DEF CON 26 Hoodie!
Posted 9.10.18
Now available on the DEF CON Ebay store - the very stylish DEF CON 26 hoodie. Look sharp, feel good and get a bonus saving throw against mind fog. Get these and other fine DEF CON goodies while supplies last!
Pictures from DEF CON 26!
Posted 8.31.18
The DEF CON 26 official picture feed is live on the media server for your enjoyment! In addition to the standard web-style offering, we’ve got the whole enchilada in tasty torrent flavor for the adventurous and storage-blessed.
We’d like to thank the whole DEF CON Photo Corps for their excellent work. Enjoy, and pass it on.
DEF CON 26 Transparency Report!
Posted 8.30.18
The DEF CON 26 transparency report is live on the DEF CON site.
We made a lot of changes this year, and we'd like to thank all the staff and partners who implemented them so smoothly.
If you've got thoughts or suggestions, send them over to feedback@defcon.org.
PS: We didn't cause the sandstorm/flooding combo. Almost completely sure.
DEF CON 26 Archive!
Posted 8.25.18
The DEF CON 26 Archive Page is live! You can use it to find all kinds of goodies from the most recent event - speaker materials, packet captures, the program, even the audio and video from the show once they're ready. Enjoy!
DEF CON in the News: Voting Village Edition
Posted 8.22.18
4 senators sent a bipartisan appeal to @essvote urging the vote-tech firm to engage with the independent security research community. They asked Election Systems and Software to make voting machines available for testing and to share the results to increase transparency.
“Election agencies must be able to make informed decisions about what election equipment will help them conduct secure elections, and independent testing helps both election agencies and vendors.”
This is why we have a Voting Village.
We approve this message.
First Early Release Video from DEF CON 26!
Posted 8.18.18
For your first post-DC26 (and pre-DC27!) weekend, here's the first video release - Rob Joyce, Senior Advisor for Cybersecurity Strategy at the NSA giving his presentation 'NSA Talks Cybersecurity'.
From the abstract:
"The National Security Agency (NSA) has authorities for both foreign intelligence and cyber security. This unique position gives NSA insights into the ways networks are exploited and the methods that are effective in defending against threats. Over time, NSA has adapted the focus of its security efforts and continues to evolve with technologies and the adversaries we face. The talk will look back at some of the inflection points that have influenced NSA and US Government cybersecurity efforts and look at what is necessary to stay safe in the new environment."
As always, enjoy and share widely.
Caesars Palace Update
Posted 8.16.18
A team from DEF CON management met with Caesars on Tuesday. They are looking into the reports we presented, and we’ll share what we can as those investigations play out.
Here’s an overview of the current policy as shared with us:
1. DND tag on the door too long triggers a security visit.
2. That security visit is supposed to be by hotel security staff who are clearly identifiable as hotel security staff.
3. That visit should be comprised of a visual survey of the main segments of the hotel room, with no fiddling about in personal belongings.
This means that entering rooms and taking a quick look around does not violate the hotel’s policies.
But it also means that reports of opening closed bags, confiscation of personal effects, and reluctance to self-identify and/or allow guests to verify the legitimacy of the security officers all fall well outside of the policy.
Please know we are not letting this go. We are sympathetic to the new terrain major hotels find themselves in, but our main commitment is to our community. We intend to stay on this until we’re satisfied these issues are resolved for next year.
Updates as we get them.
DEF CON 26 is a Wrap!
Posted 8.14.18
Just like that, DEF CON 26 is in the books. We want to thank all of you for making such a success of our little hacker party every year - there is truly no community anywhere like the DEF CON community.
The Dark Tangent announced in closing ceremonies that next year we'll be back at Paris/Bally's. Also a bit of Planet Hollywood. Even more space, but less exposure to deadly solar radiation. We're already planning ways to use it all.
This was a big year for us. We doubled the villages. We grew the workshops. We pumped up demo labs and contests, and we even learned how to set up the crazy lightshow required by the mighty Juno Reactor - which you will get to see shortly, since they let us record their set. (Yay Juno Reactor!) Also, we did that thing in Beijing that went so nice we're doing it twice.
We're gonna take everything we learned from this year's crazy expansions, fine-tune things and bring all that new wisdom to DEF CON 27. If you have ideas, feedback@defcon.org stands ready to accept them.
Thank you for all that you share with us, all of your enthusiasm and love that animates everything that happens here. Congratulations to everyone who won something, or learned something, or tried something weird and new. Cheers to all our old friends and our brand new ones. We love you, and we can't wait to get together with you next year.
https://www.pscp.tv/w/1vAxREgAdPPJl?t=1h4m56s
Music Lineup Update
Posted 8.11.18
Tonight's music selection has shifted a little in transit - same great lineup, just in new timeslots. Make sure to share with anyone you think is interested in music and joy.
The new lineup:
21:30 - 22:30 - Skittish and Bus (@Skittishandbus)
22:30 - 23:30 - Zebbler Encanti Experience (@zebbler and @encanti)
23:30 - 00:30 - Miss Jackalope (@djjackalope)
00:30 - 02:00 - Juno Reactor (@junoreactor)
02:00 - 03:00 - s7a73farm (@s7a73farm)
Do You Remember?
Posted 8.11.18
I’m the DEF CON bean bag. You might remember me from my appearance on Twitter at DEF CON 25 and such films as ‘I Have No Shape and I Must Scream’, ‘Dial S for Stuffing’ and ‘My Dinner with Andre.’
If you’d like to take me home, drop by the Official Swag area while I last!
There’s a rumor that I might make an appearance at Closing Ceremonies for a few people who’ve been especially awesome.
DEF CON 26 CD!
Posted 8.7.18
Let’s set the mood, people. Head over to the DEF CON media server for the whole OST Soundtrack to DEF CON 26 in several delicious digital flavors for your downloading pleasure. If you’re BT inclined, there’s a torrent file in there too.
Here’s the stellar lineup of future favorite jams we’ve assembled for you.
Skittish & Bus - OTP
Dual Core - Apex Predator (featuring Tribe One)
T-4-2 - Digital Boyz
ISHI - Diamond Door (Left-Right Remix)
The TroubleShooters - This World
Haaj - Reactor Containment
FWLR & JELO - Even The Noble Shall Fall
MC Frontalot - Colonel, Panic!
MODERNS - Figuratives (DEF CON Edit)
Ascendant - Source Transmission
Mikal kHill - Mouser's Back
Icommitfelonies - Hashdump
Haaj - Gamma Rays
If you run through all of this and it’s still not Thursday morning, please continue pregaming with the DEF CON channel at SOMAFM. http://somafm.com/defcon/.
It’s almost here, luminous humans of the DEF CONiverse. Our reunion is at hand.
DEF CON 26 WiFi Reg is Live!
Posted 8.6.18
The DEF CON 26 WiFi Reg page is live, with all the info you need to securely log in to the wireless network on the DEF CON conference areas.
Please read carefully - there's new cert information and there are pretty explicit instructions for your specific OS.
It's not a trap.
DEF CON 26 ATTENDEE REPORTED INCIDENT POLICY
Posted 8.6.18
As a followup to my last post we realized that if we were hoping people would emulate our policies at other conferences we may as well release our attendee incident reporting policy as well. The version given to all the DEF CON Goons is the same as below but also includes confidential reporting phone numbers.
ATTENDEE REPORTED INCIDENT POLICY
DEF CON does not tolerate harassment of any kind, be it racial, sexual, physical, political, intellectual, or emotional. Every Goon shall take each report by an attendee seriously, and not dismiss any of them. Never turn an attendee away. It is not a Goon’s duty to judge anything that an attendee says, regardless of opinions of the attendee, the person they’re reporting, or the reported issue itself.
Reported/Observed Harassment or Assault
When an attendee reports harassment or assault to any Goon follow this procedure:
1. Get a second Goon to be with you to listen to the report.
2. Have one goon contact a SOC goon via the SOC Contact Procedures
3. Make a warm hand off with the attendee to the SOC Department.
4. Let the SOC conduct their investigation and handle the incident from there.
5. Be available to answer any questions from the SOC or venue security.
Interaction with Social and Traditional Media
DO NOT SHARE photos or videos. Please let the responding SOC GOONS know if you have any video or pictures, they may end up being evidence, but out of context could cause problems.
During or after an incident, you may be asked to comment on the situation. DO NOT make any comments to reporters, and do not post about the incident on social media. As a Goon, the media will treat anything you say as an official statement from DEF CON. Commenting prematurely before we understand the situation could cause more confusion or reveal identities that should remain confidential so please refrain from speculating and work with SOC / PRESS to help them understand what happened.
Refer all media inquiries to the DEF CON Press Department (press@defcon.org or send them to the press room)
DEF CON 26 Support Resources!
Posted 8.5.18
In my last post about the DEF CON Code of Conduct, I mentioned that I wanted to make sure that the community had all the tools necessary to get involved and report problems when they arise.
In this post, my last before the con, I'll talk about some of the new efforts we are deploying for DEF CON 26. It will be our first year for some of these, so we are looking for feedback. You will notice a theme of transparency, appropriate given the theme of this year's con!
NEW WAYS TO REPORT ISSUES: The DEF CON Support Hotline
You can reach DEF CON staff during normal hours of operation (8am to 4am) to anonymously report any behavior violating our code of conduct or to find an empathic ear by calling +1 (725) 867-7255. Trained community volunteers will be standing by to help any attendees.
You can still report issues by going to any Info Booth or talking to any SOC Goon, but sometimes you may not want to be walking around in person with a problem, and so this year we have added a phone option.
NEW SUPPORT RESOURCES:
We are collaborating with several organizations including Kick at Darkness, The Rape Crisis Center Las Vegas, and the Nevada Coalition to End Domestic and Sexual Violence to provide expert resources for survivors, including dedicated support for LGBTQ+. When you call the Hotline you will reach DEF CON community Goons trained to help in these areas.
NEW WAYS TO IDENTIFY GOONS:
In the past there has been some confusion by attendees with what Goon they were actually talking with.
New for DEF CON 26 Goons should all have visible patches with their nickname on them so it is easier to remember who you talk to about what. The name patches should be attached to the front of the Goon's lanyards and be more visible than the back of a shirt that might be covered by a backpack.
Please use the name on the patch if you have any feedback on Goons, good or bad. Feedback can be sent to feedback@defcon.org, written and dropped off at registration, or if serious enough called into the Hotline.
