Salvador Mendoza

Salvador Mendoza is a Metabase Q security researcher and member of the Ocelot Offensive Security Team. Salvador focuses on tokenization processes, payment systems, mag-stripe information and embedded prototypes. He has presented on tokenization flaws and payment methods in different conferences such as Black Hat USA, DEF CON, HITB, Troopers and many others. Also, Salvador designed different tools to pentest mag-stripe information and tokenization processes. Author of "Show me the (e-) money Hacking a sistemas de pagos digitales: NFC. RFID, MST y Chips EMV". A Spanish-written book with a collection of different attacks against payment systems. @Netxing salmg.net

• @Netxing
• Dynamic Presentation Playlist

Presentations:

• 2021-08-07 13:00 - DEF CON 29 (2021) - PINATA: PIN Automatic Try Attack
• 2018-09-28 16:00 - ekoparty 14 (2018) - NFC Payments: The Art of Relay and Replay Attacks
• 2018-09-27 13:50 - ekoparty 14 (2018) - Security in Digital Payments: Inside the Mind of the Attacker
• 2018-03-15 11:30 - TROOPERS18 (2018) - NFC Payments: The Art of Relay & Replay Attacks
• 2017-07-27 15:30 - DEF CON 25 (2017) - Exploiting 0ld Mag-stripe information with New technology
• 2017-03-22 16:00 - TROOPERS17 (2017) - Samsung Pay: Tokenized Numbers, Flaws and Issues
• 2016-09-25 10:30 - DerbyCon 6.0 Recharge (2016) - Samsung Pay: Tokenized Numbers, Flaws and Issues
• 2016-08-05 16:30 - DEF CON 24 (2016) - Samsung Pay: Tokenized Numbers, Flaws and Issues
• 2016-08-04 09:00 - Black Hat USA 2016 - Samsung Pay: Tokenized Numbers, Flaws and Issues

Copresenters:

• Leigh-Anne Galloway
  • 2018-03-15 11:30 - TROOPERS18 (2018) - NFC Payments: The Art of Relay & Replay Attacks
• Sean Metcalf
  • 2016-08-05 16:30 - DEF CON 24 (2016) - Samsung Pay: Tokenized Numbers, Flaws and Issues