Papers
The aim of the conference is to show how this can be done, so simple and structured as possible, the coexistence of various everyday elements in existing houses, controlled by a single system, in order to improve safety where should be quieter: our own home. They explain how to design a home security mechanism based on:
- Monitoring mechanisms using generic webcams with facial recognition technology of the inhabitants of the house and bluetooth detection.
- Recording videos suspects
- Interaction with an alarm controllable via TCPIP
- Facial recognition of people classified as "wanted by the authorities" blacklist mode, integrated with the telephone call to the police through a PBX based on VoIP, indicating the location of which person from that list, is at home.
- Notification system alerts to Twitter, email and instant messaging.
Also discuss automation control mechanisms air conditioning / heating, dedicated to cleaning robots and weather stations, showing that anything home with network interface, can be a SCADA system. In addition to implementing a biometric authentication system, using facial recognition of who enters the house, you can have a white list of users on which to customize a welcome message for each user and can alert you to various respects.
Lorenzo Martinez Rodriguez Computer Engineering degree from the University of Deusto (1996-2001). Specializing in computer security, has safety certifications such as CISSP and CISA from ISACA ISC2. It has a wide experience in consulting firms in the world of Spanish computer security and Deny All solutions manufacturer web application protection. Currently, he develops the pre Engineering activity in southern Europe for a manufacturer, leader in strong authentication without tokens. Lawrence is co-founder and publisher of computer security blog in Spanish Security By Default (http://www.securitybydefault.com). 
Jose Miguel Esparza is a security researcher who is part of the e-crime unit of S21sec for over 5 years, specializing in the study of botnets, malware and online fraud. Author of several exploits and analysis tools (http://eternal-todo.com/tools) as Malybuzz and peepdf (http://peepdf.eternal-todo.com) presented RootedCON latter in 2011. It is also usual writer blogs S21sec (http://blog.s21sec.com) and eternal-todo.com (http://eternal-todo.com) on Internet security threats, and has made several presentations at international security conferences (RootedCON 2011, CARO Workshop, Seattle Source).
Gastesi Mikel has worked for five years in the department S21sec e-crime, currently performing the work of e-crime analyst, specializing in online fraud and malware analysis. CISSP Certified OSWP and is author of "Fraud Online: open 24 hours." It has also been a speaker at various conferences as Nullcon or Caro WorkShop, and is an associate at S21sec Blog (http://blog.s21sec.com)
Juan Garrido works as a security consultant and systems in computer 64 for over 3 years. He has spoken at national conferences such as FIST, Microsoft Technet, Asegur @ IT, among others. He has published several articles in technical journals, such as Microsoft TechNet, Windows IT Magazine and MKM, always on topics related to computer security. He published his first book through Computing 64, entitled "Digital Forensics in Windows environments." Actively participates in security forums as "Elhacker.net" Technet forums, or forums related to technology and forensic forensic-es.org. Currently, he writes regularly on his blog, related to computer security and forensics, WindowsTips. 
Telecommunications engineer and recognized hacktivist years, Lord Epsylon works as an auditor in the specialty "black box" in a security firm in Madrid, and teaches Web programming. In addition, he combines his working life with the cooperation in different social projects, and how, with the development of free software tools (Lorea.org, Intruder Captcha, etc ...) Although the mathematical cryptography is generally quite safe in terms of algorithms and protocols, when practical implementations is easy to subvert that adding initial security attack vectors that allow 'exploit' vulnerabilities that threaten security. The talk will focus on practical examples of how to attack and take advantage of widely used cryptographic tools (SmartCards, SSL certificates, secure communications, etc.) Along with the talk will be presented and released an example of 'Trojan' that attacks the DNI-E by safe operation of unattended once stolen PIN 3. List of topics
- Problems related to SSL certificate management (not verifiability, false sense of security flaws in registration process)
- Issues certificates in PKCS # 12
- Problems with secure encrypted communications (Advanced MitM attacks)
- Vectors practical attacks on SmartCards (Dni-e)
Yago Jesus is a computer security professional since 2001 has worked professionally with safety equipment in large telecommunications companies, banks, agencies of the defense sector and actively participated in the deployment of PKI Electrónico.Editor DNI's Blog Security By Default http://www.securitybydefault.com, has developed several tools among which 'Unhide' http://www.unhide-forensics.info tool for forensic analysis on Unix / Windows that is part major Linux distributions (Debian, Ubuntu, RedHat) or NG Patriot anti-Malware tool http://www.security-projects.com/?Patriot_NG for Microsoft environments Do you think your servers bastionando you sure?, Have PKI, certificates, SSL, e-ID, IPSEC, a lot of experience in security, you have certifications and are highly regarded in the industry, but? Have you asked the secretary of your head? You know how and where your manager stores passwords commercial?
