Dan Petro

Bishop Fox
Lead Researcher

Biografía

Dan Petro is a Lead Researcher at Bishop Fox and focuses on application penetration testing (static and dynamic), product security reviews, network penetration testing (external and internal), and cryptographic analysis. Dan has presented at several Black Hats and DEF CONs on topics such as hacking smart safes, hijacking Google Chromecasts, and weaponizing AI. He has developed several open-source tools including Untwister, which breaks pseudorandom number generators. Additionally, Dan has been quoted in Wired, The Guardian, Business Insider, and Mashable. Dan holds both a Bachelor of Science and a Master of Science in Computer Science from Arizona State University.

País

Estados Unidos

Idioma

Inglés

Sitio Web

#

On Demand

Eyeballer: Hacking Websites at Scale Using AI

abril 6, 2022 - 15:00

You know an old-looking website when you see it. Blocky frames, broken CSS, that certain "je ne sais quoi" of a website that looks like it was designed in the early 2000's. But what do you do when the attack surface has tens of thousands of websites in scope? How do you find these vulnerability diamonds-in-the-rough when there's no time to look through all of them manually?

This is where Eyeballer comes in. Eyeballer is an AI-powered, open-source tool designed to help penetration testers assess large-scale external perimeters. Aim it at a stack of screenshots and Eyeballer will “look at” the rendered web pages to identify which ones are likely to contain vulnerabilities, as well as which ones can be deprioritized during security assessments.

Más speakers

Larisa Cruz