DEF CON Hacking Conference

DEF CON 22 Materials Archive RSS is Live

Greetings, DEF CON community. Today, we bring you another update to our growing online archive for DEF CON 22 - all the links to the presentation materials, wrapped in a pretty little RSS bow for your convenience. All the presentation slides, links to all the tools and extras, all by grabbing the link below. Perfect for every occasion, and excellent as a holiday gift for the hard-to-buy-for geeks in your life. Because we love you. Watch this space for more DC22 video soon.

DEF CON 22 Materials RSS

DEF CON 22 Badge News

Sure, you love your DC22 badge. You love its sleek design and its powerful S guts. You swoon for its enigmatic symbols and breathtaking adaptability. But deep down, you worry that you could love it a little more if there was badge code available in C.

Worry no more. Instead, rejoice! Head over to the Parallax Forums and get to hacking that badge, C-style. If you do something awesome, let us know.

Hacker Jeopardy Night Two at DEF CON 22!

Because we love you, a midweek treat: enjoy the thrilling conclusion to DEF CON 22's Hacker Jeopardy Competition. For those of you playing along at home, good luck. For those of you attempting to listen in a public space, be warned there is foul language shouted at weather-altering volume. Headphones suggested.

Enjoy, share, and begin assembling your team of heroes for DC23!

Hacker Jeopardy Night One at DEF CON 22!

For your enjoyment, we offer you Night One of our long-running hacker trivia gameshow 'Hacker Jeopardy'. Match wits with our champions by playing along at home (beers optional). If you play along at work, remember the headphones. Salty language and lots of shouting.

As always, enjoy and share. The exciting conclusion later this week.

More Torrents for You!

Another couple of torrents for your edification and delectation.

First, the X-Hour Film Contest:

This was a first year contest that asked entrants to script, shoot, edit and submit a short film in 48 hours, in the middle of DEF CON. Seven teams entered, four teams submitted a final film and the winner was announced by celeb guest judge Brian Knappenberger (director, 'We are Legion' and 'The Internet's Own Boy'). They're also available to watch on the DEF CON YouTube channel.

https://www.defcon.org/html/torrent/DEF CON 22 x-hour film contest.torrent

Second, Volume 1 of the Official DEF CON 22 Photo Feed:

This is the first batch of pictures we've gotten in from our official Photo Corps. Stay tuned for Volume 2.

https://www.defcon.org/html/torrent/DEF CON 22 pictures v1.torrent

The DC22 torrent flood rolls on!

First up for your next leech 'n seed, we have the video for all the Wireless Village talks. That's three days worth of talks about subjects like Software Defined Radio, Bluetooth and yes, the Pineapple. Get on it, and you could have a significantly higher Wi-Q by Monday.

Wifi Village Talks at DEF CON 22 - Torrent

Capture the Flag Archive Updated!

We’ve updated the CTF page on the DEF CON website. In addition to being the new permanent home for the torrent link to CTF packet capture Valhalla (170 gigs of that uncut raw), it’s also home to a small but hopefully growing number of walkthroughs and write-ups. As we get them in, we’ll put them on.

That’s what we are doing for you, for loving the CTF tournament. What you can do for us is seed, seed, seed and spread the word.

Torrential Downpour!

Your half-full drives are vulnerable. The webs are just looming there, waiting to pump your memory full of bad music, dumb videos and pictures of other people’s unremarkable pets. Protect yourself. Fill up that dangerous unused space with DC-related goodness.

So far, we’ve got six new and updated torrents up:

DEF CON 22 Speaker Materials:
Updated Speaker Materials: Torrent

DEF CON 22 Music:
Music CD: Torrent

DEF CON 22 Badge:
Collection of files related to hacking the DEF CON 22 Badge: Torrent

Collection of Hacker Documentaries hosted on defcon.org (Updated): Torrent

Collection DEF CON Hacking Conference Con CD/DVDs (Updated): Torrent

Collection DEF CON Hacking Conference Programs (Updated): Torrent

We’re going to be adding to that list in the coming days. Together, we will fight back the secret scourge of disk encruftment.

DEF CON 22 Closing Ceremonies!

For today’s #defconflashbackfriday we’re going all the way back to August of 2014 and serving up the DEF CON 22 closing ceremonies. So if you were at the show but didn’t make it to the end credits,or you haven’t been to a DEF CON and want to get an idea of the sheer scope of the event, this flashback is for you.

As always, enjoy it and pass it on.

Complete Packet Captures from DEF CON 22 CTF!

Do we ever have a treat for you analytically inclined individuals. The complete packet captures from the DEF CON 22 Capture the Flag competition are now available for your leeching pleasure!

That’s right: 170 glorious gigabytes, packaged up in a handy torrent for your convenience! All of the traffic from the World Series of hacking contests, now yours to fold, spindle and mutilate to your heart’s content.

Enjoy, share, and if you can, seed this data. Packet captures taste better when they’re shared.

Read All About It!

Every year, we collect and share a sampling of the published reports from the press that covered DEF CON. It's interesting to see what gets the most interest, and it's gratifying to see that every year there are less stories about how scary hackers are and more stories about the incredible things hackers create and what we can learn from investigating the technology that surrounds us.

Transportation security, digital privacy, and the unexpected musings of eccentric AV software titans seemed to top the list in 2014. You can peruse the whole thing at your leisure on our press archive page.

For Early Release - Dark Mail

Ladar Levison and Stephen Watt are working on the future of secure email. For your Thursday, we offer you the peek into their work on DIME that they shared with us at DEF CON 22. It's a very interesting talk, with a lot of information and acronyms. There's a lot to learn about how email security is broken, and a lot of ideas about how it could be fixed in the future.

As always, pass it on.

DEF CON 22 Video from Source of Knowledge!

Maybe you weren’t able to attend the the hacker playground that was the 22nd DEF CON. Perhaps you did, and just didn't get to pick up all the bleeding edge research our speakers were throwing down.

Take heart, hacker brethren and sistren, our friends at the Source of Knowledge record it all, and you can purchase those presentations for frame by frame forensic dissection in HD video format! In fact, they also offer a streaming option for those that like to keep it online.