MORE DETAILED TRANSPARENCY REPORT:
Based on the positive community response to our closing ceremony transparency report, we plan to do this every year and hope other conferences do as well.
As people get comfortable reporting issues I expect the numbers to increase, and only by facing these issues head on can we hope to prevent them. It requires courage to speak truth to power, or to report something that is unpleasant in your community, but together we can make things better.
See everyone soon!
The Dark Tangent
DEF CON 26 Hacker Tracker!
Posted 8.1.18
A must have for your burner phone - the DEF CON Hacker Tracker puts all the talks, contests, events and parties all in one easy-to-navigate package. It’s available in both android and Apple flavors and it’s free.
Media Treats for DEF CON 26!
Posted 7.29.18
Less than 2 weeks to DEF CON 26 - how about a little treat to get you in the mood? Head over to the DEF CON Media Server for a sweet video and a single from DEF CON favorites Skittish and Bus, straight from the DC26 Soundtrack.
Get hyped, fam. We're in the home stretch.
DEF CON Code of Conduct
Posted 7.27.18
When I designed the updated DEF CON Code of Conduct in 2015, I had a few goals in mind. Make it simple to understand, express in broad strokes what kind of behavior is not acceptable, and don't be too specific.
I wanted it to act as a template for other conferences, if they chose to do so. It was legally reviewed by our outside law firm and a specialist. In 2018, it's looking like it may get seriously crash tested.
The Code of Conduct assumes people are acting in good faith and not creating intentionally elaborate, dishonest or disingenuous claims of harm. "Ah ha! This is where the bad actors will attack the CoC" you may be thinking.
As a conference of hackers, our CoC is intentionally flexible: like a spoon in the matrix. We describe generally what is not acceptable as opposed to trying to enumerate 42 different bad behaviors.
Besides the CoC, DEF CON has several structural factors that are to our advantage when dealing with people intent on disruption. This is not our first conference, and as such we have a department dedicated to dealing with this problem. We have also had time to plan with hotel and casino security should we need their involvement. We take this issue very seriously and choose to err on the side of removing people, rather than allow them to spoil the conference for those who just want to contribute in a positive way.
Finally, I have always said that DEF CON is what you make of it. I want to make sure our community has all the tools necessary to identify and report unacceptable behavior. Together, we will have all the pieces in place to act quickly and professionally, no matter what the issue is.
The Dark Tangent
Party at DEF CON 26!
Posted 7.23.18
Many people love parties. Facts.
If you are one of those party-loving people, this update will fill up your smile tank. The Parties and Meetups Page is LIVE! Use it to learn all about the DC 26 party/meetup scene. Then, when the time is right, party with other partiers. Or meet up with people who share your interests.
Go get your life. It's all the best.
Friends of Bill W at DEF CON 26
Posted 7.18.18
For all those Friends of Bill W. looking for a meeting, or just a quiet moment to regroup from the Vegas of it all, we have you covered. There are meetings throughout DEF CON - Noon and five pm Thursday through Saturday and Noon on Sunday. The location is the same as last year, in Office 4 Behind the DEF CON Info Booth.
Stop by and refresh yourself. We'll be here.
Contests and Events at DEF CON 26 posted!
Posted 7.14.18
Now that you’ve had a whole day to absorb the epic Village list, we’ve got some more goodies for you. The Contests and Events page is now LIVE, and it’s also quite a bit to take in.
Ranging from the straightforward elegance of the Tin Foil Hat Challenge to the complexity of an Industrial Control Systems CTF competition, there’s contests here for just about any hacker discipline, and every level of skill or experience. Contests are also a great way for the shyer among us to beat the icebreaker blues and get right into some fun with a bunch of likeminded strangers.
The more extroverted attendees can still opt for a Charity Mohawk or the cringetastic glory of Hacker Karaoke.
Block off a little time for pre-con recon and make a plan to make sure you get to sample widely from the smorgasbord of C&E offerings.
Our reunion draws ever closer, fam. Get amped.
So Many Villages!
Posted 7.12.18
DEF CON 26 is less than a month away, and the DC26 Villages page is live and ready for your attention! Bring a snack, though - there’s a lot of villages this year. Twenty-eight (28!) villages, covering a pretty staggering array content.
Internet of Things
Crypto and Privacy
Wireless
Biohacking
R00tz Asylum
Hardware Hacking
Lockpicking
Social Engineering
Tamper Evident
Data Duplication
DEAF CON
Voting Machine Hacking
Recon
AI
Soldering Skills
DroneWarz
VX (Chip-Off)
Mobile Museum of Vintage Technology
Ethics
Laser Cutting
Cannabis
CAAD (Competition on Adversarial Attacks and Defenses)
Blue Team
Car Hacking
Packet Hacking
Industrial Control Systems
Skytalks
Monero/BCOS
Chances are there’s a few things in that list you want to level up on.
As always, the Villages are generated by the interest and effort of DEF CON Community members looking to share their interests and obsessions with you. Come through and show them some love and learn something new. If your obsession isn’t represented, maybe it’s time to write up a proposal for DEF CON 27!
Demo Labs for DEF CON 26 Posted!
Posted 6.28.18
More DEF CON 26 goodies for your perusal – Demo Labs are Live! You should take a moment to check out the lineup, and set aside some time to visit when you’re at the Con. In addition to being a cool way to see what your fellow hackers are working on, it’s an opportunity to offer your expertise, meet potential collaborators and help push the community forward.
Demo Labs are interactive, so, you know, interact.
Just over a month, people!
DEF CON 26 Workshops!
Posted 6.23.18
Another milestone on the Road to DEF CON 26! The workshops page is live on the DEF CON site. Registration is still a ways off - July 8, to be precise, but now is the perfect time to get yourself familiar with the offerings. The spots traditionally fill up pretty quick, so be ready to claim your seat when the light turns green next month, maybe even consider a few backups.
It’s officially summertime in our host hemisphere - the season of DEF CON has begun!
The Entire lineup of DEF CON 26 Talks is Live!
Posted 6.19.18
DEF CON family, the time of our reunion approaches. In just a few days, summer arrives in the Northern Hemisphere. The pages of the calendar turn, ever closer to August. Today comes the surest sign - the DEF CON 26 speaker list is live on DEFCON.org.
The wait is over - dig into the list to start your conference planning! We’re proud of the lineup we’ve created this year, and we think whatever your particular itch you’ll find some talks and panels that scratch it for you.
We’d also like to take a moment to thank the undersung heroes of the Selection Committee. They devote crazy amounts of time and energy to working through hundreds and hundreds of proposals to make sure the best ones make it to the top of the pile. They work hard, they make us great and they deserve your appreciation.
It’s almost here, hacker fam. Can you feel it?
DEF CON China Talk Video!
Posted 6.12.18
Please enjoy the video of the Keynote presentation from DEF CON China! It's the redoubtable Dan Kaminsky, and his topic is "Bugs Aren't Random: Unifying Building and Breaking in the Modern Age." Many topics are covered, as viewers of previous Kaminsky talks can attest.
We also offer you the estimable and renowned Vito Genovese from the mighty Legitimate Business Syndicate, discussing the lessons taken from five years running the DEF CON CTF contest.
From the abstract:
"This presentation will cover topics about all aspects of CTF organization: the history of CTF, building a cross-functional organizing team that sticks together year after year, developing a game infrastructure that handles the onslaught of attacks from players, and the stories behind some of the most difficult CTF challenges ever built."
As always, enjoy and share the info. Be sure to join us in Vegas for the brand new CTF run by the scrappy upstarts in The Order of the Overflow.
DEF CON 25 Transparency Report!
Posted 6.4.18
At the closing ceremonies of DEF CON 25 last year we shared the results of our first public transparency report - an account of the incidents we dealt with throughout the con. The report now has a permanent home on the DEF CON website, and we’ll be updating it after every event.
We’re hoping that this kind of reporting catches on. It’s a good way to know where to concentrate our efforts, to attach more public accountability to the DEF CON Code of Conduct and to familiarize our community with how we handle con-goers’ concerns.
So check it out, and check back after DC 26 to see what went down behind the scenes..
PS whoever brought that one ‘vicious animal’ to the party - Hey. Don’t do that. Jebus.
https://www.defcon.org/html/links/dc-transparency.html
DEF CON 26 Entertainment Announcement: Juno Reactor!
Posted 5.22.18
DEF CON believes in balance. For all the forebrain overstimulation we provide by day, we provide an antidote at night - a carefully curated beat menu to work out your funky lizard underbrain.
To that end, we are so proud to announce that some of those healing beats will be provided to you by the mighty, mighty Juno Reactor! You know Juno (government name: Ben Watkins) from decades of sonic bad-assery that includes the high-energy proto-trance of his debut ‘Transmissions’, the beat science of 2004’s ‘Labyrinth' and wildly cinematic soundscapes that adorn projects like ‘The Matrix Trilogy’, ‘2017 Gran Tourismo’ and ‘Drive’.
This performance will be hot on the heels of the June release of ‘The Mutant Theater’ - expect serious rhythm and highly interactive stage show that’s been described as ‘Labyrinth meets Barbarella’.
Check out Juno Reactor’s work. Get excited. This is gonna be special.
Roundup of DEF CON Updates!
Posted 5.4.18
Early bird reg for DEF CON China [beta] has now closed. Online reg remains open for those who prefer it, but please be aware that the standard DEF CON method of paying at the door works just fine.
The passing of one major deadline doesn’t mean you have no reason to stay up all night sweating over a presentation idea. Many of the DEF CON 26 open calls closed May 1, but there are still villages and events still wide open for submissions. For example:
The brand-new Ethics Village (ethicsvillage.org) is accepting talk submissions until June 22.
Car Hacking Village (carhackingvillage.com) is still open.
Hardware hacking village is looking for talks, art and demos. Check their forum thread for more info.
Crypto and Privacy Village is open until June 15 (Cryptovillage.org)
AI Village CFP closes June 15 (https://goo.gl/forms/g50hhGITiOWEbo002)
Follow @defcon for village announcements as we get them!
Got a clever youngling you’re thinking of bringing along to DEF CON 26? Social Engineering Village has SE Capture the Flag contests for kids and teens - Find all the details at social-engineer.com!
New Soldering Skills Village at DEF CON 26!
Posted 4.27.18
Announcing new for DEF CON 26, the Soldering Skills Village! The SSV will focus purely on soldering and making at DEF CON while the HHV will focus on bringing more hardware hacking resources than ever before!
