DEFCON 201

North East New Jersey DEFCON Group Chapter. We meet at Sub Culture once a month to hack on technology projects! https://www.defcon201.org

.::DCG 201 Online Meet Up — April 2021 — Application Is Meditating::.

====================================================== Date: April 16th, Friday

Time: 7:00 PM EST — 11:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/277538431/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/554252495545299/

Hackaday: TBA

=====================================================

Welcome to the April 2021 DEFCON 201 Meet Up!

Spring is in the air…as well as the infamous April Showers. And when it rains, it POURS! Millions of vaccination rolling out globally, more civil unrest unfolding, FOSS orgs imploding, canals getting blocked and TONS of exploits and data leaks flooding the intertubes.

Join us for this month's meet up as we deep dive into more traditional hacker AF topics from hardware maniuplation, exploits, digital archiving and more as you get to interact with us via our Big Blue Button posted on our social media the day of the event! All online as we wait for more people to get their Bio-Blue Team Hardened for more traditional in-person meet ups later this summer!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://grwp24hodrefzvjjuccrkw3mjq4tzhaaq32amf33dzpmuxe7ilepcmad.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

PeerTube: https://diode.zone/accounts/dc201/video-channels ======================================================

.::AGENDA & SCHEDULE::. 7:00pm — 7:55pm PRE SHOW :: Black Hat Webcast Series – It's not FINished: The Evolving Maturity in Ransomware Operations 7:55pm — 8:00pm DEFCON 201 Announcements 8:00pm — 8:30pm Detecting At-Risk Software — Kaylea Champion 8:30pm — 9:00pm The Joycon Symphonic Orchestra — sirocyl 9:00pm — 10:00pm npm's Gone Wild: The undefined Edition (CVE-2021-28918) — SickCodes, John Hacking, Kaoudis, Koroeskohr, Tensor_Bodega 10:00pm — ??? Open Workshops: DEFCON 201 Show & Tell + Games + Hangout

.::OPEN PROJECTS::.

DC201 Hacker Show & Tell — Everyone PlaidCTF 2021 — Everyone Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone Among Us — Everyone

.::LIGHTNING TALKS::.

PRE SHOW :: Black Hat Webcast Series - It's not FINished: The Evolving Maturity in Ransomware Operations :..>Our PRE-SHOW will a relevant talk from the Black Hat Webinar series! Ransom demands are becoming larger, attackers smarter, and intrusions longer. Ransomware threat actors are hitting European companies hard with more effective ransomware deployment resulting in devastating impacts to victim organizations. When they strike, their ransomware deployments are more complete, more effective, and they are crippling many organizations to the point where there is often no clear path back to business.    We will be sharing tradecraft we've seen ransomware threat actors employ across Europe in 2020. We cover how we're seeing ransomware crews leverage high-profile critical vulnerabilities to gain footholds in as many victims networks as possible, only to come back weeks or even months later to leverage those footholds into full-scale ransomware deployments.    Not only are intrusion tactics improving, but attackers are also transitioning and developing sleek ransomware-as-a-service platforms. Threat actors are professionalising and streamlining their platforms. These platforms are being used by threat actors to generate malware, to communicate and negotiate with victims, and in some cases, for payment processing and decryption utility delivery.

:..>Bio: Mitchell Clarke is a Principal Incident Response Consultant for Mandiant United Kingdom and Ireland. He specializes in providing enterprise-scale response operations for clients facing sophisticated network intrusions by determined attackers. Mitchell is well practiced in leading both large and complex response operations for multinational organizations as well as tightly focused response operations for highly specialized organizations protecting critical intellectual property or sensitive information. Mitchell has led organizations across multiple industries in responding to breaches by adversaries ranging from well-resourced and stealthy nation-state sponsored espionage threat groups to highly motivated cybercriminals seeking to extort or ransom victim organizations.

:..>Bio: Tom Hall is a Principal Incident Response Consultant in Mandiant's UK team, and European Incident Response Function lead. As part of the Incident Response team, Tom provides services to clients when a breach occurs and has worked on Incident Response engagements globally with Mandiant since 2015. Tom has been responsible for leading and assisting organizations that involved advanced targeted threats and works closely with colleagues on new methods to proactively identify threats using new methodologies.

:..>Bio: Joe Slowik has over a decade of experience across multiple cyber disciplines. From work in the US Navy, to the US Department of Energy and Los Alamos National Laboratory, to industrial control security company Dragos, Joe has covered multiple facets of cyber intrusions and critical infrastructure defense. As a Senior Security Researcher at DomainTools, Joe continues his work tracking state-sponsored and criminal threats to enterprises with an emphasis on critical infrastructure and related targets.

Detecting At-Risk Software Infrastructure :..>Software serves as infrastructure and it can suffer from a lack of maintenance. Problems can be invisible and repairs may be difficult to prioritize. These factors lead to a type of risk we call “underproduction” — projects that are highly important but low quality. We want to understand how to detect this kind of risk in Free/Libre Open Source Software infrastructure before major failures occur. We'll be presenting results from our research into this question.

:..>Bio: Kaylea Champion is a PhD student in Communication at the University of Washington with a background in tech support and system administration. As a member of the Community Data Science Collective, she studies how people work together to build incredible public goods like GNU/Linux and Wikipedia, including not only how these projects succeed and thrive but also where they sometimes fall short. When not slinging python or chewing through data, she enjoys running in the woods, playing board games, and cooking for a crowd.

The Joy-Con Symphonic Orchestra :..>Did you know that the Nintendo Switch Joy-Con Controller “HD Rumble” system is so precise that you can vibrate the motors to play music? Many first party Nintendo games have used this function and now thanks to sarossilli (no relation to sirocyl) you can do so at home! In this talk DCG 201 Member sirocyl will look at a program that allows Nintendo Switch Joy-Cons to play .midi files through vibrations using C++ and the HID API hidraw library to interface with the controllers. This will be followed by a mini-jam session that might extend to the hang out portion of the meet up!

:.>Bio: sirocyl is a DCG 201 alumnus and founder of the famitracker.org FamiTracker and Famicom/NES music community. He is also part of MAGFEST video game convention volunteer staff.

npm's Gone Wild: The undefined Edition (CVE-2021–28918) :..>How we copped a decade old 0-day, while fixing another one. Randomly assembled global team of then strangers. The power of dropping research on a Sunday.

:..>Bio: Research by… Victor Viale: https://github.com/koroeskohr || https://twitter.com/koroeskohr Sick Codes: https://github.com/sickcodes || https://twitter.com/sickcodes Kelly Kaoudis: https://github.com/kaoudis || https://twitter.com/kaoudis John Jackson https://twitter.com/johnjhacking Nick Sahler: https://github.com/nicksahler || https://twitter.com/tensor_bodega Olivier Poitrey: https://github.com/rs || https://twitter.com/olivier_poitrey

.::OPEN PROJECTS::.

DEFCON 201 Hacker Show & Tell :..>After our lightning talks DEFCON 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time so you don’t want to miss this on the LIVE Stream!

Big Blue Button: LINK WILL BE POSTED ON April 16TH AT 6PM EST

To get the URL and Password for the group hang out, pay attention to our Twitter or sign up on Meet Up!

:..>What You’ll Need: If you want to get in on the action, just bring any hardware or software program you are working on. For hardware, make sure you have a camera with decent resolution. For software, make sure your screen sharing function is working. For interaction, make sure you have your microphone on your computer or headset in working order.

PlaidCTF 2021 :..>This Friday, starting on April 16th at 5:00 PM EST, we invite all DEFCON 201 Members, Attendees and Fans to help us hack the PlaidCTF 2021! If you are new to Online CTF, we will help you get set up and walk you through some of the challenges. Then you can log in anytime after until April 17th 5:00 PM EST to continue our CTF conquest! To learn more about the CTF, please follow this link: https://www.meetup.com/DEFCON201/events/277538780/

:..>What To Bring: Any laptop will do. Ideally you want to load it full of Information Security Red Team and Blue Team tools, look at Kali Linux, Parrot OS, Pentoo or Black Arch for ideas. To participate online, you will need a Discord Account and to join our Discord at this link: https://discord.gg/PGgPNEF

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

AMONG US :..>During our stream, we will be playing the hit game Among Us with the DEF CON audience! Watch the stream to find out how to join.