Check out all of the purchase options at defcononline.com!

DEF CON 22 Archive is Now Live!

Good news, everyone! The archive page for DEF CON 22 has opened for business. It feels like DC was only a couple of weeks ago, but you can already see the slides and extra materials from all the main-track talks.  We’ll eventually be adding audio and video as well, so keep an eye on this space. In the meantime, bum rush these Power Points to your heart’s content.

As always, pass it on.

For Early Release - The Internet of Fails

Early Release! More video from DEF CON 22! This time it's a presentation from Zach Lanier and Mark Stanislav about the many ways the Internet of Things isn't ready for prime time, security-wise, and some insight into the work being done to make it safe to connect your various 'Things' to the IoT. Enjoy, think carefully about how much you need your SlapChop all up in the cloud, and share. http://youtu.be/WHdU4LutBGU?list=PL9fPq3eQfaaBCdjbKFYjosh1s1EkaYdsQ

Contest Results Page — Now Live!

We had a lot of incredible contests at DEF CON 22. So many contests that they could have seceded and formed the People’s Republic of Contestia. So many, in fact, that the results are still coming in over a week later. To keep you informed, we’ve created a Contest Results Page on defcon.org. Check out who won, find links to the contest websites for further information.

If you don’t see your favorite contest, let us know @_defcon_ or contact the contest organizer and ask them to submit their results.

For Early Release - AM I Being Spied On?

The way I see it, Thursday is the Friday of the middle-week. So for your Thursday enjoyment, here's a talk fresh off the presses from DEF CON 22 - Dr. Phil Polstra speaking on low tech methods for detecting high-tech surveillance. Enjoy, take the info that works for you and pass it on. Share with everyone. http://youtu.be/Bc7WoDXhcjM?list=PL9fPq3eQfaaBCdjbKFYjosh1s1EkaYdsQ

ICS Village PCAPS from DEF CON 22!

More DEF CON 22 goodies for you - the packet captures from the ICS Village are available for you to download and dig through at your leisure. Also, if you have pics from the ICS Village, please share them with @ICS_Village on Twitter.

For Early Release: War Kitteh

One of the popular talks from DEF CON 22 - "Weaponizing Your Pets: The War Kitteh and the Denial of Service Dog" by Gene Bransfield. Enjoy, and share. http://youtu.be/DMNSvHswljM

Keep it going all year!

So you've been home from DEF CON for a week now - probably settled back into your normal routine. In the back of your mind, though, there's probably a little voice that wishes you could have DEF CON-style hacker camaraderie and learning opportunities all year long.

The good news is, you can. You can join a DC Group in your area. If there isn't a DC Group in your area, you can start one. The instructions for starting a group are at the link below, as well as a listing of the hundreds of groups that already exist around the world.

And when you get involved, be sure to keep in touch with us on social media. Let us know when you're meeting and we'll share it. Tape your presentations and we'll share those, too. Let's make this the fastest trip from one DEF CON to the next by keeping the ball rolling all year.

https://www.defcon.org/html/defcon-groups/dc-groups.html

DEF CON 22 CTF Results Are In!

Legitimate Business Syndicate has placed the final results of the DEF CON 22 CTF Finals on their website.There's scores, some shout-outs and even an explanation of their fancy radio badge and the cool contest visualization they debuted this year.

Congratulations to all won the right to participate, and extra respect to Plaid Parliament of Pwning, HITCON and Dragon Sector for taking 1st, 2nd and 3rd respectively.

https://legitbs.net/2014/

DEF CONversation with Major Malfunction - The RFIDler returns

What a difference a year makes. At DEF CON 21, Major Malfunction and Zac Franken created a Kickstarter for the RFIDler in a room at the Rio. At DEF CON 22, they returned with a mature and very impressive tool and even bigger plans for the future.

In this video, Major sits down with DT to talk about the RFIDler project.

DEF CONversation with LosT, DEF CON's Mindbender-in-chief

One of DEF CON's secret weapons is LosT, our resident Puzzle Master and Lord of the Badge. You can see his work all over DEF CON, from the insanely hackable badges to the secret codes and messages hidden all over the program and the venue.

Dark Tangent interviews him here about all of his various DEF CON activities, his process and even gets a few hints dropped for next year's puzzles.

Here come the updates...

This was an amazing year, and we've got a lot to share about it. Tons of stuff coming down the wire very shortly. In the meantime, enjoy this VERY thorough walkthrough of the DEF CON Badge Challenge from Team PotatoSec (Warning: Spoiler alert for those still trying to solve):

http://potatohatsecurity.tumblr.com/post/94565729529/defcon-22-badge-challenge-walkthrough

And just so you know, DEF CON 23 will be held August 6-9, 2015, at Paris/Bally's on the strip in Las Vegas!

CONversations at DEF CON 22

CONversation between DT and Ladar Levison, who spoke at this year's DEF CON on Dark Mail and the future of secure email.

News from the Front!

The hackening is in full swing at DEF CON 22. The Rio is abuzz with all manner of high-octane geekery. If you're here, you're probably too busy leveling up to keep an eye on the press surrounding the event, so we bring you this mini-roundup of press links to see what the rest of the world is saying about us.

http://www.wired.com/2014/08/defcon-2014-badges-revealed/

http://blogs.wsj.com/digits/2014/08/08/telsa-invites-hackers-for-a-spin/

http://www.scmagazine.com/defcon-traffic-control-systems-vulnerable-to-hacking/article/365416/

http://www.theregister.co.uk/2014/08/09/technology_and_market_forces_will_defeat_surveillance_society_claims_crypto_king/

Quick Update Roundup!

DEF CON is in full swing - so there’s a million things going on. Here’s a few recent news items to tide you over while we get the party set up.

If you’re one of those people that enjoys being entertained by entertaining entertainers, you’re going to want to check out our newly minted ‘Entertainment’ page. So much music - it’s like Coachella for people who people smart enough to test out of Coachella.

https://www.defcon.org/html/defcon-22/dc-22-entertainment.html

For lawyers, judges and law students, there’s a Lawyer Meetup this year. DEF CON General Counsel and Chief Legal Raconteur Jeff McNamara invites all with a connection to the practice of law for a relaxed low-key meet up followed by a spirited trip to the Voodoo Lounge.

