Difference between revisions of "Ruxcon2015"
Bob Edwards (Talk | contribs) (→SDN Security) |
Bob Edwards (Talk | contribs) (→External links) |
||
(5 intermediate revisions by one user not shown) | |||
Line 4: | Line 4: | ||
This was the 11th Ruxcon, held in a similar format to the annual DEF CON "hacker convention" in the U.S. | This was the 11th Ruxcon, held in a similar format to the annual DEF CON "hacker convention" in the U.S. | ||
+ | == Overview == | ||
There were two streams of talks, as well as some other activities, such as [[Capture The Flag]] (CTF) etc. | There were two streams of talks, as well as some other activities, such as [[Capture The Flag]] (CTF) etc. | ||
+ | |||
+ | [https://ruxcon.org.au/schedule/ Schedule] | ||
== Talks == | == Talks == | ||
=== Hacking the Wireless World - Software Defined Radio Exploits === | === Hacking the Wireless World - Software Defined Radio Exploits === | ||
+ | * [https://ruxcon.org.au/speakers/#Balint%20Seeber Balint Seeber] | ||
=== Purple Teaming: One Year After Going From Full Time Breaker To Part Time Fixer === | === Purple Teaming: One Year After Going From Full Time Breaker To Part Time Fixer === | ||
+ | * [https://ruxcon.org.au/speakers/#Chris%20Gates Chris Gates] | ||
=== Broadcasting Your Attack: Security Testing DAB Radio In Cars === | === Broadcasting Your Attack: Security Testing DAB Radio In Cars === | ||
+ | * [https://ruxcon.org.au/speakers/#Andy%20Davis Andy Davis] | ||
=== Windows 10: 2 Steps Forward, 1 Step Back === | === Windows 10: 2 Steps Forward, 1 Step Back === | ||
+ | * [https://ruxcon.org.au/speakers/#James%20Forshaw James Forshaw] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/Windows%2010,%202%20Steps%20Forward,%201%20Step%20Back%20-%20Redacted.pdf slides] | ||
=== Fruit Salad, Yummy Yummy: An Analysis of ApplePay === | === Fruit Salad, Yummy Yummy: An Analysis of ApplePay === | ||
+ | * [https://ruxcon.org.au/speakers/#Peter%20Fillmore Peter Fillmore] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/YummyYummyFruitSalad_Ruxcon2015_PeterFillmore.pdf slides] | ||
=== High-Def Fuzzing: Exploring Vulnerabilities in HDMI-CEC === | === High-Def Fuzzing: Exploring Vulnerabilities in HDMI-CEC === | ||
+ | * [https://ruxcon.org.au/speakers/#Joshua%20%E2%80%9Ckernelsmith%E2%80%9D%20Smith Joshua "kernelsmith" Smith] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/High-Def%20Fuzzing%20Ruxcon2015.pdf slides] | ||
=== Design, Implementation And Bypass Of The Chain-Of-Trust Model Of iOS === | === Design, Implementation And Bypass Of The Chain-Of-Trust Model Of iOS === | ||
+ | * [https://ruxcon.org.au/speakers/#Team%20Pangu Team Pangu] | ||
=== VENON === | === VENON === | ||
+ | * [https://ruxcon.org.au/speakers/#Jason%20Geffner Jason Geffner] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/VENOM%20-%20Ruxcon.zip slides (zip)] | ||
=== Hack NFC Cards & Steal Credit Card Data With Android For Fun & Profit === | === Hack NFC Cards & Steal Credit Card Data With Android For Fun & Profit === | ||
+ | * [https://ruxcon.org.au/speakers/#Babil%20Golam%20Sarwar Babil Golam Sarwar] | ||
=== SDN Security === | === SDN Security === | ||
+ | * [https://ruxcon.org.au/speakers/#David%20Jorm David Jorm] | ||
+ | |||
Cool talk on [[SDN]] Security by David Jorm, a Brisbane-based Java Security expert, now head of the Security teams for [[OpenDaylight]] and [[ONOS]]. | Cool talk on [[SDN]] Security by David Jorm, a Brisbane-based Java Security expert, now head of the Security teams for [[OpenDaylight]] and [[ONOS]]. | ||
Line 31: | Line 49: | ||
=== Why Attacker's Toolsets Do What They Do === | === Why Attacker's Toolsets Do What They Do === | ||
+ | * [https://ruxcon.org.au/speakers/#Matt%20McCormack Matt McCormack] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/Ruxcon%202015%20-%20McCormack.pdf slides] | ||
=== VoIP Wars: Destroying Jar Jar Lync === | === VoIP Wars: Destroying Jar Jar Lync === | ||
