Profile

Cover photo
Marc Ruef
Works at scip AG, Zürich
Attended Business School KV, Baden
Lives in Zürich, Switzerland
449 followers|364,050 views
AboutPostsPhotosYouTube+1'sReviews

Stream

Pinned

Marc Ruef

Shared publicly  - 
 
Labs: Wearables in Application. at Thursday, 22. January 2015 by Marc Ruef | G+. In the field of information technology, there's something new every few years. Something that everyone involved in the field talks about. However, few of these things end up actually being something tangible.
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
Source code analysis. 8 hours. 3 different languages. Brain hurts.
1
Uwe Reese's profile photoMarc Ruef's profile photo
2 comments
 
Thanks :)
Add a comment...

Marc Ruef

Shared publicly  - 
 
There is a very interesting downgrade #attack against #TLShttp://www.scip.ch/en/?vuldb.75496 #logjam
A vulnerability has been found in TLS Protocol up to 1.2 and classified as critical.
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
Anybody using #Nessus in a corporate environment? I'm having some statistical questions about paradigms.
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
News: smSS vom 19. Mai 2015. Dienstag, 19. Mai 2015. In der jüngsten Ausgabe des scip monthly Security Summary haben die Mitarbeiter der scip AG folgende Inhalte erarbeitet: Design unter dem Radar von Dominik Bärlocher; Gedanken zum Thema Cross Border von Flavio Gerbino; Eine Geschichte über die ...
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
I'd like to play in a bad Rolling Stones cover band, called "The Trolling Stones" :D
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
Russia and China signed a cyber-security deal on Friday, agreeing to not conduct cyber-attacks against each other, as well as jointly counteract technology that may "destabilize the internal political and socio-economic atmosphere," "disturb public order" or "interfere with the internal affairs of the state."
1
Add a comment...
Have him in circles
449 people
Kay Dognut's profile photo
Dave Ockwell-Jenner's profile photo
Constantin Ionel Milos's profile photo
Travelino Lastminute&Reiseschnäpchen's profile photo
Sam Song (AllGalaxyTab)'s profile photo
Rob Schneider's profile photo
Philipp Stirnemann's profile photo
Charles Chambers's profile photo
Philipp Stuber's profile photo

Marc Ruef

Shared publicly  - 
 
Competitor calling and asking if company X is our customer. Some "security" companies are strange! #gtfo
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
Labs: Apple Watch - A First Commentary. at Thursday, 21. May 2015 by Stefan Friedli | G+. In the recent past, there's not been a single Apple product that has led to quite as much discussion as the Apple Watch. Understandable, given the fact that Apple managed to revolutionize entire types of ...
1
Add a comment...

Marc Ruef

Shared publicly  - 
 

#Burp makes use of the the Cobra HTML parser and renderer. #lgpl #insight
1
Add a comment...

Marc Ruef

Shared publicly  - 
 
#Microsoft patch day, #Adobe patch day, #Mozilla patch day. There is someone trying to kill me again ;)
1
Add a comment...
People
Have him in circles
449 people
Kay Dognut's profile photo
Dave Ockwell-Jenner's profile photo
Constantin Ionel Milos's profile photo
Travelino Lastminute&Reiseschnäpchen's profile photo
Sam Song (AllGalaxyTab)'s profile photo
Rob Schneider's profile photo
Philipp Stirnemann's profile photo
Charles Chambers's profile photo
Philipp Stuber's profile photo
Education
  • Business School KV, Baden
    Travel Consultant, 1997 - 2000
    Business travel, train travel in Europe
  • Business School KV, Baden
    SIZ PC User, 1998 - 1999
    Windows, office, network and Internet usage
  • AWB, Wettingen
    SIZ PC Supporter, 1999 - 1999
    Hardware, windows, office and network support
Basic Information
Gender
Male
Story
Tagline
problem solver at http://www.scip.ch | infosec researcher | author | film critic | comic book nerd
Introduction
I am an IT security researcher and penetration tester with his own company. Primarily, we are consulting and auditing Swiss banks regarding information security risks.

Besides that, I maintain computec.ch, a very popular security web site. Furthermore, I have published many papers and books. My last book has the title Die Kunst des Penetration Testing and discusses the efficient approach of doing penetration tests.

http://www.computec.ch/mruef/
Work
Occupation
Security Consultant
Employment
  • scip AG, Zürich
    Member of the Board, 2003 - present
    Leading and executing technical vulnerability assessments and penetration tests, development of tools, exploits and backdoors, publishing articles and papers.
  • Inter-Networking AG, Dietikon
    Security Consultant, 2001 - 2002
    Establishment of a team which is providing vulnerability assessments and execution of such projects. Additional maintenance of different security products (e.g. TrendMicro OfficeScan, Finjan SurfinGate, Symantec ESM, etc.).
  • Biodata Information Technology AG, Rümlang
    IT Security Expert, 2000 - 2001
    Internal consulting regarding information security issues, security testing of own products (e.g. firewalls and isdn encryption devices), publishing articles and papers.
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Zürich, Switzerland
Previously
Links
YouTube
Contributor to
Marc Ruef's +1's are the things they like, agree with, or want to recommend.
Apple Watch - A First Commentary
www.scip.ch

