Corey Kallenberg

Corey Kallenberg is a co-founder of LegbaCore, a consultancy focused on evaluating and improving host security at the lowest levels. His specialty areas are trusted computing, vulnerability research and low level development. In particular, Corey has spent several years using his vulnerability research expertise to evaluate limitations in current trusted computing implementations. In addition, he has used his development experience to create and improve upon trusted computing applications. Among these are a timing based attestation agent designed to improve firmware integrity reporting, and an open source Trusted Platform Module driver for Windows. Corey is also an experienced trainer, having created and delivered several technical courses. He is an internationally recognized speaker who has presented at BlackHat USA, DEF CON, CanSecWest, Hack in the Box, NoSuchCon, SyScan, EkoParty and Ruxcon. Twitter: @CoreyKal Twitter: @legbacore

• @coreykal
• Dynamic Presentation Playlist

Presentations:

• 2015-08-08 10:00 - DEF CON 23 (2015) - ThunderStrike 2: Sith Strike
• 2015-08-06 15:50 - Black Hat USA 2015 - ThunderStrike 2: Sith Strike
• 2015-07-17 15:00 - Summercon 2015 - How Many Million BIOSes Would You Like to Infect?
• 2014-12-28 20:30 - 31C3 (2014) - Attacks on UEFI security, inspired by Darth Venamis's misery and Speed Racer
• 2014-10-17 09:00 - Black Hat Europe 2014 - Analyzing UEFI BIOSes from Attacker & Defender Viewpoints
• 2014-08-08 14:00 - DEF CON 22 (2014) - Extreme Privilege Escalation On Windows 8/UEFI Systems
• 2014-08-07 10:15 - Black Hat USA 2014 - Extreme Privilege Escalation on Windows 8/UEFI Systems
• 2014-01-18 17:00 - ShmooCon X (2014) - Timing-Based Attestation: Sexy Defense, or the Sexiest?
• 2013-07-31 14:15 - Black Hat USA 2013 - BIOS Security
• 2012-07-29 11:00 - DEF CON 20 (2012) - No More Hooks: Trustworthy Detection of Code Integrity Attacks
• ????-??-?? ??:?? - ShmooCon XI (2015) - Betting BIOS Bugs Won't Bite Y'er Butt?

Copresenters:

• Xeno Kovah
  • 2015-08-08 10:00 - DEF CON 23 (2015) - ThunderStrike 2: Sith Strike
  • 2015-08-06 15:50 - Black Hat USA 2015 - ThunderStrike 2: Sith Strike
  • 2014-10-17 09:00 - Black Hat Europe 2014 - Analyzing UEFI BIOSes from Attacker & Defender Viewpoints
  • 2014-08-08 14:00 - DEF CON 22 (2014) - Extreme Privilege Escalation On Windows 8/UEFI Systems
  • 2014-08-07 10:15 - Black Hat USA 2014 - Extreme Privilege Escalation on Windows 8/UEFI Systems
  • 2014-01-18 17:00 - ShmooCon X (2014) - Timing-Based Attestation: Sexy Defense, or the Sexiest?
  • 2013-07-31 14:15 - Black Hat USA 2013 - BIOS Security
  • 2012-07-29 11:00 - DEF CON 20 (2012) - No More Hooks: Trustworthy Detection of Code Integrity Attacks
  • ????-??-?? ??:?? - ShmooCon XI (2015) - Betting BIOS Bugs Won't Bite Y'er Butt?
• John Butterworth
  • 2014-10-17 09:00 - Black Hat Europe 2014 - Analyzing UEFI BIOSes from Attacker & Defender Viewpoints
  • 2014-08-07 10:15 - Black Hat USA 2014 - Extreme Privilege Escalation on Windows 8/UEFI Systems
  • 2014-01-18 17:00 - ShmooCon X (2014) - Timing-Based Attestation: Sexy Defense, or the Sexiest?
  • 2013-07-31 14:15 - Black Hat USA 2013 - BIOS Security
• Trammell Hudson
  • 2015-08-08 10:00 - DEF CON 23 (2015) - ThunderStrike 2: Sith Strike   as Trammel Hudson
  • 2015-08-06 15:50 - Black Hat USA 2015 - ThunderStrike 2: Sith Strike
• Samuel Cornwell
  • 2014-10-17 09:00 - Black Hat Europe 2014 - Analyzing UEFI BIOSes from Attacker & Defender Viewpoints
  • 2014-08-07 10:15 - Black Hat USA 2014 - Extreme Privilege Escalation on Windows 8/UEFI Systems
• Panel
  • 2015-08-08 10:00 - DEF CON 23 (2015) - ThunderStrike 2: Sith Strike
• Rafal Wojtczuk
  • 2014-12-28 20:30 - 31C3 (2014) - Attacks on UEFI security, inspired by Darth Venamis's misery and Speed Racer