Greg Hoglund

Greg Hoglund
Nationality	American
Spouse	Penny C. Leavy[1]
Website
hbgary.com rootkit.com

Michael Gregory Hoglund, better known as Greg Hoglund, is a security researcher and a published author on the subject of computer security and computer hacking. He wrote Exploiting Software: How to Break Code, Rootkits: Subverting the Windows Kernel and Exploiting Online Games: Cheating Massively Distributed Systems, speaks regularly on security conferences and wrote several books. Hoglund drew the attention of the media when he exposed the functionality of Blizzard Entertainment's Warden software.

He is perhaps best known for founding cyber security company (HBGary), which found controversy in 2011 after hacktivist group Anonymous leaked emails exposing offers to spy on civilians, corporate rivals and discredit Wikileaks supporters.^[2][3][4]

Hoglund founded several security startup companies which are still in operation today:

• HBGary, Inc.^[5]
• Cenzic, Inc. (formerly known as ClickToSecure, Inc.^[6]) Focused on web application security for the Fortune-500. ^[7]
• Bugscan, Inc. Developed an appliance that would scan software for security vulnerabilities without sourcecode. Acquired in 2004 by LogicLibrary, Inc.^[8]

Hoglund also founded and operates rootkit.com, a popular site devoted to the subject of rootkits. Rootkit.com was compromised in 2011 by the internet hacktivism group Anonymous. ^[9]

Work

Hoglund has published numerous works in the field of security:

Patents

He filed a WIPO patent application for a Fuzzy logic Hash function method with a registration in the United States and Europe. It was published on 29th of December 2010.^[10]

Books

• Exploiting Online Games: Cheating Massively Distributed Systems, Addison-Wesley, 2007, ISBN 0132271915.
• Rootkits: Subverting the Windows Kernel, Addison-Wesley, 2005, ISBN 0321294319.
• Exploiting Software: How to Break Code, Addison-Wesley, 2004, ISBN 0201786958.

Articles

• A *REAL* NT Rootkit, patching the NT Kernel, Phrack magazine, 1999 ^[11]

Conference presentations

• Advanced Buffer Overflow Techniques, BlackHat 2000 USA/Asia ^[12]
• Kernel Mode Rootkits, BlackHat 2001 USA/Europe/Asia ^[13]
• Application Testing Through Fault Injection Techniques, BlackHat Windows Security 2002 USA/Asia ^[14]
• Exploiting Parsing Vulnerabilities, BlackHat 2002 USA/Asia ^[15]
• Runtime Decompilation, BlackHat Windows Security 2003 Asia ^[16]
• Active Reversing: The Next Generation of Reverse Engineering, BlackHat 2007 USA/Europe ^[17]
• VICE - Catch the Hookers!, BlackHat 2004 USA ^[18]
• Hacking World of Warcraft: An Exercise in Advanced Rootkit Design, BlackHat 2005/2006 USA/Europe/Asia ^[19]

References

1. Nate Anderson (February 10, 2011). "How one man tracked down Anonymous—and paid a heavy price". Ars Technica. http://arstechnica.com/tech-policy/news/2011/02/how-one-security-firm-tracked-anonymousand-paid-a-heavy-price.ars/3. 
2. Eric Lipton (11 February 2011). "Hackers Reveal Offers to Spy on Corporate Rivals". New York Times. http://www.nytimes.com/2011/02/12/us/politics/12hackers.html?partner=rss&emc=rss. 
3. Nate Anderson (19 February 2011). "Black ops: how HBGary wrote backdoors for the government". Ars Technica. http://arstechnica.com/tech-policy/news/2011/02/black-ops-how-hbgary-wrote-backdoors-and-rootkits-for-the-government.ars/. 
4. Tim Greene (19 February 2011). "Stolen HBGary e-mails indicate it was planning a "new breed of rootkit"". Network World. http://www.networkworld.com/news/2011/021611-rsa-hbgary.html?hpg1=bn. 
5. http://hbgary.com
6. "About Us : Reverse Engineering Rootkits by Greg Hoglund, HBGary & Rich Cummings, HBGary". Black Hat. http://www.blackhat.com/html/bh-usa-08/train-bh-usa-08-hbgary-rootkit3.html. Retrieved 2011-06-20. 
7. "Web Application Security". Cenzic.com. http://www.cenzic.com. Retrieved 2011-06-20. 
8. Krill, Paul (2004-09-14). "LogicLibrary buys BugScan | Developer World". InfoWorld. http://www.infoworld.com/article/04/09/14/HNlogiclibrary_1.html. Retrieved 2011-06-20. 
9. Rootkit.com Compromise Poses Risks to Other Sites
10. WO application 2010151332, Michael Gregory Hoglund, "Fuzzy Hash Algorithm", published 2010-12-29, assigned to HBGary Inc. 
11. ":: Phrack Magazine ::". Phrack.org. http://phrack.org/issues.html?issue=55&id=5. Retrieved 2011-06-20. 
12. Jeff Moss. "The Black Hat Briefings Conference List of Speakers at www.blackhat.com". Blackhat.com. http://www.blackhat.com/html/bh-usa-00/bh-usa-00-speakers.html#Greg%20Hoglund. Retrieved 2011-06-20. 
13. Jeff Moss (2007-06-21). "The Black Hat Briefings Conference List of Speakers at www.blackhat.com". Blackhat.com. http://www.blackhat.com/html/win-usa-01/win-usa-01-speakers.html#Greg%20Hoglund. Retrieved 2011-06-20. 
14. Jeff Moss (2007-06-21). "Black Hat USA 2002 Topics and Speakers". Blackhat.com. http://www.blackhat.com/html/bh-usa-02/bh-usa-02-speakers.html#Greg%20Hoglund. Retrieved 2011-06-20. 
15. Jeff Moss (2007-06-21). "Black Hat Asia 2002 Topics and Speakers". Blackhat.com. http://www.blackhat.com/html/bh-asia-02/bh-asia-02-speakers.html#Greg%20Hoglund. Retrieved 2011-06-20. 
16. Jeff Moss. "Black Hat USA 2003 Topics and Speakers". Blackhat.com. http://www.blackhat.com/html/bh-usa-03/bh-usa-03-speakers.html#Greg%20Hoglund. Retrieved 2011-06-20. 
17. Jeff Moss. "Black Hat USA 2007 Topics and Speakers". Blackhat.com. http://www.blackhat.com/html/bh-usa-07/bh-usa-07-speakers.html#hoglund. Retrieved 2011-06-20. 
18. Jeff Moss. "Black Hat USA 2004 Topics and Speakers". Blackhat.com. http://www.blackhat.com/html/bh-usa-04/bh-usa-04-speakers.html#Butler. Retrieved 2011-06-20. 
19. Jeff Moss. "Black Hat USA 2006 Topics and Speakers". Blackhat.com. http://www.blackhat.com/html/bh-usa-06/bh-usa-06-speakers.html#Hoglund. Retrieved 2011-06-20. 

External links

• Black ops: how HBGary wrote backdoors for the government (by Nate Anderson, ars technica)