Don’t forget to stop by Track 3 at 9pm on Friday and Saturday for Movie Night with Dark Tangent. Friday we’re showing ‘The Internet’s Own Boy’ - a moving bio of internet hero Aaron Swartz. Director Brian Knappenberger and Aaron’s brother Noah will be in attendance for Q&A.  Saturday, we’re showing ‘The Signal’. Directed by Will Eubank (who will also be in attendance), ‘The Signal’ is a mind-bending new scifi film that starts with some hackers on the road to DEF CON.

A few pro tips: stay hydrated, remember to eat and sleep. Keep the program handy - it’s like the Galactic Encyclopedia of DEF CON. Bring extra socks. Make new friends. Hack 100% of the things.

Zapping Rachael at DEF CON 22!

Reminder: The 'Zapping Rachel' contest has $17K in Cash Prizes up for grabs - so you can strike a blow against Robocallers and then try a new game: 'Escape from Vegas with Most of Your Winnings!'

The second one is probably harder.

http://www.ftc.gov/zapping-rachel

New Challenge in the Tamper-Evident Village - 'The Box'!

The challenge? Defuse a bomb. I feel like I don't have to say a lot more than that. Bring your own tools, have an action hero moment for yourself.

Reg begins Friday in the Tamper-Evident Village, and it's probably wise to expect a bit of a queue.

Full info in the Forum:
https://forum.defcon.org/showthread.php?t=13947

SomaFM at DEF CON 22!

One week, people. All that stands between all of us and DEF CON is a few measly days. To help get you amped up, we offer the SomaFM preview stream. Like last year, SomaFM will be manning the chill room and providing luscious, rejuvenating audio delights whenever you're looking for a recharge or a welcoming nook amidst the chaos.

Fire up the stream and close your eyes. It's like you're already at DEF CON.

http://somafm.com/defcon/ One week, people!

For the Kids: Rootz Asylum at DEF CON 22

Rootz Asylum (formerly DEF CON Kids) has a full schedule of goodness planned for your padawan hackers. Learning, competition, fellowship with other hackish youth. It's pretty great. Back-to-school will definitely be cooler for the kids who spent their summer vacation winning DEF CON. http://www.r00tz.org

Movie Night With Dark Tangent: ‘The Signal’

The sci-fi mind bender ‘The Signal’ centers around hackers on a road trip to DEF CON, so we can be forgiven for being a little biased in its favor. But from that promising starting place, the escalating weirdness and suspense take the movie everywhere but where you might expect. We don’t want to spoil anything - you’re gonna thank us if you go in with a clean slate. We’re proud to have ‘The Signal’ for Saturday’s ‘Movie Night with the Dark Tangent’, and we’re prouder still to have director Will Eubank on hand for Q&A after the screening. The last reel will definitely make you want to talk to Mister Eubank. Make it a point to be there!
Saturday the 9th at 21:00, Track 3

DEF CON MEDIA HARD DRIVE DUPING STATION!

For even faster leeching pleasure of the conference media server we have invested in hard drive duplication towers, and next year DT plans to launch the Data Duplication Village.

Too busy to pick and choose what you want from the server and want it all?? This year we have three sets of 4TB drives that contain the same data as the media server, just split up and color coded. If you want to duplicate a particular drive you need to show up at the INFO BOOTH with your drives at the start of each day. First come First server. It will take about 8 hours to dupe a 4TB drive so a set will start in the morning and a set in the evening, to finish overnight.

There should be six 1:11 duplication towers (If they show up in time), with two for each drive color. That means we can dupe 66 drives at a time. Once enough people show up to fill a station the duplication process starts.

As of this writing it is sorted like this:

BLUE Drive = Conference Archives 1 of 2, including DEF CON
GREEN Drive = Conference Archives 2 of 2
ORANGE Drive = Podcasts, Cryptome, 1.5T of the Hak5 archives, FOSS Operating Systems, all other content

There will be an updated list at the infobooth.

Want in on it? Go buy some 4TB SATA II 7200 RPM drives (internal drives, not usb). Buy three if you want to try for the complete collection this year. I'd do it in advance, I think the local Frys will sell out! Duping should start Thursday!

DEF CON 22 Music Announcement: THE ORB

You better have just done that spit-take. That's right. Electronica/Trip-Hop/IDM/dub music classics and pioneers: The Orb. They're here. They're kicking. And on the 3rd day of DEF CON (Saturday night/Sunday morning 00:00-01:00) their divine presence shall bless the glorious attendees who... attend their glorious and divine performance. Those who do not attend will be forsaken and cast into the dystopian landscape known as "the rest of Las Vegas." And so this event shall henceforth be written into the Dark Tangent's Book of DEF CON, Volume 22 - also referred to by some as "the conference program." So say we all.

• The Orb - Little Fluffy Clouds
• The Orb - Toxygene
• The Orb feat. Lee Scratch Perry - Fussball
• The Orb feat. Lee Scratch Perry - Soulman
• The Orb - A Huge Evergrowing Pulsating Brain That Rules From the Centre of the Ultraworld (Orbital Dance Mix)

Social links:


• The Orb Official Site
• The Orb's Facebook
• The Orb's Twitter

DEF CON 22 Music Announcement: DJ Spooky (That Subliminal Kid) a.k.a. Paul D. Miller

A major announcement right here. We're bringing you the legendary DJ Spooky (That Subliminal Kid), a.k.a. Paul D. Miller. His CV runs deeper than the Mariana trench and is more Renaissance than the Teenage Mutant Ninja Turtles combined. Perhaps originally and best known for his artisinal music crafting (collaborating on projects with Meat Beat Manifest, Slayer, Chuck D.) and turntablism , he's become a university music professor (EGS, Switzerland), author (too much stuff to list), and an executive director of Origin Magazine. He's had his works featured in major museums like the Warhol, The Whitney, the Museum of Contemporary Art (Chicago), blahblahblahblah the pseudo-anonymous writer of this announcement could go ad infinitum. The point is, he's attained legendary-levels of awesome, and is coming to DEF CON to drop some hip-hop (perhaps with orchestral accompaniament) on Thursday Night in Track 1 (22:00-23:00)!