The change-up is beneficial for everyone, it means both villages can get quiet and well-lit spaces. It also means the two volunteer groups can better support the DEF CON community in their own ways. Both villages will maintain an open share of knowledge and volunteers between them. The SSV and HHV will coexist at DEF CON and provide the most that they can to all DEF CON attendees!
Also: Got something you want to show off, teach, or blab on about? Let us know about it! Shoot an email to [email]l33tbunni@dchhv.org[/email] Now accepting submissions for demos, talks, art, anything hardware you want to show off!
More info at https://www.dchhv.org
Space Announcement for DEF CON 26!
Posted 4.25.18
DEF CON 26 is getting close and now is the time to let everyone in on some big changes we've got in store. We've accepted a record number of villages and are growing the number of workshops from last year. To hold all this goodness we are growing to include the Flamingo hotel.
TL/DR
- DEF CON has has accepted more villages than ever before and needs to grow.
- DEF CON is spreading to two hotels, Caesars Palace and the Flamingo.
- This lets us do more stuff + evening pool parties.
The PLAN:
For DEF CON 26 we will try something we have never done - Split the con between two hotels! No, not like Paris + Ballys, they are connected. I'm talking Caesars Palace and the Flamingo across the street.
"That's Crazy!" you say. "Why do we need that much space?" you say. Check this out: The number of villages will almost double from last year to about 25. Parties should increase. More contests are under development. DEF CON needs space to support all the awesome projects from the community and I'd really like to throw some pool parties. That is all now possible.
In the next month you will hear more specifics but I want to answer some questions here:
- How will the space be split? The Flamingo will hold some of the "destination" events to relieve pressure off of Caesars Palace. Current planning includes Workshops, DEF CON 101 track, some villages and contests, a chill out space, pool parties, and more once we finish planning.
- Will there be DC TV at the Flamingo? Yes DC TV will be in the Flamingo and as many other hotels as we can wire. A more definitive list soon, but we are building on what we did last year.
- If you ran a village or contest last year you should count on the same or more space you got last year. If you are running a first time event we will work to meet all of your needs. If you want even more space or a dedicated spot at the Flamingo we can work on making that happen.
Background:
With the move to Caesars Palace last year we got more space and a different floor plan that helped with some flow, but the broken escalators stole some of those gains. For DEF CON 26 the escalators are fixed and we have a better understanding of how to use the space. With that understanding and the growth of interest in Village and Contests we realized that we are out of space and need to span to a new property. This growth will allow us to accept more contests and villages and try some new stuff while giving existing events some room to breathe.
Online Registration is open for DEF CON China [Beta]!
Posted 4.13.18
Online registration for DEF CON China [beta] is LIVE! Follow the link, (using the translate feature in Chrome comes in handy) and save yourself a seat at the first international DEF CON hacking conference!
Of course, you are not required to make use of the online form. The traditional DEF CON method of cash at the door works too. In fact, if you want to pay at the door, cash is the only option for those visiting China for the conference. The price onsite is ¥1088, which is about USD173 at current exchange rates.
The venue for DEF CON China [beta] is the Beijing Kuntai Hotel, which you can book here. (http://www.kuntaihotel.com/en/) Once you have a confirmation from the hotel, you can use that document to help with your Travel Visa Application. (http://www.china-embassy.org/eng/visas/hrsq/)
Thanks to everyone who’s planning to make the trip and participate in this new DEF CON adventure. We’re working hard to put together a great show and we’ll see you in Beijing in just under a month!
Remainder of DEF CON China Speakers are Live, Schedule Updated!
Posted 4.11.18
DEF CON China [beta] is almost upon us, and we’re hoping to see lots of you there. To help you make your plans we’ve got a finalized speaker list and schedule! All the presenters are top-shelf and bring a wide variety of technical skill and subject matter expertise - we’re excited about all the final selections.
Androsia: Securing 'data in process' for your Android Apps
Samit Anwer
Triton and Symbolic Execution on GDB
Weibo Chen
Spreading malware with Google (Nice Quilombo)
Fabian Cuchietti & Gonzalo Sanchez
You Logged Into My Account
Daizibukaikou
Fooling Image Search Engine
Yuanjun Gong, Bin Liang, & Jianjun Huang
Security Research Over the Windows (kernel)
Peter Hlavaty
Smart Contract Hacking
Konstantinos Karagiannis
Beyond Adversarial Learning — Data Scaling Attacks in Deep Learning Applications
Kang Li
Passwords in the Air: Harvesting Wi-Fi Credentials from SmartCfg Provisioning
Changyu Li & Quanpu Cai
I Am Groot: Examining the Guardians of Windows 10 Security
Chuanda Ding
DEF CON Groups Panel
Peter Wesley, Tielei Wang, Changsheng Gao, Xinpeng Liu, Jun Li, April C. Wright, & Jayson E. Street
General ways to find and exploit Path Traversal Vulnerabilities on Android APPs
Xiaobo Xiang (Elphet)
The schedule is now live! Read the abstracts, pick your favorites, and get psyched.
Only one month to go until DEF CON China - are you ready?
DEF CON 26 Biohacking Village CFP is Open!
Posted 4.10.18
Cyborgs, grinders, human potential optimizers of all kinds, harken! BioHacking Village at DC26 is giving you until June 22 to get your proposals in. As always with CFPs, procrastination isn’t your friend- the more time we have to help turn good proposals into great ones, the better. The relevant data is linked below.
You have your assignment - we look forward to your entries.
DEF CON 26 Biohacking Village CFP
DEF CON 26 CTF Pre Qualifying Events Announced!
Posted 3.30.18
The DEF CON 26 CTF is taking shape!
The 2018 pre-qualifying events have been selected! 🎉
The winners of DEFCON 2017, HITCON 2017, CCC 2017, 0CTF 2018, and PlaidCTF 2018 will automatically qualify for DEF CON 2018! This means, so far, PPP, DEFKOR, and pasten --- congrats!
A Prequal event for one of these, 0CTF 2018, kicks off tomorrow - online, jeopardy-style. If you’ve always wanted to try your skills against the best at the DC CTF, this is a good place to start. Assemble your team, sign up and see where it takes you.
Full info: https://oooverflow.io
First Round of Talks for DEF CON China [Beta]!
Posted 3.23.18
More Beijing news for you - we are excited to bring you the first round of accepted speakers for DEF CON China!
The first round selections include talks from DEF CON favorites like Zoz, Dan Kaminsky and Jayson Street as well as Chinese researchers like Dr. Tao (Lenx) Wei and Dr. Haixin Duan. Get acquainted with the speakers of Round 1 and watch this space for the announcement of Round 2 selections.
It’s coming together, people. We hope you’re as excited as we are .
DEF CON China [Beta] Village Selection has Begun!
Posted 3.12.18
May 11 approaches, DEF CON enthusiasts, and we have news! Village selection is underway - we can already confirm the following for DEF CON China [beta].
Lockpicking Village, hosted and run by the lock wizards of The Open Organization of Lockpickers (TOOOL). You could not be in more capable hands, whether you’re learning the ropes or testing your skills.
Car Hacking Village. Get your hands on the state of the art in connected auto security.
RECON Village - For people interested in Open Source Intelligence (OSINT) and its many applications.
The very popular Packet Hacking Village, where you can hone your knowledge of network hacking in all its flavors.
Hardware Hacking Village. Void warranties, break and remake physical tech and smell that sweet solder in the air.
You can learn about these villages and keep track as new ones are added for DEF CON China [beta] at the Villages page.
DEF CON China is beginning to assume its final form - join us in Beijing May 11-13!
DEF CON China [Beta] Site is Live! Calls are open!
Posted 3.3.18
DEF CON China [beta], co-hosted by Baidu Security, is happening May 11-13, and we’re moving into high-gear Con mode! In addition to the Call for Papers, we’re also opening up the following Calls:
Contests and Events. Puzzlemasters, game-makers and party-throwers, bring us your best ideas! We want to share the fun side of DEF CON with the world, and if your proposal is selected, we’ll pitch in to make it a reality.
Villages. The hands-on mini-con is a perfect introduction to DEF CON, and we’re looking to you to conceive, plan and run the DEF CON Village we’ve never seen but always needed. Assemble your team, create your proposal and join us in Beijing!
Demo Labs! This is your chance to show off the project you’ve been hacking on, and get attention and feedback from the DEF CON community. Take that open source effort out of the garage and into the spotlight!
You’re still reading - probably because you’re psyched and looking for where you sign up, right? Maybe a DEF CON China website where you can find all the rules, parameters and relevant info? We’ve got that. Head over to https://www.defcon.org/html/defcon-china/dc-cn-index.html, get spun up and then make us proud!
Dark Tangent Attends Signing Ceremony for DEF CON China [Beta]
Posted 2.14.18
DEF CON founder The Dark Tangent has been in Beijing finalizing the agreements for DEF CON China [Beta] - it’s already looking very exciting. As you can see in the attached pictures, the look is already starting to take shape.
The signing ceremony included a New Year’s gift of some really beautiful locks from our partners at Baidu. The locks are in an ancient style, symbolizing the long history of security and security culture.
We’re really looking forward to DEF CON China - everyone is working hard and making big plans!
To submit to the DEF CON China [Beta] CFP, check out our submissions page. Let’s make this amazing together.
DEF CON China [Beta] Call for Papers is Open!
Posted 1.30.18
The DEF CON China [Beta} Call for Papers is open! We are seeking presenters with fresh ideas and exciting research to share with the DEF CON community.
The event takes place soon – May 11-13, 2018. We are accepting and reviewing proposals on an expedited schedule, and speaking spaces are limited so please respond quickly. We are happy to work with you to perfect your proposal if it arrives in time.
The rules for submissions are explained in detail on our CFP page, The Chinese translation of these rules will be online very soon.
We look forward to your submissions!
DEF CON China [Beta] dates announced and Call for Papers opening!
DEF CON 神州【Beta】日期发布及征文启事(Call For Papers)
Posted 1.29.18
After more than a year investigating the possibility of bringing DEF CON to China I am proud to announce that we are going to do a [Beta] event in Bejing this May 11-13th!
That means everything is on a very short schedule. This week we will be opening the CFP and launching the China [Beta] sub-site with all the information you need to know to attend or to participate. Interested in running your village, contest or event there? We can help make that happen. Want to speak? Get your materials ready!
