media.carolinacon.org

If you own a Multi Function Printer, then I own you – Deral Heiland

CarolinaCon — Thu, 05 May 2011 02:57:51 +0000

SUMMARY: In the immortal words of that old gray Donkey “Pathetic,” he said. “That’s what it is. Pathetic.” Back again for another year of vulnerabilities and exploitation. with a focus on Multifunction printer vulnerabilities including authentication bypass, information leakage flaws, and XSS flaws. We will be discussing attacking multifunction printer(MFP)devices both large scale business devices and small home office printers to harvest information such as usernames, email addresses, and authentication information including SMB, ftp, Email, LDAP passwords and more.

TITLE: If you own a Multi Function Printer (MFP), then I own you
PRESENTER: Deral Heiland

Yara and Python: The Malware Detection Dynamic Duo – mjg

CarolinaCon — Thu, 05 May 2011 02:48:42 +0000

SUMMARY: Malware attacks are growing rapidly with no end in sight. People all over are doing what they can to classify and detect these attacks as quickly as possible. Malware researchers are using every tool at their disposal to mine as much data as possible about these attacks and their usage. One such tool is Yara. I’ll go over what Yara is, what it can do for you, how to leverage Python to do it, and an example of malware classification and detection.

TITLE: Yara and Python: The Malware Detection Dynamic Duo
PRESENTER: mjg (Michael Goffin)

We Don’t Need No Stinking Badges

CarolinaCon — Wed, 21 Apr 2010 17:26:20 +0000

Shawn Merdinger – We Don’t Need No Stinking Badges

In the security world, attacker physical access often means game over — so what happens if you can’t trust your building’s electronic door system? This presentation and paper explore attack surfaces and exploitation vectors in a major vendor of electronic door access controllers (EDAC). The main focus is on time-constrained rapid analysis and bug-hunting methodologies, while covering research techniques that assist in locating and targeting EDAC systems. In addition, a review of practical countermeasures and potential research activities in the EDAC space are covered. Attendees can expect an eye-opening experience regarding insecurities of critical systems controlling physical access to hospitals, schools, fire stations, businesses and other facilities.

Slides

Format String Vulnerabilities 101

CarolinaCon — Fri, 28 Mar 2008 01:29:41 +0000

A comprehensive presentation on format string vulnerabilities within the Windows Intel Architecture environment. This presentation will take the audience from the basics of discovering format string vulnerabilities, through to the execution of exploit code. Using a debugger, we will show how format strings can trigger various exceptions and gain control of the flow of execution within a vulnerable application. Presentation will include several live demonstrations.

HackNano

CarolinaCon — Sat, 10 Jun 2006 04:10:09 +0000

Cheap and easy Nano Hacking

Gender Issues in Hacking and Hacker Culture 2006

CarolinaCon — Sat, 10 Jun 2006 04:05:52 +0000

A great deal of academic research suggests hacker culture is largely male dominated. The gender differences present have not been systematically explored, though several theoretical explanations have been offered by sociologists and criminologists. As such, it is necessary to examine the gendered experiences of hackers to expand our knowledge of how these experiences impact individuals and their behavior. This talk will explore this issue using real world data from web forums and interviews with active hackers. I will also discuss my ongoing study examining male and female hackers’ experiences, and call for interested individuals to participate in this research study. Audience participation is welcomed during the presentation to share personal feelings, beliefs, and knowledge about gender and hacking.

Arp Spoofing 101

CarolinaCon — Sat, 10 Jun 2006 04:03:51 +0000

Address Resolution Protocol (ARP) spoofing, also known as ARP poisoning or ARP Poison Routing (APR), is a technique used to attack an Ethernet wired or wireless network which may allow an attacker to sniff data frames on a local area network (LAN), modify the traffic, or stop the traffic altogether (known as a denial of service attack). The attack can obviously only happen on networks that indeed make use of ARP and not another method.

The principle of ARP spoofing is to send fake, or “spoofed”, ARP messages to an Ethernet LAN. Generally, the aim is to associate the attacker’s MAC address with the IP address of another node (such as the default gateway). Any traffic meant for that IP address would be mistakenly sent to the attacker instead. The attacker could then choose to forward the traffic to the actual default gateway (passive sniffing) or modify the data before forwarding it (man-in-the-middle attack). The attacker could also launch a denial-of-service attack against a victim by associating a nonexistent MAC address to the IP address of the victim’s default gateway.

ARP spoofing attacks can be run from a compromised host, or a hacker’s machine that is connected directly onto the target Ethernet segment.

From Here to E-ternity 2006

CarolinaCon — Sat, 10 Jun 2006 03:52:45 +0000

A Chronology of the Phrack Microcosm. This talk will transport you back to the beginnings of ARPANET, through to 1982 and 110 Baud modems. Phreaking, Hacking, BBS’s and the beginnings of “Elite” in the early-mid 80′s. You’ll be guided past the Great Hacker Wars, Eternal September, Operation Sundevil and into the decline of Phreaking, the rise of “script kiddy hacking” and the decline of the “Elite Underground” into the the modern day buzzword-laden society of
“Hacker”, “1337 speak” and everything “E”. You’ll hear first-hand from someone who has lived, experienced, and survived it with a few battle wounds of his own.

Reverse Engineering

CarolinaCon — Sat, 10 Jun 2006 03:39:56 +0000

Reverse Engineering is the art of static and/or runtime analysis of a compiled binary to understand exact execution flow. The most straightforward way to demonstrate Reverse Engineering is by using sample code and diving into the tools. This talk will go over the basics of a computer system and supporting operating system in presentation format and then demonstrate simple reverse engineering techniques to analyze binaries and to “crack” the copyprotection that they use. At the completion of this presentation you will have a basic understanding of binary structure, computer system hardware and operating system design,
and the basic skill set to analyze the flow of a trivial binary.

College of Hacking

CarolinaCon — Sat, 10 Jun 2006 03:31:55 +0000

Successful Network Penetration for Dummies. Yes folks for the first (and last) time ever, you can attend Vic Vandal’s “College of Hacking” at CarolinaCon for no additional cost (except your precious time…well precious for some anyway). Prepare for your new career in this fast-growing hi-tech field in under 2 hours, and walk away with an actual diploma afterward. Just imagine the look on your friends’ faces when they learn that you are a degree-holding hacker! As a College of Hacking graduate, you’ll be smug in the knowledge that no corporate computer system is safe from your talents. In fact Vic guarantees it, or he’ll personally give you your course fees back. All you require is attendance and at least the intelligence level of your average primate. And if you have the intelligence level of your average human, so much the better. Just think, you’ll be able to sleep
late and never have to worry about your bank balance again!
Vic will use actual live demonstrations as he walks you through the finer points of network enumeration, vulnerability discovery and exploitation, password plundering, system access level boosting, data destruction, electronic banking, and covering one’s tracks.