• DJ Spooky live on Engadget TV (Oh right, he's recently been on an Antarctic expedition that was used for his latest album)
• DJ Spooky's Music Mixing/DJing iPad/iPhone app (... and is involved with app development)
• Spooky's upcoming book with MIT Press on apps (... ... ...)

Social links:


• DJ Spooky / Paul D. Miller Official Site
• DJ Spooky's Facebook
• DJ Spooky's YouTube

DEF CON 22 Music Announcement: Elite Force & MC Frontalot!

A favorite from DEF CON XX (he dropped the killer set after The Crystal Method), we're bringing the near-mythical adrenaline-inducing Elite Force back for another sonic pummeling. Many of you may also recognize one of his prior projects, Lunatic Calm, which had music featured on films like The Matrix, Mortal Kombat: Annhilation, Drive, and tooons of others. We're extraordinarily excited to have Elite Force back, and we'll all need to be sure to keep our collective cholesterol levels in check to ensure we can survive his performance. Catch him Saturday night in track 1 (23:00-00:00)!

Here. Take a gander at some choice recent Elite Force cuts:


• Elite Force - Gamechanger (WARNING: BASS MAY MELT FACES OFF)
• The Prodigy, Physical - Firestarter (Elite Force RVMPD) (WARNING: SEE PREVIOUS WARNING)

Social links:


• Elite Force Official Site
• Elite Force Soundcloud
• Elite Force Facebook
• Elite Force YouTube

Another throwback to DEF CON XX, we're bringing back one of the grandmasters of Nerdcore hip-hop, MC FRONTALOT. His prolific lyrical stylings have been proverbially known to knock socks off, so shoes (as always) are encouraged (we'll let sandals slide too). He's also the star of the acclaimed documentary Nerdcore Rising. Catch him Friday night in Track 1 (23:00-00:00), alongside other hard-hitters and partners in nerdcore-crime Dual Core and ytcracker!

Gorge yourself on his flow and become a better person for it:


• MC Frontalot - Nerd Life
• MC Frontalot - I'll Form the Head (feat. Dr. Awkward and ZeaLouS1)
• MC Frontalot - Zero Day (feat. Dual Core and ytcracker)

Social links:


• MC Frontalot Official Site
• MC Frontalot Facebook
• MC Frontalot YouTube

DEF CON Entertainment Presents: Anamanaguchi!

Today we announce eccentric retro electro video game chip-tune-inspired dance-rock that is purveyed by ANAMANAGUCHI. Not only is their music video game-inspired, their music actually HAS appeared on video games (like Rockband and Scott Pilgrim vs. The World). The real deal! Check 'em out at the Friday festivities in track 1. (set time: 00:00, Saturday AM)!

Also be sure to check out their totally rad and typically incredibly neon music videos:

• Anamanaguchi - Endless Fantasy (See pizza get launched into space!)
• Anamanaguchi - Meow (Neon black light explosion. More pizza.)

Social links:


• Anamanaguchi Official Site
• Anamanaguchi Soundcloud
• Anamanaguchi Facebook
• Anamanaguchi YouTube

DEFCON 22 Music Announcement: Zebbler Encanti Experience

Do you remember the giant projection-mapped DEF CON exploded face? Or maybe the dragon installation? Or how about the DEF CON sign installation in the chillout lounge last year? These are the epic works of Zebbler's design team, who have also developed installations for the likes of Shpongle, EOTO, and a number of other class acts. But Zebbler doesn't just excel at design. He also excels, along with his comrade Encanti at music. Together, they form an incredible audiovisual duo that goes by Zebbler Encanti Experience, and they will be purveying this experience to you at DEF CON 22! Take delight in their glorious bassy weirdness at DEF CON's official Saturday evening event in track 1 (set time: 01:00, Sunday) !

Most of their music is free/pay-what-you-can too! Check it out:

• Freakquency, their latest album has just dropped
• Altered Projections is a killer recent remix release (free/pay-what-you-can)
• Psychic Projections is their debut album (free/pay-what-you-can)

Calling All Accepted Speakers!

Attention all accepted DEF CON speakers! The deadline for getting your materials in for inclusion on the conference CD is Tuesday, July 15. Pencils down. Pass your paper to Nikita. Thank you.

Capture the Packet Registration Open!

Registration is now open for those willing to push their Cyber Traffic Analysis skills to the limit, you can compete in the latest Cyber Analytics and Network Forensics Challenge. Now in its fifth year ! Capture the Packet has brought more APT’s, Trojans, Malware, Web and Red team attacks, network issues and sneaky covert channel coms to one event ! Do you know when important data is leaking out of your network and who is doing it - Can you handle the Advanced Persistent Threat ? Can you spot that nasty bug your neighbors workstation contracted from visiting an infected website ? Can you spot a networking configuration issue with routing, spanning tree, BGP or OSPF ? Do you know how to count your IPV6 lucky stars ? Do you speak VOIP, MGCP or H323 ? We welcome everyone to try their hand at the most intense live network traffic analysis and forensic challenge, who knows you could be our next grand finals winner. You must bring your own laptop/computer to compete in this challenge, remember while this is not an attack game, it is a hostile network.

Details:

This year, the completion is handled in three Challenging phases:

Pre-Qualifying Rounds Start Thursday August 7th at 1:00pm and End Friday August 8th at 1:00pm
Those that have the highest scores “overall” from all rounds combined, essentially 40 teams will move on to the qualifying rounds

The Qualifying rounds are held starting Friday August 8th at 2:00pm and end on Saturday August 9th at 1:00pm
The top 10 teams from the Qualifying rounds with the highest over-all move on to the finals held on Saturday at 6:00pm

The Final round will consist of the top 10 scoring teams to survive the qualifying rounds,
These 12 teams will compete in a two hour long finals competition to determine the winner

Register your team of two – at https://www.capturethepacket.com/ctp_dc_signup.html, or sign-up onsite.