Steam: https://store.steampowered.com/app/945360/Among_Us/ iOS: https://apps.apple.com/us/app/among-us/id1351168404 Android: https://play.google.com/store/apps/details?id=com.innersloth.spacemafia&hl=en_US&gl=US

The game takes place in a space-themed setting, in which players each take on one of two roles, most being Crewmates, and a predetermined number being Impostors. The goal of the Crewmates is to identify the Impostors, eliminate them, and complete tasks around the map; the Impostors’ goal is to covertly sabotage and kill the Crewmates before they complete all of their tasks. Players suspected to be Impostors may be eliminated via a plurality vote, which any player may initiate by calling an emergency meeting (except during a crisis) or reporting a dead body. Crewmates win if all Impostors are eliminated or all tasks are completed whereas Impostors win if there is an equal number of Impostors and Crewmates, or if a critical sabotage goes unresolved.

::END OF LINE::

.::IMPORTANT ANNOUNCEMENT: DCG 201 Public Apology & Operations Moving Forward::.

PrivateBin Plaintext: https://bin.privacytools.io/?39bb7e0a7df5ac30#4eEZdzGF2yn2VKsy9QGvXvZQVFEjq2LYsxRRG7GoFnNw

Medium Blog: https://defcon201.medium.com/important-announcement-dcg-201-public-apology-operations-moving-forward-2c84a10a660d

Greetings!

This is Sidepocket, Co-Founder of DEFCON 201 aka DCG 201 as we are formally called.

This is not an April Fool’s joke; the timing is full of irony but you will not hear us retract this.

You know us to be blunt, as we are in New Jersey, so let us get to the point.

You may have noticed that on our social media, we have been very vocal about multiple issues involving hacking and digital rights. The most recent one is our various members’ disagreement with the FSF’s (Free Software Foundation) decision to re-institute RMS (Richard Stallman) onto the board without any transparency, and the fallout from that.

Recently, we made a post on our Twitter account that called out Eli The Computer guy, a tech YouTuber, for his views. We made a post attempting to let it be known that our organization does not want to be associated with any partnership or event going forward that involves this individual. We sadly did not properly convey that message. The message was crass, inflammatory and caused more problems than it solved.

We made a mistake. We’re sorry.

My primary role in DCG 201 is to two-fold, and one of those roles is to be in charge of — and responsible for — the PR. We made a huge blunder on our social media, so we wanted to make these points clear:

1) As the primary hacker in charge of the PR for DCG 201, I do apologize for the crassness of the Tweet to Mr. Eli and those who read it. I may disagree with people on many points, both personally and along with our group, but as the social media representative for DCG 201, we should have not used the language that we used, and we apologize for that. I apologize for that.

2) This apology is aimed towards our DCG 201 Members and our fans, both locally and on social media. We know how much you love our content and our hacks, and we love you for it too. ❤ And I — as does the rest of DCG 201 — believe that you deserve BETTER, especially with regards to the quality control on our social media presence, and that of the posts we have done over the years.

3) It’s the hacker way to learn and improve. We recently have made a post on our social media to form a positive way of expressing our/your frustration and anger over the issues. We want to continue this thread by being constructive, not attacking, for all future posts and content. Punching up, not down, and supporting our stance with guided opinions, not crass declarations and reactionary, inflammatory or bait-ridden shitposts.

4) We apologize to DEF CON and all other DCGs (DEF CON Groups) who had suffered due to our words and actions. Even though we are not part of core DEF CON — and we continue to remind people of that fact — at the end of the day, DEF CON has graciously allowed us to continue to use part of their namesake in our operations. (It’s the primary reason why we are not completely copyleft with our branding.) We feel we let DEF CON and DEFCON Groups down because of our past inflammatory posts. We have learned, we will do better.

To reiterate: it is part of the hacker way to learn from mistakes, analyze the problem, and then build steps to rectify the issue. The first step to solving the problem is to acknowledge that there is a problem. This is us acknowledging that problem. We have seen, firsthand in many cases — orgs that lack transparency, lack accountability, and try to treat bugs as features. We are not, and will not be, that type of organization. Yes, our members do critique the current hacker events and news, and having constructive criticism goes a long way — but there are better ways of doing it, and we want to do those better ways going forward.

One of the ways we are going to prove we are moving forward is that I, Co-Founder of DCG 201, am stepping down from my role as the main person for public relations of DCG 201 of my own volition. I will still be involved in the operations and you will still see me online and in person at gatherings, but the actual Website, Blog Posts, Social Media and LIVE Stream published content will be handled by other experienced members of DCG 201 Staff. These are some amazing members and I am excited and can’t wait to see the cool, positive and improved posts and relations they will make going forward! I would wish them luck but they already got this.

These above are just words. Important words, but words. It is now up to us to prove those words, and back them up with our actions. We are looking forward to demonstrating what we’ve learned, and how we are doing things better in the immediate future. We are excited for all the upcoming content, tech news, activism, awesome hacks and, of course the occasional funny meme! Basically, a new and improved DCG 201.

Thank you for your time and hack the planet,

Sidepocket, Co-Founder of DCG 201

::END OF LINE::

.::DEFCON 201 Online Meet Up — March 2021 — Four F%&king Years::.

====================================================== Date: March 19th, Friday

Time: 6:00 PM EST — 10:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/276922974/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/266458234974454/

Hackaday: TBA

=====================================================

Welcome to the March 2021 DEFCON 201 Meet Up…

…and our Four Year Anniversary!

Four Years! FOUR F%&ING YEARS! This makes us the longest incarnation of the 201 Area DEF CON Group after the last group of goobers dropped it like a hot rock.

We are going to party like it's 1995 because now that we know that there is a (hopefully soon to be over) plague out unlike last time we in the immortal words of a moron will “do it live” on the DEFCON 201 LIVE Stream!

This month we are going to make YOU the focus of the event along with special guests from all over the hacker world to drink, play, and hack our way into a new year of Dirty Jersey!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://grwp24hodrefzvjjuccrkw3mjq4tzhaaq32amf33dzpmuxe7ilepcmad.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

PeerTube: https://diode.zone/accounts/dc201/video-channels ======================================================

.::AGENDA & SCHEDULE::. 6:00pm — 6:30pm PRE SHOW :: Hacker Tunes by DJ Miss Jackalope 6:30pm — 7:03pm PRE SHOW :: This Is New Jersey (1956) 7:03pm — 7:05pm DEFCON 201 Announcements 7:05pm — 7:30pm Slipping A Mickey: The Strange OSINT Iceberg of The Walt Disney Corporation — Sidepocket 7:30pm — ??? Open Workshops: DEFCON 201 Show & Tell + 4.0 Year Anniversary Party

.::OPEN PROJECTS::.

DC201 Hacker Show & Tell— Everyone DC201 VidHug — Everyone Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone Among Us — Everyone

.::LIGHTNING TALKS::.

PRE SHOW: Hacker Tunes by DJ Miss Jackalope

:..>We at DEFCON 201 are honored to have the reigning queen of hacker beats, Miss DJ Jackalope, to do a 30 minute music set for our anniversary!

:..>Bio: DEF CON Resident DJ, creator of Miss Jackalope custom vinyl clothing and decals, and pro cat herder. She spins DNB and some future house to make folks smile. Tunes are supposed to be fun, that’s why I’m here! Jackalope can be found at: Twitter https://twitter.com/djjackalope | https://twitch.tv/missjackalope | https://mixcloud.com/djjackalope Cheers and congrats DC201 on 4 years!

PRE SHOW: This Is New Jersey (1956) :..>This Technicolor color film was produced in 1956 for the New Jersey Bell Telephone Company, and based on a 1953 John T. Cunningham book This is New Jersey.

DEFCON 201 Announcements & Code of Conduct :..>DEFCON 201 will have a quick recap of our entire March 2020 to March 2021 run and exciting announcements for 2021! In addition, we will have an overview of the Code of Conduct linked on our website.

