This is a checklist for 2021 BlackHat talks I am planning to read or watch.
How I Used a JSON Deserialization 0day to Steal Your Money on the Blockchain
Put in One Bug and Pop Out More: An Effective Way of Bug Hunting in Chrome
ProxyLogon is Just the Tip of the Iceberg: A New Attack Surface on Microsoft Exchange Server!
Internal Affairs: Hacking File System Access from the Web
HTTP/2: The Sequel is Always Worse
Fixing a Memory Forensics Blind Spot: Linux Kernel Tracing
Can You Hear Me Now? Remote Eavesdropping Vulnerabilities in Mobile Messaging Applications
Breaking the Isolation: Cross-Account AWS Vulnerabilities
Anatomy of Native IIS Malware
MFA-ing the Un-MFA-ble: Protecting Auth Systems’ Core Secrets
A New Class of DNS Vulnerabilities Affecting Many DNS-as-Service Platforms
Zerologon: From Zero to Domain Admin by Exploiting a Crypto Bug
Zero - The Funniest Number in Cryptography
Smashing the ML Stack for Fun and Lawsuits
Cloudy with a Chance of APT: Novel Microsoft 365 Attacks in the Wild
Sleight of ARM: Demystifying Intel Houdini
Timeless Timing Attacks
Let’s Attack Let’s Encrypt
I’m a Hacker Get Me Out of Here! Breaking Network Segregation Using Esoteric Command & Control Channels
Diving in to Spooler: Discovering LPE and RCE Vulnerabilities in Windows Printer