BEGIN:VCALENDAR VERSION:1.0 PRODID:-//Mozilla.org/NONSGML Mozilla Calendar V1.0//EN METHOD:PUBLISH BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-814f795ebcf6 SUMMARY:Coffee Wars in Athena CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#coffeewars CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T140000Z DTEND:20050729T150000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-9fdd68ac5b73 SUMMARY:Chillout in Parthenon 2 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#chillout1 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T140000Z DTEND:20050729T150000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-e271c9e747b9 SUMMARY:Recapturing the Revolutionary Heart of Hacking [Richard Thieme] DESCRIPTION: \" A revolutionary program for preparing the future using past models of creativity and ingenuity. Deeply personal and implicitly political, this talk illuminates the potentials and possibilities of hacking in a transparent society, a surveillance society, a society that neutralizes dissent. It defines identity hacking as a transformational process requiring all of our resources and skills. Identity hacking is alive in an underground now that is gathering itself for a defiant refusal to be captured and managed. That revolutionary heart is recaptured in the willingness to understand the mechanics of reinvention and to commit ourselves to a higher code or path than the broken options offered by a consumer society in a globalized world tilted far to the right. Hackers in the future will have to be wily and guiltless, transparent and duplicitous, treacherous and faithful. They must know how to live in this world but never surrender, they must learn how to splice multiple possibilities into a single destiny in the moment of execution. That moment, fusing self-transcendence and action, is the revolutionary heart of hacking. It is also a means of practice for a trans-planetary quest. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#thieme CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T140000Z DTEND:20050729T145000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-b5e4817a4ab0 SUMMARY:The Unveiling of My Next Big Project [Philip R. Zimmermann] LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Zimmermann CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T140000Z DTEND:20050729T145000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-f3545ecaa60f SUMMARY:Check-in for Wardrive in Athena CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#checkinforwardrive CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T140000Z DTEND:20050729T150000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-fcab1b82c388 SUMMARY:Hacking Nmap [Fyodor] DESCRIPTION: \" While many security practitioners use Nmap , few understand its full power. Nmap deserves part of the blame for being too helpful. A simple command such as \"nmap scanme.insecure.org\" leaves Nmap to choose the scan type, timing details, target ports, output format, source ports and addresses, and more. You can even specify -iR (random input) and let Nmap choose the targets! Hiding all of these details makes Nmap easy to use, but also easy to grow complacent with. Many people never explore the literally hundreds of available options and scan techniques for more powerful scanning. In this presentation, Nmap author Fyodor details advanced Nmap usage--from clever hacks for teaching Nmap new tricks, to new and undocumented features for bypassing firewalls, optimizing scan performance, defeating intrusion detection systems, and more. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Fyodor CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T140000Z DTEND:20050729T145000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-96d6a30f9a9f SUMMARY:Booksigning: Richard Thieme CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon001 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T150000Z DTEND:20050729T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-ea662565f31a SUMMARY:Mudge LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon000 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T150000Z DTEND:20050729T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cd7e40-fcce-11d9-9b23-db7ce37d0c6a SUMMARY: On the Current State of Remote Active OS Fingerprinting [Ofir Arkin] DESCRIPTION: \" Active operating system fingerprinting is a technology, which uses stimulus (sends packets) in order to provoke a reaction from network elements. The implementations of active scanning will monitor the network for a response to be, or not, received from probed targeted network elements, and according to the type of response, and the conclusions following (part of an implementation's intelligence), knowledge will be gathered about the underlying operating system. This talk examines the current state of remote active OS fingerprinting technology and tools: the different methods used today, the issues associated with them, the limitations, where the current technology is, what can and cannot be accomplished, and what should be done in the future. The talk also highlights the accuracy aspects of several active operating system fingerprinting tools, analyzes them and compare between them. During the talk a new version of Xprobe2, a remote active OS fingerprinting tool will be released. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Arkin CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T150000Z DTEND:20050729T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8272b8c050d3 SUMMARY: End-to-End Voice Encryption over GSM: A Different Approach [Wesley Tanner DESCRIPTION: \" Where is end-to-end voice privacy over cellular? What efforts are underway to bring this necessity to the consumer? This discussion will distill for you the options available today, and focus on current research directions in technologies for the near future. Cellular encryption products today make use of either circuit switched data (CSD), or high latency packet switched networks. We will discuss the advantages and disadvantages of these services, focusing on details of GSM cellular channels specifically. The highlight will be our current research project: encrypted voice over the GSM voice channel. We'll dig into how this works, and why it is useful. This talk will touch on some fundamentals of modem design, voice codecs, GSM protocol basics, cryptographic protocols for voice links, and a bunch of other interesting stuff. There will be demonstrations with MATLAB/Octave and C, and we will provide some fun code to experiment with. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Tanner CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T150000Z DTEND:20050729T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-fbc59094594e SUMMARY:Dunk Tank Opens CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon003 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T160000Z DTEND:20050729T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-860de29bd90a SUMMARY:Internet Survivability DESCRIPTION: \" In this lecture we will begin with a brief introduction on a couple of the common or not so common threats that exist to the Internet and Internet infrastructure today, provide with some statistics and discuss the harm rather than potential risks. We will then proceed to discuss problems we face dealing with these threats, and what actually gets done to combat them, globally - and by who. We will also try and determine \"where do we go from here\", and if time allows take questions from the audience to form a short discussion. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Vixie CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T160000Z DTEND:20050729T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-f3dc1874e86b SUMMARY: Routing in the Dark: Scalable Searches in Dark P2P Networks [Ian Clarke DESCRIPTION: \" With peer to peer networks under fire by organizations using the legal system to attack participants, it seems that the only sustainable future is for dark, encrypted, networks where participants only talk to peers that they know and trust. Such networks, like WASTE, already exist to some extent, but they scale poorly and do not allow global communication. This does not need to be the case, however. The \"small world\" observations, going back to Milgram's famous experiments in the sixties, show that social networks have all the right characteristics for being easy and efficient to navigate and search. It stands to reason that, under the right circumstances, so should a Darknet. We present algorithms for making routing possible in such networks, based on the real mathematics of how small worlds function. The goal is to build peer to peer networks that are difficult for outsiders to detect and infiltrate, making the job of those who wish to shut them down much harder. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Clarke CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T160000Z DTEND:20050729T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-beb530809db3 SUMMARY:Booksigning: Kevin Mitnick CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon002 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T160000Z DTEND:20050729T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-e507900f731d SUMMARY:Introducing Unicornscan - Riding the Unicorn [Robert E. Lee DESCRIPTION: \" 2.2 Abstract Unicornscan is an open source (GPL) tool designed to assist with information gathering and security auditing. This talk will contrast the real world problems we've experienced using other tools and methods while demonstrating the solutions that Unicornscan can provide. We will use Unicornscan to collect information from large networks, data mine the collected information, and test systems for susceptibility to specific vulnerabilities. Some of the more interesting content includes: How to take stable working exploits and use Unicornscan as a delivery agent. How to deliver platform specific exploits using just the information from one Target response packet (SYN/ACK). How to avoid the kernel fixing packets that we have specifically created to be invalid. How to get more mileage out of the information contained inside the TCP stream for OS and possibly application fingerprinting. An introduction to the Scatter Connect method of TCP Connection State information tracking. During the talk we will release a new DEFCON specific version of Unicornscan that contains many enhancements that we will demonstrate during the talk. The DEFCON version will also contain a couple of special payload configuration files not included in the standard release. To get the most out of this talk attendees should have a strong working knowledge of TCP/IP, C programming, assembly, and OS/Application fingerprinting techniques. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Lee CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T160000Z DTEND:20050729T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-fef8d3d5e49f SUMMARY:Suicidal Linux [Bruce Potter] DESCRIPTION: \" I spend a lot of my time shooting at random targets. Last year I was on a Bluetooth holy war, trying to raise awareness of Bluetooth security (or lack therein). My talk at BH 04 was actually a two day experiment using Bluetooth to track attendees around the conference (code available from bluetooth.shmoo.com). While the technology was simple, the message needed to get out. Bluetooth enabled phones are dangerous and are flying under the security industry's radar screen. Fast forward a year, and the situation is much better. Bluetooth security is getting more and more coverage and research ( www.trifinite.org is a great site for BT security issues), and people are (finally) getting scared. So I decided to shift gears into a bigger hornet's nest... The holy war of Operating System security. No, not the standard issue \"OpenBSD is uber secure LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Potter CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T170000Z DTEND:20050729T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-bdf0c78e73ae SUMMARY:ATM Network Vulnerabilities [Robert Morris] DESCRIPTION: \" When was the last time you visited an actual human being to withdraw some spending money? In a world were most people visit computers for cash, ATM Networks have been traditionally thought of as a secure haven. Financial data theft is more of a reality than ever, but the backbone for the majority of cash to consumer transactions is not a target. I will show you why that is about to change. During my years at the NSA, I witnessed the growth of the electronic banking industry and observed many poor security design decisions as the ATM network was built. The means for authentication, the protection of data, and the methods for transferring sensitive information are just the tip of the iceberg. The ATM network is the next financial hacking pot of gold. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Morris CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T170000Z DTEND:20050729T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-f593cb2eea03 SUMMARY:Lost in Translation [Christian Grothoff] DESCRIPTION: \" This presentation describes the possibilities of steganographically embedding information in the \"noise\" created by automatic translation of natural language documents. An automated natural language translation system is ideal for steganographic applications, since natural language translation leaves plenty of room for variation. Also, because there are frequent errors in legitimate automatic text translations, additional errors inserted by an information hiding mechanism are plausibly undetectable and would appear to be part of the normal noise associated with translation. Significantly, it should be extremely difficult for an adversary to determine if inaccuracies in the translation are caused by the use of steganography or by perceptions and deficiencies of the translation software. A prototype, Lost in Translation (LiT), will be presented. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Grothoff CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T170000Z DTEND:20050729T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8fb34e3bda68 SUMMARY: Credit Cards: Everything You have Ever Wanted to Know [Robert \"hackajar\" Imhoff-Dousharm] DESCRIPTION: \" Identity theft is at an all time high. With businesses, universities and banks being compromised the threat is real right now. The media covers these area's but miss one important location that your most suseptiable to fraud, everywhere you swipe your credit card. We will pull out all the stops to help you understand credit cards, their history and how to protect yourself. Ever wonder what was in the magnetic strip of a card? Where that information goes? Who keeps your personal information, and for how long? Who is data mining this information? Who do they sell it to? All these questions and more will be answered in this presentation Defcon 11 we talked about social engineering to steal your credit card information. Defcon 12 we gave a live example on stealing credit card data from merchant networks. Now we will show you what that information is, and how to protect yourself against fraud. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Imhoff CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T180000Z DTEND:20050729T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8a5dc65b0534 SUMMARY:CISO Q&A with Dark Tangent [Scott Blake DESCRIPTION: \" The Dark Tangent, founder of DEFCON, invites Chief Information Security Officers from global corporations to join him on stage for a unique set of questions and answers. What do CISOs think of David Litchfield, Dan Kaminsky, Joe Grand, Metasploit, Black Hat, and DEFCON? How many years before deperimeterization is a reality? Is security research more helpful or harmful to the economy? What privacy practices do CISOs personally use? These questions and others from the audience will be fielded by this panel of security visionaries. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#DT CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T180000Z DTEND:20050729T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-aa33b5f86dc7 SUMMARY:Auto-adapting Stealth Communication Channels [Daniel Burroughs] DESCRIPTION: \" Intrusion detection systems and firewalls generally follow one of two methods of attack detection, signature or anomaly. Signature detection detects known attacks and anomaly detection covers unusual activity (with the hope that it will discover new attacks). Often what is detected by the IDS or firewall is not the original attack, but rather the communication that occurs afterwards. Known methods are easily picked up by signature detection, new methods are either picked up by anomaly detection or have a limited lifespan (signatures are created to detect them). That leads us to the dilemma of trying to create a covert communication scheme with no (easily) detectable pattern and one that does not cause statistical anomalies. The key to solving this dilemma is to use a scheme that is not consistent in its appearance and adapts itself to match its current surroundings. The traffic on one network will very from that on another network. This means that what will look unusual or out of place on one network might not look so strange on another. By analyzing the conditions that exist on a network and then adapting the communication scheme to fit in with those conditions, a well camouflaged communication channel can be created. This talk covers the concepts for such a communication system. It will cover the development and research being performed currently as well as providing a moderately technical discussion of the background concepts for such a system. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Burroughs2 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T180000Z DTEND:20050729T182000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-cd0ca980b4a7 SUMMARY:The Next Generation of Cryptanalytic Hardware [David Hulton] DESCRIPTION: \" Encryption is simply the act of obfuscating something to the point that it would take too much time or money for an attacker to recover it. Many algorithms have time after time failed due to Moore's law or large budgets or resources (e.g. distributed.net). There have been many articles published on cracking crypto using specialized hardware, but many were never fully regarded as being practical attacks. Slowly FPGAs (Field Programmable Gate Arrays) have become affordable to consumers and advanced enough to implement some of the conventional software attacks extremely efficiently in hardware. The result is performance up to hundreds of times faster than a modern PC. This presentation will provide a walk through on how FPGAs work, review their past applications with crypto cracking, present basic tips and pointers to developing a fast and efficient crypto cracking design, discuss overclocking FPGAs, and analyze the future growth of FPGA hardware and it's relation to current crypto ciphers. Then, a new open source DES cracking engine will be released and demonstrated which is able to crack windows Lanman and NTLM passwords at a rate over 600,000,000 crypts per second on a single low-cost Virtex-4 LX25 FPGA and provide brute-force performance comparable to lookups on a hard-drive based rainbowtable attack. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Hulton CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T183000Z DTEND:20050729T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-cda97d19e978 SUMMARY: Booksigning: Contributors of \"Stealing the Network: How to Own an Identity\" including Johnny Long CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon004 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T190000Z DTEND:20050729T200000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-967a7ac57898 SUMMARY:Hacking Google AdWords [StankDawg] DESCRIPTION: \" The AdWords program is an advertising system used by Google. It is a pay-per-click system like may others but Google doesn't give it the attention to design that it deserves. Not only does Google take some liberties with the Terms of Service and what they allow and don't allow in the program, but also have several flaws in the logical design of the system. There are several loopholes in this system and they will be explained and demonstrated with proof of concepts for every example. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#StankDawg CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T190000Z DTEND:20050729T200000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-b3ed28484505 SUMMARY: No Women Allowed? Exploring Gender Differences In Hacking [Thomas J. Holt] DESCRIPTION: \" The President of Harvard University, Lawrence H. Summers, recently suggested the lack of women in the sciences is due to innate differences between men and women. He speculated a variety of reasons for this including genetics and social factors, and his comments created a stir among academics and the general public. While the accuracy of his statements are suspect, he raises an intriguing question in light of declining female enrollment in computer science and engineering degree programs at MIT and other universities. And if women are falling out of these fields, what is happening to the population of female hackers and security professionals? What have their experiences been up to this point? Research suggests men dominate the underground, and sociological research suggests this is attributable to social practices rather than innate sex differences. However, the female hackers' perspective has not been well documented. Furthermore, the existing literature on this issue is based largely on anecdotal rather than empirical evidence. As such, it is necessary to examine the gendered experiences of hackers to expand our knowledge of how these experiences impact individuals and their behavior. The purpose of this talk is to introduce my research agenda to study male and female hackers, and examine variations across gender. During the talk, I will lay out fundamental theoretical concepts used to discuss the different experiences of men and women on and off-line. Then I will introduce my research proposal and call for interested individuals to participate in this study. Throughout the presentation, the audience is welcome to share their personal feelings, beliefs, and knowledge about gender and hacking. The start of an open dialogue, whether formal or informal, regarding gender differences in hacking is critical to advance our understanding of this important issue for information technology and the sciences. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Holt CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T190000Z DTEND:20050729T192000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-bef29da3450c SUMMARY:The NMRC Warez 2005 Extravaganza [Simple Nomad DESCRIPTION: \" Lock up your children and mid-sized barnyard animals, NMRC is coming to DEFCON13. From their underground bunker located somewhere in North America, NMRC will emerge with your basic shitload of handy tools and toys, geared for helping the humble hacker in everyday chores. Look for crypto, utilities, and other hackerish tools to bring your hacker dreams alive. Most of these tools are being presented for the first time at DEFCON. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#nmrc CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T190000Z DTEND:20050729T200000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-fc39a7fef82f SUMMARY: Social Engineering Do's & Don'ts (A Female Perspective) [Beth Louis (Phen)] DESCRIPTION: \" Social Engineering Do's and Don'ts is more informative then technical. Over the course of the lecture, I plan on going over some information you may not have thought of in your pursuits. Such as, telephone surveys, the importance of being well informed, along with basics such as the importance of both phone & social etiquette, surveillance, going undercover, corporate fraud and of course identity theft. There will be live demonstrations & explanations. This is the talk for everything you wanted to know about social engineering but were to technical to ask. