Advanced Research

We specialize in system-level security research, which includes areas such as:

  1. Bulletkernel security (kernel compromises, advanced rootkits, integrity checking, kernel exploitation techniques, design and implementation review of kernel/system code)

  2. Bulletvirtualization security (attacks on hypervisor/VMM, secure VMM design, hypervisor design and implementation review)

  3. Bulletfirmware security (BIOS/SMM/chipset exploitation, code review)

  4. Bulletadvanced security technologies (VT-x, VT-d, AMD-v, TXT, TPM)

In-depth technical trainings and Workshops

  1. BulletUnderstanding Stealth Malware Training

Introduced in 2007 at the Black Hat USA conference, turned out to be very successful class, with nearly 200 satisfied attendees so far. This course discusses all the bits and bytes of the current techniques used by stealth malware, not limiting to only the in-the-wild malware, but also discussing the future trends like e.g. virtualization-based malware.

Download recent class agenda: PDF.

  1. BulletVirtualization Security Training (upcoming)

Introduced at Black Hat USA 2009 (Las Vegas, NV, USA).

  1. Presents an unbiased view on the security of recent Xen-based systems, show exemplary attacks and study how various technology (e.g. Intel VT-d and TXT) and clever design of the VMM can help to improve security. Point out where the weakness are still present and what we can expect in the future.

  2. Provide a good baseline for comparing Xen-based products with other hypervisors on the market from security standpoint, thus allow for better decision making when buying virtualization products (participants will know what "hard questions" to ask vendors and what features to look for).

  3. Enable administrators of current virtualization systems to better plan the deployment in order to optimize security.

More details on the blog post here.

Sign up for the training directly at the Black Hat website here.

Full agenda available here (PDF).


The above trainings are also available in a form of on-site trainings for corporate customers. Please contact us for more details.

Our team has a lot of experience in the above mentioned fields, which allows us to offer unique research services to customers interested in unbiased review of advanced security technologies. We also offer this service to system/software vendors who are interested in our help with securing their products.

We currently offer the following hands-ons (each is a 2-full-day class):