The Next Hope Talk Schedule Announced
From July 16th – 18th 2010 in New York City the guys behind 2600 Magazine will be hosting The Next Hope, a conference for hackers of all types: amateurs, hobbyists, professionals and the generally curious.
Topics are wide and vary from IPv6 to Phone Phreaking, Disaster Relief to Graphic Novels and Cooking to DNS Sec – here’s the full talk schedule announced Monday (see table with abstracts here)…
Friday 16th
| Time | Tesla | Lovelace | Bell |
|---|---|---|---|
| 10:00 | IPv6 Playground: New Hope Update
Joe Klein |
GPS – It’s Not the Satellites That Know Where You Are
The Cheshire Catalyst |
|
| 11:00 | The State of Global Intelligence
Robert Steele |
Locational Privacy and Wholesale Surveillance via Photo Services
Ben Jackson |
Light, Color, and Perception
Jonathan Foote |
| 12:00 | Wireless Security: Killing Livers, Making Enemies
Dragorn, RenderMan |
Content of the Future
Greg Newby, Michael S. Hart |
SHODAN for Penetration Testers
Michael ‘theprez98′ Schearer |
| 13:00 | Keynote Address
Dan Kaminsky |
||
| 14:00 | (2 hours) | Digital: A Love Story
Christine Love, Jason Scott |
Examining Costs, Benefits, and Economics in Malware and Carding Markets
Dr. Thomas J. Holt |
| 15:00 | Arse Elektronika: Sex, Tech, and the Future of Screw-It-Yourself
Johannes Grenzfurthner |
Botnet Resistant Coding: Protecting Your Users from Script Kiddies
Fabian Rothschild, Peter Greko |
Electronic Take Back
John McNabb |
| 16:00 | Own Your Phone
TProphet |
Sita Sings the Blues: A Free Culture Success Story
Nina Paley |
Cooking for Geeks
Jeff Potter |
| 17:00 | Keeping Your Job While Being a Hacker
Alex Muentz |
“Brilliants Exploits” – A Look at the Vancouver 2010 Olympics
Colin Keigher |
Design of a Wireless EMG
Konstantin Avdashchenko |
| 18:00 | Tor and Internet Censorship
Jacob Appelbaum, Seth Schoen |
The OpenAMD Project
Aestetix, cpfr, Echo, Far McKon, Mitch Altman, Travis Goodspeed |
Lisp, The Oldest Language of the Future
Adam Tannir |
| 19:00 | Extreme Lockpicking
Barry Wels, Han Fey |
Easy Hacks on Telephone Entry Systems
Davi Ottenheimer |
Buying Privacy in Digitized Cities
Eleanor Saitta |
| 20:00 | Build Robots and See the World
Jonathan Foote |
Towards Open Libraries and Schools
Ellen Meier, Gillian ‘Gus’ Andrews, Jessamyn West |
Monkeysphere: Fixing Authentication on the Net
Daniel Kahn Gillmor, Jameson Rollins |
| 21:00 | Hackerspaces Forever: A Panel
Hackerspaces.org |
Introduction to the Chip Scene: Low Bit Music and Visuals
Don Miller, Joey Mariano, Peter Swimm |
Risk Analysis for Dummies
Nick Leghorn |
| 22:00 | (2 hours) | Electronic Waste: What’s Here and What’s Next
Stephanie Alarcon |
Detecting and Defending Your Network from Malware Using Nepenthes
Marco Figueroa |
| 23:00 | Get Lamp Screening and Discussion
Jason Scott |
Interaction with Sensors, Receivers, Haptics, and Augmented Reality (90 minutes)
Elle Mehrmand, Micha Cardenas / Azdel Slade, Pan, Ryan O’Horo, TradeMark G. |
Injecting Electromagnetic Pulses into Digital Devices
Paul F. Renda |
Saturday 17th
| Time | Tesla | Lovelace | Bell |
|---|---|---|---|
| 10:00 | How to Run an Open Source Hardware Company
Limor ‘Ladyada’ Fried, Phillip Torrone |
T+40: The Three Greatest Hacks of Apollo
Stephen Cass |
False Domain Name Billing and Other Scams
The Cheshire Catalyst |
| 11:00 | Video Surveillance, Society, and Your Face
