TippingPoint Digital Vaccine Laboratories

Pedram Amini

Pedram Amini's Image

Manager, Security Research

http://www.twitter.com/pedramamini

Pedram Amini leads the security research group at TippingPoint. His group is responsible for auditing software, reverse engineering patches, and developing tools to automate these tasks. Previous to TippingPoint, Pedram was the assistant director and one of the founding members of iDEFENSE Labs. Despite the fancy titles he spends much of his time in the shoes of a reverse engineer- developing automation tools, plug-ins and scripts. His most recent projects (aka "babies") include the PaiMei reverse engineering framework and the Sulley fuzzing framework.

In conjunction with his passion for the field, he launched OpenRCE.org, a community website dedicated to the art and science of reverse engineering. He has previously presented at RECON, ShmooCon, BlackHat, DefCon, ToorCon, and taught numerous reverse engineering courses. Pedram holds a computer science degree from Tulane University and is the co-author of the book Fuzzing: Brute Force Vulnerability Discovery.

Published Advisories:
  • TPTI-09-15: HP OpenView Data Protector Cell Manager Heap Overflow Vulnerability
  • TPTI-07-19: CA Multiple Product DBASVR RPC Server Pointer Arithmetic Vulnerablities
  • TPTI-07-14: HP OpenView Multiple Product Shared Trace Service Stack Overflow Vulnerabilities
  • TPTI-07-09: Macrovision FLEXnet boisweb.dll ActiveX Control Buffer Overflow Vulnerability
  • TPTI-07-06: Trillian Pro Rendezvous XMPP HTML Decoding Heap Corruption Vulnerability
  • TPTI-07-01: Trend Micro ServerProtect StCommon.dll Stack Overflow Vulnerabilities
  • TPTI-07-02: Trend Micro ServerProtect eng50.dll Stack Overflow Vulnerabilities
  • TPTI-06-13: HP OpenView Client Configuration Manager Device Code Execution Vulnerability
  • TPTI-06-11: CA Multiple Product DBASVR RPC Server Multiple Buffer Overflow Vulnerabilities
  • TPTI-06-12: CA BrightStor Discovery Service Mailslot Buffer Overflow Vulnerability
  • TPTI-06-07: eIQnetworks Enterprise Security Analyzer Monitoring Agent Buffer Overflow Vulnerabilities
  • TPTI-06-10: Microsoft HLINK.DLL Hyperlink Object Library Buffer Overflow Vulnerability
  • TPTI-06-02: Microsoft SRV.SYS Mailslot Ring0 Memory Corruption Vulnerability
    • Appearances:
  • Upcoming: Pwn2Own 2010
    2010-03-24 CanSecWest
  • Mostrame la guita! Adventures in buying vulnerabilities
    2009-09-17 Ekoparty 2009
  • Reverse Engineering on Windows: Application in Malicious Code Analysis
    2009-07-25 Black Hat USA 2009 Training
  • Reverse Engineering on Windows: Application in Malicious Code Analysis
    2009-04-15 Black Hat Europe 2009 Training
  • Reverse Engineering on Windows: Application in Malicious Code Analysis
    2009-02-16 Black Hat Federal 2009 Training
  • Reverse Engineering on Windows: Application in Malicious Code Analysis
    2008-08-02 Black Hat USA 2008 Training
  • Arms Race: Next-Gen Vulnerability Discovery
    2008-06-02 Techno Security Conference
  • Reverse Engineering on Windows: Application in Malicious Code Analysis
    2008-03-25 Black Hat Europe 2008 Training
  • Advanced Fuzzing with Sulley
    2007-10-25 BlackHat Japan
  • Reverse Engineering on Windows
    2007-10-23 BlackHat Japan
  • Fuzzing Sucks!
    2007-09-27 Microsoft BlueHat
  • Fuzzing Sucks!
    2007-08-02 BlackHat US
  • Reverse Engineering on Windows
    2007-07-28 Black Hat US
  • Reverse Engineering on Windows
    2007-02-26 Black Hat Federal
  • Reverse Engineering on Windows
    2006-08-01 Black Hat US
  • PaiMei - Reverse Engineering Framework
    2006-06-18 RECON
  • Reverse Engineering for Fun and BoF it!
    2006-01-13 ShmooCon
  • Process Stalking - Run Time Visual RCE
    2005-09-17 ToorCon
    • Blog Entries
  • Mostrame la Guita!
    created 2009-10-29 (4 comments, 6489 views)
  • Ekoparty Wrap Up
    created 2009-09-21 (6 comments, 4977 views)
  • Ekoparty 2009
    created 2009-09-08 (9 comments, 3987 views)
  • BlackHat USA 2009 Talk Choices
    created 2009-07-26 (10 comments, 4726 views)
  • Authoring a Technical Book
    created 2009-06-03 (2 comments, 4053 views)
  • Reverse Engineering iPhone AppStore Binaries
    created 2009-03-06 (3 comments, 9371 views)
  • BlackHat Federal 09: Day Two
    created 2009-02-19 (2 comments, 4336 views)
  • BlackHat Federal 09: Day One
    created 2009-02-18 (1 comments, 5237 views)
  • Python Interfacing a USB Missile Launcher
    created 2009-02-12 (19 comments, 43462 views)
  • Cellular Interference
    created 2008-06-30 (7 comments, 5343 views)
  • RECON 08 Day 3
    created 2008-06-16 (0 comments, 4794 views)
  • RECON 08 Day 2
    created 2008-06-14 (4 comments, 5457 views)
  • RECON 08 Day 1
    created 2008-06-13 (0 comments, 5587 views)
  • Kraken Botnet Infiltration
    created 2008-04-28 (54 comments, 24076 views)
  • Hello from Black Hat Europe
    created 2008-03-27 (0 comments, 5757 views)
  • Back From BlueHat
    created 2007-10-01 (0 comments, 14131 views)
  • Greatest Book Dedication Ever?
    created 2007-07-09 (1 comments, 6783 views)
  • Pin Pointing Stack Smashes
    created 2007-05-02 (3 comments, 5885 views)