Anibal Sacco

Current

Security Researcher at Core Security Technologies
Exploit Writer Sr at Core Security Technologies

Past

Speaker at Ekoparty 2009
Speaker at Black Hat 2009
Speaker at SyScan 2009

Speaker at CanSecWest 2009
IT Administrator at Astecon SA y C de S

see less...

2 more...

Education

Universidad de Buenos Aires
Otto Krause - ENET nr1

Recommended

10 people have recommended Anibal

Connections

187 connections

Industry

Computer & Network Security

Anibal Sacco’s Summary

I like computers and technology since i have memory.
I've been playing in the security area all my life and i'm professionaly involved on it since 2005 when i started to work on the exploit writers team at Core Security Technolgies.

I'm deeply interested in security research and vulnerability development, reverse engineering, network security, and embbeded devices.

I've published several security advisories addressing vulnerabilites for a few different platforms:

http://www.google.com/search?hl=en&q=%22anibal+sacco%22

Anibal Sacco’s Specialties:

Exploit development, vulnerability research, application and protocol reverse engineering, protocol fuzzing, vuln development, source code auditing.

Programming: x86 and PPC Assembler, C, C++, VB, Python, Bash, ASP on Windows, Linux Unix and Embedded devices.

Anibal Sacco’s Experience

Security Researcher

Core Security Technologies

(Privately Held; Computer & Network Security industry)

March 2006 — Present (3 years 9 months)

As Security Researcher for CoreLabs i've published several advisories:

- Sun xVM VirtualBox Privilege Escalation Vulnerability (CVE-2008-3431)

- Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability (CVE-2009-0949)

- Absolute Software Computrace LoJack for Laptops Security Bypass Vulnerability (BID:35889)

- Insufficient argument validation of hooked SSDT functions on multiple Antivirus & Personal Firewalls (CVE-2008-1735 CVE-2008-1736 CVE-2008-1737 CVE-2008-1738)

- VLC media player chunk context validation error (CVE-2008-0984)

- MPlayer arbitrary pointer dereference (CVE-2008-0485)

- BSD-Games Multiple Local Buffer Overflow Vulnerabilities (CVE-2006-1744)

And a I also published a few technical articles:

-Phrack Magazine #66 :: Persistent BIOS infection (Together with Alfredo Ortega)

-(IN)SECURE Magazine #19 :: Windows driver vulnerabilities: the METHOD_NEITHER odyssey
Exploit Writer Sr

Core Security Technologies

(Privately Held; Computer & Network Security industry)

March 2006 — Present (3 years 9 months)

OS X Platform Manager
Speaker

Ekoparty 2009

(Computer & Network Security industry)

September 2009 — September 2009 (1 month)

Talk "Deactivate The Rootkit"

http://www.ekoparty.org/#Sacco
Speaker

Black Hat 2009

(Computer & Network Security industry)

August 2009 — August 2009 (1 month)

Talk: "Deactivate the Rootkit" at Black Hat 2009

http://www.blackhat.com/html/bh-usa-09/bh-usa-09-speakers.html#Ortega
Speaker

SyScan 2009

(Computer & Network Security industry)

July 2009 — July 2009 (1 month)

Talk: "Persistent BIOS Infection" at SyScan 2009
http://www.syscan.org/Sg/speakers.html
http://exploiting.wordpress.com/2009/06/26/persistant-bios-infection-at-syscan-2009/
Speaker

CanSecWest 2009

(Computer & Network Security industry)

March 2009 — March 2009 (1 month)

Talk: "Persistent BIOS Infection" at CanSecWest 2009
http://it.slashdot.org/article.pl?sid=09/03/23/1248214
http://exploiting.wordpress.com/2009/03/23/cansecwest-was-great-here-the-presentation-slides/#more-79
IT Administrator

Astecon SA y C de S

(Electrical/Electronic Manufacturing industry)

March 2001 — July 2003 (2 years 5 months)

I started working at Astecon SAyC in the IT area and then i moved to the Security area. The work involved a secure assesment/redesign of the whole IT infrastructure, periodical pen-tests of the internal network and the WebApps and formal reports of the job done.

Also, through Astecon ive worked offering services to clients like NCR, AT&T, DGI/AFIP and Carrefour.