Joshua Marpet |
Behind the Padlock: HTTPS Ubiquitous and Fragile
Seth Schoen |
Hacking Out a Graphic Novel
Ed Piskor |
| 12:00 | Grand Theft Lazlow – How Hacking is Both the Death and Future of Traditional and Interactive Publishing, Journalism, and the Media
Lazlow |
Vintage Computing
Bill Degnan, Evan Koblentz |
For Its Own Sake and to Build Something Better: A Primer on Neuroscience, Bat Echolocation, and Hacker Bio-inspiration
Scott Livingston |
| 13:00 | Keynote Address
Julian Assange |
||
| 14:00 | (2 hours) | A Red Team Exercise
Tom Brennan |
No Free Lunch: Privacy Risks and Issues in Online Gaming
Don Tobin, Lyndsey Brown |
| 15:00 | How to Bring Your Project from Idea to Reality: Make a Living Doing What You Love
Mitch Altman |
Geo-Tagging: Opting-In to Total Surveillance
Paul V |
Modern CrimeWare Tools and Techniques: An Analysis of Underground Resources
Alexander Heid |
| 16:00 | Snatch Those Waves: Prometheus Radio and the Fight for Popular Communications
Maggie Avener, Pete Tridish |
Memory Fun 101 – Memory Training for Everyone
Chester Santos |
Surf’s Up! Exploring Cross Site Request Forgery (CSRF) through Social Network Exploitation
Daniel McCarney |
| 17:00 | Privacy is Dead – Get Over It
Steven Rambam |
Smartphone Ownage: The State of Mobile Botnets and Rootkits
Jimmy Shah |
Much Ado About Randomness
Dr. Aleksandr Yampolskiy |
| 18:00 | (3 hours) | Free Software: Why We Need a Big Tent
Deb Nicholson |
Why You Should Be an Amateur
Ben Jackson |
| 19:00 | (3 hours) | Reach Out And Touch Face: A Rant About Failing
Johannes Grenzfurthner |
Hackers for Human Rights
Adrian Hong |
| 20:00 | Rummaging in the Government’s Attic: Lessons Learned from More Than 1,000 Freedom of Information Act Requests
Michael Ravnitzky, Phil Lapsley |
Hey, Don’t Call That Guy A Noob: Toward a More Welcoming Hacker Community
Nicolle (‘Rogueclown’) Neulist |
The Telephone Pioneers of America
Kyle Drosdick |
| 21:00 | Social Engineering
Emmanuel Goldstein |
Circuitbending
Jimmie Rodgers |
|
| 22:00 | Building and Breaking the Next HOPE Badge
Travis Goodspeed |
2600 Meetings: Yesterday, Today, and Tomorrow
Gonzo, Grey Frequency, Rob T Firefly |
PSTN-based Cartography
Da Beave, JFalcon |
| 23:00 | Net Wars Over Free Speech, Freedom, and Secrecy or How to Understand the Hacker and Lulz Battle Against the Church of Scientology
Finn Brunton, Gabriella Coleman |
Hacking Our Biochemistry: Pharmacy and the Hacker Perspective
Jennifer Ortiz |
Radio Reconnaissance in Penetration Testing – All Your RF Are Belong to Us
Matt Neely |
| 00:00 | Saturday Night Hacker Cinema | Spy Improv on Steroids – Steele Uncensored – Anything Goes
Robert Steele |
Sunday 18th
| Time | Tesla | Lovelace | Bell |
|---|---|---|---|
| 10:00 | The Need for a Computer Crime Innocence Project
Alex Muentz, Joe Cicero, Seth Schoen |
Hacking Your GPS
Cass Lewart |
Hacking Terrorist Networks Logically and Emotionally
Hat Trick, Mudsplatter |
| 11:00 | From Indymedia to Demand Media: Participation, Surveillance, and the Transformation of Journalism
Chris Anderson |
Hacking for an Audience: Technology Backstage at Live Shows
John Huntington |
Lock Bypass without Lockpicks
Dan Crowley |
| 12:00 | Cats and Mice: The Phone Company, the FBI, and the Phone Phreaks
Phil Lapsley |
Simpsons Already Did It – Where Do You Think the Name “Trojan” Came From Anyway?
