Program HackCon#7

2) Kurs II
Mobile Lab

3) Kurs/Seminar III
Microsoft days

By taking advantage of poor printer security and vulnerabilities during penetration testing we are able to harvest a wealth of information from MFP devices including usernames, email addresses, and authentication information including SMB, Email, LDAP passwords. Leveraging this information we have successful gained administrative access into core systems including email servers, file servers and Active directory domains on multiple occasions.

We will also explore MFP device vulnerabilities including authentication bypass, information leakage flaws and attacking firmware upgrade patching process to gain root level access to certain MFP devices. Tying this altogether we will discuss the development of an automated process for harvesting the information from MFP devices with an updated release of our tool PRAEDA. After this session you will be better off to secure your system and nettwork.

The presentation will be held by Deral Heiland, CISSP. Deral serves as a Senior Security Engineer where he is responsible for security assessments, and consulting for corporations and government agencies. In addition, Deral is the founder of Ohio Information Security Forum a not for profit organization that focuses on information security training and education. Deral is also a member of the foofus.net security team, and has presented at numerous international conferences. Deral has over 18 years of experience in the Information Technology field.

By collecting background traffic on the network, and analyzing it, we can perform a host discovery, a port scan, and a host profile which even includes configuration information; all without sending any packets. This means that threats both inside and outside your network can assess and target your network hosts silently without leaving a trail.

In this session, we'll review the work that originally presented at DefCon 19, expand on it by adding additional protocols, examine typical network traffic to see what is made available to us, use the updated tools (and a new one) to utilize this information in an actual attack against a vulnerable network host, and finally finish our time discussing what you can as a network defender do about it. After this session you will be better off to secure your system and nettwork.

The presentation will be held by Gregory Pickett, CISSP, GCIA, GPEN, also known as rogu3ag3nt. Gregory is an Intrusion Analyst for Fortune 100 companies by day and a penetration tester by night. As a penetration tester, his primary areas of focus and occasional research are network and host penetration testing with an interest in using background network traffic to target and exploit network hosts using their own traffic against them. He holds a B.S. in Psychology which is completely unrelated but interesting to know. While it does nothing to contribute to how he makes a living, it does demonstrate how screwed up he actually is.

Things have changed in the malware world. This talk sheds light on the robust exploitation techniques used by the malware such as PDEF+, Ruskill, and Formgrabbing etc with extensive details. TGBs use well defined Bot Development Kit (BDK) for writing malicious plugins. In relation to this, data exfiltration strategies will be discussed in detail in which design and execution of plugin architecture will be presented. Primarily, the nature of malware is better revealed by visualization. This talk has a good set of live demonstrations for showing exploitation tactics of the present day malware. After this session you will be better off to secure your system and nettwork.

Presentation is held by Aditya K Sood. Aditya is a senior security researcher and PhD candidate at Michigan State University. He has already worked in the security domain for years, and also a founder of SecNiche Security Labs. He has been an active speaker at industry conferences and has written content for HITB Ezine, Hakin9, ISSA, ISACA, CrossTalk, Usenix Login, and Elsevier Journals such as NESE and CFS. He is also a co author for debugged magazine.

Smartphones run complete operating system software providing a platform for application developers. Thus, they combine the functions of a camera phone and a Personal digital assistant (PDA).

Said that; Let's own one - shall we.....

In session we will;
... * Building the Android/iPod/iPhone/iPad environment
... * Using Android/iPod/iPhone/iPad as a Pentest Platform
... * Reverse Engineering Android/iPod/iPhone/iPad Apps
... * Exploiting Android/iPod/iPhone/iPad Apps
... * Attacking Web Services via Android/iPod/iPhone/iPad Apps

After this session you will be better off to secure your mobile systems.

Presentation will be held by Joseph McCray. Joe has 10 years of experience in the security industry with a diverse background that includes network and web application penetration testing, forensics, training, and regulatory compliance. Joe is a frequent presenter at security conferences, and has taught the CISSP, CEH, CHFI, and Web Application Security at Johns Hopkins University (JHU), University of Maryland Baltimore College (UMBC), and several other technical training centers across the country (US).

Thy words above don't justify this presentation. It's in fact very hard to describe it - we highly recommend you to participate this presentation as it's to the point and explain security in the manner of rhythm and blues (you will understand this expression when you participate the session).

We'll be going into depth on the future of penetration testing through the Penetration Testing Execution Standard (PTES) and what it takes in order to elevate your security posture in today's crazy world. This is a technical talk, not for the faint of heart, and some direction on where we need to head in the security industry. After this session you will be better off to test your system and nettwork.