Central Hospital, aims to teach attendees an audit was conducted as a hospital using social engineering mechanisms and how they gained control of the hospital within 24 hours. No exploits, no SQL Injection. Only the use of technical and human Trojans.
Pedro Sanchez has worked in important companies as a consultant specializing in Computer Forensics, Honeynets, intrusion detection, trap nets and pen-testing. Has implemented ISO 27001, CMMI (Level 5) and various security methodologies. It also works on security and computer forensics with various trade organizations and the state security forces, especially the Telematics Group Crimes of the Civil Guard and the Brigade of Technological Research of the National Police. He has also participated in the conference JWID / CWID organized by the ministry of defense, where I obtained the certification Nato Secret. I enjoy motorcycles (custom type) and a formal practice fighting and self defense used by the Israel Defense Forces (IDF), Israeli police and security services in the U.S., known as KRAV MAGA. Currently a member of the Spanish Honeynet Project. 
Luis Delgado is a student at the School of Telecommunications (Universidad Politecnica de Madrid). The last two years he worked at the research group Intelligent Systems Department of Telematic Systems Engineering (ETSIT-LMP). Currently self-employed. With respect to security, is an independent researcher who regularly writes articles on different topics in Security by Default. "DNS: Internet Dial-Tone" On this basis and with an eye to the method of distribution of 'malware' introduced in 2011 (Cloud Malware Distribution), try to dynamically show the results after several months of work focused on communications, both in the control as information leakage, the botnets. Of course with the DNS protocol with a starring role. We will play with three fundamental parameters that have to balance:
- Exposure level of the infrastructure of the attacker.
- Resources and complexity.
- Bandwidth in communication.
The ultimate goal is to raise awareness of the importance of putting the focus on this protocol as has been done in others. Our results and the results obtained by security vendors and researchers in recent months support the position that we defend.
Juan Carlos Hidalgo Diaz: Product Development and Innovation (PDI): TECHNOLOGICAL SPECIALIST (Ethical Hacking) Telecommunications Engineer (specialty communications) by UPM 1998. Certificate GPEN 2010, ITILF 2009, GCIH 2008, OPST 2004, CCNA 2002). In 1997 he began working as an intern at Telefonica I + D and the following year became part of its workforce. Since 2001 is involved in security-related projects among which the design and safety analysis of RIMA Network. In 2002 born the ethical hacking group Telefónica I + D, making innovation work / engineering and evaluating the level of network security, systems and services Phone: Reviewing security architectures, pentesting, incident response, using methodologies security as OSSTMM and OWASP.
Jesus Gomez Francisco Rodriguez: Product Development and Innovation (PDI): R & D STAFF (Ethical Hacking) Technical Engineer in Computer Science from the UPM. Since 2005 part of the ethical hacking team Telefónica I + D (now PDI), conducting network audits, pentesting, systems analysis and services, etc.. Applying methodologies such as OSSTMM security and OWASP. Among the main tasks are: the analysis of new access technologies such as FTTH, Femtocells, etc.., Evaluation of basic services such as DNS, security analysis of network infrastructure PS Core Mobile or participation in international development projects risk map. In 2007 he joined the group of beta testers in two publications (hakin9 and Linux +) and made contributions to the security and networking blog "www.iniqua.com".
For some time it has tended to criminalize certain activities related to the world of computer security by creating new laws or hardened existing ones to extend control over communications and users.
Given this situation has been aggravated by the actions of certain groups, some computer security practices that could previously be justified as pure "" curiosity "" have become a crime and may result in unpleasant situations.
The talk will discuss the methods we can use to keep our curiosity will turn against us and end up getting a visit "" non grata "." Will show techniques to get anonymity on the Internet and avoid being traced, such as using "" other "systems" without anyone being aware of our presence, etc ... In short, as you might "" look around "" unfinished cage. All this is demonstrated using proprietary tools, part of which will be released to the public after completion of the conference.
