August Penguin 2017, September 2017
Public-key Crypto, Attacks against TLS/SSL and Let’s Encrypt
Crypto: 5 Minute Intro for Normal People
Go Public, Google Campus, March 2017
Bitcoin Transaction Malleability
Advanced Bitcoin Seminar, Hebrew University, November 2014.
Low level bitcoin protocol talk. Explains the Transaction Malleability Attack on Bitcoin.
Attacking /dev/urandom on Android
Blackhat Europe 2014, DEFCON IL [DC9723], October 2014.
We wanted to exploit
CVE-2014-3100 - a stack based buffer overflow in Android’s
We needed to bypass the stack canary.
Long story short, we devised probablistic attacks that enable an attacker to
predict random bytes that are extracted from the
underlying entropy pool of
/dev/urandom during device boot, such as
Keystore’s canary value.