Slipping A Mickey: The Strange OSINT Iceberg of The Walt Disney Corporation - Sidepocket :..>Even if you live under a rock, everyone on planet earth has heard of M-I-C-K-E-Y M-O-U-S-E and the Walt Disney empire that has managed to copyright three circles. Starting back in the 1950's with it's engineering breakthroughs and it's groundbreaking theme park, the Walt Disney Corporation has always used the latest technology to shake down people's wallets. In this talk, we will go through a select history of these technologies from the scrapped EPCOT future city, to the innovative People Movers, the ill-fated Go.com domain and the Magic Band RFID badges that are being used today! And of course, how to hack all of them!

:..>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

.::OPEN PROJECTS::.

4.0 Year Anniversary Party :..>Hang out in our Big Blue Button Senfcall instance where you can chat about 1337 haxxs (and drink)! Various notorious hackers from all over the net will join us including some special guests that YOU DON'T WANT TO MISS!

Big Blue Button: LINK WILL BE POSTED ON MARCH 19TH AT 5PM EST

DEFCON 201 Hacker Show & Tell :..>After our lightning talks DEFCON 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time so you don’t want to miss this on the LIVE Stream!

Big Blue Button: LINK WILL BE POSTED ON MARCH 19TH AT 5PM EST

To get the URL and Password for the group hang out, pay attention to our Twitter or sign up on Meet Up!

:..>What You’ll Need: If you want to get in on the action, just bring any hardware or software program you are working on. For hardware, make sure you have a camera with decent resolution. For software, make sure your screen sharing function is working. For interaction, make sure you have your microphone on your computer or headset in working order.

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

AMONG US :..>During our stream, we will be playing the hit game Among Us with the DEF CON audience! Watch the stream to find out how to join.

Steam: https://store.steampowered.com/app/945360/Among_Us/ iOS: https://apps.apple.com/us/app/among-us/id1351168404 Android: https://play.google.com/store/apps/details?id=com.innersloth.spacemafia&hl=en_US&gl=US

The game takes place in a space-themed setting, in which players each take on one of two roles, most being Crewmates, and a predetermined number being Impostors. The goal of the Crewmates is to identify the Impostors, eliminate them, and complete tasks around the map; the Impostors’ goal is to covertly sabotage and kill the Crewmates before they complete all of their tasks. Players suspected to be Impostors may be eliminated via a plurality vote, which any player may initiate by calling an emergency meeting (except during a crisis) or reporting a dead body. Crewmates win if all Impostors are eliminated or all tasks are completed whereas Impostors win if there is an equal number of Impostors and Crewmates, or if a critical sabotage goes unresolved.

::END OF LINE::

.::ANNOUNCING NEW LIVE STREAM SHOW: Circuit Breakers::.

TONIGHT at 8pm EST, join DEFCON 201 as we test out a new LIVE STREAM show!

Circuit Breakers is where we code to the metal, literally! Various DEFCON 201 Members familiar and old will take the spotlight on certain Wednesdays as we grab our soldering irons and prep our external pins for flashing software! We will cover everything from repairing old boards, trying out cool mods and building 1337 blinky haxxor tools from scratch! Find out when we broadcast by catching us on Social Media (https://linktr.ee/defcon201) and DEFCON201.org!

======================================================

Date: Various Wednesdays (Test Episode March 3rd)

Time: 8:00 PM EST

Location: ONLINE (SEE BELOW)

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://invidious.3o7z6yfxhbw7n3za4rss6l434kmv55cgw2vuziwuigpwegswvwzqipyd.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

PeerTube: https://diode.zone/accounts/dc201/video-channels ======================================================

::END OF LINE::

.::DEFCON 201 Online Meet Up — February 2021 — LOVE-LETTER-FOR-YOU.vbs::.

====================================================== Date: February 19th, Friday

Time: 7:00 PM EST — 10:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/276456746/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/441010767112077/

Hackaday: TBA

=====================================================

Welcome to the February 2021 DEFCON 201 Meet Up!

First off to get this out of the way, we want to offer our condolences and support for (at this time of writing) those in Texas who thanks to climate change has been hit with a blizzard knocking out power, water and heat for millions of people in the state causing people to freeze to death as the Texas “Leadership” abandons them.

If you are in Texas and/or know someone in Texas call 211 or find warming center here:

https://tdem.texas.gov/warm/

And if you want to donate to the relief effort:

https://secure.actblue.com/donate/aoc-social-20210218/?refcode=aoc-social-20210218-7pmtweet

https://feedingtexas.networkforgood.com/projects/101860-feeding-texas-general-support

https://redcross.org/local/texas/central-and-south-texas.html

On a lighter note, our meet up combines many thing that are going on. Black History Month in the United State where we celebrate and highlight the achievements and creations from the brilliant minds of African Americans, the soul crushing corporatism of feeding Hallmark’s bottom line that is Valentines Day and just in case you have not noticed…we are STILL in a pandemic with NEW strains of COVID-19 coronavirus trying to love our cells a little too much for over a year now.

Sit back, learn and get ready for some fun hacks!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://invidious.3o7z6yfxhbw7n3za4rss6l434kmv55cgw2vuziwuigpwegswvwzqipyd.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

PeerTube: https://diode.zone/accounts/dc201/video-channels ======================================================

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm PRE SHOW :: Healthscare — An Insider’s Biopsy of Healthcare Application Security — Seth Fogie, Guy Raz 8:00pm — 8:05pm DEFCON 201 Announcements 8:05pm — 8:20pm Documenting The Digital Diaspora with AfroCROWD — Sherry Antione 8:20pm — 9:10pm (Bio)Hacking as a Primary Response to Crisis — Meow 9:10pm — 9:30pm psyc://The Protocol That Time Forgot — Sidepocket 9:30pm — ??? Open Workshops: DEFCON 201 Show & Tell + Games + Hangout

.::OPEN PROJECTS::.

DC201 Hacker Show & Tell— Everyone Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone Among Us — Everyone

.::LIGHTNING TALKS::.

PRE SHOW: Healthscare — An Insider’s Biopsy of Healthcare Application Security :..>Our PRE-SHOW will a relevant talk from the Black Hat Webinar series!

Healthcare security teams are in a tough spot. While the provider industry is taking security seriously, they are at the mercy of the software vendors who provide the healthcare organizations with the data delivery, processing and storage solutions that are critical to delivering patient care and keeping patient data secure. Given the reliance on these systems, it begs the question — how secure are these solutions?

Seth Fogie has spent the last 10+ years in the trenches of the healthcare industry and has seen the good, bad and ugly of what is being provided to your providers. As an insider, Seth has experienced the unique tension healthcare security teams face as they work to securely implement these solutions and will share some of what has been found.

The core of this presentation will focus on vulnerabilities and design issues within healthcare solutions. As we will illustrate through the dissection of numerous clinical focused systems, including radiology reading, EMR downtime, patient entertainment, pharmacy distribution, nurse communication, M&A EMR, clinical documentation and temperature monitoring systems, the prognosis doesn’t look good. Unfortunately, it is our experience that there are few solutions within the hospital enterprise that do not have issues.

The goal for this public ‘biopsy’? The healthcare security community needs help increasing the pressure to ensure all of our data is safe from poorly designed and developed vendor solutions. While we can’t play the name and shame game for a number of reasons, we want to increase awareness through numerous technical illustrations and ask for your help in increasing scrutiny on all healthcare solutions. This isn’t just an application security problem — it is all our healthcare data at risk and this audience is positioned in a unique spot to help.

:..>Bio: Seth Fogie serves as the Information Security Director at Penn Medicine where he is a member of the leadership team helping to build and maintain a world class security program for the enterprise. In Seth’s 20 + years of experience in the field of security, he has also led a security software development company, served as CTO for a development firm focused on the creation of educational environments for hands-on security exercises, and has authored numerous books/articles on information security related subjects. In addition to Seth’s current role at Penn Medicine, he also enjoys opportunities to perform security research and testing, helping numerous healthcare vendors remediate and correct security deficiencies, making the healthcare industry safer for all!