过了一年多的深入研究,我很荣幸地宣布 DEF CON 将在五月11至13号降临神州, 在北京召开个DEF CON Beta会议 。
这意味着时间相当紧迫。 我们会在这周开启 CFP 及上传DEF CON神州[Beta]的网页。所有以各式方式 参会的资料将会那发布。欢迎各界英雄豪杰参与。若想作个village, 比赛或其他项目,我们能助你一臂之力!或想当演讲嘉宾吗?请收集好资料准备投稿吧!
Congratulations to Order of the Overflow!
Posted 1.26.18
The search for the DEF CON Capture the Flag organizers has come to a close and The Order of the Overflow will lead us forward. Read more about the process and their vision for DEF CON 26 CTF here.
DEF CON Groups Year in Review
Posted 1.15.18
DCG Ambassador Jayson Street gives a New Year's update on what's coming up for DEF CON Groups worldwide. Sharp-eyed viewers will notice he's apparently doing this in an underground DEF CON museum. :) You can (and should) learn more at defcongroups.org.
As always, if you want that hacker-fresh feeling all year long, find a local DEF CON Group and get involved! DCGs are all over the world, Bogota to Kiev to Cape Town. Can't find one? Start one! Check out this brand new post on how to start a group!
Here it is... The Call for Everything!
Posted 1.12.18
Can you feel it? That electricity in the air? It’s the machinery of DEF CON 26 coming to life. The lights are blinking, the drives are spinning and the freshly oiled jaws are wide open for content.
Welcome to the Call for Everything! We’re looking for proposals in the following areas: Talks, Workshops, Villages, Contests, Events, Parties, Music, Demo Labs, Press, and Vendors!
The DEF CON 26 Call for Everything page is where to start for your assignment parameters.
A few pointers...
Early is better than perfect: If your proposal is hot but not quite there, we will work with you to get across the finish line.If you wait until the last moment, you’re kinda on your own.
Follow the guidelines: The angelic volunteers who evaluate the entries have a lot of work to do, and your courtesy in following the format makes their lives easier.
Most importantly, think big. There are a lot of security conferences, but only one of them is DEF CON. Submit accordingly.
DEF CON 26 Hardware Hacking Village News!
Posted 12.20.17
Get excited, hacker family! In honor of its tenth anniversary as a DEF CON attraction, Hardware Hacking Village is retooling for DEF CON 26 with all kinds of new energy! There's a new Soldering Skills Village, a new focus for HHV Classic and tons of new resources.
We couldn't be more excited to see all the upgrades in person! Follow @DC_HHV on Twitter and check out their website for more details on all the changes coming for next year!
DEF CON 26 Homework Assignments Roll On!
Posted 12.15.17
We've given you a lot of reading so far, so here's an assignment that can be completed in under two hours - The 2006 Alfonso Cuarón film 'Children of Men'.
The movie fits the theme of 1983 by being a thoughtful and moving study of hope and resistance in the face of calamity and misrule. It also features a bunch of stellar performances and some crazy precision camera work (keep your eyes peeled for the long, unbroken takes).
'Children of Men' fits our theme in other ways, too - the set design could hardly be more in line with our DC26 style guide. Concrete skies, graffiti, neglected brutalist edifices everywhere - it's probably as close to a match as you're going to find so feel free to take inspiration from it.
Watch this space for more assignments!
DEF CON in the News!
Posted 12.7.17
The DEF CON Voting Village co-hosted an event with the University of Chicago's Harris School of Public Policy to highlight cyber vulnerabilities in our elections infrastructure. At the event, Noah Praetz, Director of Elections with the Cook County, IL Clerk's office issued "2020 Vision" a plan that details ways federal, state, and local government can work together to improve the security posture of U.S. voting infrastructure.
You can read the plan here: https://www.defcon.org/images/defcon-25/Election Security White Paper_Praetz_12062017.pdf
DEF CON in the News!
Posted 12.5.17
Here's the full video of a hearing of the House Subcommittee on Information Technology regarding the Cybersecurity of Voting Machines. One of the testifiers was Matt Blaze, security superhero and DEF CON Voting Village organizer. It's a good read for anyone who wants to be thoroughly grounded on the state of election security and the plan for moving forward.
"The results of the Voting Village were summarized in detail in a report. It is notable that participants, who did not have any previous special expertise in voting machines or access to any proprietary information or source code, were very quickly able to find ways to compromise every piece of equipment in the Village by the end of the weekend. Depending on the individual model of machine, participants found ways to load malicious software, gain access to administrator passwords, compromise recorded votes and audit logs, or cause equipment to fail. In most cases, these attacks could be carried out from the ordinary interfaces that are exposed to voters and precinct poll workers. The first machine was compromised by a participant within 90 minutes of the doors opening."
You can read the full report from the Voting Village.
And a transcript of Matt's remarks
DEF CON 26: The Homework Continues!
Posted 12.1.17
The heart of the DEF CON 26 theme is the concept of the counterfuture. The counterfuture is the open-source alternative to totalitarian dystopia; a world where we use tech and ingenuity for empowerment and connection rather than isolation and control.
In the spirit of the counterfuture, we offer book two in our pre-con homework series: ‘Cryptonomicon’ by Neal Stephenson. It’s a bit of an epic, so you’ll want to pencil in some real reading time. The story concerns two historical inflection points, WWlI and the eve of the 21st century. In both eras, Crypto and savvy are all that protect us from a spreading and despotic darkness. In both, hackers (of various kinds)are the carriers of the counterfuture.
Enjoy, and stay tuned for more assignments.
DEF CON 26 Call for CTF Organizers Reminder!
Posted 11.29.17
Friendly reminder to all of you Capture the Flag rock stars - there’s still time to put your stamp on the Super Bowl of CTFs at DEF CON 26!
We’re looking for a team with big ideas and the skills to execute under pressure. A team that wants to push the limits and create challenges that people talk about for years.
If that’s you, read the requirements at https://www.defcon.org/html/links/dc-ctf-cfo.html and get in touch. We look forward to seeing what you’ve got.
DEF CON 26: The Homework Begins!
Posted 11.28.17
In keeping with the DC tradition of releasing a list of books, movies and other cultural products to help you get into the headspace of our theme, we offer the first suggested reading assignment: 'Little Brother' by digital-age soothsayer and frequent DEF CON speaker Cory Doctorow.
Don't let the YA trappings trip you up - the book contains a toothsome examination and critique of the dangers of the police state and the role that hackers, makers and like-minded troublemakers can play in turning the tide.
It's also fun. Share your thoughts with us in the comments and stay tuned to this space for your next assignment.
DEF CON 26 Theme Announcement!
Posted 11.22.17
The time has come to announce the theme for DEF CON 26 - It's '1983'. Think of it as T Minus One in the countdown to 1984.
We can't wait to see how you use it.
More details here.
Live on YouTube, Car Hacking Village Video from DEF CON 25!
Posted 10.24.17
Let’s start the video release week off strong with ten talks from the DEF CON 25 Car Hacking Village! AUTOSAR, GPS Integrity, SDR Relay Attacks - there’s a lot to keep your brain occupied in here. Also, as a bonus, there’s also an auto-hacking related talk from the main track on low-budget auto hacking.
Mickey Shkatov, Jesse Michael, Oleksandr Bazhaniuk - Driving down the rabbit hole
Weston Hecker - Grand Theft Radio Stopping SDR Relay Attacks
Vlad Gostomelsky - GPS System Integrity
Tim b1tbane, Mitch Johnson, ehntoo - That's No Car Its a Network
Sheila Ayelen Berta, Claudio Caracciolo - The Bicho
Sameer Dixit, Vlad Gostomelsky - Abusing Smart Cars with QR Codes
Montalbano, Gillispie, Connett - Attacking Wireless Interfaces
Jeffrey Quesnelle - An Introduction to AUTOSAR Secure Onboard
Woodbury, Haltmeyer - Linux Stack Based V2X Framework
Badge Life: DEFCON Unofficial Badges Panel
Corey Theun - Heavy Truck and Electronic Logging Devices
Enjoy, and remember to pass ‘em on. More shortly.
IoT Talk Videos from DEF CON 25!
Posted 10.12.17
Hacktober begins. The unleashing of the videos from DEF CON 25 has been initiated.
Today, we have a themed playlist of 15 IoT-centered videos, from the main tracks and the IoT Village alike. Prepare to have your commitment to workplace productivity tested. Enjoy them, be mentally embiggened by them, and share them widely before the DVR botnets swamp us all.
Watch this space for more playlists. It’s all happening.
Happy Hacktober to all.
DEF CON 25 Voting Machine Hacking Village Report Released!
Posted 10.10.17
Today at a Washington DC event hosted by the Atlantic Council, the long-awaited DEF CON 25 Voting Village Report was released. You can even watch the presentation live on CSPAN 2 - The Dark Tangent is headlining the event!
During the weekend of DEF CON 25, every single device in the Voting Village was compromised. The report we’re releasing today gives a glimpse into how much we were able to discover in only a few days. Any committed threat actor would devote vastly more time and resources, and we believe that democratic governments must treat the security of election systems with the same rigor and investment as they do their borders.
We entered into this experiment as a non-partisan public service, believing that discussion about solutions has to start with a realistic assessment of what needs fixing. The DEF CON community has a lot of talent in that kind of work, and we saw a way we could contribute.
We would like to thank everyone who joined us in the Voting Village to test the machines, everyone who collaborated on the report, the Atlantic Council for helping us share the results and the Library of Congress for granting an easement of the DMCA provisions that would have blocked this research. This project is a great example of government making room for independent researchers to bring their talents to an issue that matters to all of us. Here’s hoping there will be more success stories like this one.
DEF CON Capture the Flag Call for Organizers!
Posted 10.2.17
After five years of exemplary stewardship of the DEF CON CTF, the shadowy masterminds of the Legitimate Business Syndicate are ready to retire to the shore house. However, whenever life closes a door, hackers jimmy open a window. LegitBS will be missed, but for someone out there a giant opportunity has just opened up.
We know some of you have genius ideas for making your own mark on the world’s premiere CTF competition, we want your proposal. In return for your fresh blood and fanatical devotion, we offer eternal geek glory and a place in the pantheon next to LegitBS, DDTEK, Kenshoto and the all theheroes who have made this contest their own.
There’s a lot you’ll need to know to submit, and you can read all about it on our CTFCFO page.
