DefCon 15

Discussion in 'Green Room' started by X-Istence, Jul 27, 2007.

  1. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    So DefCon is not until a week from now, I will still be heading up to Vegas ahead of time to just hang out with a friend as well as see if I can sneak into BlackHat.

    As soon as DefCon rolls around, I will start posting regular stories here on the frontpage about everything that is going on, and I am hoping to steal a camera from someone so I can bring you guys pictures as well.

    Shirt
    Cafepress says it has been shipped, however it should have been here by now. If it arrives I will have my room mate bring it up to DefCon with him, but as of right now I don't have the shirt in my hands yet.
     
  2. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    In vegas, javing a hell of a time :D. More later!
     
  3. madmatt

    madmatt Bow Down to the King Political User

    Messages:
    13,312
    Location:
    New York
    Did the shirt ever show up?
     
  4. Henyman

    Henyman Secret Goat Fetish Political User

    we wants pics!
     
  5. Steevo

    Steevo Spammer representing. Political User Folding Team

    Messages:
    2,566
    Need me to mail my camera?
     
  6. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    Pics will show up sooner or later on Facebook and then i'll grab em :p Having a blast partying it up with my friend, just checking out the casino's is awesome as well.

    madmatt: Not yet, my other room mate is not going to be driving up till Thursday so hopefully it will be at my house in Laveen by then. I am not pleased by Cafepress.
     
  7. tdinc

    tdinc █▄█ ▀█▄ █ Political User

    Messages:
    3,507
    Location:
    Sterling Heights, MICHIGAN
    stories?
     
  8. NetRyder

    NetRyder Tech Junkie Folding Team

    Messages:
    13,256
    Location:
    New York City
    Hope you didn't find a place on the Wall of Sheep, X. ;p
     
  9. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    Since DefCon does not start until tomorrow (Friday), I am not up there yet :p I won't be either, as the laptops I brought with me were all stripped off any saved passwords, so that nothing could be accidently transmitted, and while at DefCon you probably won't see me on here very often :p

    Shirt has still not arrived, my room mate is driving up today (Thursday) when he gets up in about 8 hours or so, so it looks like I will unfortunately not be wearing an OSNN.net shirt. Sorry guys!
     
  10. fitz

    fitz Just Floating Along Staff Member Political User Folding Team

    Messages:
    4,076
    Location:
    Chicagoland
    No shirt.. dang... I want my pittance of money back! :) :p
     
  11. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    So guys, here is a quick update as I wake up on Sunday morning:

    Thursday: I got my awesome badge (pictures will be coming soon, I promise), and I started looking for people I knew in the community. LosT and my friends who also got in that day. (Days to DefCon: 1). This is also the day the ToxicBBQ happened. The Toxic BBQ is where everyone who comes in early goes, it is basically a big party where people bring drinks (mostly liquor and beer) and meat. Then these BBQ specialists as they like to be called start cooking the meat. Now, you are asked to bring your own meat and drinks, however some people buy more meat than they could ever eat. This is what becomes community food, and you can grab one of it. Then you make friends with someone and get beer. Pretty simple right? It certainly was. I met all kinds of people at the ToxicBBQ and in general had a lot of fun until the police came and broke us up at 1945 saying we had to be out of there by 2030. They were afraid that it would get rowdy and someone was going to do something stupid considering it was a huge group of people all wearing black clothes (hackers for the win) drinking. Shame really, as previous years it had run until very late into the night being a party for everyone involved. I will make sure to be part of this again.

    Friday: After not sleeping for more than an hour we head out. It is now 0900, we are all excited and ready to go. We first go check out the talk that Joe Grand [http://grandideastudio.com/] was presenting on. He is the guy that build the badges, which this year were ****ing awesome again! They light up, as always, and you can program your own scrolling messages on it, it also has Point of Vision which means if you wave it in front of your face just right you get to see DefCon. The badges this year also had places to put new ZigBee on it to have it do wireless. And a place to put an accelerometer. This was to facilitate badge hacking which I did not do since I was busy with the LosT @ Con mystery challenge.

    Next up I went to a talk about Bruce Schneier, which was REALLY awesome. This guy is the end all and be all of encryption and hashing algorithms. He is a genius. He knows his stuff EXTREMELY well, which is always refreshing as some people there claim to know what they are doing but really have no clue.

    Then came the time, it was 1300 hours, and LosT released his boxes upon the crowd. Well, that is what we had hoped would happen, instead he passed us a small little box that contained a piece of paper with random words on it, some numbers and some other clues. And a ton of round little circular pieces of paper with letters on them. We then had to figure out what encryption he had used, and decrypt it. Go to LosT and get our actual Mystery Box. I am sure someone from UAT will blog about it with pictures, so I will link to it then. But the point was to get through two locks at the top, get the instructions and the breadboard and other pieces to make a certain circuit that was displayed on the paper. We then had to use this circuit to listen to what an LED was outputting. You can flicker an LED at the same speed as speech, and then with a photo resistor you can get that sound back out of the LED straight into some head phones to then listen to it. The LED will look like any other LED, so unknown to anyone it could be spitting out random messages that only certain people know of. It really is pretty cool, will ask LosT for the schematics and post em here if you guys want to try that out for yourself.