:..>Bio: Guy Raz is a Sr. Systems Engineer at ExtraHop with previous experience as a Network Engineer and Solution Architect. In his role, Guy has developed a deep understanding of the challenges to meet the security, network and compliance requirements that are unique to healthcare organizations. Before joining the Systems Engineer team, Guy was one of the ExtraHop Solution Architects, responsible for conducting deep technical and business discovery sessions, assisting in troubleshooting and problem resolution during war-room and security/network investigations and developing strategies for acquiring high-value data from the wire; requiring in-depth technical understanding of L2-L7 networking principles.

Documenting The Digital Diaspora with AfroCROWD :..>AfroCROWD has held monthly multilingual editathons in partnership with cultural institutions, galleries, libraries, archives, museums (GLAM) and many others including instituations at the United Nations. The organization has also worked with professors at educational institutions like New York University, The New School, Icahn Medical School and Columbia University among others. AfroCROWD also organizes events to train future trainers in its target community. In this talk, we will go over the mission statement for AfroCROWD, how wikipediathons are organized and the upcoming online Black Wiki History Month at the Schomburg Center.

:..>Bio: Run by Executive Director, Sherry Antoine, AfroCROWD has sensitized thousands in its target audience about free culture crowdsourcing and the need to close the multicultural and gender gaps in Wikipedia.

(Bio)Hacking as a Primary Response to Crisis :..>During crisis we often see unique problems that governments and businesses struggle to tackle in an effective and timely fashion. Meow will explore how hackers can, and have, responded to this wit a focus on his work in molecular diagnostics during the covid-19 pandemic.

:..>Bio: Meow is a transdisciplinary biohacker that helped begin the movement in Australia. He embraces all five pillars of biohacking: micro, molecular bio, bioinformatics, hardware, and grinding. Notably, he has run in multiple federal elections as a pro-technology evangelist and was also the centre of one of the first cyborg law cases due to the use of a contraband travel pass inserted into his hand.

His main interests are astrobiology, fungi, life extension, gene therapies (including mRNA), cellular agriculture (plants > mammalian), little creatures (<1mm), complex living systems (aquaponics, aquariums, etc), and pneumatic conveying. At previous DEFCONs he has developed an appreciation for industrial control systems, social engineering, hardware hacking, and the broader implications of hacking as a societal movement.

psyc://The Protocol That Time Forgot :..>psyc was a flexible protocol and control layer to set up a worldwide distributed messaging infrastructure for multicast chat, conferencing, non-proprietary instant messaging, distributed social networking and data sharing with no central database. Key word, was. A project by GNU that even most open source fanatics have forgotten about it only exists because once in awhile the Free Software Foundation likes to bring up their limbo SECUSHARE projects like the way Tupac releases a new album from beyond the grave. In this yammering digital archeological dig, we will dissect the protocol, look at some of it’s implementations including PsycZilla on Ubuntu “Karmatic Kola” and go down the rabbit hole of the most confusing and poorly managed projects since GNU Herd.

:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

.::OPEN PROJECTS::.

DEFCON 201 Hacker Show & Tell :..>After our lightning talks DEFCON 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time so you don’t want to miss this on the LIVE Stream!

To get the URL and Password for the group hang out, pay attention to our Twitter or sign up on Meet Up!

:..>What You’ll Need: If you want to get in on the action, just bring any hardware or software program you are working on. For hardware, make sure you have a camera with decent resolution. For software, make sure your screen sharing function is working. For interaction, make sure you have your microphone on your computer or headset in working order.

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

AMONG US :..>During our stream, we will be playing the hit game Among Us with the DEF CON audience! Watch the stream to find out how to join.

Steam: https://store.steampowered.com/app/945360/Among_Us/ iOS: https://apps.apple.com/us/app/among-us/id1351168404 Android: https://play.google.com/store/apps/details?id=com.innersloth.spacemafia&hl=en_US&gl=US

The game takes place in a space-themed setting, in which players each take on one of two roles, most being Crewmates, and a predetermined number being Impostors. The goal of the Crewmates is to identify the Impostors, eliminate them, and complete tasks around the map; the Impostors’ goal is to covertly sabotage and kill the Crewmates before they complete all of their tasks. Players suspected to be Impostors may be eliminated via a plurality vote, which any player may initiate by calling an emergency meeting (except during a crisis) or reporting a dead body. Crewmates win if all Impostors are eliminated or all tasks are completed whereas Impostors win if there is an equal number of Impostors and Crewmates, or if a critical sabotage goes unresolved.

::END OF LINE::

.::DEFCON 201 Online Meet Up — January 2021 — Halt & Catch Fire::.

====================================================== Date: January 15th, Friday

Time: 5:30 PM EST — 10:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/275699354/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/210002574135534/

Hackaday: https://hackaday.io/page/9770-defcon-201-online-meet-up-january-2021-halt-catch-fire

=====================================================

Welcome to the January 2021 DEFCON 201 Meet Up!

So uh…normally we summarize what has been going on so far this month in the lead up to our meet up but…do we even have to? Have you been online? Have you seen the news? Where were you when domestic terrorist try to hijack the country to keep a celebrity politician in power? Have you seen the rising COVID-19 death toll? Did you get your dick stolen by IoT devices?

We are sadly past the 7-day trial for 2021 and are unable to get a refund so…fuck it!

Today’s meet up like most of 2021 will be some short-formed but packed to the buffer with hacker AF talks leading to an open forum on Big Blue Button so all you 0days and packets can chat with us!

Plus, this will be the first time we will be LIVE Streaming to PeerTube via Diode.Zone for those who want a decentralized, advertisement-less open source non DMCA riddled indie platform to watch the New Jersey madness!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://w6ijuptxiku4xpnnaetxvnkc5vqcdu7mgns2u77qefoixi63vbvnpnqd.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

PeerTube: https://diode.zone/accounts/dc201/video-channels ======================================================

.::AGENDA & SCHEDULE::. [ALL TIMES ARE EASTERN STANDARD (EST)] 5:30pm — 5:55pm PRE SHOW :: Don’t Be a Sucker — United States Department of War (1943) 5:55pm — 6:00pm DEFCON 201 Announcements 6:00pm — 6:30pm From The Current State of DevOops — Tillie Kottmann 6:30pm — 7:00pm Internals of Conti Ransomware — 0xNikhilRathor 7:00pm — 7:30pm Privacy After The Insurrection — Albert Fox Cahn 7:30pm — 8:00pm Cooking Out Of The Frying Pan with 1A Snake Oil — Sidepocket 8:00pm — ??? Open Workshops: DEFCON 201 Show & Tell + Games + Hangout

.::OPEN PROJECTS::.

DC201 Hacker Show & Tell— Everyone Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone Among Us — Everyone

.::LIGHTNING TALKS::.

PRE SHOW: Don’t Be a Sucker (1943) :..>Our PRE-SHOW will a public domain short film that is even more relative now than it was back then. Don’t Be a Sucker is a short film produced by the United States Department of War released in 1943, and adapted as a slightly shorter version in 1947. It has anti-racist and anti-fascist themes, and was made to educate viewers about prejudice and discrimination. An American Freemason who has been listening to a racist and bigoted rabble-rouser, who is preaching hate speech against ethnic and religious minorities and immigrants, is warned off by a naturalized Hungarian immigrant, possibly a Holocaust survivor or escapee, who explains to him how such rhetoric and demagoguery allowed the Nazis to rise to power in Weimar Germany, and warns Americans not to fall for similar demagoguery propagated by American racists and bigots.

From The Current State of DevOops :..>A short overview on how source code and secrets can often be extracted from the most popular DevOps tools, followed by some details around recent leaks, how they were acquired and what you can find in them.

:..>Bio: Tillie Kottmann is a software developer and leaker from Switzerland, known from some high profile leaks such as Intel, Daimler and most recently Nissan.

Internals of Conti Ransomware :..>Since the samples of “Conti Ransom” were available from August and from there development of “Conti” Ransom has gone further as from the version 1 to version 2 and version 3 phase recently. Whereas the infections of “Conti Ransom” had increased in past few months. Mainly the Trick Bot crime group is being dropping Conti Ransom in the Powershell Empire campaign originated from the Trick Bot stealthy targeting. This talk will be dissecting this ransomware from writing the logic bomb in the macros of the office docs to the loading the malicious payload/executable execs run32dll.exe being deployed for the triage of targeted machine

:..>Bio: Nikhil Rathor is a Security Researcher & Reverse Engineer from India and is passionate about malware analysis and threat intelligence.

