Faster alone, further together.
Chronological Youtube playlist
SpeakerDesk
- Contents
- Brainteasers
- For kids
- Tools-assisted speedruns
- Arcade games preservation (via hacking)
- Drawing
- Keynotes
- File formats
- Academic papers
- Articles
A challenge in your pocket: an introduction to brainteasers HackPra 2013 slides / video
How people can create better video games Hack.lu 2015
slides
Hacking: spend time to understand how things really work (and get awesome results)
TASBot - the perfectionist 2016 DEF CON
w/ dwangoAC,
slides /
video
Preserving arcade games Exceptional games, exceptional security, exceptional hacking
slides /
live animated prezo (1Gb) /
video /
video (fr)
- 2013: Recon, T2
- 2014: Nuit du Hack, RaumZeitLabor , CCC
- 2015: HackPra All Stars
an introduction to Inkscape 2017 (workshop) DEFCON Zürich slides
Beyond your studies HackPra 2018, ESIEA 2019, University of Warwick 2021
slides /
video
about your future - as a student or young professional.
Infosec & Failures Hack.lu 2017
slides /
video
about you.
Connecting Communities RMLLSec 2016
slides /
video
about connecting with your peers.
Education & Communication Hack.lu 2018
slides /
video
about your surroundings.
You are not an idiot NorthSec 2021
slides /
video
about things you could get wrong in general.
Messing with binary formats 2013 44Con, SSTIC slides / video
Schizophrenic files 2014 Area41, MRMCD
slides /
video
w/ Gynvael Coldwind
Funky file formats CCC 2014 slides / video /
Funky file formats NoLimitSecu, March 2015 [podcast] (fr)
Trusting files (and their formats) Hack.lu 2015 slides
Caring for file formats Troopers 2016 slides / video
Binary stuff Gynvael ColdWind livestream, 13 Dec. 2017 video
Formats de fichiers: structures et conséquences ESIEA, November 2019 Groupe de Travail "Sécurité des Systèmes, des Logiciels et des Réseaux", slides
Generating weird files - an introduction to Mitra Pass the Salt 2021
slides /
video
polymocks, polyglots, near polyglots
Talking about file formats LiveOverFlow livestream, 26th Aug. 2021 YouTube / Twitch
PDF secrets 2014, RaumZeitLabor, MRMCD slides / video
an overview of PDF potential leaks 2015 slides
Advanced PDF tricks (workshop) Troopers 2015
slides /
video
w/ Kurt Pfeifle
Let's write a PDF file (tutorial) 2017 slides
x86 & PE 2011, HashDays, BerlinSides slides / video
a bit more of PE Hack in Paris 2012 slides / video
Binary art: Byte-ing the PE that fails you Hashdays 2012 slides / video
Exploring the PE format (workshop) 44con 2013 slides
when AES(☢) = ☠, May 2014 slides / video
Let's play with crypto June 2014 RaumZeitLabor, RMLL, MRMCD
slides (en) /
slides (fr) /
video (fr) /
video
AngeCryption / TrueCrypt / polyglots
Hide Android Applications in Images BlackHat Europe 2014,
slides / video
w/ Axelle Apvrille
SHA-1 backdooring and exploitation, BSidesLV 2014
slides /
video
w/ Maria Eichlseder, Florian Mendel, Martin Schäffler, Jean-Philippe Aumasson
MalSHA1 collisions
Exploiting hash collisions w/ Marc Stevens, BlackAlps 2017
slides /
video
MalSHA1, Shattered, MD5 collisions & hashquines
KILL MD5 - Demystifying hash collisions w/ Marc Stevens, slides
CollTris - Hash collisions exploitations workshop w/ Marc Stevens, slides / video
- 2019/07/02 150p, Pass The Salt
- 2019/07/24 199p, Google
- 2019/08/19 208p, Google
- 2019/10/23 222p, Hack.lu
- 2019/11/07 225p, Black Alps
- 2019/12/03 229p, Google
Collisions de hash NoLimitSecu #249, December 2019 [podcast] (fr)
Inside Out - Abusing archive file formats Generic and reusable hash collisions of Gzip and ZIP(XML) archives. Pass The Salt 2022 slides / video
TimeCryption - clean now, malicious later. Abusing one-time pads with binary polyglots. DEFCON CH 2021 w/ Stefan Kölbl, slides / video