Capture The Packet will be hosted in the “Packet Hacking Village” at the DEFCON Entrance Area !

DEF CON 22 Schedule is LIVE!

Just a little over a month until we rendezvous at the Rio for DEF CON 22! Are you ready? We hear it's eleventy-one degrees there today, so bring weapons-grade sunscreen if you're one of those 'goes outside' kind of hackers.

You'll also want to know who's talking about what and when so you can plan your DEF CON experience. To that end, we proudly present the DEF CON 22 Speaker Schedule! Get yourself familiar, people. The key to maximum DEF CON is maximum planning. Or no planning. The key to maximum DEF CON has been in your heart all along. SCHEDULE IS LIVE!

https://www.defcon.org/html/defcon-22/dc-22-schedule.html

DEF CON’s First Google Hangout!

We’re trying something new. Friday, June 27th at 11am Pacific Time, we’re hosting our first Google Hangout on Air. The guest is Jennifer Granick, DEF CON CFP Review Board member, preeminent hacker defense lawyer and Director of Civil Liberties for the Center for Internet and Society at Stanford Law School. The subject is her recent article for Wired regarding the verdict in United States v. Davis and what it could mean for the future of mass surveillance.

If you’ve got good questions about the intersection of law and ‘metadata’ collection, either leave them here in the comments or ask them live at the Hangout tomorrow.

If you’re not following us on Google Plus, the link is here:

https://plus.google.com/+DefconOrgplus/

Join us, and as always, spread the word.

DEF CON 22 CFP Review Board Revealed!

‘This talk is amazing!’ You say this to yourself (inside voices) while watching someone awesome say and demonstrate awesome things. ‘How does DEF CON consistently pick so many great talks? They must have a team of borderline superheroes slogging through hundreds and hundreds of proposals for months! Who could those paragons of determination and insight BE, exactly? How could I learn their handles and perhaps show my appreciation by buying them many beers?’

Here’s an answer key to these questions you’re asking yourself:

1.)This talk probably is amazing. Not really a question.
2.)Lots of caffeine and eyestrain. Also dedication and love.
3.)They do have a team of borderline superheroes, and there is no DEF CON without them.
4.)They are known as the DEF CON CFP Review Board.

You can check out their page here. And maybe show them some love.

Get VIP Tickets for the 10th Anniversary of theSummit!

The 10th Annual EFF fundraiser, hosted by Vegas 2.0, has VIP tickets to event on sale now!  Get early access to an intimate meet and greet with the Speakers of DEF CON!  Also, get special schwag and extra raffle tickets exclusively for VIP guests!

https://www.crowdtilt.com/campaigns/thesummit-10-year-anniversary-vip-tickets

Last round of DEF CON 22 Talks are Live!

This is it. The speaker list for DEF CON 22 is now locked and complete. This means two things: DEF CON is really almost here, and we are now hard at work creating the Tracks and the Schedule (watch this space, buckaroos). We're very proud of the lineup we've assembled, and we think you will find a lot of good stuff to choose from. Whether you're coming to Vegas or not, we'd love it if you'd take some time to check out the speaker list and give us some feedback about what talks have you the most excited.

55 days, people. Get psyched!

New for DC101

---

Panel - Diversity in Information Security
Jennifer Imhoff-Dousharm, Sandy “Mouse” Clark, Kristin Paget, Jolly, Vyrus, and Scott Martin

New Presentations

---

The Cavalry Year[0] & a Path Forward for Public Safety
Joshua Corman and Nicholas J Percoco

Mass Scanning the Internet: Tips, Tricks, Results
Robert Graham, Paul McMillan, and Dan Tentler

Hack All The Things: 20 Devices in 45 Minutes
CJ Heres, Amir Etemadieh, Khoa Hoang, and Mike Baker

Raspberry MoCA - A recipe for compromise
Andrew Hunt

Home Insecurity: No alarms, False alarms, and SIGINT
Logan Lamb

Dark Mail
Ladar Levison and Stephen Watt

Attacking the Internet of Things using Time
Paul McMillan

Open Source Fairy Dust
John Menerick

Generating ROP payloads from numbers
Alexandre Moneger

Panel: Ask the EFF: The Year in Digital Civil Liberties
Kurt Opsahl, Nate Cardozo, Mark Jaycox, Yan Zhu, and Eva Galperin

Panel - Surveillance on the Silver Screen- Fact or Fiction?
Nicole Ozer, Kevin Bankston, and Timothy Edgar

Measuring the IQ of your Threat Intelligence feeds
Alex Pinto and Kyle Maxwell

Secure Because Math: A Deep Dive On Machine Learning-Based Monitoring
Alex Pinto

Detecting and Defending Against a Surveillance State
Robert Rowley

Advanced Red Teaming: All Your Badges Are Belong To Us
Eric Smith and Josh Perrymon

The Internet of Fails: Where IoT Has Gone Wrong and How We're Making It Right
Mark Stanislav and Zach Lanier

Domain Name Problems and Solutions
Dr. Paul Vixie

DEF CON Secret Media Server Project Revealed!

RED ALERT TOP SECRET WIKI LEAK SN0DEN LEAK GAMMA GAMMA ZF0 P0SSE DOC DROPPER

The previously sooper seekret media.defcon.org server project has leaked out on the twitter and the face book. No use hiding behind our press secretary any longer, It's better to just admit it and let everyone make up their own minds.

WHAT LEAKED? The Dark Tangent is collecting as much open source security conference footage, training materials, podcasts, white papers, videos, and anything else haxors may be interested in. He plans to make it all available at DEF CON 22 in August and let anyone download it, or even direct HD copy it.

WHO LEAKED THIS SECRET PROJECT? The Dark Tangent. Oops.

WHAT NOW? A huge burden has been lifted off of DT and he no longer has to live two lives. He can now focus on getting as much content as possible from the community.

That's where you come in.

HOW CAN I HELP?
Send links to content you think everyone should have access to that is related to the hacking and infosec scene somehow. It can be an rss podcast, a .torrent of academic journals, and ftp link to text files, a web site to mirror full of source code, an svn operating system repository, a YouTube channel, whatever!