Privacy After The Insurrection :..>In the aftermath of last week’s horrific attack on the Capitol, new questions are being raised about the role of surveillance in identifying insurrectionists and responding toe right-wing violence. S.T.O.P.’s Albert Fox Cahn will discuss the dangers of expanding surveillance in these challenging times.

:.>Bio: Albert Fox Cahn is the Surveillance Technology Oversight Project’s ( S.T.O.P.’s) founder and executive director, a fellow at the Engelberg Center on Innovation Law & Policy at N.Y.U. School of Law, a member of the NYU Alliance for Public Interest Technology, and a columnist for Gotham Gazette. As a lawyer, technologist, writer, and interfaith activist, Mr. Cahn began S.T.O.P. in the belief that emerging surveillance technologies pose an unprecedented threat to civil rights and the promise of a free society.

Mr. Cahn is a frequent commentator on civil rights, privacy, and technology matters and a contributor to numerous publications, including the New York Times, Slate, NBC Think, Newsweek, and the N.Y. Daily News. and he has lectured and presented his research at numerous universities including Harvard Law School, New York University School of Law, Columbia University, and Dartmouth College. Mr. Cahn previously served as legal director for a statewide civil rights organization, and as an associate at Weil, Gotshal & Manges LLP, where he advised Fortune 50 companies on technology policy, antitrust law, and consumer privacy.

In addition to his work at S.T.O.P., Mr. Cahn serves on the New York Immigration Coalition’s Immigrant Leaders Council, the New York Immigrant Freedom Fund’s Advisory Council, and is an editorial board member for the Anthem Ethics of Personal Data Collection. Mr. Cahn received his J.D., cum laude, from Harvard Law School (where he was an editor of the Harvard Law & Policy Review), and his B.A. in Politics and Philosophy from Brandeis University.

Cooking Out Of The Frying Pan with 1A Snake Oil :..>Where there is a disaster in the making, there will always be grifters lined up to profit off of it under the guise of remedying the problem. After the hillarious banning of Donal Trump’s Twitter Account and the take down of the accidental honey pot Parler, we at DEFCON 201 have received tons of requests of alternative services. Sadly, many of these, such as Gab and Dissenter are not only the antithesis of Free Speech and privacy but are also coded like shit. In this quick PSA, Sidepocket will go over these bad services past and present, present a methodology on how to identify a good or bad service and highlight some actual alternatives that will help make a more balanced internet.

:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

.::OPEN PROJECTS::.

DEFCON 201 Hacker Show & Tell :..>After our lightning talks DEFCON 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time so you don’t want to miss this on the LIVE Stream!

To get the URL and Password for the group hang out, pay attention to our Twitter or sign up on Meet Up!

:..>What You’ll Need: If you want to get in on the action, just bring any hardware or software program you are working on. For hardware, make sure you have a camera with decent resolution. For software, make sure your screen sharing function is working. For interaction, make sure you have your microphone on your computer or headset in working order.

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

AMONG US :..>During our stream, we will be playing the hit game Among Us with the DEF CON audience! Watch the stream to find out how to join.

Steam: https://store.steampowered.com/app/945360/Among_Us/ iOS: https://apps.apple.com/us/app/among-us/id1351168404 Android: https://play.google.com/store/apps/details?id=com.innersloth.spacemafia&hl=en_US&gl=US

The game takes place in a space-themed setting, in which players each take on one of two roles, most being Crewmates, and a predetermined number being Impostors. The goal of the Crewmates is to identify the Impostors, eliminate them, and complete tasks around the map; the Impostors’ goal is to covertly sabotage and kill the Crewmates before they complete all of their tasks. Players suspected to be Impostors may be eliminated via a plurality vote, which any player may initiate by calling an emergency meeting (except during a crisis) or reporting a dead body. Crewmates win if all Impostors are eliminated or all tasks are completed whereas Impostors win if there is an equal number of Impostors and Crewmates, or if a critical sabotage goes unresolved.

::END OF LINE::

.::$2020 sudo shutdown -r :: DEF CON 201 New Years Online Party::.

====================================================== Date: December 31st, Thursday – January 1st, Friday

Time: 9:00 PM EST — ??? (12:30 AM EST)

Meet-Up: https://www.meetup.com/DEFCON201/events/275459730/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/408977177008690/

Hackaday: https://hackaday.io/page/9689-2020-sudo-shutdown-r-def-con-201-new-years-online-party

=====================================================

We did it!

We finally reached the end of the tunnel of one of the worst years in recent memory!

From the COVID-19 Plague to Climate Disasters, Protests Against Police Violence and Tide Pod Cuisine ending with the election of a lifetime and the Solar Winds hack.

Let's try to end the year in the most Dirty Jersey way we can as we invite everyone to hang out with DEFCON 201 Staff for crazy shenanigans and interactive games as we count down to either the new year or the end of the world.

DEF CON New Years Eve Details: https://defcon.org/html/defcon-nye-2021/dc-nye-2021-index.html

If you want to know the schedule you can view it here:

==================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/channel/UCYDQaOHbK5trRU2CDgb0qSg

Invidious [TOR]: http://axqzx4s6s54s32yentfqojs3x5i7faxza6xo3ehd4bzzsg2ii4fv2iid.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook: https://www.facebook.com/groups/defcon201/ ====================================================

.::AGENDA & SCHEDULE::. —ALL TIMES ARE EASTERN STANDARD (EST)—

9:00pm - 10:00pm Intro & Retrospective on 2020 10:00pm - 10:30pm NCommander Charity Torture 10:30pm - 11:00pm Sidepocket Charity Torture 11:00pm - 11:50pm Hackers Among Us! 11:50pm - 12:00 MIDNIGHT It's The FINAL COUNTDOWN 12:00 MIDNIGHT - ??? Hackers Among Us! (Cont.) ====================================================

Interact with us on the DEF CON Discord! If everything is set up, there should be a #DCG201 or #DEFCON201 Channel and we will chat via text, audio and video all night!

========================================================== DEFCON 201 Discord Link: https://discord.gg/PGgPNEF

CLIENT INTERFACES

Clear Net: https://discordapp.com/channels/@me

Windows: https://discordapp.com/api/download?platform=win

macOS: https://discordapp.com/api/download?platform=osx

Linux: https://snapcraft.io/discord

iOS: https://itunes.apple.com/us/app/discord-chat-for-games/id985746746

Android: https://play.google.com/store/apps/details?id=com.discord (We recommend using YALP)

Join The DEFCON 201 CTF Time Group: https://ctftime.org/team/40304

Join The DEFCON 201 Team Page: https://ctf.inctf.in/teams/225 ==========================================================

During our stream, we will be playing the hit game Among Us with the DEF CON audience! Watch the stream to find out how to join.

========================================================== Steam: https://store.steampowered.com/app/945360/Among_Us/

iOS: https://apps.apple.com/us/app/among-us/id1351168404

Android: https://play.google.com/store/apps/details?id=com.innersloth.spacemafia&hl=en_US&gl=US ==========================================================

The game takes place in a space-themed setting, in which players each take on one of two roles, most being Crewmates, and a predetermined number being Impostors. The goal of the Crewmates is to identify the Impostors, eliminate them, and complete tasks around the map; the Impostors' goal is to covertly sabotage and kill the Crewmates before they complete all of their tasks. Players suspected to be Impostors may be eliminated via a plurality vote, which any player may initiate by calling an emergency meeting (except during a crisis) or reporting a dead body. Crewmates win if all Impostors are eliminated or all tasks are completed whereas Impostors win if there is an equal number of Impostors and Crewmates, or if a critical sabotage goes unresolved.

About Child's Play: Child's Play also receives cash donations throughout the year. With those cash donations, we purchase new consoles, peripherals, games, and more for hospitals and therapy facilities.

Donate: https://donate.tiltify.com/@defcon201live/spirit-of-hohocon-childs-play-charity

::END OF LINE::

.::DEFCON 201 Online Meet Up — December 2020 — XmasCon::.