For inspiration, check out this Mega-panel of previous CTF organizers from DEF CONs past, courtesy of DEF CON 25.
If you’re ready to graduate from the combat arena to the control room, get your ideas together and let’s make some magic. Valhalla awaits.
The DEF CON 25 Soundtrack Raises Funds for the EFF!
Posted 9.5.17
In case you didn't know, the DEF CON 25 Soundtrack is available on Bandcamp as a 'pay-what-you-want' item. All proceeds go directly to keep the exemplary humans at the EFF fighting for the users. So for a modest donation you get dope music from DC25 performers and that warm feeling that only comes from selfless do-goodery.
The DEF CON A&E Team also auctioned off an artist badge for $321. Add that to the current Bandcamp sales of $423.37 and our donation match and you get a current payout to EFF of $1506.
"But the EFF does so much!" you say. "Surely I can still contribute to push that number higher?"
To which we respond, "Yes. Yes you can."
Click that link. Get some tunes. Relive the sounds of DEF CON 25 and toss a little change in the bucket to help the EFF keep cyberspace free.
Do it today, and then make sure to pass it on.
Early Release Video - DC to DEF CON
Posted 8.28.17
Now we take you way back to July 2017 for a leisurely Q&A with two impressively clued-in congresspeople; Rep. James Langevin from Rhode Island and Rep. Will Hurd from Texas.
Ever wondered if there was such thing as a “hacker-friendly” member of Congress? We found some and convinced them to come to DEF CON so you can meet them too! In this first-of-its-kind DEF CON session, two of the most hacker-friendly Congress critters will join DEF CON for an engaging and interactive session with the security research community.
Join the Atlantic Council’s Cyber Statecraft Initiative for a candid discussion with Representatives Will Hurd (R-TX) and James Langevin (D-RI). The two Congressmen share their thoughts on the latest developments in cybersecurity policymaking on the Hill, exchange ideas, and maybe even answer some of the Congressmen’s questions.
As always, enjoy and pass it on.
Caesars Rooms Going Fast for DEF CON 26!
Posted 8.11.17
We don't usually make this announcement anywhere near this early in the pre-con season, but the DEF CON room block for DC26 is already about half-full. Crazy, right?
Those of you interested in the reduced rates we get at the con-affiliated hotels can slide over to https://aws.passkey.com/go/SCDEF8 for the most current info, and keep an eye out for any updates, should more rooms become available.
Current Prices:
Harrahs: $64 Sun-Thur, $94 Fri-Sat, $15 resort fee
Ballys: $84 Sun-Thur, $127 Fri-Sat, $19 resort fee
Caesars: $151 Sun-Thur, $171 Fri-Sat, $22 resort fee
Flamingo: $87 Sun-Thur, $127 Fri-Sat, $17 resort fee
Linq: $69 Sun-Thur, $99 Fri-Sat, $17 resort fee
Paris: $133 Sun-Thur, $156 Fri-Sat, $19 resort fee
Complimentary self and valet parking at all properties!
Contest Results from DEF CON 25!
Posted 8.3.17
Congratulations to this year's contest winners! The level of competition at DEF CON is serious, whether it's the DC CTF or the Tin Foil Hat Contest, there are many very clever, very resourceful humans vying for the honors, and we salute you.
The contest results page represents the current state of our knowledge. We'll update as additional info comes in - do not despair if you don't see the event you're looking for just yet.
We also salute all those who competed but did not taste victory this year. The distance between observer and competitor is much greater than the one between competitor and victor, and DEF CON 26 will be here sooner than you know.
Thanks for a Great DEF CON 25!
Posted 7.31.17
Another DEF CON is in the books. 25 years, and still exciting and expanding. Still staffed and attended by a community of volunteers and enthusiasts who are passionate about improving our shared digital world. You can't really ask for a better anniversary present than that.
Thanks to everyone who brought their energy and curiosity to Caesars this year, to every one of you who took the time to teach something, to every one who brought something to share, and to everyone who made it easy for people new to the scene to find a home.
We hope to see all of you back at Caesars for DEF CON 26! We're gonna get on planning that the minute the dust is cleared from this one. Stay tuned for content updates, contest results and the rest of the press coverage.
As always, we are insanely proud of the DEF CON community.
We love you, and we look forward to doing all this with you again soon.
#VotingVillage is a hit!
Posted 7.28.17
For a rookie, the Voting Machine Hacking Village is off to a very impressive start: consider the following tweets:
90 min after doors open: Complete remote control on the operating system level of the Winvote voting terminal (including election data).
On the e-pollbook front: internal data structure already discovered and reverse engineered within an hour. #VotingVillage
The Voting Village has a bunch of machine makes and models to try your hand at, including Sequoia AVC Edge, ES&S iVotronic, Diebold TSX, Winvote, and Diebold Expresspoll 4000. More importantly, there's a chance to make a little history here. The integrity of voting systems is a live issue in the world's news, and there are a lot of eyes on our little experiment. If your idea of fun includes a little paradigm-shifting, the VotingVillage is open all DEF CON.
In Memoriam, the DEF CON Conference CD
Posted 7.27.17
Let's face it: this change has been looming on the horizon for a long time. When we started putting a compact disc full of slide decks and files into the DEF CON goodie bag, it was a perfectly good idea. In those days, 750 megabytes was a decent amount of storage. More importantly, optical discs were still a thing. Readers shipped with all the computers and we all had cool CD wallets and racks and whatnot.
The world has changed, and CDs are now a weird novelty item from the hazy past like Pet Rocks and Cassingles.
This year, you'll find all that juicy data on the DEF CON media server (media.defcon.org) and you can connect at your leisure and leech to your heart's content with no silly plastic doodads to hunt down of when you're loading out your hotel room.
We will miss the Conference CD. We had good times together. We will toast to your memory, and pour out a little data in your honor. See you on the flip side, old friend.
Torrents for Presentation and Workshop Materials:
https://media.defcon.org/DEF CON 25/DEF CON 25 presentations.torrent
https://media.defcon.org/DEF CON 25/DEF CON 25 workshops.torrent
DEFCON 25 Pre-con Link Roundup
Posted 7.26.17
It’s very nearly on, DEF CON fam! As many of you are already in the city getting situated, here’s a few helpful links to get your mind right for the impending festivities.
Parking information: Vegas parking is a little different every year - here’s the thread about it on the DEF CON forums.
https://forum.defcon.org/forum/defcon/defcon-25-planning/226245-parking-in-vegas-it-s-ok-we-can-hear-you-screaming-from-here
For that matter, you can use the DEF CON forums to check out information about any of the stuff going on here.
forum.defcon.org
In case you didn’t know, there’s an official app for DEF CON called HackerTracker, available in iOS and Android flavors. Open source and created with love by members of the community, and full of stuff like maps and schedules to help you navigate.
iOS: https://itunes.apple.com/mx/app/hackertracker/id1021141595?l=en&mt=8
Android: https://play.google.com/store/apps/details?id=com.shortstack.hackertracker&hl=en
For those of you in Paris and Bally’s, good news! You get DEF CON TV! 4 channels, no waiting.
For the latest in presentation info and such, hit up the DC25-specific media server at dc25-media.defcon.org on the internal DEF CON 25 network.
To keep up to date on the latest of the late-breaking news, follow the main twitter feed @defcon, the DEF CON info booth @dcib and Facebook.com/defcon. Pictures and such also going up at @wearedefcon on Instagram.
And most importantly, registration opens Thursday at 6am. See you there!
Announcing the DEF CON 25 Official Soundtrack
Posted 7.26.17
The Official DEF CON soundrack has dropped!The Official DEF CON soundrack has dropped! If you're here in Vegas, you'll get it on a CD with your registration pack, but if not, fear not, you can have it too!
14 tracks of hacker-centric tunes by so many fantastic artists, like:
Skittish and Bus, Laughing Mantis, Information Society, Zebbler Encanti Experience, JG And The Robots, Bioassay, Moderns, Left-Right, Ninjula, Richard Cheese and Lounge Against The Machine, The TroubleShooters, MC Frontalot, Lavos, Dual Core
It's available for free on media.defcon.org in a handy torrent, or if you're feeling benevolent, in a pay what you want format to benefit the EFF.
Friends of Bill W. at DEF CON 25.
Posted 7.21.17
Vegas is a lot of fun, but it can also be just a lot. Too much, even, if you’re trying to keep the horizon level in your windscreen. If you’re a friend of Bill W joining us for DEF CON 25, please know that we have meetings at noon and five p.m., Thursday through Sunday in “Office 4A”, on the promenade level. Drop by if you need to touch base or just want a moment of serenity. We’ll be there.
(See info booth next to office 4 on the map, if you’re having trouble finding “Office 4A”)
DEF CON 25 Data Duplication Village!
Posted 7.19.17
Data Duplication Village is back for DEF CON 25, so don't forget to bring up to 3 6TB drives if you want to download the whole enchilada. This year's goodies are:
6TB drive 1-3: Updated archive of infocon.org plus other "direct from DT" content
6TB drive 2-3: freerainbowtables.com hash tables (#1-2)
6TB drive 3-3: GSM A5/1 hash tables plus remaining freerainbowtables.com data (#2-2)
There's a handy schedule to follow and you can drop off and pick up just like dry cleaning.
For more info you can check out dcddv.org and the forum thread
DEF CON 25 Entertainment Lineup!
Posted 7.19.17
Curious who's gonna be rocking the house in the wee hours of DEF CON 25? Here's a handy guide to the MainStage performers for all three nights! Enjoy, plot your entertainment journey and pass it on.
Just a little over a week! W00T!
*Richard Cheese and Lounge Against the Machine are performing in the Chill-Out Area, the rest of these performers are on the main stage.
Full-spectrum psychedelic bassquake - ZEE is back!
Posted 7.17.17
Saturday Night, y'all!
Zebbler Encanti Experience (aka “ZEE”) is what happens when Pixel Wizard and Techno Badger meet in the woods and decide to short circuit neural pathways of the nearby mushroom pickers with nothing short of bassquakes (9.0 on the scale of awesome) and complete visual reality replacement (somewhat too awesome and terrifying to be numbered anything in particular).
That historic meeting in the woods is the underpinning of the very garments that ZEE now wear at every event they perform. The mere loosening of a button of their coats' pockets opens up a wormhole of psychedelic visions and sub-sonic rattles. But Zebbler Encanti Experience do more than that. They open their minds fully to each and every dance floor and ask you to Get In There!
