This is a reverse chronological list of conference presentations and publications over the last few years.
The complete list is at http://code.google.com/p/blogfranz/downloads/list
Advanced Metering Implementations: Addressing Security in DoD Applications
A Maze of Tiny Fuzzers All Alike
Final Exam for CIS170 at Frederick Community College - students did great!
OPC Security Whitepaper - this was the deliverable for a sponsored research project and is available on the Digital Bond subscriber website.
ICCP Exposed - conference paper/presentation on ICCP (and OSI) protocol security at the first S4.
A Rough Start of a Toolset for Assessing J2EE Apps (Austin OWASP Meeting, June 2006)
The Challenge of an Open Source Testing Framework for Control Systems (PCSF, SPring 2006)
SCADA Vulnerability Discovery and Disclosure - PCSF, Spring 2006
The Use of Attack Trees in Assessing SCADA Protocols
Uncovering Cyber Flaws
ModbusFW: Deep Packet Inspection for Industrial Ethernet
Protocol Implementation Testing: Challenges & Opportunities
Separating Fact from FUD: BGP Vulnerability Testing (BlackHat and NANOG)
Vulnerability Testing of Industrial Network Devices
How Secure is Secure: Threat-Oriented Product Testing (Cansecwest)