Jaime Peñalba (Nighterman) is a lover of UNIX systems, has been working in the computer industry since age 18, spent almost 6 years working as a systems engineer for Sun Microsystems implementing and designing all kinds of solutions, currently works as a consultant / computer security auditor and spends most of his time to this area and participating in developing tools CTFs when time permits. 
Eloi Sanfélix works Riscure (www.riscure.com) Security Analyst since late 2008. They perform safety evaluations in smart cards and electronic devices (embedded devices), specializing in tests of resistance to lateral attacks (Side Channel Attacks) and injection of faults (Fault Injection). Also participates in research and development of new tools and side attack techniques to incorporate into the test platform Riscure, Inspector. Finally, it also provides training on issues related to client side attacks across the mundo.Fue Riscure speaker with Javier Moreno RootedCON 2010 with a talk about operation of Android devices. Also introduced in 2011 on security RootedCON hardware, specifically on side attacks. She has participated in several wargames and CTFs, including CTF DefCon 19 in August 2011 with int3pids 
Javier Moreno lives in Berlin where he works security consultant in the German company n.runs AG (www.nruns.com) where pentesting makes all kinds of applications, source code auditing, reverse engineering, and when there is something sort of cryptography. He was a speaker at the first edition of the Eloi Sanfelix RootedCON with a talk on native Android operating. It has also been a speaker at events of the European University of Madrid and Universidad Politécnica de Valencia where he gave lectures on cryptography, security and linux. Previously has also participated in several projects in the European Space Agency
Pablo San Emeterio is Computer Engineering from the Polytechnic University of Madrid and has completed a Masters in Information Security Aditoría and ALI and Polytechnic University of Madrid. It is also CISA and OCA Oracle Database 9i Administrator. Currently working on the R & D Optenet, a company dedicated to computer security network. 
Chema Alonso is a Computer Engineer from the Universidad Rey Juan Carlos de Madrid where he is finishing his doctoral thesis on web application security. Has been awarded the title of Most Valuable Professional by Microsoft in the area of Information Security since 2004, a distinction that today, only three people have in Spain. It is common in magazines writer on computer security technology and speaker at national conferences such as Microsoft Security Tour, Masters, or Technet Security Day @ IT Asegur also participated in international conferences such as Blackhat, Defcon, ToorCon or ShmooCon among others. He works as a security consultant in computer 64 and writes a blog about computer security entitled "A Computer on the side of evil."
Manuel Fernández "The South" is a consultant for development and security in computer 64. During his work experience as a developer highlights the participation in the FOCA (Fingerprinting and Organisation with Collected Archives). As experience in the security field has done extensive research and publications of failures in products such as 'Chrome', 'php', 'Zipeg' errors reported on organizations such as 'Apple' or 'Myspace'. Additionally it is Co-Author of CSPP technical (Connection String Parameter Pollution) presented at the 'Defcon 18' in 2010.
protected, is a first step in using DBI to automatic unpacking, arise where a lot of questions remain open: what about the IAT? Can we also use DBI to fix it? So what happens AntiDebugging techniques?.
Ricardo J. Rodriguez received his engineering degree in Computer Science from the University of Zaragoza in 2008, and Masters in Engineering and Computer Systems in 2010 from the same university. After a postgraduate scholarship at the Technological Institute of Aragon, he joined the Department of Computer and Systems Engineering of the University as researchers. He is currently a doctoral student in the Doctoral Program Office at the University of Zaragoza. His main research fields are secure software engineering, safety and performance of systems theory complejos.Algunas of its publications in the field of security are 'Modelling and Analysing Resilience within The UML as Security Issue' (Q,. Workhop on Software Engineering for Resilient Systems, SERENE'10) and 'Integrating Fault-Tolerant Techniques Into the Design of Critical Systems' (Int. Symposium of Critical Systems Architecting, ISARCS'10). As a teacher, gave a seminar on 'Reverse Engineering Win32 Applications' in Spanish NoConName conference in 2011, where he presented his thesis as a paper online at the same conference, entitled 'Safety in design: from the beginning'. In the same year, also gave a talk at the conference HackLU entitled 'On the Secure Software Development in Early Stages within The UML Pro? Them'. Summary of my research on android platform, it will be:
- Mounting a research laboratory.