Richard Cheese and Lounge Against the Machine are BACK for DEF CON 25!
Posted 7.15.17
Friday, in the Chillout area, please to enjoy the nearly-too-swanky-to-function sounds of returning DEF CON performers (and DEF CON Soundtrack contributors!) Richard Cheese and Lounge Against the Machine!
America's loudest lounge singer Richard Cheese performs swingin' Vegas versions of rock and rap songs, "swankifying" popular Top40 hits into retro vocal standards. Imagine Sinatra singing Radiohead, and you've got Richard Cheese & Lounge Against The Machine.
The aforementioned DEF CON soundtrack is included with admission at DEF CON 25 or by donating to the EFF (url coming soon).
DEF CON 25 Friday Headliner: Reel Big Fish!
Posted 7.14.17
For your DEF CON After Dark enjoyment, we present Friday's headliners, Reel Big Fish! They're fresh from their Beer Run Tour and ready to bring their trademark SoCal skank to the DEF CON masses.
In case you're not familiar, a bio snippet: "Reel Big Fish were one of the legions of Southern California ska-punk bands to edge into the mainstream following the mid-'90s success of No Doubt and Sublime. Like most of their peers, they were distinguished by their hyperkinetic stage shows, juvenile humor, ironic covers of new wave pop songs, and metallic shards of ska."
Sounds fun, yes? Yes.
DEF CON 25 Village Spotlight: ICS VIllage
Posted 7.13.17
A small group of SCADA Ninjas are traveling around the globe, spreading the word of SCADA. Unless you are already operating a secret nuclear enrichment facility in your basement or an ACME factory production line, then this is your best chance to get a kick-start into the world of Industrial Control Systems. We are bringing a number of real-world industrial devices from different vendors for you to look, feel and mess around with.
We bring you a safe, yet realistic environment where you can learn on how to assess, enhance, and defend your Industrial Environment. We bring you real components such as Programmable Logic Controllers (PLC), Human Machine Interfaces (HMI), Remote Telemetry Units (RTU), Actuators, etc. to simulate a realistic environment by using commonly components throughout different industrial sectors.
You will be able to connect your machine towards the different industrial components and networks and try to assess these ICS devices with common security scanners, network sniffers to sniff the industrial traffic, and more! In addition to previous years there is a workshop dedicated to ICS 101 and 201. Afterwards there will be an additional but optional challenge to test your newly acquired skills.
Follow @ICS_Village or have a look at www.ics-village.rocks.
New for DEF CON 25:
Voting Machine Hacking Village!
Posted 7.11.17
"Just like everything else, it's time for hackers to come in and tell you what's possible and what's not."
-The Dark Tangent
Judging from the headlines, it's a good time to figure out how secure our electronic voting machines are. What better way, we thought, to find out what's real and what's hype than getting a bunch of real voting machines into the hands of thousands of hackers? We happen to know where to find a lot of hackers onthe last weekend in July, so we created the Voting Machine Hacking Village. We're bringing a bunch of voting machines and encouraging people to see what's possible. Let's test the physical security, try attacks at a distance, dump the BIOS, all of it. Knowing is half the battle, people. Let's do our part to add to the base of knowledge.
Read all about it:
Voting Machine Hacking Village on the DEF CON Forums
Lawyer Meetup at DEF CON 25!
Posted 7.7.17
Attention all lawyers, law students, and judges: The DEF CON Lawyer Meetup is BACK! We'll be meeting Saturday the 29th at 6pm in the Counsel Boardroom on the Promenade Level. Join us for conversation and merriment, followed by dinner for those interested in extending the experience.
See you there!
Important Call for Parties Update!
Posted 7.6.17
Luxury problem: It turns out that we have a little more free night-time space than we anticipated.
Luxury solution: Turn it over to DEF CON community for some more parties. Got an idea for a fun, open-to-everyone party you’d like to throw? Get at us at contests@defcon.org right away. We’ll work with the best ideas to allocate floor space and get the party launched.
You have your assignment. We look forward to your kick-butt ideas.
DEF CON 25 Demo Labs are Live!
Posted 7.6.17
DEF CON Demo Labs are back, and everything you need to know about them is waiting for you at the DEMO Labs Page! It's a heavy lineup of cool, open tools for all kinds of audiences, from testers to defenders to crypto enthusiasts. Bring your curiosity and questions and let's see what grows out of the interaction!
Meet the CFP Review Board!
Posted 6.30.17
Meet the team of renegade super geniuses that work for months to pick the best talks for DEF CON. We love them, and you should too. It's a crazy hard job reviewing hundreds of highly technical proposals, providing meaningful feedback and picking the best ones. This year they'll be rocking special CFP Review Board badges at DEF CON, so if you see them let them know we appreciate what they do.
The Speaker List is Complete!
Posted 6.22.17
You know how we know it’s almost DEF CON? The Southwest is having a heat wave, that ancient tweet about the Feds (allegedly) not appreciating the ‘Spot the Fed’ contest is back and the interwebz are buzzing with burner phone chat.
Also, the speaker list is complete! Get yourself over to the speaker page and learn what wondrous presentations DEF CON 25 has in store for you! We think it’s gonna be a great year, and we want to thank everyone who submitted, both selected and not.
Extra special shout out to the unsung heroes of the CFP Selection team, who labor mightily to pull together the best possible lineup, and to provide the kind of feedback that makes everyone better.
Check out the lineup, plan accordingly, and go ahead and get psyched. DEF CON approaches.
A DEF CON 25 Announcement
Posted 6.15.17
BAD NEWS:
No DEF CON 25 Mystery Challenge or badge contest.
WHAT HAPPENED?
Curious Codes, the company that was designing the DEF CON 25 badges,
notified us they are no longer working on any challenges or badges for DEF
CON.
WHY?
A combination of design and planning delays combined with a last minute
unforeseen personal circumstance made their production impossible.
WHAT DOES THIS MEAN FOR DEF CON?
No special badges or challenge and no mystery challenge
SO NOW WHAT?
We've gone with a DEF CON 25 anniversary theme with the badges and have
worked around the clock to get them designed and ordered. Not to fear, we
are hackers, it will work out. Everyone will have badges, they just won't
have crypto, secret embedded robotics, or radioactive compounds. I'll talk
more about the joy of conference badges in a later post.
WAIT, THERE WAS GOING TO BE ANOTHER MYSTERY CHALLENGE?!?
Yes, L0st had planned to do a special DC 25 challenge to break everyone's
minds.
ERATTA
Stay tuned for more info on #badgelife, we are planning a badge meet up for
all those who enjoy building and collecting conference or contest specific
badges of all kinds.
Village Spotlight - Crypto and Privacy Village Edition!
Posted 6.14.17
Privacy is important to everyone, both in terms of the abstract legal right to secure our information and the concrete availability of tools and means to keep that data secure. In this age of near-ubiquitous surveillance, it's a good idea to keep your security knowledge sharp.
To that end, the Crypto and Privacy Village is back with a full roster of presentations, contests and workshops to level up your privacy game. Follow them @cryptovillage, or get the full rundown at cryptovillage.org.
Better Know a Contest: Hair Farmer Edition!
Posted 6.14.17
The DEF CON Beard and Mustache Contest is back - time to break out the various oils, waxes and industrial fertilizers that keep you looking so profoundly beardy. There are prizes to be won! Join us at 'the intersection of facial hair and hacker culture'.
You can learn the rules and whatnot at the contest website dcbeard.com, and you can follow the contest on the Twitters @dcbeard contest.
Beardless, but interested in competing? Please know that there is a freestyle category that actively encourages the creation and display of faux, ersatz and/or fictive facial hair arrangements. Fanciful and improbable designs welcome.
Village Spotlight: Packet Hacking Village
Posted 6.10.17
Once upon a time, the Wall of Sheep was mostly a bunch of paper plates stapled to a wall, shaming DEF CON attendees for bad security practices. It has grown into a whole village full of packet shenanigans with its own speaker track, contests and even workshops.
There’s loads of information on their wallofsheep.com, including the speakers they’ve so far selected for DC25. There’s a lot to take in, so it pays to get familiar in advance. The Packet Hacking Village has enough going on to satisfy all packet ninjas, from Padawan to full-blown Jedi. Visit their site, follow them on Twitter @wallofsheep and get your chops in order. The mischief starts next month.
'Better Know a Contest’: Crash and Compile Edition
Posted 6.6.17
Crash and Compile is part drinking game, part programming contest. The ratio, of course, is yours to determine, but there are prizes for both the solving of programming problems and the drinking of drinks.
There are more rules than this,naturally, and you can find them at crashandcompile.com. They are the kind of rules that go like this: something happens, people take a drink. Also something doesn’t happen, or fails to happen as expected, and people take a drink. You get the picture, we think.
There are also ways to participate if you want to code without the drinking, or drink without the coding, or just distract the people trying to do both.There are prizes, and booze, and the satisfaction of proving that your skills can’t be thwarted by a little casual imbibing.
Follow the organizers on Twitter @crashandcompile and if this seems like your kind of party, get started on the training montage. We’ll see you there!
DEF CON 20 Documentary on USB with updated material!
Posted 6.5.17
Still working on convincing someone you like to come with you to DEF CON? Sharing the essence of something as big and complex as DC isn't easy. We've got your back.
This sleek little USB key contains enough info to give a taste of DEF CON's magic. You get:
Jason Scott's terrific DEF CON documentary and a ton of out takes and soundtrack tunes
Videos of DC 20's Hacker Jeopardy and Hacker Pyramid
Music from the artists that played DEF CON 20 Pictures from all over DC20
All the DEF CON programs in PDF format
All the entries from the DC20 Short Story Contest.
When your hand your friend this little bundle of goodies, you're giving them all the data they need to get a real feel for DEF CON. Cool, right?
DEF CON 25 Sticker Packs now Available!
Posted 5.31.17
Got a device with visibly unadorned surface area? Don't worry - DEF CON is here to help you do the right thing. Hide your laptop's shiny silver shame with our stylish, durable DEF CON 25 stickers! There's five in the pack: you get a DC25 logo and four variations of our popular 'Disobey' sticker.
It's almost summer here in the Northern Hemisphere - make sure your gadgets are beach-ready. Get these fine stickers (and all kinds of other DEF CON goodies) at our eBay store, while supplies last.
DEF CON 25 Vendor Applications are Closing Soon!