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Phen CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T192000Z DTEND:20050729T200000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-e8e8b9fe77f3 SUMMARY:Passive Host Auditing [jives] DESCRIPTION: \" Traditionally, IDS systems such as snort have been used to monitor attacks against or within a network. This talk will give the outline for turning those tools around and instead using them to audit networks. We will discuss how to identify OS's, tell who is patching, what services are being deployed (perhaps insecurely), and other methods for policy enforcement. This discussion is ideally suited for administrators and security professionals in open and/or decentralized environments, especially those charged with auditing the network. While several signatures and sample scripts will be discussed during this talk, this is a relatively new area of auditing and network security so questions, comments and volunteers will all be welcome. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#jives CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T200000Z DTEND:20050729T202000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-ea12f00cd50e SUMMARY:Shmoo-Fu: Hacker Goo DESCRIPTION: \" Last Summer, they dared to make a Wi-Fi sniper rifle that fried their eyeballs and scared the crap out of UPS. They built a robot that owned your Mom's access point and showed you the password to her underwear drawer, too. Last Winter, they ran up a $3000 bar tab at a nightclub in D.C. with several hundred ShmooCon attendees--then donated just as much to EFF for shits and grins. This DefCon, the Shmoo Group brings you a slew of hacker goo, goofs, and gear to go with your shiny new \"Notice to Law Enforcement\" stickers. Can you resist? Probably. Will you? Nope. Why? Because they have cool shit all over again. IDN fallout and homograph attacks on personal identities thanks to 3ricj. Hot models wearing spy actionwear designed by Pablos--fresh from his ninja lair of alien technology. Revving up rainbow tables with Dan \"Don't Be Crazy\" Moniz. New Wi-Fi kung-fu with \"Rogue Squadron\" and EAP-peeking by Beetle. Rodney Thayer explains how to blow $1 MILLION on commercial security shtuff and still get owned by a grade-school punk addicted to Xbox. CowboyM returns to show off new geeky tactical gear designed for close-quarters wireless combat--do NOT try this at home, kids, and certainly not inside a Faraday cage. Finally, because you've all been waiting for it, Bruce Potter pours gasoline on his security model self and lights a fucking match! Mo' better and with no blow-up dolls, the Shmoo Group returns to rant on recent projects and review new ones. Rated R for strong violence, adult situations, disturbing images, nudity, language, and epic warfare. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#shmoo CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T200000Z DTEND:20050729T215000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-d2b495c626f3 SUMMARY:The Six Year Old Hacker: No More Script Kiddies. [Kevin McCarthy] DESCRIPTION: \" Computer use in elementary schools is problematic. Seldom are computers well integrated into the general curriculum. Often, they are used merely as instructional surrogates to \"drill\" skills. Particularly disturbing is the lack of exploration of the computer itself, and the culture of technology. Programming can teach vital problem solving skills, project management, respect for others work, and the value of collaboration. So why not cultivate the methods and ethics of hacking in young children? For the last 2 years I have been doing just that. Working with 6 to 12 year olds in a small Montessori school, I have begun to develop a program to encourage curiousity in our created, technological world, in the same way that their teachers encourages such curiousity in the natural world. I would like to open a discussion on the value of this approach, and the methods I employ. Perhaps I can encourage others to help cultivate the next generation of hackers. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#McCarthy CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T200000Z DTEND:20050729T202000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-a7aab8fae1e5 SUMMARY:WarDrive: King of the Hill begins (ends at 20:00) CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon005 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T200000Z DTEND:20050729T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cd7e40-fcce-11d9-9b23-b995db03b2cb SUMMARY:Development of An Undergraduate Security Program [Daniel Burroughs] DESCRIPTION: \" At the University of Central Florida, an undergraduate program in security is currently being developed. This program will offer students a bachelor's degree through the College of Engineering. It is intended to be an interdisciplinary degree combining coursework from the School of Engineering and Computer Science, College of Health and Public Affairs, and the National Center for Forensic Studies. The purpose of this talk is to present the program being developed and to receive feedback regarding what material and what areas such a program should cover. The department that it is being offered through (Engineering Technology) is an applied engineering department, taking a very hands-on approach to learning. As such it is necessary to develop our courses of study based on feedback from industry and the community. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Burroughs CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T203000Z DTEND:20050729T205000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-e92f91608ae6 SUMMARY:Bypassing Authenticated Wireless Networks [Dean Pierce DESCRIPTION: \" As the demand for mobile internet access increases, more and more public wireless access points are becoming available for general usage. Unfortunately, as awareness of these access points increases, some companies have been capitalizing on the idea, charging monthly and hourly rates. This talk discusses methods of silently bypassing current implementations of authenticated wireless networks. An automated proof of concept tool is released and explained. Some theoretical methods of authentication that might be implemented in the future are also discussed. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Pierce CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T203000Z DTEND:20050729T205000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-ed568a50821e SUMMARY: Whiz Kids or Juvenile Delinquents: A Sociological Perspective The Construction of Hacker Identity [Amanda Dean] DESCRIPTION: \" The paper I will be presenting serves as a rudimentary literature review on how hackers may be constructed as either deviants or non-deviants in society. This presentation begins by placing hackers within the framework of sociological literature on deviance. I talk about how deviance has historically been a social construction, with the more powerful members of society defining what it is to be deviant, and those with less power are frequently applied the label. I apply sociological definitions of of deviants to hackers, and am able to refute these claims in many cases. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Dean CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T210000Z DTEND:20050729T212000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-940ddfc2f8e9 SUMMARY:Mosquito - Secure Remote Code Execution Framework [Wes Brown DESCRIPTION: \" Mosquito is a lightweight framework to deploy and run code remotely and securely in the context of penetration tests. It makes a best effort to ensure that the communications are secure. Special care is taken to ensure that deployed code is not stored outside of process memory space, making it difficult for an eavesdropper to obtain the code. It protects the confidentiality and trade secrets of code that is deployed and run on the target, whether an exploit methodology, or a tool. The proof of concept deployable binary weights in at 120K. The framework makes use of Lua as the scripting language, and is freely available with a BSD license. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#brown CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T210000Z DTEND:20050729T215000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c828eba775f8 SUMMARY: The Power to Map: How Cyberspace Is Imagined Through Cartography [Kristofer Erickson] DESCRIPTION: \" An ongoing project for scholars in Geography has been to explore how power and cartography are mutually implicated. Geographers have traditionally been concerned with making maps of the earth, but until recently we have seldom reflected on how particular forms of knowledge and power are privileged in the production of maps, and how those maps themselves produce particular geographic imaginations. As new virtual spaces are opened up through communication technologies such as the Internet, maps remain one of the important ways that these spaces are articulated to the public. However, when creating these new maps of cyberspace, it is necessary to remain aware of the political meaning contained in these representations. Maps of the internet that depict it as a disembodied, decentralized and unregulated space may in fact promote particular interests such as capitalism and national security, while suppressing others. The aim of this presentation is to open up a dialogue where we can collectively critique existing maps of cyberspace and imagine alternatives that may be more sensitive to a competing range of interests, including those of the hacker community. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Erickson CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T213000Z DTEND:20050729T215000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-faf473c72224 SUMMARY:Hacking Windows CE [San] DESCRIPTION: \" Security threats to PDAs and mobiles become more and more serious. This presentation will show a buffer overflow exploitation example in Windows CE. It will cover some knowledge about ARM architecture and memory management, the features of processes and threads of Windows CE. It alse show how to write a shellcode in Windows CE (including some knowledge about decoding shellcode of Windows CE with ARM processor), and a live attack demonstration. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#San CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T220000Z DTEND:20050729T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-bc6d9b73347a SUMMARY:DC Groups LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon006 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T220000Z DTEND:20050729T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-854125ef6288 SUMMARY:Panel: A discussion of the regional DEFCON Groups LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon007 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T220000Z DTEND:20050729T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-bf642ee64b06 SUMMARY: Hackers and the Media- Misconceptions and Critical Tools To Combat Them [Patty L. Walsh/ Muckraker] DESCRIPTION: \" Ever wonder what to do with the media when it seemingly (and definitely) reports inaccuracies with regard to hackers and hacking in general? Fed up with the constant misconceptions you feel the media has of hackers? What is to be done? This forum shall act as an interactive discussion on the misconceptions between hackers and the media, what to do in order to protect yourself, ho to handle the media and your (as well as the media s) constitutional and legal rights. There shall be a special surprise at the end for those in dire need of alleviation their stress towards ? The Media. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Walsh CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T220000Z DTEND:20050729T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c993acbf56ac SUMMARY:Causing the Law [Mark Pauline] LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Pauline CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T230000Z DTEND:20050730T000000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8660c258d47f SUMMARY:Death of a Thousand cuts - Forensics [Johnny Long] DESCRIPTION: \" In this day and age, forensics evidence lurks everywhere. This talk takes attendees on a brisk walk through the modern technological landscape in search of hidden digital data. Some hiding places are more obvious than others, but far too many devices are overlooked in a modern forensics investigation. As we touch on each device, we'll talk about the possibilities for the forensic investigator, and take a surprising and fun look at the nooks and crannies of many devices considered commonplace in today's society. We'll look at iPods (and other MP3 players), Sony PSP devices (and other personal video products), digital cameras, printers, fax machines, all-in-one devices, dumb phones, \"smart\" phones, cell phones, various network devices and even wristwatches, sunglasses, pens and all sorts of other devices that contain potential evidence. For each device, we'll look at what can be hidden and talk about various detection and extraction techniques, avoiding at all costs the obvious \"oh I knew that\" path of forensics investigation. All this will of course be tempered with Johnny's usual flair, some fun \"where's the evidence\" games, and some really cool giveaways. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Long2 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T230000Z DTEND:20050729T232000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-a4bacc892273 SUMMARY:WarDrive: King of the Hill ends CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon008 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T230000Z DTEND:20050729T232000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-ec9835a7e06a SUMMARY:Death of a Thousand cuts - Forensics [Johnny Long] LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#thousandcuts CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T230000Z DTEND:20050729T232000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-a911f02aba9d SUMMARY:Your Defense is Offensive [hellNbak] DESCRIPTION: \" Every Corporation in the world has run out and purchaed IDS, Patch Mangement and other products that are selling security. This talk will outline ways that these so called \"security products\" can actually be used against an organization. Organizations should fear their poorly impelemented \"Security\" \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#hellNbak CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T230000Z DTEND:20050730T000000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-ae086ac90c0a SUMMARY: Booksigning: Contributors of \"Aggressive Network Self Defense\" including Grifter CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon009 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T233000Z DTEND:20050730T000000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-dcf3fca97c60 SUMMARY:Inequality and Risk [Paul Graham] DESCRIPTION: \" Previous attempts to hack the connection between wealth and power have aimed mainly at eliminating economic inequality. They've all ended in disaster, because economic inequality is closely related to risk: you can't eliminate inequality without eliminating startups, and with them growth. So if you want to get rid of injustice, the place to attack is one step downstream, where wealth turns into power. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Graham CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050729T233000Z DTEND:20050730T000000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-c9b305120930 SUMMARY:DEFCON Forum Meeting in Athena CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon00b CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T000000Z DTEND:20050730T010000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-916cf72f0d97 SUMMARY:Black And White Ball Setup LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon00a CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T000000Z DTEND:20050730T010000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-e07b284f7a54 SUMMARY:Assymetric Digital Warfare [Roberto Preatoni (aka Sys64738) DESCRIPTION: \" The speech will be intended to let the attendees understand where and how the digital conflicts are conducted today but we will dig deeply into the future. We will take as example the US Army program F.C.S. (Future Combat System) as the perfect example on how a developed superpower might carry on a super-advanced war program, all based on combat computer systems and networks that control unmanned vehicles as well as wheeled combat drones, to discover at the end that the adoption of such systems might introduce conceptual vulnerabilities that a wise enemy might exploit by means of hacking. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Preatoni CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T000000Z DTEND:20050730T010000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8b3b2e9d220c SUMMARY: Hacking in a Foreign Language: A Network Security Guide to Russia (and Beyond) [Kenneth Geers] DESCRIPTION: \" Has your network ever been hacked, and all you have to show for your investigative efforts is an IP address belonging to an ISP in Irkutsk? Are you tired of receiving e-mails from Citibank that resolve to Muscovite IP addresses? Would you like to hack the Kremlin? Or do you think that the Kremlin has probably owned you first? Maybe you just think that Anna Kournikova is hot. If the answer to any of the above questions is yes, then you need an introduction to the Gulag Archipelago of the Internet, the Cyberia of interconnected networks, Russia. Do not let the persistent challenges of crossing international boundaries intimidate you any longer. In this briefing, we will follow several real-world scenarios back to Russia, and you will learn valuable strategies for taking your investigations and operations one big geographical step further. A brief introduction to Russia will be followed by 1,000 traceroutes over the frozen tundra described in detail, along with an explanation of the relationship between cyber and terrestrial geography. Information will be provided on Russian hacker groups and law enforcement personnel, as well as a personal interview with the top Russian cyber cop, conducted in Russian and translated for this briefing. Quick: name one significant advantage that Russian hackers have over you. They can read your language, but you cannot read theirs! Since most Westerners cannot read Russian, the secrets of Russian hacking are largely unknown to Westerners. You will receive a short primer on the Russian language, to include network security terminology, software translation tools, and cross-cultural social engineering faux-pas (this method will apply to cracking other foreign languages as well). Hacking in a Foreign Language details a four-step plan for crossing international frontiers in cyberspace. First, you must learn something about the Tribe: in this case, the chess players and the cosmonauts. Second, you must study their cyber Terrain. We will examine the open source information and then try to create our own network map using traceroutes. Third, we will look at the Techniques that the adversary employs. And fourth, we will conquer Translation. The goal is to level the playing field for those who do not speak a foreign language. This briefing paves the way for amateur and professional hackers to move beyond their lonely linguistic and cultural orbit in order to do battle on far-away Internet terrain. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Geers CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T000000Z DTEND:20050730T010000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-f58fedbc5b65 SUMMARY:Black Ops 2005 [Dan Kaminsky] DESCRIPTION: \" Another year, another batch of packet related stunts. A preview: A High Speed Arbitrary Tunneling Stack Expanding on last year's talk demonstrating live streaming audio over DNS, I will now demonstrate a reliable communication protocol capable of scaling up to streaming video over multiple, arbitrary, potentially asymmetric transports. Realtime visualizations of large network scans Building on Cheswick's work, I will demonstrate tools for enhancing our comprehension of the torrential floods of data received during large scale network scans. By leveraging the 3D infrastructure made widely available for gaming purposes, we can display and animate tremendous amounts of data for administrator evaluation. Application-layer attacks against MD5 We will show how web pages and other executable environments can be manipulated to emit arbitrarily different content with identical MD5 hashes. A Temporal Attack against IP It is commonly said that IP is a stateless protocol. This is not entirely true. We will discuss a mechanism by which IP's limited stateful mechanisms can be exploited to fingerprint operating systems and to evade most intrusion detection systems. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#kaminsky CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T020000Z DTEND:20050730T030000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-9c6e5445dbbb SUMMARY:TCP/IP Drinking Game with Mudge LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon00c CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T030000Z DTEND:20050730T040000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-cf8929f32c82 SUMMARY:Hacker Jeopardy until... LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon00d CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T030000Z DTEND:20050730T040000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-8cf912d35bb8 SUMMARY:Registration closes CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon00e CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T030000Z DTEND:20050730T040000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c2545e93e69f SUMMARY: Physical Security Bypass Techniques: Exploring the Ethics of Full Disclosure [Marc Weber Tobias DESCRIPTION: \" Recent public disclosures detailing physical lock and safe bypass techniques have raised consumer awareness detailing the efficacy of the hardware that protects some of our most important assets. This talk will address the ethics of full-disclosure, the liability for failure to disclose, and the impact of public dissemination. Demonstrations and new discoveries of lock bypass techniques will be reviewed. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Tobias CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T140000Z DTEND:20050730T145000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c207698a0dd9 SUMMARY:Chillout in Parthenon 2 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#chillout2 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T140000Z DTEND:20050730T150000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-9c070b9cb831 SUMMARY: Bacon: A Framework for Auditing and Penetration Testing [Hernan Gips] DESCRIPTION: \" Nowadays there is a lack of adequate frameworks to make the security consulters and pen testers life easy. A lot of separated or integrated tools like automating penenetration Testingtools improve their performance but aren't very useful for the real world consultant. Also some languages, which are not too powerful and complex like python makes others tools hard to expand to the public in general. In reality, the need for flexible, modular and extensible but also powerful kind of tool is growing in today's computing security scene due to substantial increases in the security, pen testing and code audit market. The goal of this paper is to motivate a renewed interest and present a solution based on nowadays technologies capable to handle the real world challenges and to be useful. Bacon is an introduction to a generic framework for penetration testers and consultants. Baconis an Open Source modular framework. Bacon's core component is developed in C# and is able to load modules compiled to run in ECMA Common Language Infrastructure, for example C#, C++.NET, VB.NET, IronPython and others. So the core component, GUI and the modules are multi platform. These modules would run on Windows using the Microsoft CLI or Linux using Mono or another CLI implementation. Bacon's core also provides a set of facilities to generate custom reports, utility libraries and module communication. The actual development of Bacon is focused in the core component and three modules, one of them for code auditing, other for web application auditing and the last one for database auditing. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Gips CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T140000Z DTEND:20050730T145000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-a82ab284c6de SUMMARY:The Hacker's Guide to Search and Arrest [Steve Dunker Esq] DESCRIPTION: \" Have you ever been pulled over by the Cops? Do you worry about your home being searched by the Feds? The Hacker's Guide to Search and Arrest is presented in a down and dirty fast pace. You won't hear a single boring case citation here. Instead you get information you can use in every day life, presented in a way that won't make your eyes gaze over. Learn when the Government can legally perform searches or make arrests. Find out what you can do if you are a victim of an illegal search or seizure. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Dunker CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T140000Z DTEND:20050730T145000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-d8c3c77394ce SUMMARY:Introduction to Lockpicking and Physical Security [Deviant Ollam] DESCRIPTION: \" Physical security isn't just a concern of the IT world. Besides securing server rooms, locks of all sizes and styles are scattered throughout our lives. However, much of the general public is unaware of the insecurities present in many lock designs. Through discussion and direct example, Deviant Ollam will address the strengths and weaknesses of standard pin tumbler locks, combination locks, warded locks, wafer locks, and more. Discussion of effective tools, advanced techniques, master key theory, and lesser-known picking techniques will also be covered. This talk is aimed at lockpick novices who are interested in better security and learning lockpicking skills. While always the first to admit that he's no Barry Wels, Deviant hopes to have a good time with this lockpick talk and looks forward to hand-on audience participation. Many styles of practice locks and picks will be made available. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Deviant CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T150000Z DTEND:20050730T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c5f0d59358e6 SUMMARY: Attacking Web Services: The Next Generation of Vulnerable Apps [Alex Stamos DESCRIPTION: \" Web Services represent a new and unexplored set of security-sensitive technologies that have been widely deployed by large companies, governments, financial institutions, and in consumer applications. Unfortunately, the attributes that make web services attractive, such as their ease of use, platform independence, use of HTTP and powerful functionality, also make them a great target for attack. In this talk, we will explain the basic technologies (such as XML, SOAP, and UDDI) upon which web services are built, and explore the innate security weaknesses in each. We will then demonstrate new attacks that exist in web service infrastructures, and show how classic web application attacks (SQL Injection, XSS, etc...) can be retooled to work with the next-generation of enterprise applications. The speakers will also demonstrate some of the first publicly available tools for finding and penetrating web service enabled systems. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Stamos CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T150000Z DTEND:20050730T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8faeeddae6bd SUMMARY:Ask EFF: The Year in Digital Liberties [Annalee Newitz DESCRIPTION: \" Get the latest information about how the law is racing to catch up with technological change from staffers at the Electronic Frontier Foundation, a digital civil liberties group fighting for freedom and privacy in the computer age. This session will include updates on current EFF issues such as DRM, file-sharing, spyware, the USA-Patriot Act, and bloggers' rights. But over half the session will be given over to question-and-answer, so it's your chance to ask the panelists questions about issues important to you. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#EFF CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T150000Z DTEND:20050730T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-bb6b1f04ea2e SUMMARY:WarDrive: Fox and the Hound CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon00f CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T150000Z DTEND:20050730T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-d6ed0e449234 SUMMARY:Booksigning: Andrew Lockhart CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon010 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T160000Z DTEND:20050730T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-b9e9ccf17122 SUMMARY:Meet the Fed [Jim Christy and various other Feds] DESCRIPTION: \" A unique opportunity to surrender and confess all of your crimes to law enforcement agents from multiple federal and possibly international agencies. The \"Meet the Fed\" Panel is again chaired by Special Agent Jim Christy, Director of the Department of Defense Cyber Crime Institute. Jim will have on his panel representatives from: National Security Agency (NSA) (2) Federal Bureau of Investigation (FBI) US Postal Service General Accounting Office (GAO) The Internal Revenue Service (IRS - always a favorite) Department of Defense Cyber Crime Center (DoD) If you don't want to confess yourself, you can certainly drop a dime on one of the other DEFCON attendees. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Fed CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T170000Z DTEND:20050730T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-a3369256be89 SUMMARY:Automation - Deus ex Machina or Rube Goldberg Machine? [Sensepost] DESCRIPTION: \" How far can automation be taken? How much intelligence can be embodied in code? How generic can automated IT security assessment tools really be? This presentation will attempt to show which areas of attacks lend themselves to automation and which aspects should best be left for manual human inspection and analyses. SensePost will provide the audience a glimpse of BiDiBLAH - an attempt to automate a focussed yet comprehensive assessment. The tool provides automation for: Reporting Exploiting the vulnerabilities found Discovering known vulnerabilities on the targets Fingerprinting targets Finding networks and targets \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#sensepost CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T170000Z DTEND:20050730T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-d86c345228e8 SUMMARY:Intro to High Security Locks and Safes [Michael Glasser DESCRIPTION: \" This \"Talk\" will focus on the next step beyond basic locks and lock picking. You will NOT learn about basic cylinders. You will not learn how to shim a padlock. You will learn about Medeco side bars and how they've been beaten. You will learn about mul-t-lock pin-in-pin cylinders and how they've been beaten. You will learn the basics of safe manipulation. This is not a \"Talk\" that will teach you how to pick, the \"pick-proof\" locks. It will give you the foundation and methods that will allow you to understand these locks, and the concepts behind picking them. Punch and Pie will be served. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Glasser CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T170000Z DTEND:20050730T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-ac429aab66bf SUMMARY: A Safecracking Double Feature: Dial 'B' For BackDialing and Spike the Wonder Safe [Leonard Gallion] DESCRIPTION: \" This presentation will introduce two powerful, non-destructive safe opening techniques. The first \"Dial B For BackDialing LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Gallion CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T180000Z DTEND:20050730T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-e6e6b5f4c998 SUMMARY: The Information Security Industry: $3 Billion of Snake Oil [David Cowan] DESCRIPTION: \" A raging fear of The Computer Evildoers has driven enterprises to the safety of the herd, buying whatever elixirs the big vendors peddle. Security consumers waste billions of dollars on ineffective (but well integrated!) solutions. However, as technology users grow more sophisticated about security threats (often learning the hard way), opportunities will surface for innovative startups to deliver effective IT survival mechanisms. This talk will review the industry's blunders, and sources of opportunity. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Cowan CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T180000Z DTEND:20050730T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-82eeae62bee5 SUMMARY:WarDrive: Fox and the Hound CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon011 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T180000Z DTEND:20050730T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-aa9aa7896225 SUMMARY: Booksigning: Contributors of \"Penetration Tester's Open Source Toolkit\" CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon013 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T190000Z DTEND:20050730T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-da67605a8c12 SUMMARY:Pen-testing the Backbone [Raven] DESCRIPTION: \" Despite its crucial importance, the network backbone is often ignored or exempted from security testing. This talk will cover how to sanely and effectively perform a pen-test against routers, switches, and similar network infrastructure equipment. Avenues of attack will range from the physical to the routing protocol-based, from the local to the remote, and suggested mitigation measures will also be discussed. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Raven CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T190000Z DTEND:20050730T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-814001b871ea SUMMARY:Dr. Linton Wells LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon012 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T190000Z DTEND:20050730T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-b52124902f43 SUMMARY:Attacking Biometric Access Control Systems [Zamboni] DESCRIPTION: \" This talk explores how to attack biometric authentication systems, primarily physical access control systems. Previous literature on this topic has focused on attacking a biometric reader in the form of spoofing a biometric trait. This presentation goes a step further and provides a general methodology for attacking on complete biometric systems. The methodology can be applied to any biometric system and outlines how to find common weaknesses in these systems. Real world examples and case studies are included. The talk concludes by illustrating possible defense strategies. This talk is technical but no prior knowledge of biometrics or physical access control systems is needed to understand it, a brief overview of both is included. A knowledge of conventional penetration testing techniques would be helpful but is no required. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Zamboni CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T190000Z DTEND:20050730T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-851c424798d7 SUMMARY:Trust Transience: Post Intrusion SSH Hijacking [Metalstorm] DESCRIPTION: \" Trust Transience: Post Intrusion SSH Hijacking explores the issues of transient trust relationships between hosts, and how to exploit them. Applying technique from anti-forensics, linux VXers, and some good-ole-fashioned blackhat creativity, a concrete example is presented in the form of a post-intrusion transparent SSH connection hijacker. The presentation covers the theory, a real world demonstration, the implementation of the SSH Hijacker with special reference to defeating forensic analysis, and everything you'll need to go home and hijack yourself some action. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Metalstorm CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T200000Z DTEND:20050730T205000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-e4be766215e3 SUMMARY: PGP Keysigning Party with the Dark Tangent in the Athena (ends at 18:00) CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon014 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T200000Z DTEND:20050730T205000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-9150461c0c5e SUMMARY: Legal and Ethical Aspects of WarDriving [Matthew L. Shuchman (\"Pilgrim\") DESCRIPTION: \" This is a proposal for a panel discussion on the legality of accessing WiFi signals without the permission of the owner and will include a review of the legal and ethical issues presented by freely available WiFi both to the owner of the AP and to the users. Included in the panel will be a presentation of recent cases involving WiFi access, WarDriving, and theft of data by WiFi, as well as a review of the Federal laws that cover use and misuse of WiFi including the Electronic Communications Privacy Act (ECPA) and the Computer Fraud and Abuse Act (CFAA.) The panel members hope is that by presenting some of the legal and ethical issues that we can take the first steps towards guidelines for ethical conduct while WarDriving (and Bluesnarfing.) \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Schuchman CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T200000Z DTEND:20050730T205000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-b8b11313630c SUMMARY:Old Skewl Hacking - InfraRed [Major Malfunction] DESCRIPTION: \" Infra Red is all around us. Most of us will use an Infra Red controller on more or less a daily basis, to change the TV channel, or open a car or garage door, but how often have you thought about how it actually works? This talk will describe not only how to analyse the signals being sent by your remote, but also how to use that information to find hidden commands and reveal functions you didn't even know your systems had. You will learn how to brute force garage doors, car doors, hotel pay-per-view TV systems, take over LED signs, vending machines and even control alarm systems, using cheap or home made devices and free software... \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#major CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T200000Z DTEND:20050730T205000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c393469492c3 SUMMARY: Building WarDriving Hardware Workshop [Matthew L. Shuchman (\"Pilgrim\")] DESCRIPTION: \" WarDriving is becoming a popular sport among hackers and DEFCON attendees, and WiFi site surveying has become an important tool for the IT security professional. This workshop will describe the basic equipment required for WarDriving and WiFi site surveying. There will be a brief presentation on the benefits and features of different types of WiFi hardware, adapter cards, chipsets, cables, pigtails, and antennas. The session will include an overview of the design and performance characteristics of different types of antennas. A primary focus of the workshop will be to show the participants how to select the components and parts required and how to construct their own cantenna (directional) and spider (omnidirectional) antennas. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Schuchman2 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T210000Z DTEND:20050730T215000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-d942fc8d0625 SUMMARY:Countering Denial of Information Attacks [Greg Conti] DESCRIPTION: \" We are besieged with information every day, our inboxes overflow with spam and our search queries return a great deal of irrelevant information. In most cases there is no malicious intent, just simply too much information. However, if we consider active malicious entities, the picture darkens. Denial of information (DoI) attacks assail the human through their computer system and manifest themselves as attacks that target the human's perceptual, cognitive and motor capabilities. By exploiting these capabilities, attackers reduce the ability of humans to acquire and act upon desired information. Even if a traditional denial of service attack against a machine is not possible, the human utilizing the machine may still succumb to a DoI attack. Typically much more subtle (and potentially much more dangerous), DoI attacks can actively alter the decision making of humans, potentially without their knowledge. This talk explores denial of information attacks and countermeasures and uses network visualization scenarios to illustrate the problem. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Conti CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T210000Z DTEND:20050730T215000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-9d9e9e3d6206 SUMMARY:Trends in Licensing of Security Tools [Chuck Willis] DESCRIPTION: \" Do you think that all those tools you download for security testing are free? Well, they may be free of cost for some uses, but the licenses of many tools commonly used by the security community are getting more restrictive and complicated. This interactive discussion will look at the current state of security tool licensing and also look at where this field may be headed. Specific examples of license restrictions in many commonly used tools will be presented in order to illustrate the current trends and also help tool users in the audience navigate the bumpy road of security licensing issues and stay on the right side of the law. Also discussed will be possible actions for tool users, tool authors, and others to make tool licensing simpler in the future. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Willis CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T210000Z DTEND:20050730T215000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-c6182322407b SUMMARY:WarDrive: LockPick Crossover CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon015 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T210000Z DTEND:20050730T235000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-9a96a85d6237 SUMMARY:Sketchtools: Prototyping Physical Interfaces [Matt Cottam] DESCRIPTION: \" Industrial designers working in traditional media have the luxury of sketching, playing, and experimenting with their materials before constructing a finished product. Designers working with electronics and computers are relatively impoverished. To \"sketch\" with electronics or computers would typically require extensive training in engineering and ready access to inexpensive parts--requirements that most designers can't easily meet. This deficiency--this inability to work closely with materials before building with them--hampers designers' efforts to make products sensitive to human use. This paper describes an attempt to address this problem in a human-computer interaction (HCI) design studio at a major design school. The course itself was an exercise in design: it worked within severe constraints to address a human need. We describe our attempt to shape the course to meet students' most pressing needs\; our students' attempts to work within the constraints of the course\; and the outcomes of the course for students and faculty. The paper suggests that the course offers one way to experiment with HCI concepts, produce innovative solutions to design problems, and--crucially--humanize new technologies and the design process.\" \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Cottam CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T220000Z DTEND:20050730T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-b3e9d1bfe40c SUMMARY: Licensing Agreements 101: The Creative Commons License [Jim \"FalconRed\" Rennie] DESCRIPTION: \" Increasingly, users are adding licensing agreements to all of their online content. One of the most popular licensing agreements for non-coders is the Creative Commons license. Its integration into several popular web products and ease of use have quickly made it the standard license for bloggers. While the Creative Commons provides a \"human readable\" version of the license, that version doesn't tell the whole story. There are several rights and restrictions in the real contract that most users never see. This talk will give some quick background on the Creative Commons license - why exactly it was created and who created it. More importantly, this talk will dissect the \"lawyer\" version of the license and explain some of the key terms hidden from the average user. Finally, this talk discuss way to maximize your protection under the license and protect your content from possible legal pitfalls. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Rennie CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T220000Z DTEND:20050730T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-9837d647a83a SUMMARY:The Dark Side of Winsock [Jonathan Levin] DESCRIPTION: \" The Winsock SPI, or Service Provider Interface, has been a part of Winsock since the advent of version 2.0. It enables providers to extend the Winsock API transparently, by installing their own hooks and chains to application API calls. However, its formidable capabilities are not put to widespread use... aside from spyware (remember Kazaa's \"sporder.dll\"?). The talk will discuss (and demonstrate) some of the more insidious uses of the SPI. From collecting connection statistics, through eavesdropping on data, or rerouting connections, with the application remaining totally oblivious! \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Levin CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T220000Z DTEND:20050730T225000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-e8738524d3db SUMMARY:Google Hacking for Penetration Testers [Johnny Long] DESCRIPTION: \" Google Hacking returns for more guaranteed fun this year at Defcon 13! If you haven't caught one of Johnny's Google talks, you definitely should. Come and witness all the new and amazing things that can be done with Google. All new for Defcon 13, Johnny reveals basic and advanced search techniques, basic and advanced hacking techniques, multi-engine attack query morphing, and zero-packet target foot printing and recon techniques. Check out Google's search-blocking tactics (and see them bypassed), and learn all about using Google to locate targets Google doesn't even know about! But wait, there's more! Act now and Johnny will throw in the all new \"Google Hacking Victim Showcase LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Long CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T230000Z DTEND:20050730T235000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-bf4680398212 SUMMARY: The Revolution Will Not Be Copyrighted: Why You Should Care About Free Culture [Elizabeth Stark DESCRIPTION: \" The purpose of this paper is to explain and introduce the free culture movement and organization to the hacker community. We make the case that hackers should not only care about the ideas of free culture in the literal sense in that we seek to protect technological and digital rights, but also in a broader cultural sense. The idea of using and reusing bits of culture(the goal in a free culture) parallels the central tenets of the hacker ethos where manipulation, reuse, and recontextualization are essential. To that end, we'll show some compelling examples of art and music that we consider to be culture hacking. From reengineered Nintendo cartridges to electronic albums consisting almost totally of samples to an early 20th century modernist Mona Lisa hack, we'll demonstrate that some of the most innovative and radical cultural works are also the most derivative. We also intend to emphasize the significance of political and social action in order to maintain an environment of innovation and progress. There are highly significant cultural and technological issues that need to be addressed in society and we cannot stand by passively while leaving the control in the hands of the government, corporations, and other entities. In essence, free culture is deeply ingrained in the hacker ideal. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Stark CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T230000Z DTEND:20050730T235000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-d0df7b653244 SUMMARY: Be Your Own Telephone Company...With Asterisk [Strom Carlson & Black Ratchet] DESCRIPTION: \" Since the invention of the step-by-step switching office by Almon B. Strowger in 1889, telephone switching technology has constantly become more efficient, more complex and easier to manage. Today, anyone with a computer, a telephone and some spare time can assemble a homebrew telephone switching system and become their own miniature telephone company with the aid of a program called Asterisk. This presentation will give a brief overview of Asterisk, how to set it up, what it can do, and how to integrate it with your existing network. Furthermore, you will be introduced to a whole world of features and capabilities you didn't even know existed but which you will find yourself inexplicably compelled to set up and play with. Covered topics will include hardware, trunking, PSTN termination, integration with the Web and customization. A Q&A session will follow the talk, accompanied by giveaways of selections from Strom's massive pile of vintage telephone equipment. If you can't make it to the talk itself, you will still be able to participate\; a call-in Q&A queue will be provided for those watching the talk on TV in the hotel. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#strom CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050730T230000Z DTEND:20050731T005000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-dccca081fbef SUMMARY:Booksigning: Johnny Long CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon016 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T000000Z DTEND:20050731T005000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-8896b75c485b SUMMARY:WarDrive: LockPick Crossover CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon017 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T000000Z DTEND:20050731T005000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-eef0bd79f799 SUMMARY:A New Hybrid Approach for Infrastructure Discovery DESCRIPTION: \" An enterprise IT infrastructure is a complex and a dynamic environment that is generally described as a black hole by its IT managers. The knowledge about an enterprise network's layout (topology), resources (availability and usage), elements residing on the network (devices, applications, their properties and the interdependencies among them) as well as the ability to maintain this knowledge up-to-date, are all of critical for managing and securing IT assets and resources. Unfortunately, the current available network discovery technologies (active network discovery and passive network discovery) suffer from numerous technological weaknesses which prevent them from providing with complete and accurate information about an enterprise IT infrastructure. Their ability to keep track of changes is unsatisfactory at best. The inability to \"know\" the network directly results with the inability to manage and secure the network in an appropriate manner. This is since it is impossible to manage or to defend something, or against something, its existence is unknown or that only partial information about it exists. The first part of the talk presents the current available network discovery technologies, active network discovery and passive network discovery, and explains their strengths and weaknesses. The talk highlights technological barriers, which cannot be overcome, with open source and commercial applications using these technologies. The second part of the talk presents a new hybrid approach for infrastructure discovery, monitoring and control. This agent-less approach provides with real-time, complete, granular and accurate information about an enterprise infrastructure. The underlying technology of the solution enables maintaining the information in real-time, and ensures the availability of accurate, complete and granular network context for other network and security applications. During the talk new technological advancements in the fields of infrastructure discovery, monitoring and auditing will be presented. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Ofir CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T000000Z DTEND:20050731T005000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-895853ac55ce SUMMARY:Top Ten Legal Issues in Computer Security [Jennifer Granick] DESCRIPTION: \" This will be a practical and theoretical tutorial on legal issues related to computer security practices. In advance of the talk, Granick will unscientifically determine the \"Top Ten Legal Questions About Computer Security\" that Defcon attendees have and will answer them as clearly as the unsettled nature of the law allows. While the content of the talk is audience driven, Granick expects to cover legal issues related to vulnerability disclosure, copyright infringement, reverse engineering, free speech, surveillance and civil liberties. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Granick CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T000000Z DTEND:20050731T005000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-95877c941fe9 SUMMARY:Hacker Jeopardy until... LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon019 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T010000Z DTEND:20050731T015000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-a0d2fa44855c SUMMARY:Black & White Ball until 04:00 LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon01a CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T010000Z DTEND:20050731T015000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-e0f08425baf8 SUMMARY:Movies with the Dark Tangent until 01:00 LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon018 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T010000Z DTEND:20050731T015000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-e7ac93a647e1 SUMMARY:Registration closes CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon01b CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T020000Z DTEND:20050731T030000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-ad65e370eece SUMMARY:Chillout in Parthenon 2 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#chillout3 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T140000Z DTEND:20050731T150000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-fbd687b2308a SUMMARY:Meme Mining for Fun and Profit [Broward Horne] DESCRIPTION: \" Technology trends are treacherous. Should you learn java or visual basic? Pay for Windows or download Linux? Will that investment in Bluetooth pay off? Or will you get suckered by a faddish book written by a fading technology guru? You can't know the future (yet), but you can make educated guesses and tilt the odds in your favor. Meme Miner is a simple program for trend tracking. Its power lies in the business and social bandwidth concepts behind its creation. Meme Miner shows current technology trends, but also gives an historical perspective of their past. You will NOT get a lesson in HTTP hacking in this session, but you will get practical and valuable business concepts to help survive (and perhaps prosper) in the next technology upheaval. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Horne CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T150000Z DTEND:20050731T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-eb4f27e28fe1 SUMMARY:DIRA: Automatic Detection DESCRIPTION: \" Buffer overflow attacks are known to be the most common type of attacks that allow attackers to hijack a remote system by sending a specially crafted packet to a vulnerable network application running on it. A comprehensive defense strategy against such attacks should include (1) an attack detection component that determines the fact that a program is compromised and prevents the attack from further propagation, (2) an attack identification component that identifies attack packets and generates attack signatures so that one can block such packets in the future, and (3) an attack repair component that restores the compromised application's state to that before the attack and allows it to continue running normally. Over the last decade, a significant amount of research has been vested in the systems that can detect buffer overflow attacks either statically at compile time or dynamically at run time. However, not much effort is spent on automated attack packet identification or attack repair. We present a unified solution to the three problems mentioned above. We implemented this solution as a GCC compiler extension called DIRA that transforms a program's source code so that the resulting program can automatically detect any buffer overflow attack against it, repair the memory damage left by the attack, and generate the attack signature. We used DIRA to compile several network applications with known vulnerabilities and tested DIRA's effectiveness by attacking the transformed programs with publicly available exploit code. The DIRA-compiled programs were always able to detect the attacks, produce attack signatures, and most often repair themselves to continue normal execution. The automatically produced signatures are context-aware as they describe all attack packets and accurate because each of the packets is described as a regular expressions. To the best of our knowledge DIRA is the first system capable of producing accurate attack signatures from a single attack instance and performing post-attack repair. Related tools: GCC, http://gcc.gnu.org Project home page: http://www.ecsl.cs.sunysb.edu/dira \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Smirnov CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T150000Z DTEND:20050731T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-e2ba86db08b9 SUMMARY:Forensic Data Acquisition Tools [RS] DESCRIPTION: \" Proper recovery of evidence can be critical to a successful investigation or prosecution. This talk focuses on the different tools and techniques that are used by US Law Enforcement to get an uncontaminated copy of digital evidence from a suspect machine. The goal of this presentation is to teach not only how to copy all the data from a suspect machine, but also to instruct on how to make sure that any evidence collected can be used in court. Both hardware and software based forensic acquisition tools will be covered, with the various strengths and weaknesses of each product discussed. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Sheehy CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T150000Z DTEND:20050731T155000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-aaee3dbcbfea SUMMARY:WarDrive:Running Man CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon01c CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T150000Z DTEND:20050731T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-a7b08e1646a6 SUMMARY:Visual Security Event Analysis [Raffael Marty] DESCRIPTION: \" In the network security world, event graphs are evolving into a useful data analysis tool, providing a powerful alternative to reading raw log data. By visually outlining relationships among security events, analysts are given a tool to intuitively draw conclusions about the current state of their network and to respond quickly to emerging issues. I will be showing a myriad of graphs generated with data from various sources, such as Web servers, firewalls, network based intrusion detection systems, mail servers, and operating system logs. Each of the graphs will be used to show a certain property of the dataset analyzed. They will show anomalous behavior, misconfigurations and simply help document activities in a network. As part of this talk, I will release a tool tool that can be used to experiment with generating event graphs. A quick tutorial will show how easy it is to generate graphs from security data of your own environment. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Marty CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T160000Z DTEND:20050731T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cd7e40-fcce-11d9-9b23-99dbf69ecef9 SUMMARY:Introducing the Bastille Hardening Assessment Tool [Jay Beale] DESCRIPTION: \" Bastille has been re-released as an assessment and hardening tool. With the help of the US Government's TSWG, we've added full hardening assessment capabilities, complete with scoring. This allows Bastille to measure and score an individual system's security settings against user-provided guidelines, possibly before allowing a system onto the network. Security or system administrators can use this to assess the relative state of a given system compared to Best Practices, to other systems in the organization, or to an organization-supplied minimum standards file. They can also use it to learn what hardening steps would be helpful for the given system. Bastille's new mode can even help in verifying compliance with new legislation, including Sarbanes Oxley, GLBA and HIPAA. It can also help in lowering insurance premiums - AIG, the largest provider of cybersecurity insurance, decreases premiums by 15% for organizations following best practices in proactive defense. Open source tools have hardened systems in the past (Bastille, Titan, YASSP), while free or open source tools have measured security settings in the past (COPS, CIS Unix Scoring Tool). No popular open source tool besides Bastille can do both, using the weaknesses found in an audit to harden systems. This functionality would normally be found only in a separate tool and thus warrants the re-release of Bastille. We originally released Bastille Linux/Unix in 1999 as a host hardening tool, built to tighten security settings on a system, set stronger policies on that system and educate system administrators. Bastille has been extremely popular and has since been ported to seven Linux distributions, OS X and HP-UX. Support for FreeBSD and Solaris is underway. Bastille ships by default with Gentoo, Debian(apt-get) and HP-UX, the latter of which has made it part of the installer and contributes two developers to the project. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Beale CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T160000Z DTEND:20050731T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c6f6f7bb26f2 SUMMARY:Hacking the Mind (Influence and NLP) [Mystic] DESCRIPTION: \" Do you ever find your self wondering if good social engineers and highly influential people are just born that way? Well, you might be surprised to find out that any human skill can be duplicated including being a master at influence. This is what forms the basis for a field of study known as NLP or Neuro-Linguistic-Programming. In this talk I will give an introduction to what NLP is and how it is used and will also provide you with some tools to help you better understand how you and others are influenced and how to exploit it. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Mystic CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T160000Z DTEND:20050731T165000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c2ef1a4d8691 SUMMARY:The Insecure Workstation II `bob reloaded` [Deral Heiland] DESCRIPTION: \" The insecure workstation II `Bob Reloaded`. Exploring attack vectors within Microsoft desktop systems. A close look at third party applications that still suffer from api call vulnerabilities and how attackers can use these vulnerabilities to escalate there rights to system level . Also will be exploring this year's security research into \"attacks against the local desktop login\". Demonstration of desktop access without logging in. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Heiland CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T170000Z DTEND:20050731T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-94221ab73ffa SUMMARY: Doing Not-For-Profit Tech: The Hacker Foundation Year in Review [Jesse Krembs DESCRIPTION: \" Fresh from a year of grappling with Tsunamis, the IRS and building IT in Uganda, members of The Hacker Foundation will tell the story of their first year as a federally recognized non-profit organization while providing practical insight on doing charitable IT work throughout the world. Tips and tricks on everything from funding for free software projects to keeping a dust storm from killing your laptop will be presented. The Hacker Foundation serves as a research and service organization to promote and explore the creative use of technological resources across frontiers with a global outlook. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Krembs CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T170000Z DTEND:20050731T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-d28c35c4f93e SUMMARY:Booksigning: Jay Beale's \"Snort 2.1 Intrusion Detection\" CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon01d CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T170000Z DTEND:20050731T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-d1c897805947 SUMMARY: Surgical Recovery from Kernel-Level Rootkit Installations [Julian Grizzard] DESCRIPTION: \" Conventional wisdom states that once a system has been compromised, it can no longer be trusted and the only solution is to wipe the system clean and reinstall. This talk goes against the grain of conventional wisdom and asks are there more efficient ways to repair a system other than complete reinstallation. Specifically, this talk will focus on the detection of and recovery from the installation of both traditional and kernel-level rootkits. Included in the presentation is a demonstration of an operating system architecture and intrusion recovery system (IRS) that is capable of recovering from some of the most prevalent rootkits seen in the wild. Prototype recovery tools will be released. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Grizzard CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T170000Z DTEND:20050731T175000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-98716d69b462 SUMMARY:WarDrive:Running Man CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon01e CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T180000Z DTEND:20050731T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-f9a295948c99 SUMMARY:Analysis of Identity Creation Detection Schemes post-9/11 [Cerebus] DESCRIPTION: \" Have you wondered exactly how personal information is being used to help in the detection of Identity Creation in the post-9/11 world? Exactly how safe are social security numbers as a means to identity? How easy is it to creat ea valid SSN that will pass inspection by the Identity detection systems in place for business and government today? Or how you can recreate someone's ssn only knowing their date of birth and the last four digits of their ssn? This presentation will explain how current identity creation detection schemes work. You will leave understanding what these schemes look for to flag someone as needing more investigation to establish that they are who they say they are. You will also learn about the history of the social security number, what the number means, and how it is used to establish identity. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#cerebus CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T180000Z DTEND:20050731T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-c45a98ffccf0 SUMMARY: Booksigning: Contributors to \"InfoSec Career Hacking\" including Aaron Bayles and Chris Hurley CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon01f CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T180000Z DTEND:20050731T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-abb9e2ccf637 SUMMARY:GeoIP Blocking DESCRIPTION: \" What if I told you, than in a few minutes and at no extra cost, you could be blocking up to 30% of all malware headed for your network? Sound to good to be true? Well it doesn't work for everyone and there are a lot of caveats, but it can be an effective way to eliminate a large portion of the malicious traffic aimed at your network. In this talk we will cover why you would want to GeoIP block and why it might not be a good choice for you. We will then get into the mechanics with actual IP blocks given and strategies for both full and limited GeoIP blocking. You have nothing to lose and may gain a valuable tool in your network security arsenal. \" LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Howlett CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T180000Z DTEND:20050731T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-c13f46a7b654 SUMMARY:A Linguistic Platform for Threat Development [Ben Kurtz] DESCRIPTION: \" Sick of hand-coding each and every exploit? The past few years have seen the rise of some generalized frameworks for the exploitation of vulnerabilities, but none of them are general-purpose enough to accommodate arbitrary hardware and network protocols. By applying programming language theory to the development of new networks attacks, we can create next-generation platforms capable of quickly handling arbitrary protocols and hardware, and exponentially reducing threat development time. The advances made in compilers in the past decades allow us to divorce ourselves from the tedious mechanics of custom-crafting network attacks and focus only on what we want the attack to do. This new platform has serious implications for both good (rapidly adding 0-day exploits to your lab's regression testing with no programming knowledge) and for evil (allowing people with no programming knowledge to wield a database of malevolence). The Linguistic Platform can simultaneously accomodate both the generation of network traffic and the decomposition of packet captures for subsequent modification and playback. Using this system, a user can capture a malicious traffic stream in Ethereal, modify it as needed, and play it back on a live network. By deploying several clustered systems, it can even play back multi-node conversations, such as a man-in-the-middle attack. The design of new threats and the organization of threats into a database are also drastically simplified by this system. In this talk, I will introduce a simple and incredibly powerful approach to the scripting, capture, and playback of malicious network traffic, and detail the design goals and considerations of a Linguistic Platform for Threat Development. Some familiarity with linguistics or finite automata will be helpful, but is not required. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Kurtz CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T180000Z DTEND:20050731T185000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-d4d4e18db2b5 SUMMARY:Steve Dugan LOCATION:Apollo CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon020 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T190000Z DTEND:20050731T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-db8f13678e74 SUMMARY: \"Shadow Walker\" -- Raising The Bar For Rootkit Detection [Sherri Sparks DESCRIPTION: \" Last year at Black Hat, we introduced the rootkit FU. FU took an unprecented approach to hiding not previously seen before in a Windows rootkit. Rather than patching code or modifying function pointers in well known operating system structures like the system call table, FU demonstrated that is was possible to control the execution path indirectly by modifying private kernel objects in memory. This technique was coined DKOM, or Direct Kernel Object Manipulation. The difficulty in detecting this form of attack caused concern for anti-malware developers. This year, FU teams up with Shadow Walker to raise the bar for rootkit detectors once again. In this talk we will explore the idea of memory subversion. We demonstrate that is not only possible to hide a rootkit driver in memory, but that it is possible to do so with a minimal performance impact. The application (threat) of this attack extends beyond rootkits. As bug hunters turn toward kernel level exploits, we can extrapolate its application to worms and other forms of malware. Memory scanners beware the axiom, 'vidre est credere' . Let us just say that it does not hold the same way that it used to. \" LOCATION:Parthenon 3 & 4 CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#sparks CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T190000Z DTEND:20050731T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54cf0570-fcce-11d9-9d27-8166542cc8db SUMMARY: Why Tech Documentaries are Impossible (And why we have to do them anyway.) [Jason Scott] DESCRIPTION: \" Documentaries have a place in telling the history and story of many different cultures and events, but documentaries about technical subjects tend to run into common problems: too light, too wrong, too hated. Is the patient terminal? Can you create a film that is both informative and of interest to a general audience? Having spent 4 years creating a tech documentary of his own on the era of the Dial-up Bulletin Board system, Jason Scott of textfiles.com talks about what unique challenges exist in the film medium for telling a highly technical story, as well as what choices had to be made throughout production. The talk will be illustrated with sequences from the resultant five and a half hour BBS Documentary Mini-series. \" LOCATION:Tent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#Scott CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T190000Z DTEND:20050731T195000Z DTSTAMP:20050725T053702Z END:VEVENT BEGIN:VEVENT UID:54d08ca0-fcce-11d9-921b-b690ecf29b0d SUMMARY:Award Ceremonies hosted by Dark Tangent CATEGORIES:Defcon 13 URL:http://www.defcon.org/html/defcon-13/dc13-speakers.html#eventAnon021 CLASS:PUBLIC X-MOZILLA-RECUR-DEFAULT-INTERVAL:0 DTSTART:20050731T200000Z DTEND:20050731T205000Z DTSTAMP:20050725T053702Z END:VEVENT END:VCALENDAR