Send your links in an email to dtangent@defcon.org, or tweet them to @thedarktangent and he will start the leeching.

HOW DO I GET MY HANDS ON THE DATA?
At DEF CON 22 you will be able to get to the gigs in a couple different ways. The con Wi-Fi network (at 802.11g speeds), through wired switches on 1 gig links in different areas, or by bringing your own 4TB SATAII or III hard drive(s).

We will have HD duplicators running all con copying drives for people who just want to drop off a drive and pick it up later.

Please help out with links, and we'll see you at con!

Registration Now Open for Crash and Compile

Do you think you can code? Do think you can code while drinking? We're not talking about coding in the warm safe confines of your cubicle. No, this is programming for sport. It's live competition, against the clock, and the other teams. And we don't make it easy. Have the smarts to solve our programming challenges? Good. We want you to show us that programming is not only about laying down some sweet sweet code, it's about the style in which you do so. Sound fun? We think it is.

Crash And Compile is a ACM-style programming contest crossed with a drinking game, where teams of two people try to solve as many programming problems as they can. As teams compile and run their programs, each time their code fails to compile, produces the incorrect output, or seg-faults, the team must drink. Meanwhile, our lovely Team Distraction will be doing what they can to make the job of programming while intoxicated all the more difficult and/or enjoyable.

Registration is now open. Sign up over at https://dc22.crashandcompile.org

Big 'Ol Batch of Talks!

It’s getting pretty real, people. The speaker selection process is almost complete, the party and event planning is in full swing - DEF CON 22 is just a little over two months away!

To celebrate, another round of speaker announcements. Twenty-five more abstracts to help you create your DEF CON battle plan. We anticipate one more round of announcements before the roster is locked, but by now you should have a pretty good idea how much good stuff we have on tap.

DEF CON 101 Presentations

---

Detecting Bluetooth Surveillance Systems
Grant Bugher

Dropping Docs on Darknets: How People Got Caught
Adrian Crenshaw

Is This Your Pipe? Hijacking the Build Pipeline.
Kyle Kelley and Greg Anderson

Home Automation and Defensive Security Measures
Chris Littlebury

Instrumenting Point-of-Sale Malware: A Case Study in Communicating Malware Analysis More Effectively
Wesley McGrew

Android Hacker Protection Level 0
Tim Strazzere and Jon Sawyer

Presentations

---

I am a legend: Hacking Hearthstone with machine learning
Elie Bursztein and Celine Bursztein

Hacking US (and UK, Australia, France, etc.) traffic control systems
Cesar Cerrudo

NSA Playset: DIY WAGONBED Hardware Implant over I2C
Josh Datko and Teddy Reed

Check Your Fingerprints: Cloning the Strong Set
Free and Lachesis

Shellcodes for ARM: Your Pills Don't Work on Me, x86
Svetlana Gaivoronski and Ivan Petrov

Blowing up the Celly - Building Your Own SMS/MMS Fuzzer
Brian Gorenc and Matt Molinyawe

Deconstructing the Circuit Board Sandwich: Effective Techniques for PCB Reverse Engineering
Joe Grand (Kingpin)

Panel: Ephemeral Communications: Why and How?
Ryan Lackey, Jon Callas, and Elissa Shevinsky

NinjaTV - Increasing Your Smart TV’s IQ Without Bricking It
Felix Leder

Catching Malware En Masse: DNS and IP Style
Dhia Mahjoub, Thibault Reuille, and Andree Toonk

Old Skewl Hacking: Porn Free!
Major Malfunction

A Survey of Remote Automotive Attack Surfaces
Charlie Miller and Chris Valasek

Learn how to control every room at a luxury hotel remotely: the dangers of insecure home automation
Jesus Molina

Acquire current user hashes without admin privileges
Anton Sapozhnikov

Impostor — Polluting Tor Metadata
Charlie Vedaa and Mike Larsen

Manna from Heaven: Improving the state of wireless rogue AP attacks
Dominic White and Ian de Villiers

The Open Crypto Audit Project
Kenneth White and Matthew Green

Practical Aerial Hacking & Surveillance
Glenn Wilkinson

Don't Fuck It Up!
Zoz

DARPA announces its 2-year Cyber Grand Challenge, Final Tournament at DEF CON 24

The Cyber Grand Challenge asks some simple questions - can you create a fully-automated system to detect, thwart and mitigate network attacks? Can you build one so effective that it can win an all-computer tournament without human intervention? Would you like 2 million dollars?

If you have a great proposal but lack the funds for a 2-year competition, you can pitch DARPA for funding - they’re already backing seven of the registered teams. Teams that survive the quals in June 2015 are eligible to compete in the final tournament at DEF CON in 2016. Grand prize is $2 million dollars.

Competitors will need a dizzying array of skills and an encyclopedic understanding of every form of network kung-fu. They will also need a pretty serious amount of free time, but the winner gets a nice check and an answer to the question of what to put first on a resumé.

We believe that such a team must exist in the DEF CON family. If you think you’re up to the challenge, more information awaits you at the DARPA CGC page.

http://www.darpa.mil/cybergrandchallenge/

Vote for your Favorite short story!

The DEF CON 22 Short Story Contest is now closed. Time for you to head over to the forums and vote for the People's Choice Awards. You're the people. Get in there. Be somebody.

https://forum.defcon.org/forumdisplay.php?f=796

Enormous Speaker Update! First DC101 Talks Revealed!

Posted 5.23.14

Hot off the presses - more speaker selections. Several of them are for the DEF CON 101 Track, newly expanded for DC 22 and running all the way through the con. The rest of the presentations listed here fall into the other tracks, and if we do say so ourselves, this is shaping up to be quite the year, hackwise. You’re definitely going to want to make sure you have a seat for some of these. The titles alone should tell you we’re coming correct in 2014.

