Jonathan Afek
Dangling Pointer

Pedram Amini & Aaron Portnoy
Fuzzing Sucks! (or Fuzz it Like you Mean it!)

Brandon Baker
Kick Ass Hypervisoring: Windows Server Virtualization

Andrea Barisani & Daniele Bianco
Injecting RDS-TMC Traffic Information Signals a.k.a. How to freak out your Satellite Navigation

Rohyt Belani & Keith Jones
Smoke 'em Out!

Damiano Bolzoni & Emmanuel Zambon
Sphinx: An Anomaly-based Web Intrusion Detection System

Yuriy Bulygin
Remote and Local Exploitation of Network Drivers

Jamie Butler & Kris Kendall
Blackout: What Really Happened...

David Byrne
Intranet Invasion With Anti-DNS Pinning

Jon Callas, Raven Alder, Riccardo Bettati & Nick Mathewson
Traffic Analysis—The Most Powerful and Least Understood Attack Methods

Ero Carrera
Reverse Engineering Automation with Python

Stephan Chenette & Moti Joseph
Defeating Web Browser Heap Spray Attacks

Brian Chess, Jacob West, Sean Fay & Toshinari Kureha
Iron Chef Blackhat

Steve Christey
Unforgivable Vulnerabilities

Robert W. Clark
Computer and Internet Security Law—A Year in Review 2006–2007

David Coffey & John Viega
Building an Effective Application Security Practice on a Shoestring Budget

Job De Haas
Side Channel Attacks (DPA) and Countermeasures for Embedded Systems

Mark Ryan del Moral Talabis
The Security Analytics Project: Alternatives in Analysis

Barrie Dempster
VoIP Security: Methodology and Results

Jared DeMott, Dr. Richard Enbody & Dr. Bill Punch
Revolutionizing the Field of Grey-box Attack Surface Testing with Evolutionary Fuzzing

Rohit Dhamankar & Rob King
PISA: Protocol Identification via Statistical Analysis

Roger Dingledine
Tor and Blocking-resistance

Mark Dowd, John McDonald, Neel Mehta
Breaking C++ Applications

Himanshu Dwivedi & Zane Lackey
Something Old (H.323), Something New (IAX), Something Hollow (Security), and Something Blue (VoIP Administrators)

Joel Eriksson, Christer Öberg, Claes Nyberg & Karl Janmar
Kernel Wars

Gadi Evron
Estonia: Information Warfare and Strategic Lessons

Ben Feinstein & Daniel Peck
CaffeineMonkey: Automated Collection, Detection and Analysis of Malicious JavaScript

Justin N. Ferguson
Understanding the Heap by Breaking It

Kevvie Fowler
SQL Server Database Forensics

Dave G., & Jeremy Rauch
Hacking Capitalism

Kenneth Geers
Greetz from Room 101

Jeremiah Grossman & Robert Hansen
Hacking Intranet Websites from the Outside (Take 2)—"Fun With and Without JavaScript Malware"

Jennifer Granick
Disclosure and Intellectual Property Law: Case Studies

Ezequiel D. Gutesman & Ariel Waissbein
A Dynamic Technique for Enhancing the Security and Privacy of Web Applications

Nick Harbour
Stealth Secrets of the Malware Ninjas

John Heasman
Hacking the Extensible Firmware Interface

Brad Hill
Attacking Web Service Security: Message Oriented Madness, XML Worms and Web Service Security Sanity

Jim Hoagland
Vista Network Attack Surface Analysis and Teredo Security Implications

Billy Hoffman & John Terrill
The Little Hybrid Web Worm that Could

Greg Hoglund
Active Reversing: The Next Generation of Reverse Engineering

Mikko Hypponen
Status of Cell Phone Malware in 2007

Dan Kaminksy
Black Ops 2007: Design Reviewing The Web

Krishna Kurapati
Vulnerabilities in Wi-Fi/Dual-Mode VoIP Phones

Dr. Neal Krawetz
A Picture's Worth...

Zane Lackey, & Alex Garbutt
Point, Click, RTPInject

Adam Laurie
RFIDIOts!!!– Practical RFID Hacking (Without Soldering Irons or Patent Attorneys)

David LeBlanc
Practical Sandboxing - Techniques for Isolating Processes

Dr. Andrew Lindell
Anonymous Authentication— Preserving Your Privacy Online

Jonathan Lindsay
Attacking the Windows Kernel

David Litchfield
Database Forensics

Iain McDonald
Longhorn Server Foundation & Server Roles

Alfredo Ortega
OpenBSD Remote Exploit

David Maynor & Robert Graham
Simple Solutions to Complex Problems from the Lazy Hacker’s Handbook

Haroon Meer & Marco Slaviero
It's All About the Timing

Charlie Miller
Hacking Leopard: Tools and techniques for attacking the newest Mac OS X

Luis Miras
Other Wireless: New ways of being Pwned

Eric Monti & Dan Moniz
Defeating Information Leak Prevention

HD Moore & Valsmith
Tactical Exploitation

Jeff Morin
Type Conversion Errors: How a Little Data Type Can Do a Whole Lot of Damage

Shawn Moyer
(un)Smashing the Stack

Chris Paget
RFID for Beginners++

Chris Palmer, Tim Newsham, Alex Stamos & Chris Ridder
Breaking Forensics Software: Weaknesses in Critical Evidence Collection

Stephen Patton
Social Network Site Data Mining

Mike Perry
Securing the Tor Network

Cody Pierce
PyEmu: A multi-purpose scriptable x86 emulator

Thomas Ptacek & Nate Lawson
Don't Tell Joanna, The Virtualized Rootkit Is Dead

Danny Quist & Valsmith
Covert Debugging: Circumventing Software Armoring Techniques

Dror-John Roecher & Michael Thumann
NACATTACK

Joanna Rutkowska & Alexander Tereshkin
IsGameOver(), anyone?

Paul Vincent Sabanal
Reversing C++

Len Sassaman
Anonymity and its Discontents

Eric Schmiedl & Mike Spindell
Strengths and Weaknesses of Access Control Systems

Jerry Schneider
Reflection DNS Poisoning

Window Snyder & Mike Shaver
Building and Breaking the Browser

Alexander Sotirov
Heap Feng Shui in JavaScript

Scott Stender
Blind Security Testing—An Evolutionary Approach

Joe Stewart
Just Another Windows Kernel Perl Hacker

Bryan Sullivan & Billy Hoffman
Premature Ajax-ulation

Peter Thermos
Transparent Weaknesses in VoIP

David Thiel
Exposing Vulnerabilities in Media Software

Eugene Tsyrklevich & Vlad Tsyrklevich
OpenID: Single Sign-On for the Internet

Ariel Waissbein & Damian Saura
Timing Attacks for Recovering Private Entries From Database Engines

Greg Wroblewski
Reversing MSRC Updates: Case Studies of MSRC Bulletins 2004–2007

Chris Wysopal & Chris Eng
Static Detection of Application Backdoors

Mark Vincent Yason
The Art of Unpacking

Stefano Zanero
Observing the Tidal Waves of Malware

Phil Zimmermann
Z-Phone

Panels - Black Hat USA 2007

Panel
Ethics Challenge!

Panel
Executive Women's Forum

Panel
Meet the Fed

Panel
Meet the VCs

Panel
Spyware 2010: Center for Democracy & Technology Anti-Spyware Coalition