Escaping the Sandbox

Presented at REcon 2010, July 10, 2010, 2 p.m. (60 minutes)

This presentation will discuss and demonstrate practical techniques for the evasion and escape of "Sand-boxing" technologies. Many techniques have been discussed but only vaguely at popular security conferences. Very little *actual* code and demonstrations have been performed. This presentation will consist mostly of demonstrations and review of actual code.

Presenters:

• Stephen Ridley
  Stephen Ridley is a Senior Researcher at Matasano Security LLC, an independent security research and development firm specializing in software security and reverse engineering. Prior to Matasano, Stephen worked at McAfee as a founding member of the Security Architecture research group. Before that, Stephen did reverse engineering and software vulnerability research in a "skunkworks" team at a leading U.S. Defense/Intel contractor. He is privately credited with vulnerability discoveries in popular COTS packages as well as open-source software. Stephen has written for several trade magazines and been quoted in publications such as "Wired" and "Security Focus". He has also taught reverse engineering and software security to companies from the Fortune 500 and to Military and Defense agencies. Stephen currently lives in Manhattan, New York.

Links:

• https://recon.cx/2010/speakers.html#sandbox
• https://recon.cx/2010/slides/Escaping_The_Sandbox_Stephen_A_Ridley_2010.pdf