====================================================== Date: December 18th, Friday

Time: 6:00 PM EST — 11:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/274587770

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/189414472858732/

Hackaday: TBA

=====================================================

Welcome to the December 2020 DEFCON 201 Meet Up!

Can it be? Is it finally here? The final stretch to the END of 2020 is upon us!?

This might be the best present we get this year! Regardless if you are done burning oil, waiting for the Mascot of the NSA to slide down your non-existent chimney, worshiping the horned one that’s NOT the soon-to-be ex-president or getting your ancestors drunk on libations, DEFCON 201 will be ending a the year with a bang.

Our last meeting will have three major things: An important subject both in hacker history and this weeks news, a personal expose with talks from our core DEFCON 201 staff and a return to the open format meeting where we chill, hang out, drink and show off what we have been working on.

Oh, an j0hnnyXmas just because!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://c7hqkpkpemu6e7emz5b4vyz7idjgdvgaaa3dyimmeojqbgpea3xqjoid.onion/c/defcon201

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/ ======================================================

.::AGENDA & SCHEDULE::. [ALL TIMES ARE EASTERN STANDARD (EST)] 6:00pm — 6:50pm PRE SHOW :: 1993 B.C.: Get Off my LAN! (Hacking in the Olden Days) — J0hnnyXm4s 6:50pm — 7:00pm DEFCON 201 Announcements 7:00pm — 8:00pm From Stuxnet to Solar Winds — Kim Zetter 8:00pm — 8:30pm Ninja Forge-Next Generation: Now With More GUI — GI Jack 8:30pm — 9:00pm SNAFU@InternetProtocol.mil— sirocyl 9:00pm — ??? Open Workshops: DEFCON 201 Show & Tell + Games +Hangout

.::OPEN PROJECTS::.

DC201 Spirit Of HoHoCon Child’s Play Charity — Everyone hxp CTF 2020 — Everyone Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone JackBox Party Pack 3 Online Games — Everyone

.::LIGHTNING TALKS::.

PRE SHOW: 1993 B.C.: Get Off my LAN! (Hacking in the Olden Days) :..>Our PRE-SHOW will entertain a pre-recorded talk from Hackfest 2015. Since the Second Industrial Revolution, technology has been advancing at a rate beyond anyone’s estimates. That means us old folks got to hack a whole lot of awesome stuff in our short lifetimes, much of which is already long since obsolete. Here, Johnny Xmas will deliver one of his famous “When I Was Your Age” rants, this time aimed at the 1990’s and the Rise of the Internet, and the explosion of the hacker community that happened back then, just as it is happening now. Topics covered will probably include cable TV piracy, wardialing, offensive payphonery, mainframe hacking, “Hackers Vs. Crackers”, the mere difficulty of Internet & computer access, and how so many of the “modern” web exploits you use today are really decades old.

From Stuxnet to Solar Winds :..>We at DEFCON 201 are proud to interview cyber-journalist Kim Zetter! Topics will include the state of cybersecurity journalism, how journalist disclose sensitive hacks, hackers relationship with journalism, Governments VS Reporting, and her legendary work documenting Stuxnet and the current cutting-edge state of the Solar Winds breach.

:..>Bio: Kim Zetter is an award-winning investigative journalist who has covered cybersecurity and national security for more than a decade, initially for Wired, where she wrote for thirteen years, and more recently for the New York Times Magazine, Politico, Washington Post, Motherboard, and Yahoo News. She has been voted one of the top ten security journalists in the country by security professionals and her journalism peers. She has broken numerous national stories about NSA and FBI surveillance, nation-state hacking attacks, the Russian sabotage of Ukraine’s power grid and its use of that country as a testing ground, the hacker underground and election security. She is considered one of the leading experts on the latter, and in 2018 authored a New York Times Magazine cover story on the crisis of election security. Zetter is also an expert on cyber warfare and wrote an acclaimed book on the topic — Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon — about a sophisticated virus/worm developed by the U.S. and Israel to covertly sabotage Iran’s nuclear program.

Ninja Forge-Next Generation: Now With More GUI :..> ninjaforge-ng is a tool for burning Ninja OS to USB sticks using the purpose created .liveos.zip format. This format is a structured zip container format created for the purpose that adds an index file for metadata as well as GPG and hashsum integrity checking. This is being written in python, both as a GUI in Qt5, and later will add a command line version. The original ninjaforge is written in bash and included within the release of Ninja OS as means for installation, as well as within Ninja OS itself for making new Ninja OS USB sticks, as part of the “Clone and Forge Frame Work”. This is part of an overhaul to make the system more user friendly, consistent, and secure. The format is documented in a text file, and is freely available for use. This talk will go over the tool and format.

:..>Bio: GI Jack is one of the Co-Founders of DEFCON 201. He might have seen a Ninja that had built their own hacker variant of Arch Linux known as Ninja OS. You might be able to also find this ninja at: https://ninjaos.org/

SNAFU@Internet.mil :..>Welcome to yet another bat-shit insane day at DEFCON 201 where DEFCON 201 member sirocyl takes a look at an interesting case-study in network architecture, where a laptop’s mobile network somehow got DHCP-assigned to an IP address located squarely in the Pentagon. Thanks, T-Mobile!

:.>Bio: sirocyl is a DEFCON 201 alumnus and founder of the famitracker.org FamiTracker and Famicom/NES music community. He is also part of MAGFEST video game convention volunteer staff.

.::OPEN PROJECTS::.

DEFCON 201 Hacker Show & Tell :..>After our lightning talks DEFCON 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time so you don’t want to miss this on the LIVE Stream!

To get the URL and Password for the group hang out, pay attention to our Twitter or sign up on Meet Up!

:..>What You’ll Need: If you want to get in on the action, just bring any hardware or software program you are working on. For hardware, make sure you have a camera with decent resolution. For software, make sure your screen sharing function is working. For interaction, make sure you have your microphone on your computer or headset in working order.

DC201 Spirit Of HoHoCon Child’s Play Charity :..>Child’s Play is a game industry charity started in 2003 dedicated to improving the lives of children with toys and games in our network of over 220 facilities worldwide, including hospitals and domestic abuse shelters.

Child’s Play works in two ways. With the help of hospital staff, they’ve set up gift wish lists full of video games, toys, books, and other fun stuff for kids. By clicking on a hospital location on their map, you can view that hospital’s wish list and send a gift.

Child’s Play also receives cash donations throughout the year. With those cash donations, they purchase new consoles, peripherals, games, and more for hospitals and therapy facilities. These donations allow for children to enjoy age-appropriate entertainment, interact with their peers, friends, and family, and can provide vital distraction from an otherwise generally unpleasant experience.

More Info Here: http://assets.childsplaycharity.org/docs/CP_Press_Kit_42020.pdf

Donate Directly Here: https://donate.tiltify.com/@defcon201live/spirit-of-hohocon-childs-play-charity

hxp CTF 2020 :..>This Friday, starting on November 18st at 10:00 AM EST, we invite all DEFCON 201 Members, Attendees and Fans to help us hack the hxp CTF 2020! If you are new to Online CTF, we will help you get set up and walk you thorugh some of the challenges. Then you can log in anytime after until November 20th 10:00 AM EST to continue our CTF conquest! To learn more about the CTF, please follow this link: TBA

:..>What To Bring: Any laptop will do. Ideally you want to load it full of Information Security Red Team and Blue Team tools, look at Kali Linux, Parrot OS, Pentoo or Black Arch for ideas. To participate online, you will need a Discord Account and to join our Discord at this link: https://discord.gg/PGgPNEF

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

Jackbox Party Pack 3 Online Games :..>During our live-stream, we will be offering to join us in various online games in Jackbox Party Pack 3! The threequel to the party game phenomenon features the deadly quiz show Trivia Murder Party, the say-anything sequel Quiplash 2, the surprising survey game Guesspionage, the t-shirt slugfest Tee K.O., and the sneaky trickster game Fakin’ It. Use your phones or tablets as controllers, and play with up to 8 players, plus an audience of up to 10,000!

:..>What To Bring: To join in the gameplay, simply use the web browser on your desktop or smartphone — no app needed! Head to JackBox.TV and enter the Room Code that will be displayed on the live-stream and repeated in the chatroom. If you get in, follow the instructions on the live-stream and phone!

