Solar Designer
Alexander Peslyak (born 1977), better known as Solar Designer, is a security specialist from Russia. He is best known for his publications on exploitation techniques, including the return-to-libc attack and the first generic heap-based buffer overflow exploitation technique,[1] as well as computer security protection techniques such as privilege separation for daemon processes.
Peslyak is the author of the widely popular[2] password cracking tool John the Ripper. His code has also been used in various third-party operating systems, such as OpenBSD and Debian.
Work
Peslyak has been the founder and leader of the Openwall Project since 1999, the founder and CTO of Openwall, Inc. since 2003, and an advisory board member at the Open Source Computer Emergency Response Team (oCERT) since 2008, and was a co-founder at oss-security.[3]
He has spoken at many international conferences, including FOSDEM and CanSecWest. He wrote the foreword to Michał Zalewski's 2005 book Silence on the Wire.[4]
Alexander received the 2009 "Lifetime Achievement Award"[5] during the annual Pwnie Award at the Black Hat Security Conference. In 2015 Qualys acknowledged his help with the disclosure of a GNU C Library gethostbyname
function buffer overflow (CVE-2015-0235).[6]
References
- ↑ "JPEG COM Marker Processing Vulnerability in Netscape Browsers". Retrieved 2009-08-04.
- ↑ "Top 10 Password Crackers". Archived from the original on 30 August 2009. Retrieved 2009-08-04.
- ↑ "Alexander Peslyak's Bio on openwall.info". Archived from the original on 28 June 2009. Retrieved 2009-08-04.
- ↑ Michał Zalewski (2005). "Silence on the Wire". No Starch Press. ISBN 1593270461. Retrieved 2015-03-21.
- ↑ "2009 Pwnie award". Retrieved 2010-12-17.
- ↑ Qualys (2015-01-27). "CVE-2015-0235 - GHOST: glibc gethostbyname buffer overflow". Seclists.org. Retrieved 2015-03-21.