Presentation will be held by Dave Kennedy (ReL1K). Dave is responsible for ensuring the overall physical and logical security of a Fortune 1000; publicly traded company. Dave also runs the security consulting practice at Diebold which is focused on enhancing and building security for large and mid-sized organizations. Dave is the creator of the Social-Engineer Toolkit (SET), an open-source penetration testing tool for social-engineering.

Dave is the co-founder of DerbyCon, a large-scale security conference located in Louisville Kentucky. Dave is the co-author of Metasploit: The Penetration Testers Guide book which has been number one in security on Amazon for over 6 months. Prior to Diebold, Dave worked for the United States Marine Corps (USMC) and the intelligence field working on information warfare activities.

We are going to focus on the commercial world of passenger transportation, however will touch upon the military crossovers where fully understood. We will discuss the data acquisition and modeling architectures as well as the BUS and core logic systems that are implemented within several systems.

This session have even more surprises, but we will not disclose it this time - you have to be at HackCon to learn about how to protect yourself and your business. All we can say - you should not miss this session - you need it for your safe travel ;)

The presentation will be held by Chris Roberts and Jesse Diekmann.

Chris is the Founder, CISO and Chief Geek. Chris has played a variety of roles both inside and as a consultant to the IT security, engineering, and architecture/design operations of a number of Fortune 500 companies across the finance, retail, energy, and services sectors. He has a wealth of experience conducting vulnerability assessments, penetration testing, compromise investigations, and digital forensics examinations of all types of information systems.

Jesse Diekmann is one of the main protagonists within OWL's Research facility. His experience is extensive within the mechanical and engineering realm having worked on engines from .020 cid 2 cycle Cox model aircraft to 1100 cid dohc GAA Ford Tanks... coupling that with having rebuilt about everything from transmissions and rear ends to generators/alternators and carburetors... not forgetting his machine shop knowledge and handiness with anything involving heat and/or explosives.

Stolen computer recovery has become almost mundane in these days of Prey Project and Find My iPhone, but back then initially all I had to go on was an intermittently updated dynamic DNS record that only geolocated to a large metropolitan ISP. I'll tell you how I did it, have some merciless laughs at the expense of the pwned, and share a few insights into how LAX security practices actually helped the recovery.

This experience of acting as an authentication credential observer made me more interested in observation attacks and methods of resisting them, so I will then present subsequent research into observation defense. Observation is one of the principal means of compromise of authentication methods relying on secret information such as PINs and login/password combinations.

Attackers can gather this information via observation, either from without by methods such as shoulder surfing and camera-based ATM skimmers, or from within by methods such as keystroke loggers and button-overlay-based ATM skimmers. Though these vulnerabilities of PIN/password based authentication mechanisms are well known, they have been difficult to correct due to the prevalence and general acceptance of such systems -- they are used in essentially all ATMs, mobile device locking mechanisms, and most web-based authentication schemes.

It is difficult to avoid at least the occasional use of untrusted public terminals and devices and the unlocking of one's mobile device in public. I will therefore present academic research into devices and techniques for mitigating the threat of credential compromise when doing so. These include haptic and auditory mechanisms for password entry into public terminals, mobile device tools for turning one's mobile device into an observation-resistant password entry system, and strategies and tools for secure password entry in the presence of keyloggers and other input recording devices. These techniques can successfully evade observation even when one does not have administrative control of the terminal, as in the case of internet cafe computers and public ATMs.

Presentation will be held by Dr. Zoz Brooks. Dr. Zoz Brooks is an an engineer, artist, roboticist, hacker, teacher and international television personality. His research focuses on engineering strategies for improving human-robot communication, based on work undertaken at the MIT Media Laboratory's Robotic Life Group. Besides human-robot interaction he maintains wide research interests in rapid prototyping and computer-controlled fabrication techniques.

He co-hosted the internationally broadcast Discovery Channel television show Prototype This!, in which a small team of engineers was tasked with creating technically challenging, never-before-seen prototypes in a time span of two weeks. He also segment produced and appeared in the Discovery Channel show Time Warp, devoted to high speed imaging of natural and scientific phenomena.

He is devoted to the promotion of STEM (science, technology, engineering and mathematics) and designs university-level classes to improve students' skills in design, fabrication and embedded systems implementation. He is also a popular public speaker, and gives invited talks in both academic and commercial research settings. As a Visiting Professor at KAIST in South Korea, he has developed classes on ubiquitous computing and mechatronic microcontroller hacking ("Ubiquitous Hacking"), rapid prototyping, and making educational science and technology television.

He has also taught the Rapid Prototyping section of the "Build Anything" series as a consultant for MIT's Lincoln Laboratory, hosts the live telecasts of the Roboboat and Robosub autonomous robotics competitions for the AUVSI Foundation, and is the CTO of BlueSky, developer of the LightGrid robotic media creation space.