::END OF LINE::

.::DEFCON 201 Online Meet Up — November 2020 — Back Orifice 2020::.

====================================================== Date: November 20th, Friday

Time: 6:00 PM EST — 10:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/274587770

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/2747070122275971/

Hackaday: https://hackaday.io/page/9462-defcon-201-online-meet-up-november-2020-back-orifice-2020

=====================================================

Welcome to the November 2020 DEFCON 201 Meet Up!

After a nail biting USA 2020 Election, we have seemed to tilt the scale back to some degree of normalcy. We are glad to evict the cartoonish-level of tyranny out of the White House in the most North East Coast way possible.

However, let’s not forget what “normalcy” is. Normal was still the subjugation of the US populous. Normal was telling you it’s not your right to own the stuff that you own. Normalcy was censoring others while spreading propaganda like wildfire. Normal was installing backdoors, going to war, and the new normal of a plague that is coming back to kill us in full force.

So we decided, f$#k normal, let’s be freaks!

And to get our freak on, we decided after high demand to revisit virtually one of our favorite meeting subjects of all time back in 2017 when we started out. Hacking Sex. Wet ware meets hardware. Dicks, Dongles and The Internet Of Thongs.

We hope you are ready to relieve your anxiousness by allowing us to blow a load of hacker knowledge all over you in one content packed night. An orgy of data highlighting vulnerable back doors, exposed ports, short-stroking parasentric slots and how prude technologists and politicians are using our squeamish nature to sex to censor us all…and how sex workers on the front lines for digital rights are fighting back with the full force of the true hacker sprint!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://c7hqkpkpemu6e7emz5b4vyz7idjgdvgaaa3dyimmeojqbgpea3xqjoid.onion/c/defcon201

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

Chaturbate: https://chaturbate.com/p/defcon201/ ======================================================

.::AGENDA & SCHEDULE::. [ALL TIMES ARE EASTERN STANDARD (EST)] 6:00pm — 6:25pm PRE SHOW :: Pwn All The Mobile Porn Apps — Ben Actis 6:25pm — 6:30pm DEFCON 201 Announcements 6:30pm — 6:50pm The Privacy of Online Dating & Teledildonics — Alex Lomas 6:50pm — 7:00pm B!tch Picking: Designing A Lockpick Set For Sex Workers — Sidepocket 7:00pm — 7:30pm Naked & Unafraid: The Basics Of Securing Your Nudes — Allie Barnes 7:30pm — 7:50pm Aliases, Branding, and Consent: The ABCs of Sex Work and Digital Security —Luna Sylum 7:50pm — 8:00pm BREAKING NEWS — TBA 8:00pm — 8:30pm The Internet Of Thongs: Virtualization Of Sexual Intimacy — Andre Shakti, Inferno 8:30pm — 10:00pm UN-EARN IT: The Domino Effect Of Internet Censorship — Sex Workers Roundtable TBA

.::OPEN PROJECTS::. DEFCON 201 Makes It RAINN November Charity — Everyone Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone

.::LIGHTNING TALKS::.

PRE SHOW: Pwn All The Mobile Porn Apps :..>Our PRE-SHOW will entertain a talk from BSides Las Vegas 2017. It will examine egregious security vulnerabilities found in adult content mobile applications. Highlights include: lack of HTTPS usage, code execution in update mechanisms, and less then stellar vendor responses.

The Privacy of Online Dating & Teledildonics :..>Many dating application use location to match you up with people in the local area, but this led to the leakage of million’s of people’s exact location. This can cause problems for LGBTQ+ people, especially in parts of the world with poor human rights records, as well as subject people to harassment and exposure. We’ll look at some of the problems we found last year, what has changed, and what you can do to protect yourself. We’ll also briefly see that these problems exist in the sphere of teledildonics as well, which has increased in usage during the recent global lockdowns.

:..>Bio: Alex is Pen Test Partner’s aerospace specialist. Alex undertakes penetration testing of traditional IT, such as networks, web applications, and APIs, as well as more aviation-specific areas including airport operational technology and avionics embedded systems such as inflight entertainment and e-enabled aircraft.

B!tch Picking: Designing A Lockpick Set For Sex Workers :..> There are many pre-built lock picking sets online that cater to a variety of professions and hobbies such as locksmiths, lock sport competitors, law enforcement, ect. In this short presentation, TOOOL (The Open Organization of Lockpickers) will pitch a concept of an all-in-one case and set design that would satisfy the needs for the safety of sex workers out in the field.

:..>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

Naked & Unafraid: The Basics Of Securing Your Nudes :..>As online dating and sexting become more popular among both teens and adults, there’s a scary trend that’s increasing right alongside it: revenge porn, the non-consensual sharing of private images or videos. This talk aims to give you some basic information on revenge porn, some basic technical information on privacy when it comes to media storage and sharing, how to protect yourself when sharing intimate material, and finally — what your options are if your material DOES get leaked.

:.>Bio: Allie Barnes has been in the Linux community since 2011, jump-starting her IT career as a Linux Administrator at Rackspace and utilizing mentorships and community knowledge to eventually navigate into the OpenStack world, working on Red Hat’s OpenStack Product. Allie is learning to take the leap into the community by participating in more talks and community events in hopes of spreading knowledge and love of Linux, Open Source, and InfoSec in general!

Aliases, Branding, and Consent: The ABCs of Sex Work and Digital Security :..>She doesn’t usually friend her office coworkers on Facebook. But she made an exception because it seemed like they always had a good time discussing just about anything. One weekend, she shared a promotion for a burlesque show held at the local kink-friendly club: “Come me out (as my alias ;)) with a titillating new dance!”

On Monday, her coworker avoided conversation, but asked to chat with their boss after the morning meeting. That afternoon, she received an email from HR that they’d been informed of an unacceptable conflict of interest, and would be let go.

He was a little bored of his small town photography studio only getting booked for weddings. One day he finally got up the nerve to embark on the avant garde nude series he’d conceptualized. So he created a new brand, with a completely separate Instagram account, and posted a small portfolio. These featured his partner, who enthusiastically consented, and never showed their face.

Business remained steady with his conservative clientele none the wiser, even as his reputation among the subculture grew.

Let’s define your model of acceptable risk, when it comes to social media and information security, if you maintain more than one identity online.

:..>Bio: Luna Sylum, aka Luna, has a background that some might say reflects multiple personalities. After a short lived career in contemporary dance, she landed another dream job in digital marketing for an RPG publisher. That dream soon spiraled into a nightmare, so she rode the tides of her fluctuating-yet-intense passions and discovered a new home in infosec. Some call it mad, but she’s fallen in love with her new identity as an incident responder. And yes, she also moonlights as a burlesque dancer.

BREAKING NEWS :..>TBA

:..>Bio: TBA

The Internet Of Thongs: Virtualization Of Sexual Intimacy :..>Since the COVID-19 lockdowns across the country many business were thrown into chaos as they had to adapt by virtualization. Sex workers had an advantage in that human sexuality has always leveraged emerging technologies from the printing press to DVD’s and internet streaming. Tonight we look at two organizations, The Sanctuary Club and NYC INFERNO, as they talked about the challenges of transforming their intimate spaces into the virtual world.

:..>Bio: Andre Shakti. Stripper. FemDom. Educator. Columnist. Slut. I talk sex & do things that make me sweat. Owner of The Sanctuary Virtual Strip Club and IAmPoly.net

NYC INFERNO is an inclusive queer party that welcomes all genders of people (including trans-people) for queer friends, f — k buddies and lovers of all kinds.

UN-EARN IT: The Domino Effect Of Internet Censorship :..>A mashup of two separate bills — The Stop Enabling Sex Traffickers Act of 2017 (SESTA) and its House equivalent, the Fight Online Sex Trafficking Act (FOSTA or H.R.1865) — SESTA-FOSTA is a bi-partisan passing bill in 2018 designed to prevent websites from facilitating sex trafficking. In short, SESTA-FOSTA rolls back portions of Section 230 of the Communications Decency Act (CDA), a 20-year-old law that protects online publishers from the things their users say or do. It’s follow up, Eliminating Abusive and Rampant Neglect of Interactive Technologies Act of 2020 (shortened to EARN IT) was passed in 2020. Join a panel of sex workers and activist on the front lines about the censorship of sex work on the internet and how it will and has emboldened other forms internet censorship that affects us all.