New Presentations

---

The Simple Route to Backbone Routers
Luca "kaeso" Bruno and Mariano "emdel" Graziano

Summary of Attacks Against BIOS and Secure Boot
Yuriy Bulygin, Oleksandr Bazhaniuk, Andrew Furtak, and John Loucaides

Saving Cyberspace by Reinventing File Sharing
Eijah

Secure Random By Default
Dan Kaminsky

Masquerade: How a Helpful Man-in-the-Middle Can Help You Evade Monitoring.
Ryan Lackey and Marc Rogers

Just What The Doctor Ordered?
Scott Erven and Shawn Merdinger

NSA Playset : GSM Sniffing
Pierce and Loki

Don't DDoS Me Bro: Practical DDoS Defense
Blake Self and Shawn "cisc0ninja" Burrell

"Around the world in 80 cons” - A Perspective
Jayson E. Street

DEF CON 101 Presentations!

Now running Thurdsay through Sunday!

The DEF CON 101 track is a series of talks aimed at attendees who are not yet internationally-recognized infosec experts. This is not the n00b track. But if you're interested and engaged in the hacker community, these sessions are right up your alley. From Sysadmins & NOC Jockeys to College Students & IT Professionals, everyone exploring the world of Information Security can expect to feel welcome, not intimidated. We have grouped the sessions by interest area, so you're not spending all day bouncing between talks.

DEF CON 101 - The Talk
HighWiz, Lockheed, Pyr0, Roamer, and LosT

Protecting SCADA From the Ground Up
AlxRogan

Hacking 911: Adventures in Disruption, Destruction, and Death
Christian “quaddi” Dameff, Jeff “r3plicant” Tully, and Peter Hefley

How to Disclose an Exploit Without Getting in Trouble
Jim Denaro and Tod Beardsley

NSA Playset: PCIe
Joe FitzPatrick, Miles Crabill, and Dean Pierce

Oh Bother, Cruising The Internet With Your Honeys, Creating Honeynets For Tracking Criminal Organizations
Terrence Gareau and Mike Thompson

The Monkey in the Middle: A pentesters guide to playing in traffic.
Anch

Investigating PowerShell Attacks
Ryan Kazanciyan and Matt Hastings

Screw Becoming A Pentester - When I Grow Up I Want To Be A Bug Bounty Hunter!
Jake Kouns and Carsten Eiram

Meddle: Framework for Piggy-back Fuzzing and Tool Development
Geoff McDonald

One Man Shop: Building an Effective Security Program All By Yourself
Medic

Rf Penetration Testing, Your Air Stinks
RMellendick and DaKahuna

Touring the Darkside of the Internet. An introduction to Tor, Darknets, and Bitcoin.
Metacortex and Grifter

USB for All!
Jesse Michael and Mickey Shkatov

ShareEnum: We Wrapped Samba So You Don’t Have To
Lucas Morris and Michael McAtee

An Introduction to Back Dooring Operating Systems for Fun and Trolling
Nemus

Standing Up an Effective Penetration Testing Team
Wiseacre

Data Protection 101 - Successes, Fails, and Fixes
PTzero

Anatomy of a Pentest; Poppin' Boxes like a Pro
PushPin

Practical Foxhunting 101
SimonJ

Blinding The Surveillance State
Christopher Soghoian

Bug Bounty Programs Evolution
Nir Valtman

Client-Side HTTP Cookie Security: Attack and Defense
David Wyde

Submissions Now Open for 'From Dusk Til Con'

Posted 5.22.14

You’ve had the thought: “DEF CON is super fun, but how much cooler would this be if there was a little corner devoted to my weird niche interest?” ‘From Dusk Til Con’ is your chance to realize that overly specific dream.  Got a mini-village idea? Want to run an Inception style Con-within-the Con? Want to play strip Settlers of Cataan? Shoot us your ideas for themed mini-events on the Crawl and we’ll make the best ones happen.

Find out more and how to submit at: https://www.defcon.org/html/defcon-22/dc-22-fdtc.html

DEF CON 22 CTF Quals Roundup!

Posted 5.21.14

The DEF CON 22 CTF Qualifiers are in the books. Challenges were faced, and bested. Points were accumulated. Bedtimes were missed. It’s all over but the paperwork.

So here’s a roundup of writeup links. IF you participated, read and see how other people approached the same problems. If you didn’t, read and get an idea of how the CTF process works and consider signing up next time. You lose 100% of the CTFs you don’t enter.

If you enter, you could still lose 100%. That’s just math. But you’ll have a story. An awesome, glorious, highly technical story to share with the tiny slice of humanity who can understand this sort of thing.

There’s also a bonus link to a GitHub collection that looks like it might end up pretty comprehensive.

https://hackucf.org/blog/category/writeups/defcon-quals-2014-writeups/
http://blog.spiderlabs.com/2014/05/defcon-22-ctf-qualifiers-writeup.html
http://balidani.blogspot.com/2014/05/def-con-quals-2014-100lines-writeup.html
http://ahack.ru/write-ups/defcon-quals-14.htm
http://zepvn.com/blog/defcon-ctf-quals-2014-100lines.php
http://zepvn.com/blog/defcon-ctf-quals-2014-byhd.php
http://sigint.ru/writeups/2014/05/19/defcon-2014-quals---zombies/
http://sigint.ru/writeups/2014/05/18/defcon-2014-quals--polyglot/
http://endgame.com/blog/defcon-capture-the-flag-qualification-challenge-1.html
https://github.com/ctfs/write-ups/tree/master/def-con-ctf-qualifier-2014

On your mark... Get set...

Posted 5.16.14

T minus 3 hours - DEF CON 22 CTF Qualifications are upon us! To read up on the setup for this year, you can check out the Legitimate Business Syndicate blog:

https://blog.legitbs.net/

The road to glory begins here. We at DEF CON applaud all of the brave warriors who've accepted the CTF challenge. Godspeed. May the odds be ever in your favor.

Big New Batch of Talks Incoming!

Don’t look now, but it’s already the middle of May. DEF CON 22 is just over the horizon, a little less than three months away. Preparations are in high gear.

Today, we bring you  more talks - 15 more, to be exact. You can check out the abstracts and speaker bios on the DC22 speaker page. We think you’ll like the choices - there’s everything from shortwave radio steganography to mischief with car firmware.

