Alfredo Ortega
Brief Bio
Alfredo Ortega works at CORE Security as an exploit writer, OpenBSD, FreeBSD and Linux platform manager. Currently he is pursuing a PhD at ITBA (Instituto Tecnológico de Buenos Aires) and in the past he was speaker on several security and computer science conferences, including Blackhat, DefCon, CanSecWest, Syscan and Ekoparty.
Technical Papers and Publications
- Deactivate the Rootkit (ekoparty edition) (view)
- Authors: Anibal Sacco, Alfredo Ortega
- In: Ekoparty 2009, Buenos Aires, Argentina
- Date published: 2009-09-18
- Attachments: Presentation Slides
- Deactivate the Rootkit (view)
- Authors: Anibal Sacco and Alfredo Ortega
- In: Black Hat Briefings 2009 USA. Las Vegas, NE. July 30
- Date published: 2009-07-30
- Attachments: Python program to modify the obfuscated Windows registry key that stores the hostname used by the Computrace agent to report, Whitepaper describing the findings and potential risk mitigation actions, Slides of the BlackHat Briefings 2009 talk, A packet capture showing the Computrace agent's plaintext HTTP outbound connection to search.namequery.com, Python program to dump the BIOS firmware and search for a CompuTrace Option ROM
- Persistent BIOS Infection (view)
- Authors: Alfredo Ortega and Anibal Sacco
- In: Tenth annual CanSecWest applied security conference. March 16-20 2009. Vancouver, British Columbia, Canada.
- Date published: 2009-03-18
- Attachments: Slides of the talk at the CanSecWest 2009 applied security conference
- Smartphones (in)security (view)
- Authors: Nicolas Economou and Alfredo Ortega
- In: Ekoparty '08. October 2-3. Buenos Aires, Argentina.
- Date published: 2008-10
- Attachments: Slides (castellano), Slides
- OpenBSD remote exploit (view)
- Authors: Alfredo Ortega, Gerardo Richarte
- In: Black Hat USA 2007 Briefings, August 1-2, 2007. Las Vegas, NV, USA.
- Date published: 2007-08
- Attachments: Article
Advisories
- VNC Multiple Integer Overflows (view)
- Authors: Ariel Futoransky, Fernando Russ and Alfredo Ortega
- Date published: 2009-02-03
- Qemu and KVM VNC server remote DoS (view)
- Authors: Alfredo Ortega
- Date published: 2008-12-22
- Vinagre show_error() format string vulnerability (view)
- Authors: Alfredo Ortega
- Date published: 2008-12-09
- NASA BigView Stack Buffer Overflow (view)
- Authors: Alfredo Ortega
- Date published: 2008-06-04
- Borland Interbase 2007 Integer Overflow (view)
- Authors: Damian Frizza, Alfredo Ortega
- Date published: 2008-05-20
- NASA's Common Data Format buffer overflow (view)
- Authors: Alfredo Ortega
- Date published: 2008-05-05
- Multiple vulnerabilities in Google's Android SDK (view)
- Authors: Alfredo Ortega
- Date published: 2008-03-04
- MPlayer 1.0rc2 buffer overflow vulnerability (view)
- Authors: Damian Frizza, Alfredo Ortega
- Date published: 2008-02-04
- Firebird Remote Memory Corruption (view)
- Authors: Damian Frizza and Alfredo Ortega
- Date published: 2008-01-28
- SynCE Remote Command Injection (view)
- Authors: Alfredo Ortega and Oren Isacson
- Date published: 2008-01-07
- OpenBSD's IPv6 mbufs remote kernel buffer overflow (view)
- Authors: Alfredo Ortega
- Date published: 2007-03-13
- ProFTPD Controls Buffer Overflow (view)
- Authors: Alfredo Ortega
- Date published: 2006-12-13