriNet research group and his current research interests include low-level security for unmanaged computer languages, and web application attacks. Nick holds a BSc in Computer Science and a MSc on Distributed Systems from the University of Crete. He worked for 3 years as a research assistant in the Distributed Computing Systems laboratory at the Foundation of Research and Technology in Crete where he did research in network data visualization, authentication schemes using  mobile devices and phishing countermeasures.

  • Dr. Konstantinos Papapanagiotou

OWASP Greek Chapter Leader (http//www.owasp.gr)
Syntax IT (http://www.syntax.gr)

Dr Konstantinos Papapanagiotou has more than 7 years of experience in the field  of Information Security both as a corporate consultant and as a researcher. Currently, he is Information Security Risk Management Services Manager of Syntax IT Inc. He holds a BSc from the Department of Informatics and Telecommunications, University of Athens, an MSc in Information Security from Royal Holloway, University of London and a PhD in Information and Network Security from the Department of Informatics and Telecommunications, University of Athens. He is the author of more than 10 scientific publications. He is the leader of the OWASP Greek chapter, member of ACM, IEEE and also a founding member of the Institute of Information Security Professionals (IISP). His current research interests are in the areas of application security, trust and security in pervasive and ubiquitous computing and steganography.

  • Christian Papathanasiou

Trustwave SpiderLabs (http://www.trustwave.com)

Christian Papathanasiou is a Information Security consultant for Trustwave Spiderlabs. SpiderLabs is the advanced security team at Trustwave responsible for incident response, penetration testing and application security tests for Trustwave’s clients.  SpiderLabs has responded to hundreds of security incidents, performed thousands of penetration tests and security tested hundreds of business applications for Fortune 500 organizations.

Christians’ research interests include Linux kernel rootkit/anti-rootkit technology, algorithmic trading and web application security. Christian holds a MSc with Distinction in Information Security from the Information Security Group at Royal Holloway, University of London and a CISSP. He has consulted internationally in the space/defence/commercial and financial sectors in all matters relating to Information Security. Christian is also a qualified Chemical Engineer having graduated with a  MEng(Hons) in Chemical Engineering from the University of Manchester Institute of Science and Technology. Christian  presented at Black Hat Europe 2010 and will be presenting at DEFCON 18 in Las Vegas in August.

  • Notis Iliopoulos

INNOVA S.A. (http://gr.innova-sa.eu)

Notis Iliopoulos currently is the Information Security Services Director for INNOVA S.A. group of Companies.  He has an MSc degree in Information Security from the Royal Holloway, University of London and an MSc degree in Management of Business Innovation & Technology from AIT. He has also received the following professional certifications CISA: Certified Information Systems Auditor, CISM: Certified Information Security Manager & BS7799 Lead Auditor. He works in the information security sector for 13 years having experienced both the service provision as well as the security manager positions.  His professional experience includes implementation of various information security projects in many different operational environments.  His research interests include Risk Assessment Methods and Techniques, Protection of Privacy and personal data, Methods and Techniques for user authentication.

  • Andreas Venieris

IT Security Researcher

Andreas holds a BSc in Statistics from University of Piraeus and a MSc in Artificial Intelligence from department of Computer Science from University of London. He was a PhD candidate with a scholarship in Department of Informatics of University of Piraeus in thesis “Architecture of an intelligent and secure medical record”. He has, a publication at the 4th Symposium of Informatics in  Greece, with theme: “An Architecture of an Integrated Medical File System”. He has contributed to the design and implementation of several management information systems for both commercial, industrial and web applications, for more than 10 years. He has worked in Software houses as well as Information Consultant Companies such as:  ABC Proffesional Services (at Piraeus Bank), IMS Informatics (at Τoyota Hellas), Industrial Technologies SA, Greek Telecommunication Organization (OTE), etc. He is a member of the Economic Chamber Of Greece as well as the Greek Organization Of Scientists and Professionals of Informatics and Telecommunications. He is a programmer and a security hobbyist and enthusiast.

  • Anastasios Stasinopoulos

Anastasios Stasinopoulos is a Certificated Network Administrator of CompTIA (Computing Technology Industry Association) and hobbist penetration tester. Additionally to  the IT sector Anastasios deals with the science of  GeoInformatics and Computer Vision. Anastasios is an active member of the Open Source community as an ambassador of fedora project in Greece (https://fedoraproject.org/wiki/Anast). He has also participated  in  many conferences like FosDem, Fosscomm,openFest  in some of which  as a speaker.

  • A.R Samhuri

Consolidated Contractors Company, Athens, Greece (http://www.ccc.gr)

Secure Bits (http://securebits.org)

A.R.Samhuri is a Network Security Specialist with expertise in security engineering, consulting, research and development. Currently, he works for Consolidated Contractors Intl. Company [CCIC] where his responsibilities range from security architecture and design, deployment of large-scale security solutions, to penetration testing and vulnerability assessment.
AR Samhuri’s main interest is in creating new, and stretching existing, attack and defense methodologies and providing tools and PoCs that demonstrate his research. He has spoken at security conferences like Hack-In-The-Box and Ruxcon, and holds university degree in Computer Engineering.

Sponsors
Gold Sponsors



CTF Sponsor



Media Contributors

IT Security Professional

commslution

euro2day

Technology Contributors











Contact Us | Tickets
AthCon Copyright (c) 2009-2010, Cyberdefend Limited, Registered in England and Wales, 07038668.

+44 (0)208 123 6509

Developed by iProject