+ | * [https://ruxcon.org.au/speakers/#Fatih%20Ozavci Fatih Ozavci] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/VoIPWars-DestroyingJarJarLync-Filtered.pdf slides] | ||
=== Spread Spectrum Satcom Hacking: Attacking The Globalstar SDS === | === Spread Spectrum Satcom Hacking: Attacking The Globalstar SDS === | ||
+ | * [https://ruxcon.org.au/speakers/#Colby%20Moore%20**%20BY%20VIDEO%20** Colby Moore] | ||
=== Hacked to Death === | === Hacked to Death === | ||
+ | * [https://ruxcon.org.au/speakers/#Chris%20Rock Chris Rock] | ||
+ | |||
One of the greatest talks I've ever heard - how to kill someone, virtually... | One of the greatest talks I've ever heard - how to kill someone, virtually... | ||
=== DNS As A Defence Vector === | === DNS As A Defence Vector === | ||
+ | * [https://ruxcon.org.au/speakers/#Paul%20Vixie Paul Vixie] | ||
+ | * [https://ruxcon.org.au/assets/2015/slides/2015-DNS-as-a-Defense-Vector.pdf slides] | ||
+ | |||
by the famous (Internet Hall of Fame) Paul Vixie. | by the famous (Internet Hall of Fame) Paul Vixie. | ||
* [https://dnsdb.info/ DNS Database Online] | * [https://dnsdb.info/ DNS Database Online] | ||
* [https://dnsrpz.info/ DNS Response Policy Zones] | * [https://dnsrpz.info/ DNS Response Policy Zones] | ||
+ | * [https://www.farsightsecurity.com/ Premier Passive DNS Solutions That Transform Threat Feeds Into Actionable Threat Intelligence] | ||
+ | * [[wikipedia:Paul_Vixie|Paul_Vixie]] at Wikipedia | ||
== Panel Discussion == | == Panel Discussion == | ||
Line 55: | Line 85: | ||
== External links == | == External links == | ||
* [https://ruxcon.org.au Ruxcon homepage] | * [https://ruxcon.org.au Ruxcon homepage] | ||
+ | * [https://www.defcon.org DEF CON] homepage | ||
+ | * [https://www.blackhat.com Black Hat] conference website | ||
+ | * [https://kiwicon.org/ Kiwi Con] homepage |
Latest revision as of 13:47, 16 December 2015
Ruxcon 2015, like many former Ruxcons such as Ruxcon2014 was held in the CQ Conference Centre on Queen St., Melbourne on the weekend of 23rd - 25th October, 2015. Probably held in conjunction with the Breakpoint conference.
This was the 11th Ruxcon, held in a similar format to the annual DEF CON "hacker convention" in the U.S.
Overview
There were two streams of talks, as well as some other activities, such as Capture The Flag (CTF) etc.
Talks
Hacking the Wireless World - Software Defined Radio Exploits
Purple Teaming: One Year After Going From Full Time Breaker To Part Time Fixer
Broadcasting Your Attack: Security Testing DAB Radio In Cars
Windows 10: 2 Steps Forward, 1 Step Back
Fruit Salad, Yummy Yummy: An Analysis of ApplePay
High-Def Fuzzing: Exploring Vulnerabilities in HDMI-CEC
Design, Implementation And Bypass Of The Chain-Of-Trust Model Of iOS
VENON
Hack NFC Cards & Steal Credit Card Data With Android For Fun & Profit
SDN Security
Cool talk on SDN Security by David Jorm, a Brisbane-based Java Security expert, now head of the Security teams for OpenDaylight and ONOS.
"Famous" for identifying a bug in OpenDaylight (and ONOS?) wherein a crafted packet would be sent from the switching fabric to the controller, but the (Java) SDN controller did not process correctly and ended up disconnecting the switch device from the control plane. Funny, but serious.
Why Attacker's Toolsets Do What They Do
VoIP Wars: Destroying Jar Jar Lync
Spread Spectrum Satcom Hacking: Attacking The Globalstar SDS
Hacked to Death
One of the greatest talks I've ever heard - how to kill someone, virtually...
DNS As A Defence Vector
by the famous (Internet Hall of Fame) Paul Vixie.
- DNS Database Online
- DNS Response Policy Zones
- Premier Passive DNS Solutions That Transform Threat Feeds Into Actionable Threat Intelligence
- Paul_Vixie at Wikipedia
Panel Discussion
(I had to leave before it finished).
- Senator Scott Ludlum
- Paul Vixie
- Suelette Dreyfus
- Richard Johnson
- Richard Buckland
MC'd by Dr. Silvio Cesare (a current ANU Master's student!)
External links
- Ruxcon homepage
- DEF CON homepage
- Black Hat conference website
- Kiwi Con homepage