    It was about 8 hours after the challenge started that we finished phase 1. Then when we got our mystery box we were told it was not to be tipped as it would then cause the circuit to burn itself out and that would mean we could not get the secret it held. This was off course not true at all, but it made for some fun times. We got through the top two locks by picking them. The bottom lock however we never got through, instead we used a dremel and cut through the metal bar that was holding the last plate in place with the last clue. We finally got it, but did not finish until the next day at 1235 since we decided to call it quits for the day since LosT had packed up his stuff which meant at the time 0200 we could not listen to the message he had pre-recorded for us. In the end the circuit on the outside looked like it did something, but it ended up being mis-information to misguide us into thinking that we could not tip the box and to have the lock pick the bottom lock while lying down. Did I mention that these boxes were made of solid steel? It weighed at least a good 40 - 50 lbs.

    LosT's challenge was really fun, especially since we had a good 15 people in a tiny hotel room with all kinds of weird sounds coming from it, a Dremel tool makes a lot of noise. All around it was the thing I was looking forward to the most and it was totally worth my time, which was really cool.

    This was also the day that Dave Bolmon, the provost of UAT took about 15 guys of the UAT crew, really whoever wanted to go with us to a small tapa's place down on the strip, and he bought for all of us! For some broke students it was the greatest ever. Dave is a really cool guy, and was there to listen to us, and also talk to us, not just about school but about other things as well. He is one of the most down to earth guys you can get when it comes to the school. This was another highlight.
     
  12. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    Saturday:
    Wake up at 1100. yeah, that is right, I and my friends got some sleep in :D. We quickly head over to the Riviera and head to whatever we want to do. Since none of the talks going on at the time were interesting to me I wandered the vendor area looking for random stuff. At this time I am already broke.

    Food here in Vegas is expensive unless you can last until after 0000, at which point **** becomes cheaper than a water bottle. Breakfast for $2, bowling for $1. Do note, this breakfast consists of eggs, sausage, and hash browns and a drink oh and toast. And two of em were enough to fill me up, try beating that price.

    Back to DefCon, I head back to talks and sit in on a guy (don't remember who) talking about the following exploits:

    Windows GDI bug (was first announced at BlackHat Europe)
    NetBSD mbuf bug

    Both of which allow for the user to gain arbitrary control over the kernel and thus allow them to anything they want. This was really interesting especially to see how they accomplished what they did and how they did it.

    I then headed to a talk about radio scanners. Which was really interesting as they showed how to certain things with radio scanners. They also listed the frequencies at which for example Hotel security had it's radio's and you could listen in on them. The goons at DefCon got smart this year and started using encryption, which made radio scanning a whole lot less fun :p. I went to some other random talks but I don't remember much of them, they were not as good in quality and as such did not stick in my mind.

    I met up with some friends checked out the vendor area again (the vendors throughout the day will put up new shirts, new hardware and other gear to buy, so there is always something new). And we head out to buy beer and get to the White ball, which is basically a big rave where everyone wears white. Yesterday was the black ball, but I was way too busy getting into the Mystery Box to take a peek inside, let alone make a fool of myself dancing :p. No pictures. hehe :D.

    The White ball was really good, and I really enjoyed myself there, make a note for next year though, I need to pack something white! I had only brought black shirts. I did not get back home until around 0400 after I gathered all my drunk friends, stole one of the guys car keys and drove them back to our place of residence.

    DefCon so far has been great, I have loved it, I love meeting people especially in my field and getting to know them, people like RenderMan, Acidica (musician, not hacker), I met CotMan (runs the DefCon forums), I saw Raven Alder, did not get a chance to introduce myself, wish I did since I am a very big supporter of her work with regards to Fuzzing network protocols and trying to find more bugs in Cisco and other gear. I met mouse (she is called mouse since she is tiny and can fit herself through almost anything), mee and a ton of other people, like LosT who I had known before the conference.
     
    NetRyder likes this.
  13. NetRyder

    NetRyder Tech Junkie Folding Team

    Messages:
    13,256
    Location:
    New York City
    Great updates, X. Really makes me wish I could have made it this year. :)
     
  14. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    I would have live-blogged from some of the talks, however when I went to do that the goons warned me that to do that I would need to get a press badge. So next year I will see if I can apply for one of those, and get a secure link up and running to then do live-blogging. Which should be really good as well.

    No-one from my school ended up on the wall of sheep, which is an improvement over last year, when a big network security teacher at the school got owned really badly :p

    I have a Mystery Box I now own, so I will take pictures of everything that was included. How it was put together and other such cool things. I will also take pictures of the badges so you guys can see how cool they are.
     
  15. Dublex

    Dublex Quazatron R6 droid

    Messages:
    624
    Location:
    Hertfordshire, UK
    Defcon? isn't that the game where you have to nuke each other ala war games style?
     
  16. NetRyder

    NetRyder Tech Junkie Folding Team

    Messages:
    13,256
    Location:
    New York City
    Oh man...that must have been embarrassing. :D
     
  17. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    It was very embarrassing for the teacher, as well as the school.
     
  18. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    I just got back home, still no shirt :(. Shot an e-mail off to find out where it is!
     
  19. X-Istence

    X-Istence * Political User

    Messages:
    6,498
    Location:
    USA
    So here is a bit of the financial break down:

    Food: $68
    Gas: $80
    Con: $100
    Shirt: $20

    I am officially broke :D.
     
    tdinc likes this.
  20. Sazar

    Sazar F@H - Is it in you? Staff Member Political User Folding Team

    Messages:
    14,905
    Location:
    Between Austin and Tampa
    :eek:

    $268 == broke?

    /me slaps X

    Time for me to start pimping you out.