- Tinkering with applications.
- Forensics (SIM + SD + Memory Internal memory).
- Being a zoo of malware.
- Evolution of malware on Android platforms.
- New attack vectors.
- Safety measures in android.
- Reverseemos something new.
- Dismantling a C & C.
- Presentation of a PoC tapjacking that affects 100% of mobile devices (
Sebastian Guerrero Computer Engineering from the University of Cadiz. Independent researcher participates as Malware Researcher with Malware Intelligence, where reverse engineering tasks to exploit the latest kits and malware. Active member of the security group PainSec where he participated in CTFS as DefCon, ruCTF or Codegate, collaborates regularly with articles about Android security Security By Default. 
Jose Pico is founder and Taddong security analyst. Has 13 years experience working for multinational companies, which has touched almost all aspects of IT technologies. In recent years, has focused its activities in the security world, and in 2010 co-founded Taddong, which conducts research and security services and customer training. Degree in Computer Science from the UPV, CISSP, is the author of several articles and tools, co-author of plugin objects SMB capture for Wireshark and the "book" Hacking and security in mobile communications GSM / GPRS / UMTS "."
David Perez is founder and Taddong security analyst. David has over 10 years dedicated to performing advanced technical services safety clients in various sectors, including penetration testing, incident investigation, forensics and other ad-hoc. It is Telecommunications Engineer from the Polytechnic University of Valencia (UPV), author of articles, papers and books up, and one of the few professionals who are certified GIAC Security Expert (GSE).
The objectives of this talk are two different but complementary.
On the one hand present version 0.5 Inguma project, with particular emphasis on his role as environment for the discovery and exploitation of new vulnerabilities, including the steps of:
- Discovery of new vulnerabilities
- Creation of exploits for the vulnerabilities discovered.
- Operation and control of systems exploited.
Por otro lado se pretenden ilustrar las diferencias y particularidades de estudiar entornos o sistemas poco comunes; se usará como objetivo del estudio un tipo de sistema que se aleja de lo habitual y se examinarán facetas como:
- Obtención de información sobre el sistema.
- Búsqueda y adquisición de HW/SW para su estudio.
- Peculiaridades en la búsqueda y explotación de vulnerabilidades.
- “Responsible disclosure” en estos casos especialitos :D
Hugo Teso lleva diez años dedicado de forma profesional a la seguridad informática realizando tareas de análisis de malware y vulnerabilidaes, pentesting, auditoría… De forma paralela se ha dedicado a la investigación y búsqueda de vulnerabilidades en software corporativo, sistemas SCADA o dispositivos embebidos, entre otros. También dedica parte de su tiempo a los proyectos de Software Libre: Inguma y Bokken. Un framework para pentesting y búsqueda de vulnerabilidades y un desensambaldor multiplataforma respectivamente. El objetivo de la presentación es el de transmitir al publico, de como funcionan las bandas criminales en internet desde un punto de vista técnico sin dejar de lado una pequeña introducción historica para los asistentes no familiarizados con el mundo del cibercrimen. Durante la presentación se hablara de los proveedores Offshore más activos e situado en Europa del este. Dicho ISP constituye uno de los recursos más activos del Crimeware mediante el cual se distribuyen una importante cantidad de códigos maliciosos, malware, crimepacks, botnets, iframers, tdsSystems y un largo ETC…. El indice de la presentación tendrá una estructura similar a la siguiente:
- Un poco de Historia (Breve introducción al cibercrimen)
- Infraestructura enumerando máquinas, dominios, etc? (Como tienen montado el chiringuito)
- Dibujo de la organización, responsabilidades…(Vamos a mostrar, nombres, responsabilidades,horarios de trabajo)
- Donde compran ellos su infraestructura (es realmente offshore??) (sacaremos algún leak que demuestra nuestras sospechas y se verán contrastadas nuestras suposiciones)
- ¿Que cuesta ser malo? (Kids Don't do it!) (Cuanto invierte un malote)
- Donde venden y compran servicios.
- Servicios más relevantes que ofrecen, trafico, vps, vpn, marketplaces, mulas, etc.. (Cual es el éxito de su servicio) 'lo prueban por su calidad y se quedan por el servicio técnico'
- Análisis de los crimewares encontrados más relevantes y conocidos. Los clasicos Spyeye, Zevs, etc….