I denne presentasjonen vektlegges ikke sikkerhet i vesentlig grad, men gir et innblikk i de muligheter som ligger i sosiale medier og hvordan dette blir/vil kunne bli benyttet av ulike organisasjoner.

Foredraget holdes av Christian Brosstad, Informasjonsdirektør i Sparebank1 Gruppen. Christian er en engasjerende foredragsholder, og foredraget gir en unikt bilde i den tiden vi lever i - og fremtiden som venter oss i forhold til sosiale media. Foredraget er til ettertanke for sikkerhetsarbeidet i en organisasjon.

This talk tries to compress my observations in the field and attempt to chart out the shape of things to come in the Information Security arena. What are some trends in exploit development? Improvements in exploit delivery? Targets? We shall talk about the effectiveness of exploits and cyber attacks, ranging from the most sophisticated digital weapons to crude and dirty tricks.

This talk is aimed at provoking strategic thinking about offense and defense. And hopefully end up being entertaining with a few online exploit demos. After this session you will be better off to secure your system and nettwork.

This presentation will be held by Samuil Shah. Saumil is the founder and CEO of Net-Square, providing cutting edge information security services to clients around the globe. Saumil is an internationally recognized speaker and instructor. He has authored two books titled "Web Hacking: Attacks and Defense" and "The Anti-Virus Book".

Saumil graduated with an M.S. in Computer Science from Purdue University, USA and a B.E. in Computer Engineering from Gujarat University. He spends his leisure time breaking software, flying kites, traveling around the world and taking pictures.

This talk will cover both the infiltration techniques used in red-team engagements, and government related cyber-preparedness capability building, as well as the command & control mechanisms for such attack software. On top of that, the talk will show innovative exfiltration techniques that go much beyond the case-studies shown over the past year as "advanced" and will challenge the industry with how it perceives its data monitoring and security. After this session you will be better off to secure your system and nettwork.

Presentation will be held by Ian Amit. With over a decade of experience in the information security industry, Iftach Ian Amit brings a mixture of software development, OS, network and Web security expertise. Ian has also held leadership roles as founder and CTO of a security startup in the IDS/IPS arena, and a director at Datavantage. Ian is also a founding member of the PTES, and the founder of the local DefCon group in Tel-Aviv, Israel.

The presentation will be held by Martin Holst Swende and Patrik Karlsson.

Martin Holst Swende is a Senior Security Consultant working with application security- and penetration testing. Martin has a background as a Java/J2me-programmer usually uses Python, Javascript and Lua. Martin is project leader for the Owasp Hatkit Proxy/Datafiddler projects and contributor to open source security projects such as Webscarab and Nmap.

Patrik Karlsson is a Senior Security Expert with over ten years of experience in the field of IT- and Information Security. Patrik's area of expertise includes security penetration testing, vulnerability assessments, software application security audits and incident investigations. Patrik is an active Nmap contributer and runs the security related web site www.cqure.net. After this session you will be better off to secure your system and nettwork.

Hvis man har behov for å hente ut IT-tekniske bevis/gjennomføre en forensics-utredning, hvor mye og hvilken informasjon kan man få ut av en iPad/nettbrett? Hva kreves, og hvordan gjør man det? Det er nettopp disse krevende utfordringene dette foredraget tar sikte på å belyse med en en rekke eksempler (live demoer).

Foredragsholder er Jonas Wennerberg. Jonas er en dyktig informasjonssikkerhets konsulent med fokus på forensics, tekniske sikkerhetsanalyser og sikker integrasjon.

I en test skulle man forsøke å hente ut ett passord fra hver avdeling i et stort norsk selskap. Det ble notert ned en liste på ti tilfeldig utvalgte navn - ett navn fra hver av selskapets ti avdelinger. Noen timer senere er alle ti passordene frivillig overlevert til testere uten at alarmen går. Et av Norges aller mest kjente selskaper har de siste årene gjennomført årlige og svært avanserte social engineering-tester og konsekvent brukt resultatene fra testene til å bygge en svært moden og sterk sikkerhetskultur gjennom hele organisasjonen; fra kundeservice til IT-drift, fra lager til ledelse.

I denne presentasjonen vil man starte med å presentere metoder og funn fra social engineering-tester som man har gjennomført de siste årene, og det vil bli rikelig med mulighet til facepalms over manglende sikkerhetstankegang i viktige norske bedrifter.

Man vil deretter vise hvordan funnene fra testene kan brukes til å styrke egen sikkerhet, og hvordan repeterende tester bidrar til å endre sikkerhetskulturen i organisasjonen.

Foredraget holdees av Christian Jacobsen. Christian er en dyktig informasjonssikkerhets konsulent med fokus social engineering og social engineering-tester.