duke

IRL Name: 
Mark Dowd
Biography: 

Accredited for finding numerous vulnerabilities for IBM Internet Security Systems; while working on their team code named XFORCE.

Found Adobe flash player invalid pointer vulnerability, as well as buffer overflows in the following software: Sendmail, Microsoft Exchange, OpenSSH, Internet Explorer, Mozilla, Checkpoint VPN, and Windows Encryption software.

Proved that you can exploit NULL pointer dereferences in applications coded in high-level programming languages.

Facts

Pubished Author of "The Art of Software Security Assessment"

Runs his own website: http://taossa.com/

Rumors

Shares all exploits/vulnerabilities found early with core members of the ADM crew: horizon/str/antilove/dice

Leaked cachefsd bug to "zip" of TESO resulting in 7350cachefsd

Leaked solaris login exploit early to noir/ADM

Pictures: 
References