Apr 27, 2017

SafeBreach CTO and Co-Founder Itzik Kotler to Present at Chicago’s Hacking Conference

SUNNYVALE, CA – Apr 27, 2017. SafeBreach, the leading provider of continuous security validation, today announced that CTO and Co-Founder, Itzik Kotler will provide a live demonstration on how to detect and mitigate a Python program attack during Chicago’s hacking conference THOTCON taking place on May 4-5, 2017 in Chicago, IL.

Established in 2009, THOTCON was formed as an idea by a group of Chicago-based hackers who wanted to start a local, inexpensive conference. It is a non-profit, non-commercial event that aims to provide the best hacking tips and tricks possible to an extensive audience-from CISO/CIO/CTO to security engineers to application developers to security consultants and recent graduates. In true hacking fashion, privacy and security measures are taken heavily into consideration. Therefore, the venue is only disclosed to THOTCON attendees and speakers a week prior to the event.


I’m In Your \$PYTHONPATH, Backdooring Your Python Programs: Kotler will give a live demonstration on how a small change in a shell variable can lead to a malicious Python code injected into a Python program and used to hijack Python module(s) and then steal passwords/sensitivity data, tamper with security tools, and turn any Python program that uses sockets into an interactive backdoor.

  • Friday, May 5, 2017 at 12:00 p.m. CDT
  • Day 2 | Track 1 | Talk 7

Kotler has more than a decade of experience researching and working in the computer security space. He is a recognized industry speaker, having spoken at DEFCON, Black Hat USA, Hack In The Box, RSA Conference, CCC and H2HC. He is a former member of the elite Israel 8200 Intelligence unit. Prior to SafeBreach, he served as CTO of Security Art and led SOC activities and research at Radware (RDWR). Most recently, Kotler spearheaded SafeBreach Labs’s research in its initial contribution to the MITRE Corporation’s knowledgebase, Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) Framework. The MITRE Corporation is a not-for-profit organization that operates research and development centers sponsored by the federal government.

About SafeBreach

A pioneer in the Breach and Attack Simulation (BAS) market, SafeBreach is the world’s most widely used continuous security validation platform. The patented platform automatically and safely executes thousands of attack methods to validate network, endpoint, cloud, container, and email security controls against its Hacker’s Playbook™, the world’s largest collection of attack data broken down by methods, tactics and threat actors. Founded in 2014 by experienced CISOs, hackers, and security entrepreneurs, SafeBreach makes it possible for security teams to invest wisely, protect more and mitigate risk.

Media Contact:

Merritt Group for SafeBreach – [email protected]

Subscribe to
our Newsletter