{"id":28612,"date":"2015-10-19T17:21:49","date_gmt":"2015-10-19T11:51:49","guid":{"rendered":"http:\/\/www.tothenew.com\/blog\/?p=28612"},"modified":"2016-12-19T15:02:51","modified_gmt":"2016-12-19T09:32:51","slug":"xorconf-2015-experience","status":"publish","type":"post","link":"https:\/\/www.tothenew.com\/blog\/xorconf-2015-experience\/","title":{"rendered":"Experience at X0RC0NF, 2015 &#8211; A security conference"},"content":{"rendered":"<p>Being a technology focused company, TO THE NEW has always made its presence felt in major conferences around the world. This time, it was <strong>X0RC0NF<\/strong> in Cochin, India. I was invited to present my talk there and attend the conference as a speaker. The topic of my talk was &#8220;<strong>Anatomizing online payment systems: hack to shop<\/strong>&#8220;, majorly focusing on some of the critical vulnerabilities that we discovered in e-commerce applications and payment gateways as a part of penetration testing.<\/p>\n<p>It was easy to locate and reach the venue. The conference started at around 9:30 AM in the morning with the first talk being on <strong>Windows Management Instrumentation<\/strong> followed by a talk on\u00a0<strong>Radare2 Framework<\/strong>. All the talks were very technical and presented in a very good way. The list of all the talks can be found here on the official website of X0RC0NF, Schedule<\/p>\n<p><img decoding=\"async\" loading=\"lazy\" class=\"alignnone  wp-image-28623\" src=\"\/blog\/wp-ttn-blog\/uploads\/2015\/10\/AAEAAQAAAAAAAAagAAAAJDZmYjM4MGQ5LTRlYjctNGViZi04NDg1LWJmY2M1ZmIzYTNiYQ.png\" alt=\"AAEAAQAAAAAAAAagAAAAJDZmYjM4MGQ5LTRlYjctNGViZi04NDg1LWJmY2M1ZmIzYTNiYQ\" width=\"377\" height=\"216\" \/><\/p>\n<p>We at <a title=\"TO THE NEW\" href=\"http:\/\/www.tothenew.com\">TO THE NEW<\/a> always like visiting conferences because you get to meet new people and learn a lot from them. We got to meet some very interesting people in Information Security domain. \u00a0A little glossary of what my talk was about can be found on the official website:<\/p>\n<p><em>&#8220;Online payment is not a new concept, from shopping to ticket booking to buying groceries, we have been using it daily (if not every hour). This presentation will talk about the security mechanism that some of the newest online retailers apply, the technology they rely upon and obviously the ways to hack all this. This research paper will focus on understanding the whole online payment process and the vulnerabilities associated with them.&#8221;<\/em> \u00a0&#8211; Find the glossary here.<\/p>\n<p>It was a great experience attending the conference, out of all great talks below are the ones that I liked the most:<\/p>\n<ul>\n<li>\n<h6>A Pentester&#8217;s Methodology to Discover, Automate and Exploit Windows Privilege Escalation flaws<\/h6>\n<\/li>\n<li>\n<h6>Popping shells in Droid<\/h6>\n<\/li>\n<li>\n<h6>Creating web sandboxes for secure process isolation using docker<\/h6>\n<\/li>\n<\/ul>\n<p>Below are the details of my talk. I have also uploaded the presentation on Slideshare which you can download from the link below. Please have a look at it and let me know in case you have any questions.<\/p>\n<p><strong>Talk<\/strong>:\u00a0Anatomizing online payments systems: Hack to shop<br \/>\n<strong>Speaker<\/strong>: Abhinav Mishra<br \/>\n<strong>Presentation<\/strong>:<br \/>\n<iframe loading=\"lazy\" style=\"border: 1px solid #CCC; border-width: 1px; margin-bottom: 5px; max-width: 100%;\" src=\"\/\/www.slideshare.net\/slideshow\/embed_code\/key\/13T2luAYz8fHWS\" width=\"425\" height=\"355\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"> <\/iframe><\/p>\n<div style=\"margin-bottom: 5px;\"><a title=\"Anatomizing online payment systems: hack to shop\" href=\"\/\/www.slideshare.net\/AbhinavMishra55\/anatomizing-online-payment-systems-hack-to-shop\" target=\"_blank\">Anatomizing online payment systems: hack to shop<\/a> from <a href=\"\/\/www.tothenew.com\/blog\/author\/abhinav-mishra\/\" target=\"_blank\">Abhinav Mishra<\/a><\/div>\n<p>&nbsp;<\/p>\n<p>We will try to update this blog with the link of other presentations as we get. For now, please\u00a0feel free to download and have a look at my presentation. Thanks.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Being a technology focused company, TO THE NEW has always made its presence felt in major conferences around the world. This time, it was X0RC0NF in Cochin, India. I was invited to present my talk there and attend the conference as a speaker. The topic of my talk was &#8220;Anatomizing online payment systems: hack to [&hellip;]<\/p>\n","protected":false},"author":234,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"iawp_total_views":3},"categories":[2026],"tags":[1218,2273,227,2489,2275,2631,2630,2632],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/posts\/28612"}],"collection":[{"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/users\/234"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/comments?post=28612"}],"version-history":[{"count":0,"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/posts\/28612\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/media?parent=28612"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/categories?post=28612"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.tothenew.com\/blog\/wp-json\/wp\/v2\/tags?post=28612"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}