最佳服务器端漏洞:
- Abusing JSONP with Rosetta Flash (CVE-2014-4671)
- Heartbleed (CVE-2014-0160)
- IPMI: Sold Down the River
- Embedded Device Hacking
最佳客户端漏洞:
- Google Chrome Arbitrary Memory Read Write Vulnerability (CVE-2014-1705)
- Heartbleed (CVE-2014-0160)
- Pwn4Fun Safari vulnerability (CVE-2014-1300)
- Goto Fail (CVE-2014-1266)
最佳提权漏洞
- AFD.sys Dangling Pointer Vulnerability (CVE-2014-1767)
- VirtualBox VM Breakout using 3D Acceleration (CVE-2014-0981)
- Linux Futex Bug (CVE-2014-3153)
- evasi0n iOS 7.0 jailbreak
- Pangu iOS 7.1 Jailbreak
最具创新性研究
- Hardware-assisted Memory Corruptions
- Bypassing Windows 8.1 Mitigations using Unsafe COM Objects
- RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis
- Windows 8 UEFI Secure Boot Bypasses
- Hacking Blind
响应最烂的厂商
- OpenCart PHP Object Injection Vulnerability
- Fired, I?
- AVG Remote Administration Insecure "By Design"
- General Motors
最佳歌曲奖
- "I'm a C I Double S P"
- "Memory Corruption"
- "Expect Us (We Are Anonymous)"
- "Security Kate"
- "The SSL Smiley Song"
最经典输家
- Goto Fail
- Heartbleed
- Target Breach
- (ISC)2 Optional Membership Fee
最经典破坏
- Heartbleed (CVE-2014-0160)
- Target Breach
- Inputs.io
- Mt. Gox
原文链接:
10 Significant Threat Findings Revealed At Black Hat 2014(编译/仲浩 审校/魏伟) | 