Posted 5.30.17
If you're still hoping to be a vendor at DEF CON 25, you need to to get over to defconvendors.com with all deliberate speed. The space is limited,and the deadline for submissions is June 1.
Don't miss your chance to share your products with thousands of members of the DEF CON community at Caesars Palace in July.
Tick-tock, tick-tock.
First Round of DEF CON 25 Speakers are Live!
Posted 5.24.17
The time has come, worthy citizens of DEF CON! Our first round of speaker selections, piping hot and ready for your delectation. It's going to be a big year, and it's a good time to start planning your con. We'd love to hear which talks you're most interested in so far. Stay tuned to this channel for additional speaker updates in the days to come.
Get psyched!
DEF CON in the Media: Mar Talks Art and DEF CON on PBS!
Posted 5.23.17
We put a lot of effort into the atmosphere of DEF CON. We bring in musicians and artists that set a tone of high-energy creative inspiration. One of our favorite artists is Mar Williams - you’ve seen Mar's bold and evocative work in the halls, in the programs, on your swag. That style and energy are a large part of the DEF CON image in recent years, and we’re very proud of Mar.
Mar recently shared some thoughts about the creative process and some ideas about the connections between hacking and art with an interviewer at PBS. Check it out and let it inspire you to just start something creative and see where it takes you.
If you find that you really like Mar's style and you need some more of it in your life, Mar has a Patreon account you can check out at https://www.patreon.com/spux.
YouTube version:
https://m.youtube.com/watch?v=Ud-l6u9HzVY
You can also find this video (and an enormous quantity of other cool stuff) on the DEF CON Media Server’s Documentary Section.
https://media.defcon.org/Hacking Related Documentaries/
Village Spotlight: BioHacking Village!
Posted 5.19.17
From the BioHacking Village website at defconbiohackingvillage.org:
"The DEF CON Biohacking Village is a multi-day biotechnology conference focused on breakthrough DIY, grinder, transhumanist, medical technology, and information security along with its related communities in the open source ecosystem. There have been multiple instances of DIYBio overcoming conventional science. We want to celebrate the biohacker movement with a compendium of talks, demonstrations, and a medical device hackathon.
The 2017 BioHacking Village theme is Medical Industry Disrupt. The Medical Industry is one of the last to be touched by technology. We have placed doctors and the study of medicine on an altar for years; the time of ivory towers, pedestals, and information isolation has come to an end. Biohackers are working on projects that have traditionally been kept in the labs of the medical institutions. We are moving science forward by working on DIY projects that matter and use citizen science to solve the economic problems that are caused by privatizing medicine and the resources for research."
If this sounds like your jam, or you just want to dip a toe in the DIYBio pool, you can find out more at defconbiohackingvillage.org, by following @DC_BHV or checking out their space on the DEF CON Forums.
Better Know a Contest - Film Contest Edition!
Posted 5.17.17
The TD Francis X-Hour Film Contest is back! Think you've got the skills to conceive, script and shoot a short film in the midst of the DEF CON madness? Do you enjoy fun, prizes and awesome Contest shirts? Sign up, meet some basic requirements,and make your masterpiece.
Full details are on the Film Contest Website (xhourfilmcontest.com), but the basics are:
• You get the full and final rules and the topic when you pick up your reg Packet onsite.
• You can film in the venue so long as you're wearing your brightly colored Contest tees.
• Up to 5 crew - actors and extras aren't counted as crew.
Win prizes like a Seattle Film Institute scholarship and human badges to DEF CON 26, and get your film shown at DEF CON 25.
Thank DEF CON through your Oscar tears a surprisingly short time later.*
Slots are limited, so if you want shot at DEF CON Film glory, get over to xhourfilmcontest.com right away and begin your journey.
*your mileage may vary, but you definitely can't rule it out.
DEF CON 25 Village Spotlight: Tamper-Evident Village!
Posted 5.11.17
Tamper-evident tech may not be the flashiest security are out there, but it's a fascinating way to get your hands dirty in some ground-level physical security. The wily hacker who masters this space must know methods and techniques for defeating a wide variety of real-world seals, all the while stepping so lightly as to remove all evidence of their passing.
The Tamper-Evident Village brings a ton of different seals for you to practice on, helpful humans to point you in the right direction and even a few contests to test your skills.
Join us in the Tamper Evident Village and level up your physical security skill set!
Tuesday Feature: Better Know a Contest!
Posted 5.9.17
We're spotlighting some of the contests of DEF CON 25, to help you map your time and maybe get some practice in.
Today's Featured Contest: COINDROIDS!
Coindroids is sort of an RPG, set in a post-humanity Earth where only financial services droids remain, battling each other through the ruins for upgrades and survival. Money is the goal, both as a symbol of power and the weapon from which power is derived.
The game is played within the blockchain, and each block represents a round. To attack, you send defcoin to the attack address. To defend, you send defcoin to a 'block' address to raise your shield. Gain experience, level up, purchase new and more powerful armaments and upgrades and claw your way up the leaderboard. Rule the Cryptocurrency wasteland.
For a thorough explanation of the game's inner workings, check out the coindroids github: https://coindroids.github.io/Coindroids-Documentation/#introduction
Sign up and get some reps in at the Coindroids website: def.coindroids.com
Flashback Friday: DEF CON the Documentary!
Posted 5.5.17
For today's #defconflashbackfriday, we offer the DEF CON documentary we commissioned for DEF CON's 20th anniversary. It's a great way to get a feel for what DEF CON is about and the amazing community that makes it happen.
If you've always wanted to come to DEF CON but wished you knew more about what to expect, set aside some time this weekend to watch the video and get up to speed. If it seems like your cup of tea, we'd love to have you join us for our 25th Anniversary Celebration at Caesars Palace.
We'll save you a spot.
Congrats to DEF CON 25 CTF Qualifying Teams!
Posted 5.1.17
We'd like to congratulate these qualifiers for DEF CON 25's CTF contest:
PPP
Tea Deliverers
Shellphish
DEFKOR
A*0*E
hacking4danbi
!SpamAndHex
RRR
Team Rocket ☠️
Excellent work, and may fortune smile on you in Las Vegas this July. We'd also like to thank the shadowy masterminds of the Legitimate Business Syndicate for putting together another great contest. Feels good, doesn't it? The spring is turning to summer, the table is set for the DEF CON CTF and we're in the home stretch of the countdown to DC25. Feel free to get amped.
DEF CON 25 CFP Reminder!
Closes Monday May 1!
Posted 4.27.17
If you're waiting until the last minute to submit your presentation, you should know that we are officially in last minute territory right now. The window closes Monday, so if you want to see your talk in contention make good use of the remaining time! The moment of truth is upon you, so clear out some space and get your submission in order.
Let's get your cool ideas up where they belong.
The information you need is here:
https://www.defcon.org/html/defcon-25/dc-25-cfp.html
DEF CON 25 Crypto & Privacy Village CFP is OPEN!
Posted 4.24.17
Cypherpunks, start your engines! Crypto and Privacy Village is returning for DEF CON 25 and they're looking for speakers. If you've got some good stuff to share with the Crypto community, point yourself over to cfp.cryptovillage.org and get your submit on! We're looking forwards to seeing what you've been working on.
DEF CON 25 Vendor Registration is OPEN!
Posted 4.21.17
If you have geek-friendly wares you'd like to get in front of tens of thousands of clued-up, engaged and highly caffeinated DEF CON types, might we suggest the vendor area at DEF CON 25? For that audience, you really can't beat it. Smart people with an interest in hacker stuff is literally all we got.
As always, vendor table space is limited, and will get claimed pretty quickly. Its a good idea to get your application in early to ensure your spot. The information you need to apply is available at defconvendors.com. Registration closes on June 1st, 2017, so don't delay.
DEF CON in the News: Smithsonian Edition
Posted 4.20.17
The 2016 DARPA Cyber Grand Challenge was kind of a big deal. It was an autonomous, all AI Capture the Flag contest with millions of dollars in prize money. The systems competing were built by teams from all over the country, all of them building the road as they travelled. The teams that made it to the hotly contested final round are all full of straight-up wizards. We're proud of how great the contest turned out, and of all the brilliant humans who made it happen.
When the smoke cleared, For All Secure's Mayhem was the last bot standing. In addition to the millions in prize dollars, the eternal bragging rights and the very stylish DEF CON Black Badge, Mayhem now has a place in official history at the Smithsonian.
Writeup Here:
http://invention.si.edu/ai-and-challenge-cybersecurity
Recap and tons of info also available here:
http://archive.darpa.mil/cybergrandchallenge/
DEF CON 25 Call for Demo Labs is Open!
Posted 4.14.17
DEF CON Demo Labs are BACK! If you’ve got an open source project (tool or hardware) that you want to get in front of a huge, clued-in and interested audience, you’re gonna want to check out our Demo Labs page. Whether you’re looking for feedback, help or just getting the word out, we can offer you a 2-4 hour dedicated time slot to share at DEF CON 25. And one badge, if your project makes the cut, obvi. Get your info on the DL page and get your proposal in before June 1, and let’s make some demo magic!
Call for Contests, Events, and Villages is Closed!
Posted 4.6.17
The Call for Contests/Events/Parties is now closed. If you submitted a proposal, expect a response soon. If you just want to know what kind of delights are in store for DEF CON 25 attendees, watch this space.
It's getting closer, people. Feel free to get amped.
Press Registration is Open for DEF CON 25!
Posted 4.1.17
Friendly reminder to our friends in the fourth estate: Press Registration for DEF CON 25 is now officially OPEN! Spaces are limited, and speedy application improves your chances. The information you need to get your ducks properly aligned is on the DEF CON Press page. We've made some changes to streamline the process, so it's worth your time to check that out.
We look forward to hearing from you. It's gonna be a big year.
DEF CON 25 Secret Stash: March Edition
Posted 3.25.17
This month's profoundly rad design is here to hacker up your spring wardrobe! Dozens of DEF CON and hacker culture references packed together in the inimitable style of our own Mar Williams. Can you identify them all?
Limited edition, only available in the Secret Stash, so get yourself fresh while you can!
We're Working on Great Things for DC25!
Posted 3.22.17
One of the fun perks of staying in the host hotel at DEF CON is access to live, streaming talk content from the comfort of your room. DEF CON TV can really come in handy when a talk is over capacity, or when you need a little breather from the Vegas of it all.