Bill Cheswick, Matt Blaze, Sandy Clark (Mouse) |
Burning and Building Bridges: A Primer to Hacking the Education System
Christina ‘fabulous’ Pei |
| 13:00 | The DMCA and ACTA vs. Academic and Professional Research: How Misuse of This Intellectual Property Legislation Chills Research, Disclosure, and Innovation
Chris Mooney, Tiffany Rad |
American Bombe: How the U.S. Shattered the Enigma Code
Shalom Silbermintz |
TrackMeNot: Injecting Reasonable Doubt in Everyone’s Queries
Vincent Toubiana |
| 14:00 | Informants: Villains or Heroes? (90 minutes) | Into the Black: DPRK Exploration
Michael Kemp |
The Freedom Box: How to Reclaim Privacy on the Web
James Vasile |
| 15:00 | Hacking the Food Genome (15:30)
Gweeds |
CV Dazzle: Face Deception
Adam Harvey |
Bakeca.it DDoS – How Evil Forces Have Been Defeated
Alessio ‘mayhem’ Pennasilico |
| 16:00 | Hackers without Borders: Disaster Relief and Technology
Dennison Williams, Elena, Smokey |
The Black Suit Plan Isn’t Working – Now What?
James Arlen |
|
| 17:00 | The HOPE Network | Sniper Forensics – Changing the Landscape of Modern Forensics and Incident Response
Chris Pogue |
|
| 18:00 | Closing Ceremonies |
Boot Kit Renders Windows + Truecrypt Entirely Vulnerable
Having been using PCs for at least twenty years and having been an IT Professional for the last eight it’s a rare occasion for me to be blown-away by a piece of technology but the Stoned Bootkit, presented by the author Peter Kleissner at HAR 2009, literally blows my mind. You can find the video here or the presentation here.
Essentially a bootkit is a small piece of code that can be inserted into the Master Boot Record of a PC’s main boot drive, this code is then executed every time the PC is switched on and executes before the operating system loads. This is effectively a variant of more traditional rootkits which tend to install themselves as low-level drivers as part of the operating system and they are both equally dangerous in that once a system has been compromised the writer of the rootkit/bootkit can effectively do whatever they like. This may range from logging and transmitting keystrokes and capturing bank details to bypassing product activation or enabling law enforcement to gain access to allow forensic analysis.
The Stoned Bootkit is effectively a technical demo and whilst it is entirely effective I am not aware that it has been put to any nefarious purpose, in fact it was released by Peter Kleissner at the Black Hat security conference in 2009 to an audience of security professionals and I believe intended by the author as an ‘eye opener’ for the industry. Notably, Stoned is the first bootkit that has been tested an verified on Windows 2000, Windows XP, Server 2003, Server 2008 and Windows 7.
So why does this blow my mind? It’s not that the technology is brand new – MBR viruses have been around for decades which is something which Kleissner acknowledges himself by naming his boot-kit after one of the earliest examples: the Stoned Virus from 1987 (I remember encountering the variants Manitoba and Zapper in the early nineties). The reason that I was so awed by Kleissner’s presentation is the comprehensive list of attack scenarios he presents, the ease with which this is possible and the fact that it can be used to entirely bypass whole-disk encryption (tested against Truecrypt and DiskCryptor). The bootkit is available for download as an ‘infected PDF’ or even as Live CD that can be used to boot and infect any PC to which you can gain physical access.
There has been some debate between Kleissner and Truecrypt about whether this constitutes a ‘valid’ attack, the debate is fairly academic since Truecrypt themselves acknowledge that the attack is effective provided that the attacker has administrator privileges (most non-technical users run this this way), that administrator privileges can be gained (most likely by other exploits) or through physical access to the machine. I’ll concede that Stoned isn’t a valid attack against Truecrypt itself but it is a valid attack against the PC and a such can still be used to entirely bypass Truecrypt which still allows an attacker to achieve the same aim.
As a footnote, it appears that Peter Kleissner is being sued by his former employer, Ikarus Security Software GmbH, for an alleged intellectual property violation (source code theft), given that he is only 18 years old I sincerely hope that this does not harm or curtail Peter’s future career and potential. Alarmingly there are reports (English here) that Ikarus and Kaspersky are attempting to build a criminal case agains Kleissner on charges including “distributing malicious code”, if this sticks it could be worrisome for all security researchers (particularly hobbyist hackers with no money for a good legal defence) who often write code that could be classified as malicious whether they intended it or not – all security flaws could be exploited, does that make it wrong to point them out?