There’s more coming, of course, so keep checking back with our speaker page as we flesh out the roster.

https://www.defcon.org/../defcon-22/dc-22-speakers.html

The new selections are:

The Secret Life of Krbtgt
Christopher Campbell

The $env:PATH less Traveled is Full of Easy Privilege Escalation Vulns
Christopher Campbell

Why Don’t You Just Tell Me Where The ROP Isn’t Suppose To Go
David Dorsey

Steganography in Commonly Used HF Radio Protocols
Paul Drapeau and Brent Dukes

Weird-Machine Motivated Practical Page Table Shellcode & Finding Out What's Running on Your System
Shane Macaulay

The NSA Playset: RF Retroreflectors
Michael Ossmann

Attacking to Cisco Hosted VoIP Networks
Fatih Ozavci

Abusing Software Defined Networks
Gregory Pickett

Am I Being Spied On? Low-tech Ways Of Detecting High-tech Surveillance
Dr. Phil Polstra

You're Leaking Trade Secrets
Michael Schrenk

Zends Dead baby
Dr Steven Seeley

I Hunt TR-069 Admins: Pwning ISPs Like a Boss
Shahar Tal

Optical Surgery; Implanting a DropCam
Patrick Wardle and Colby Moore

PoS Attacking the Traveling Salesman
Alex Zacharis

Playing with Car Firmware or How to Brick your Car
Paul 0x222

More Accepted Talks!

We’re hard at working choosing the best of the CFP submissions, and today we have five more confirmations to announce. Watch this space for more speaker announcements in the coming weeks. It’s shaping up to be a pretty fascinating roster.

Getting Windows to Play with Itself: A Hacker's Guide to Windows API Abuse
Brady Bloxham

Girl… Fault-Interrupted.
Maggie Jauregui

Elevator Hacking - From the Pit to the Penthouse
Deviant Ollam, Howard Payne

Hacking the FBI: How & Why to Liberate Government Records
Ryan Noah Shapiro

The Only Way to Tell the Truth is in Fiction: The Dynamics of Life in the National Security State
Richard Thieme

You can watch the conference taking shape on the DEF CON Speaker Page:
https://defcon.org/html/defcon-22/dc-22-speakers.html

Art Contest Winners!

Congratulations to the winners of the DC 22 Art Contest:

1st Place: Alice in Hackerland by Tess Schrodinger
2nd Place: Helicopter Parents Weren’t This Bad by Amit Yehuda
3rd Place: Bleed by Joey Strine

People’s Choice: Alice in Hackerland by Tess Schrodinger

And of course, thanks to everyone who submitted work. There is no end to the hidden talents of the DEF CON massive. You can check out the winning artwork on the DC Art Contest page:
https://defcon.org/html/defcon-22/dc-22-artwork-contest.html

And a gallery of all the entries at:
https://www.facebook.com/media/set/?set=a....

Also, don’t let the contest ending stop you - if you have the urge to create some on-theme artworks between now and the show, we’d be happy to share them with the world. You won’t win anything beyond our love and gratitude, but that’s not exactly nothing.

Vote for People's Choice in the DEF CON 22 Artwork Contest!

The DEF CON 22 art contest has closed, and it’s time to start picking the winners. In the ‘People’s Choice’ category, that means it’s time for YOU to cast a vote. Check out the Artwork Contest Entries Gallery on Facebook and cast a ‘Like’ for your favorite.

The winner gets free admission to DC22, $25 credit at the Swag Booth and inky immortality in the DC22 printed program, so it’s kind of a big deal. The theme was ‘Behind the Curtain’, and the winning work should in some way capture the sense of the hidden world behind the world that is seen. Cast your votes wisely.

And as always, we thank everyone who participated in this year’s contest. If you didn’t submit and you’re feeling a little jelly, we offer the wise words of Socrates, who said to his students, “He is not wise who playa-hates; the truly wise participate. This mimosa is terrible.”

DEF CON 22 Vendor FAQ and App is Now Live!

Posted 4.18.14

Attention Entreprenerds!

DEF CON 22’s Vendor Area is a great opportunity to get your geek-centric product in front of a highly focused, upwardly mobile and possibly drunk audience of over 10,000 vacationing tech enthusiasts. Share your business with people passionate about technology, make sales, even make friends.

To sign up, head over to the vendor site, read the FAQ and get the forms filled out. Don’t delay - August is closer than you think.

http://defconvendors.com/

Call for Papers — Only Two Weeks Left!

Posted 4.16.14

Friendly reminder - the DEF CON 22 CFP closes in two short weeks. Your submission has to be in by May 1. It’s go time, people.

To see what we’ve accepted so far, you can check the speaker page:
https://www.defcon.org/html/defcon-22/dc-22-speakers.html

The rules and regulations are here:
https://www.defcon.org/html/defcon-22/dc-22-cfp.html

If you’ve got a great idea, put it in the ring. You can’t win if you don’t play.

Speaker Page Posted, Check Out the First Round Accepted!

Posted 4.10.14

It's official. CON season is really upon us.

DEF CON HQ is proud to announce the first round of accepted speakers! Take a look, let us know what you think and what you're looking forward to most. We'd also love it if you kept your eye on the speaker page, because we'll be posting the rest of the accepted speakers as they are selected. On the speaker page you can watch DEF CON 22 taking shape, and you can weigh in here or @_defcon_.

We think you're gonna like the choices so far. Get excited - the countdown has begun!

SECTF Registration is Live!

Posted 4.8.14

The Social Engineering Capture the Flag contest is back for DEF CON 22 - this time with a Tag Team Twist! Spread the word and get signed up if you're ready to test your SE skills in Vegas!

DEF CON 22 CTF: Registration is Open!

Posted 4.1.14

Good news, everyone!

Registration for the DEF CON 22 CTF season is open! To accomodate international competitors, the qualifying weekend has been moved to May 17-19.

It is time to assemble your champions. Sharpen them to a fine point. The doors to the arena open May 17. Fortune looks kindly upon boldness and skill. Failing those, she also seems pretty okay with treachery and subversion.

The information you require can be found at https://blog.legitbs.net/ . You can register at https://2014.legitbs.net/.

Step forward and meet your destiny.