- Análisis de los crimewares más raros y privados encontrados. (Bazar Bizarro)
- Conclusiones y agradecimientos.
The content of the paper will be completely 100% real. will maintain the freshness of data exclusively for the RootedCon, so is presentation does not repeat itself in any conference other hand are grayed out data deemed to prejudice and cause a negative impact on them. All information is acknowledged during the presentation is for educational purposes and despite the title at no time inciting to commit criminal acts. All data acquired are the result of collaboration companies and authorities to provide us with the publication of the data.
Researcher Crimeware Quintans Manu is linked from many years ago as a contributor to the scene of bands like DTFZine (SP), DC4420 (UK), Hacktimes.com, MalwareIntelligence has developed expertise in various technology sectors by acquiring knowledge in various disciplines. Today is dedicated to research topics related to Phishing, Malware, Hacking, Botnets in the Malware Intelligence research group and collaborates with various companies as an independent researcher.
Frank Ruiz durante estos últimos años ha participado en diferentes investigaciones relacionadas con el cibercrimen. Además colabora activamente con el grupo MalwareIntelligence donde podemos encontrar algunas de sus investigaciones. En la actualidad trabaja para la compañía Holandesa Fox-IT donde participa en las investigaciones del departamento de cibercrimen.
la sociedad de la información española actual, tanto privados como públicos. Debido a las limitaciones en las herramientas web de auditoría y pen-testing existentes, ¿sabemos realmente si los servicios y aplicaciones web basados en el DNIe son seguros? El DNIe es seguro pero… ¿se usa de forma segura? ¿Son seguros los componentes web asociados al DNIe? Exploremos la situación actual a través de nuevas herramientas, casos reales y demostraciones prácticas.
Raúl Siles es fundador y analista de seguridad de Taddong. Sus más de 10 años de experiencia ofreciendo servicios y soluciones avanzadas de seguridad en diferentes sectores incluyen diseño y revisión de arquitecturas de seguridad, pruebas de intrusión, investigación de incidentes, análisis forense e investigación de seguridad en nuevas tecnologías, como aplicaciones web, wireless, honeynets, virtualización, dispositivos móviles y VoIP. Raul es uno de los pocos profesionales que han obtenido la certificación GIAC Security Expert (GSE). Es autor e instructor de cursos del SANS, ponente habitual en conferencias de seguridad, autor de libros y artículos de seguridad, y contribuye a proyectos de investigación y open-source. Le encantan los retos de seguridad, y es miembro de organizaciones internacionales, como el Honeynet Project o el Internet Storm Center (ISC). Raul tiene una Ingeniería Superior Informática por la UPM (España) y un master de postgrado en seguridad y comercio electrónico.
Joseph A. Guasch es consultor de seguridad informática especializado en auditorias, análisis forenses y desarrollo de herramientas, actualmente forma parte del “Tiger Team” en una consultora vinculada a la seguridad informática. También es editor del blog de seguridad informática en español Security By Default (http://www.securitybydefault.com).
William Large has been involved in free software groups for over a decade, beginning his career in the computer security department of the Polytechnic University of Madrid. Currently working on the Vulnerability Research Team of AlienVault, identifying new patterns of attack and incorporating intelligence threat detection OSSIM tool.
Alberto Ortega is a young computer security professional who has worked on different projects and free safety publications, and share tools and papers themselves. He has published several security flaws in products of technology companies. Currently working on the Vulnerability Research Team and AlienVault Labs.
Gerardo Garcia Peña is a Software Engineer (UPC) for several years devoted to parallel programming and embedded devices. Subsequently recycled to the development of web systems and systems management. Later he specialized in security (Master in Management of IT Security by esCERT), going to work in the TSRs Safety Laboratory at Ernst & Young, the team of Javier and Cesar Tascon Urtiaga. Subsequently, the Security Lab team moved to ERS at Deloitte, where he continued practicing professionally in audit work and consulting on technical security, secure software development and serves as Consultant Ético.Adicionalmente Hacking Lab at the Open University of Catalonia in the subjects of Computer Network Security. In his spare time actively involved in security events, both listener and speaker, and author of Open Source usually related to security. There are several security related certifications such as CISA, CISM and CEH. 
