Airbus security lab publications

Airbus security lab was previously known as, in chronological order:

Turning your BMC into a revolving door by Fabien Perigaud, Alexandre Gazet and Joffrey Czarny at ZeroNights: Slides
Android_Emuroot: Abusing Google Play emulator debugging to RE non-cooperative apps as root by Anaïs Gantet at Blackhoodie18: Slides, Demo, GitHub
Backdooring your server through its BMC: the HPE iLO4 case by Fabien Perigaud, Alexandre Gazet and Joffrey Czarny at SSTIC: Slides , Slides, Paper, GitHub.
Subverting your server through its BMC: the HPE iLO4 case by Fabien Perigaud, Alexandre Gazet and Joffrey Czarny at RECON (Brussels): Slides, GitHub.

An analysis of the Warbird virtual-machine protection for the CI!g_pStore by Alexandre Gazet: Post, GitHub
PowerSAP: PowerShell tool to assess SAP security by Joffrey Czarny at Troopers, Black Hat (USA and Europe), and UniverShell: Slides, GitHub
BinCAT: purrfecting binary static analysis, by Philippe Biondi, Xavier Mehrenberger, Raphaël Rigo and Sarah Zennou:
- REcon: Slides, GitHub.
- SSTIC: Slides , Paper, GitHub.
CrashOS by Anaïs Gantet:
- CrashOS: Recherche de vulnérabilités système dans les hyperviseurs at SSTIC: Slides , Paper , GitHub.
- CrashOS: Hypervisor testing tool at ISSRE: Slides
cpu_rec.py, un outil statistique pour la reconnaissance d’architectures binaires exotiques by Louis Granboulan:
- SSTIC: Slides , Paper , GitHub.
Blackbox reconstruction of SD card accesses by Xavier Mehrenberger and Raphaël Rigo at BeeRumP: Slides .

Three vulnerabilities in Tofino Xenon Security Appliance - 3.10 and earlier by Julien Lenoir, details:
- CVE-2017-11400: Incomplete firmware signature
- CVE-2017-11401: DPI ModBus filter bypass
- CVE-2017-11400: Firewall bypass

Dungeons and Dragons and Security by Tiphaine Romand-Latapie at Black Hat USA and THCon’17: Slides, Paper
Gunpack: un outil générique d’unpacking de malwares by Julien Lenoir at SSTIC: Slides , Paper , Code.
USB Toolkit by Benoit Camredon at SSTIC: Slides , Paper, GitHub (kernel), GitHub (user).
App vs Wild by Stéphane Duverger at SSTIC and THCon’17: Slides , Paper , GitHub (ramooflax).
Lost your “secure” HDD PIN? We can help! by Julien Lenoir & Raphaël Rigo:
- H2HC, Slides
- Ekoparty, Slides

Failure is not an option (Keynote) by Philippe Biondi at GreHack: Slides, Video
A peek under the Blue Coat by Raphaël Rigo at Black Hat Europe and Ruxcon: Slides, video
Implementing Your Own Generic Unpacker by Julien Lenoir at HITB: Slides, Video, Code.
REbus: a communication bus for security tools interactions by Philippe Biondi, Sarah Zennou, Xavier Mehrenberger at SSTIC, Slides , Paper , Video
Active Directory security analysis with BTA tool by Joffrey Czarny and Philippe Biondi:
- Presented at Hack.lu 2015, BlackHat USA Arsenal
- Slides , Slides , Paper
- Code
Reverse Engineering: the case of encrypted hard drives by Joffrey Czarny & Raphaël Rigo at SSTIC and Hardwear.io: Slides , Slides , Paper
The challenge of designing a secure encrypted hard drive by Raphaël Rigo at SyScan: Slides, Video

Active Directory security analysis with BTA tool by Joffrey Czarny and Philippe Biondi at SSTIC 2014

Protection Against Reverse Engineering by Code Obfuscation by Axel Tillequin at PPREW’1

Sécurité du système Android (The security of Android) by Nicolas Ruff at SSTIC: Slides , Paper
SSTIC challenge best solution by Axel Tillequin.
Pre-boot virtualization of a physical appliance with ramooflax by Stéphane Duverger at
- PacSec: Slides , Slides
- SSTIC: Slides , Paper

Audit d’applications .NET complexes - le cas Microsoft OCS 2007 (.NET applications analysis the case of Microsoft OCS 2007) by Nicolas Ruff at SSTIC: Slides , Paper
SSTIC challenge best solution: French and English by Arnaud Ebalard

Attacking Wifi networks with traffic injection by Cédric Blancher at SyScan: Slides
Pourquoi la sécurité est un échec (et comment y remédier) by Nicolas Ruff at SSTIC: Slides , Paper

Dépérimetrisation: futur de la sécurité réseau ou pis aller passager ? by Cédric Blancher at SSTIC: Slides , Paper

IPv6 routing header security by Philippe Biondi and Arnaud Ebalard at CanSecWest: Slides
Linux 2.6 kernel exploits by Stéphane Duverger at:
- SSTIC: Slides , Paper
- Syscan: Slides
Analyse statique par interprétation abstraite (static analysis by abstract interpretation) by Charles Hymans and Xavier Allamigeon at SSTIC
Aircraft Onboard Systems Security by Cédric Blancher at Bellua Cyber Security
Autopsie d’une intrusion “tout en mémoire” sous Windows (Autopsy of a Windows in-memory intrusion) by Nicolas Ruff at SSTIC: Slides , Paper

Scapy and IPv6 Networking by Philippe Biondi and Arnaud Ebalard at HITB: Slides
Skype research:
- Vanilla Skype by Fabrice Desclaux and Kostya Kortchinsky at REcon: Slides part 1 and part 2
- Epyks: reversing Skype by Fabrice Desclaux at SSTIC: Slides , Paper
- Silver Needle in the Skype by Philippe Biondi and Fabrice Desclaux at Blackhat Europe: Slides
Playing with ptrace for fun and profit by Nicolas Bareil at SSTIC: Slides , Paper
La sécurité dans Mobile IPv6 (Security of mobile IPv6) by Arnaud Ebalard and Guillaume Valadon at SSTIC: Slides , Paper
Sécurité des offres ADSL en France by Nicolas Ruff at SSTIC: Slides , Paper

Attacking WiFi with traffic injection by Cédric Blancher at Ruxcon (Slides), PacSec (Slides), SyScan (Slides), REcon (Slides)
Scapy: explore the net with new eyes by Philippe Biondi at T2: Slides
Network packet forgery with Scapy by Philippe Biondi at PacSec: Slides
VoIP security by Nicolas Bareil at SSTIC: Slides , Paper
Shellforge by Philippe Biondi at Libre Software Meeting LSM/RMLL: Slides
Utilisation des outils Honeypot pour la détection d’intrusion by Philippe Biondi et Cédric Blancher at EUROSEC: Slides
Protocoles réseau : grandeur et décadence by Cédric Blancher, Nicolas Fischbach and Pierre Betouin at SSTIC: Slides , Paper