Labs: Apple Watch - A First Commentary. at Thursday, 21. May 2015 by Stefan Friedli | G+. In the recent past, there's not been a single Appl

smSS vom 19. Mai 2015
www.scip.ch

News: smSS vom 19. Mai 2015. Dienstag, 19. Mai 2015. In der jüngsten Ausgabe des scip monthly Security Summary haben die Mitarbeiter der sci

Carnal0wnage & Attack Research Blog: Lets Call Stunt Hacking What it...
carnal0wnage.attackresearch.com

I recently read this article: http://www.foxnews.com/tech/2015/03/17/ground-control-analysts-warn-airplane-communications-systems-vulnerable

Russia and China Pledge Not to Hack Each Other
blogs.wsj.com

Russia and China signed a cyber-security deal on Friday, agreeing to not conduct cyber-attacks against each other, as well as jointly counte

Magic Hashes | WhiteHat Security Blog
blog.whitehatsec.com

For more than the last decade, PHP programmers have been wrestling with the equals-equals (==) operator. It's caused a lot of issues. This h

A Story About Blocking PowerShell
www.scip.ch

Labs: A Story About Blocking PowerShell. at Thursday, 7. May 2015 by Michael Schneider. Perl is considered to be the Swiss Army Knife among

Windows 10 bombshell: Microsoft to KILL OFF Patch Tuesday
www.theregister.co.uk

New policy verges on apt-get update && apt-get dist-upgrade

TV Execs Will Force You to Pay to Watch the Big Fight
www.wired.com

In the early hours of Wednesday morning, the age of robotic graffiti was born.

US aviation authority: Boeing 787 software bug could cause 'loss of cont...
www.theguardian.com

More trouble for Dreamliner as Federal Aviation Administration warns glitch in control unit causes generators to shut down if left powered o

Hospira Lifecare PCA Infusion Pump 412 Telnet Service weak authentication
www.scip.ch

A vulnerability was found in Hospira Lifecare PCA Infusion Pump 412. It has been rated as very critical.

#ContentCollab Insights: Trends in Business Content Collaboration and Se...
blogs.intralinks.com

A recent ESG survey found that mid-market and enterprise organisations in the United States and Europe rank infosecurity as the highest prio

Security Features and Risks in Google Chrome - InfoSec Institute
resources.infosecinstitute.com

Today a web browser has become a very important piece of software in our daily life. It is an application that finds and displays the web pa

Internet Security Marketing: Buyer Beware
www.circleid.com

As security breaches increasingly make headlines, thousands of Internet security companies are chasing tens of billions of dollars in potent

The Locksmith Who Picked Two “Unbeatable” Locks and Ended the Era of “Pe...
www.slate.com

Roman Mars’ podcast 99% Invisible covers design questions large and small, from his fascination with rebar to the history of slot machines t

What’s Your Security Maturity Level? — Krebs on Security
krebsonsecurity.com

Not long ago, I was working on a speech and found myself trying to come up with a phrase that encapsulates the difference between organizati

How to Use Risk Assessment to Secure Your Own Home - MSI :: State of Sec...
stateofsecurity.com

Risk assessment and treatment is something we all do, consciously or unconsciously, every day. For example, when you look out the window in

Meet the e-voting machine so easy to hack, it will take your breath away
arstechnica.com

Virginia decertifies device that used weak passwords and wasn't updated in 10 years.

How to crash any iPhone or iPad within WiFi range
www.tripwire.com

"No iOS Zone" denial-of-service vulnerability could lead to your iPhone or iPad constantly crashing.

Schneier on Security: Hacking Airplanes
www.schneier.com

Hacking Airplanes. Imagine this: A terrorist hacks into a commercial airplane from the ground, takes over the controls from the pilots and f

CVE-2015-1097: Deobfuscating iOS Kernel Pointers with an IBM X-Force Vul...
securityintelligence.com

IBM's X-Force Application Security Research Team has discovered a memory disclosure vulnerability in iOS IOKit IOMobileFrameBuffer.

Public - 2 months ago
reviewed 2 months ago
Public - 2 months ago
reviewed 2 months ago
Public - 2 months ago
reviewed 2 months ago
6 reviews
Map
Map
Map
Public - 2 months ago
reviewed 2 months ago
Public - 2 months ago
reviewed 2 months ago