The day ended with a tool that is effective in evaluating the Host IPS (HIPS) to the point where it can be evaded. Julien Tinnes - France Telecom R&D and the tool is called Slipfest (HIPS evaluation toolkit). It was his first presentation ever but the tool itself was strong enough to stand on its own.

A quick demo showed how the tool helped defeat the protection offered by Cisco CSA. His research shows that all other HIPS are victim to this toolkit. Nice job.
Check it out for yourself:
slipfest.cr0.org

Lastly, a panel was formed to speak about the commercialization of vulnerability research. I’m not going to say much about this other than it was poorly moderated. From the start, the argument for the debate was not clearly stated and at any one point in time, it was hard to tell if the object was the knowledge of a vulnerability or if it was a working exploit. These were not stupid people on the panel, it was just poorly moderated and I found it frustrating. Why? Because it is a complicated multi-dimensional problem and in order to move forward, a more structured debate is needed. Maybe next year.