How to Abuse and Fix Authenticated Encryption Without Key Commitment. USENIX Security 2022, presented by Stefan Kölbl, slides / video
PDF: myths vs facts "When is a PDF not a PDF?" DPC briefing, Oxford university, July 2015 slides
the Challenges of file formats Nestor Praktikertag, Kiel, July 2017 slides
Improving file formats -, May 2019 slides
Technical challenges with file formats DPC CyberSec & DigiPres event, Dec 2022 slides
Binary art - funky PoCs & visual docs Insomni'hack, Geneva, March 2014, slides
No more dumb hex! Rethinking binary tooling Troopers 2019,
slides /
video
w/ Rafał Hirsz
Sbud: Infovis in Infosec CTI Summit 2023 slides / video
Malicious Hashing: Eve’s Variant of SHA-1, Aug 2014
Ange Albertini, Jean-Philippe Aumasson, Maria Eichlseder, Florian Mendel, and Martin Schlaeffer
hash collisions
Fillory of PHY: Toward a Periodic Table of Signal Corruption Exploits and Polyglots in Digital Radio, WOOT 2016
Sergey Bratus, Travis Goodspeed, Ange Albertini, Debanjum S. Solanky
polyglots
The first collision for full SHA-1, Feb 2017
Marc Stevens, Elie Bursztein, Pierre Karpman, Ange Albertini, Yarik Markov
hash collisions
How to Abuse and Fix Authenticated Encryption Without Key Commitment, Nov 2020 - Dec 2021
Ange Albertini, Thai Duong, Shay Gueron, Stefan Kölbl, Atul Luykx, Sophie Schmieg
key commitment, timecryption
- Cryptography FM - Episode 10 [podcast]: Exploiting Authenticated Encryption, Nov 2020, w/ Stefan Kölbl
2019/08 Adding any external data to any PDF, Paged Out! p17 (=> extended version)
2020/07 Exploitations de collisions MD5, Misc Hors série 21 p118
hash collisions
2023/11 Classification et création de fichiers bizarres, Misc 130 p72
2024/01 Abus des modes de chiffrement via des fichiers bizarres, Misc 131 p72
Programista 2013/11, p102-103
In Proof of Concept or Get the F*ck Out
2013/10
2013/12
- 02:08 This OS is also a PDF
2014/03
- 03:03 This PDF is a JPEG; or, This Proof of Concept is a Picture of Cats
- 03:11 A Binary Magic Trick, Angecryption, w/ Jean-Philippe Aumasson
2014/06
- 04:11 This Encrypted Volume is also a PDF; or, A Polyglot Trick for Bypassing TrueCrypt Volume Detection
- 04:12 How to Manually Attach a File to a PDF
2014/08
- 05:12 A cryptographer and a binarista walk into a bar, w/ Maria Eichlseder hash collisions
2014/11
2015/03
2016/01
- 10:03 Exploiting Pokémon in a Super GameBoy by dwangoAC, Ilari, p4plus2 contribution
- 10:04 Pokéglot! by dwangoAC, Ilari, p4plus2 contribution
- 10:07 Apple II Copy Protections by Peter Ferrie contribution
2016/03
- 11:05 Defeating E7 Protection on the Apple II Platform by Peter Ferrie contribution
- 11:10 Ben "bushing" Byer Memorial by fail0verflow contribution
2016/06
- 12:04 Comma Chameleon by Krzysztof Kotowicz, Gábor Molnár contribution
2016/10
- 13:02 Reverse Engineering Star Raiders by Lorenz Wiest contribution
2017/03
- 14:09 Postscript that shows its own MD5 by Gregor "Greg" Kopf contribution
- 14:10 A PDF That Shows Its Own MD5 by Mako contribution
- 14:11 This GIF shows its own MD5! by Kristoffer "spq" Janke contribution
- 14:12 This PDF is an NES ROM that prints its own MD5 hash! by Evan Sultanik, Evan Teran contribution
2017/06
- 15:02 Pier Solar and the Great Reverser by Brandon L. Wilson contribution
- 15:04 Text2COM Silver Jubilee Edition by Saumil Shah, Udayan Shah contribution
- 15:06 Gumball by 4am, Peter Ferrie contribution
- 15:12 Nail in the Java Key Store Coffin by Tobias "Floyd" Ospelt contribution
2018/06
- 18:10 Easy SHA-1 Colliding PDFs with PDFLaTeX hash collisions
2019/03
- 19:05 An MD5 Pileup, w/ Marc Stevens hash collisions
2024/02
- 22:03 Mitra and Mocky: Near-polyglots and Mocks
- 22:05 Inside out; or, Abusing archive file formats hash collisions
- 22:07 Timecryption, OTP with Near-polyglots, w/ Stefan Kölbl