This year, we’re hoping to expand the offering of DEF CON TV beyond the main venue. If you're staying in any of the partner hotels, you’ll not only get our D.C. Group rate, but you get DCTV as well! Huzzah! We’ll keep you informed via social media and the DEF CON 25 website when we have the green light.
Our block rate is sold out at Caesars, but you can still grab it at
Linq
Paris
Bally's
Flamingo
Harrah's
We suggest you book promptly to ensure the preferred pricing - these will fill up quickly.
DEF CON 25 CTF Qualifying event, 0OPS CTF this Weekend!
Posted 3.16.17
The next stop on the road to DEF CON 25 CTF glory is this weekend's 0OPS CTF. It's a wide open, jeopardy-style event you can learn about at https://ctf.0ops.net. Everybody gets an exciting sleepless weekend of network combat, but the winner gets a spot at the Big Show at DC25. Spring has sprung and the procrastinator's window is slowly closing. Gather your stoutest warriors and get your name in the arena, or forever wish you had tested yourself against the best.
Details and the full quals schedule are at legitbs.net.
DEF CON 25 Call for Entertainers is Now Live!
Posted 3.15.17
Are you an entertainer? A singer of songs, a shredder of licks, a spinner of beats? Have you the skills to keep the sweaty masses in a rumpus till the breaking of dawn? If so, DEF CON has urgent need of your talents.
The DEF CON 25 Call for Entertainers is now live. Fill out the form, prove you have the goods, rock faces off at DEF CON's 25th Anniversary shindig. It's that simple. You've got til June 1 to get our attention.
DEF CON 25 BioHacking Village CFP is Open!
Posted 3.7.17
This CFP announce is for lifehackers; not the ones who have a really good todo list app, but the ones who hack life. The DEF CON 25 Biohacking Village is looking for your presentation ideas. Grinders, transhumanists and DIY biotech geeks of every description are encouraged to apply.
The Biohacking Village theme for 2017 is Medical Industry Disrupt, so special consideration goes to pitches that aim to revolutionize the practice of medicine. You have until May 28th to get your submissions in. We're looking forward to seeing what you're up to.
For all the details, go to defconbiohackingvillage.com
DEF CON 25 Site is Now Live!
Posted 3.4.17
It’s happening, luminous humans of DEF CON. The hour of our reunion draws closer. All the signs say so. The seasons change, the CFPs begin to sprout, and this year’s DEF CON website goes live.
That’s right - the DEF CON 25 website lives! Burn its address into your heart, your mind, and your browser of choice. As the conference approaches, we’ll fill the site with all the info you need to maximize your DEF CON preparations. Get amped, people. DEF CON’s 25th Anniversary is closer than ever.
Call for Reviewers Closing Soon
Posted 2.24.17
Your response to our call for reviewers was much bigger than we expected, so we’re closing it down Monday. Thanks to everyone who offered to help - we’ll be getting in touch with those who’ve been selected. We’ll keep the applications we received on file, and we’ll open this call back up before DEF CON 26.
If you’re still looking for volunteer reviewer opportunities, we encourage you to get in touch with the villages - most of them also field a large number of proposals that might be a perfect match to your expertise.
Thanks to the DEF CON community for always responding to our requests with so much love and enthusiasm. You rule.
Call for Contests, Events, Villages, & Parties is now Open!
Posted 2.23.17
DEF CON 25 approaches. It more than approaches. DEF CON 25 looms. It hovers just beyond the near horizon, waiting to be awesome.
One key element of this awesome is all the superfun hackertainment we deliver in the form of Contests, Events, Villages and Parties. And the key element to pulling that together is YOU. All of that fun is 100% community-driven.
Every year we ask the DEF CON community for their best ideas for CON amusements, and we make the best ideas happen. This year, our 25th Anniversary year, we're hoping you're ready to respond and really step things up. Dig deep. Dream big. Seize this moment.
Everything you need to know to put your proposal together is on our CEV page. Go there, get amped, and submit your killer idea.
Let's get epic, people.
Reminder: DEF CON CFP Review Board AMA on Reddit Tonight!
Posted 2.22.17
Friendly reminder: If you've got any questions about the process of becoming a DEF CON speaker, don't miss the AMA today! Get yourself over to /r/defcon at 6pm PST today and get 'em answered by the DEF CON 25 CFP Review Board.
Get tips on what they're looking for, help with how to present your proposal and general encouragement to bring your ideas to the DEF CON community. Be there.
Next Quals Event for DEF CON 25 CTF Coming Up!
Posted 2.20.17
If you're a packet ninja on a quest for CTF immortality at DEF CON 25, you need to keep your eyes on the qualification schedule. No quals, no glory.
The next qualifying event is the online Jeopardy-style Bostonkey.party, happening this very week (Feb 25-27)! You can find info about this and all the remaining events in the schedule at legitbs.net, the online home of the shadowy masterminds hosting this year's CTF.
We're expecting big things from you.
DEF CON CFP Review Board AMA on Reddit next Week!
Posted 2.16.17
The DEF CON 25 CFP Review Board will be hosting an AMA Wednesday, Feb 22 at 6pm PST. Bring your questions and get yourself up to speed. Meet the team that does the selecting, and learn tips that will give you an edge in getting your talk accepted.
Join us in /r/defcon next Wednesday!
Specialized Reviewers wanted
for DEF CON 25 CFP!
Posted 2.14.17
Greetz!
We're seeking specialized CFP Reviewers to join our DEF CON 25 CFP board this year. We have a fairly well rounded board, but we could use a few more to the team. Specifically, we'd like those more specialized in: Cryptography, Malware, Post-exploitation, Reverse Engineering, and Forensics. So if you can open a can of whoop ass with those skills, please apply.
All you have to do is write a cover letter telling us how you've been involved in the DEF CON community, what skills you can bring to the table, and where to find your resume. Please be aware being on the review board is a hard volunteer job. To review you need to spend hours reading submissions and providing feedback. There will be hundreds of emails, so you have to be committed. The reward, however, is having a hand in making DEF CON 25 amazing and the eternal gratitude of hackers all over the world. Which is nice.
Send your entries to talks@defcon.org if you want in.
Thanks,
Nikita
DEF CON Jackets on Sale!
Posted 2.9.17
Pro Tip: DEF CON's eBay store has a 50 dollar price drop on some very stylish waterproof soft-shell jackets! Now there's no excuse for spending one more day in the same boring, skull-free outerwear. Fight the elements and crush the mid-winter blahs with style. Check 'em out !
Jeff Moss Named Commissoner on GSCSC!
Posted 2.8.17
We're excited to announce that our founder, Jeff Moss, has been named a Commissioner of the brand new Global Commission on the Stability of Cyberspace! The Commission, which will debut at the Munich Security Conference, aims to safeguard the peaceful use of the Internet as volatility and threats from state-level conflict increase.
Jeff joins a team of security and policy luminaries Chaired by Marina Kaljurand, former Foreign Minister of Estonia. The Co-Chairs are former US Secretary of Homeland Security Michael Chertoff and former Deputy National Security Adviser of India Latha Reddy. You can learn more about the GCSC and its mission at cyberstability.org
DEF CON 25 Call for Papers and Call For Workshops are Open!
Posted 2.1.17
Luminous humans of the DEF CON community, we interrupt your slow news week to bring you this urgent message:
The DEF CON 25 CFP is OPEN! And so is the Call for Workshops!
We realize that's kind of two messages. The common thread is that the machinery of DEF CON 25 awakes from its fitful rest, and it hungers. It hungers for your talk submissions as well as your workshop ideas.
To expedite the annual feeding of this beast, we've created a CFP index page that includes all of the many ways you can submit your work for consideration.
The time is upon us, people. The deadlines will arrive faster than you think. Get your stuff together, whip it into shape and get it in. We are only going to turn 25 once, and we want you to be a part of it.
DEF CON In the Media: Coded Web Series
Posted 1.18.17
The trailer for 'Coded', a new hacker-focused series from Freethink Media, has tons of shots from DEF CON 23. It also contains interview footage with Ladar Levison and Nico Sell. We've only seen the trailer, but It looks promising. Here's the promo blurb: "The data war is in full swing. Foreign governments are hacking major corporations, major corporations are collecting massive amounts of consumer data, and the NSA is listening to all of them. With malevolent hackers on one side and oppressive regimes on the other, data security is as important to the global economy and human rights as free speech and the rule of law. Join us as we profile a new generation of programmers helping consumers and companies alike protect their financial information, their identities, and their freedom."
Caesars is Sold Out, But Options Abound!
Posted 1.13.17
The early birds have captured all of the on-site worms: Caesars Palace is sold out for DEF CON 25.
Be of good cheer, however. You can still get our discounted room rate at the following nearby properties:
Linq
Paris
Bally's
Flamingo
Harrah's
DEF CON 25 is gonna be kind of a big deal, and we want you there. We suggest getting on that reservation post haste. The link for the DEF CON discount is https://resweb.passkey.com/go/SCDEF7 and the time for action is now.
Jennifer Granick receives Palmer Prize!
Posted 1.11.17
Congrats to @Granick!
Hacker lawyer extraordinaire, Director of Civil Liberties for the Stanford Center for Internet and Society and possible secret superhero Jennifer Granick just won the Palmer Prize! The prize, awarded for work that sheds light on the interplay of civil liberties and State security is for her upcoming book "American Spies: Modern Surveillance, Why You Should Care, and What to Do About It". We can't wait to read it.
Jennifer is also a frequent and popular speaker at DEF CON. To give those unfamiliar an idea why her work and ideas are so valued by the hacker community, take a look at her most recent DEF CON presentation. It's entitled "Slouching Towards Utopia; The State of the Internet Dream" from DEF CON 24.
As always, enjoy and pass it on.
DEF CON 25 CTF Quals Update!!
Posted 1.10.17
Attention all seekers of CTF glory - the qualification season is underway! The solid citizens of the Legitimate Business Syndicate have posted the information you need to get involved on their website at legitbs.net.
If you've got the goods, get in the arena. There's nothing between your squad and Capture the Flag supremacy but air, opportunity and the best players on Earth. Get you some.
DEF CON 24 SE Village Video Playlist!
Posted 1.5.17
Today's treat - a YouTube playlist chock full of SE goodness from the Social Engineering Village at DEF CON 24! All the presentations and a bonus live recording of the Social Engineering podcast. There is much to be learned here, so block off some time.
As always, take what you can use and pass it on. The best defense against the dark arts of SE is exposure and education.