:..>Bio: TBA

.::OPEN PROJECTS::.

DEFCON 201 Makes It RAINN November Charity :..>RAINN (Rape, Abuse & Incest National Network) is the nation’s largest anti-sexual violence organization. RAINN created and operates the National Sexual Assault Hotline (800.656.HOPE, online.rainn.org y rainn.org/es) in partnership with more than 1,000 local sexual assault service providers across the country and operates the DoD Safe Helpline for the Department of Defense. RAINN also carries out programs to prevent sexual violence, help survivors, and ensure that perpetrators are brought to justice.

This month until November 30th, DEFCON 201 are proud to try to raise a minimum goal of $400 for RAINN via Tiltify to protect all humans around the world from the horrors of sexual abuse. We will offer a wide range of programming from our shows (HACK + ALT + NCOMMANDER, The Master Of Unlocking, Archvile: A Linux Perspective & Crypto Barons) plus special programming including this meeting on our LIVE Stream platforms to entertain people to donate to the cause!

If you wan to donate at anytime, please visit the link: https://tiltify.com/@defcon201live/defcon-201-makes-it-rainn-november-charity

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

::END OF LINE::

.::DEFCON 201 Online Meet Up — September 2020 — Egg Freckles::.

====================================================== Date: September 18th, Friday

Time: 4:00 PM EST — 9:00 PM EST

Meet-Up: https://www.meetup.com/DEFCON201/events/272715939/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/655322292051918/

Hackaday: https://hackaday.io/page/9277-defcon-201-online-meet-up-september-2020-egg-freckles

=====================================================

Welcome to the September 2020 DEFCON 201 Meet Up!

So we are all stuck at home because COVID-19 is the song that will never end. The West Coast is burning. The East Coast is underwater. And in the mist of all of this with a nightmare election coming up…Apple decides to hold an event showing off the overpriced closed-sourced products. Because of course they would.

That’s why we have decided to take this golden oprotunity to have a DCG 201 meeting theme we have wanted to do for a very long time: Hacking Apple. If you are one of the many people who struggle with XCode and Swift, own an iPhone that won’t have any games besides Apple Arcade, run a Mac that will cost an ARM and a leg, can’t play Fortnite or XCloud on your iOS device or someone who remembers when Newton was the shit, this is the meeting for you. Be prepared for a crazy live stream with limited in person seating watching hackers in New Jersey and all over the world throw a sledgehammer at the screen and break down Apple walled gardened.

Tim Apple will be proud. #AppleEvent

Details of the in-person meet below:

Now, there will be some ground rules here. To meet in person, we will have a hard MAX limit of 20 people, thus you MUST RSVP on EventBrite to be counted.

You MUST purchase a food or beverage item. Meeting will be outside in the outdoor pen. You MUST have a mask on at ALL TIMES when not eating. You must be 6 feet apart unless you came together in a group. We will provide sanitation measures. Anyone who is a knucklehead will be thrown into the Hudson River with the rest of Florida.

If you can’t make it or too afraid, RELAX! All activities, chats, talks, workshops and DC 201 insanity will be broadcasted online via our LIVE STREAMS per the new normal! We are so excited to finally do some actual mask-to-mask social distancing AFK and we can’t wait to see you all because we have quite the line up with something for everyone!

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://c7hqkpkpemu6e7emz5b4vyz7idjgdvgaaa3dyimmeojqbgpea3xqjoid.onion/c/defcon201 ======================================================

.::AGENDA & SCHEDULE::. [ALL TIMES ARE EASTERN STANDARD (EST)] 4:00pm — 4:50pm AFK: Meet & Greet+ Open Workshop Projects ONLINE: The Fifth HOPE (2004): Steve Wozniak Keynote 4:50pm — 5:00pm A Marathon Of Mac Gaming — MrMacRight 5:00pm — 6:00pm The Rise Of Mac Malware — Thomas Reed 6:00pm — 6:30pm Abusing & Securing XPC in macOS Apps — Wojciech 6:30pm — 7:00pm macintosh.js — NCommander 7:00pm — 7:10pm A Kinky Hack To Sideload iOS Applications — Sidepocket 7:10pm — 9:00pm??? Old Man Yells At iCloud — Xio

.::OPEN PROJECTS::. Open Jam 2020 — https://openjam.io/ Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone

.::LIGHTNING TALKS::.

The Fifth HOPE (2004): Steve Wozniak Keynote :..>Lets take a trip back down memory lane with a limited reairing at the historic (yet forgotten about) keynote from The Fifth HOPE (Hackers On Planet Earth) with Apple Co-Founder and guy who actually did all the work; The Wonderful Wizard Of Woz!

:..>Bio: Stephen Gary Wozniak also known by his nicknames “Woz” and handle “Berkely Blue”, is an American electronics engineer, programmer, philanthropist, and technology entrepreneur. In 1976, he co-founded Apple Inc., which later became the world’s largest information technology company by revenue and the largest company in the world by market capitalization. Through their work at Apple in the 1970s and 1980s, he and Apple co-founder Steve Jobs are widely recognized as two prominent pioneers of the personal computer revolution. As of November 2019, Wozniak has remained an employee of Apple in a ceremonial capacity since stepping down in 1985.

A Marathon Of Mac Gaming :..>If Linux Gamers thought they had a bad rep, nothing will cause the PC Master Race to burst out laughing than Mac Gamers. Despite the countless jokes, Apple has had a long and crazy history in the video game space from the original first person shooter epic Marathon by Bungie (before Halo and Destiny became a thing), to the failed PiP!N home video game system and the release of downloadable games on the iOS AppStore. In this talk, MrMacRight will go over how Apple is pushing AAA gaming on their platforms and improving In-App purchases.

:..>Bio: MrMacRight covers everything Apple gaming related (iPhone, iPad, Apple TV, Mac and Apple Arcade) on his YouTube channel.

The Rise Of Mac Malware :..>Contrary to most people’s expectations, the first widespread virus actually affected Apple computers. Join me for a journey through time, as we look at past Mac malware, focusing on when certain behaviors first emerged. Then fast forward through time, where we’ll see what today’s Mac threat landscape looks like, and what behaviors we’re seeing from Mac threats in the wild.

:..>Bio: Thomas Reed has been using Macs since 1984. He is a self-taught security researcher and Director of Mac & Mobile at Malwarebytes. In his spare time, he is an avid photographer.

Abusing & Securing XPC in macOS Apps :..>XPC is a well-known interprocess communication mechanism used on Apple devices. Abusing XPC led to many severe bugs, including those used in jailbreaks. While the XPC bugs in Apple’s components are harder and harder to exploit, did we look at non-Apple apps on macOS? As it turns out, vulnerable apps are everywhere — Anti Viruses, Messengers, Privacy tools, Firewalls, and more. In this talk, I will:

— Explain how XPC/NSXPC work. — Present you some of my findings in popular macOS apps (e.g. local privilege escalation to r00t). — Abuse an interesting feature on Catalina allowing to inject an unsigned dylib. — Show you how to fix that vulnz finally!

:.>Bio: Wojciech is a Senior IT Security Specialist working at SecuRing. He specializes in application security on Apple devices. He created the iOS Security Suite — an opensource anti-tampering framework. Bugcrowd MVP, found vulnerabilities in Apple, Fac ebook, Malwarebytes, Slack, Atlassian, and others. In free time he runs an infosec blog — https://wojciechregula.blog. Shared research on among others Objective by the Sea (Hawaii, USA), AppSec Global (Tel Aviv, Israel), AppSec EU (London, United Kingdom), CONFidence (Cracow, Poland), BSides (Warsaw, Poland).

macintosh.js :..>Whether nostalgic for a simpler era or just wondering what computing was like 20-some years ago, Macintosh.js lets you find out. Built by developer Felix Rieseberg using Electron and Javascript, it emulates a 1991 Macintosh Quadra 900 running Mac OS 8.1. Thanks to a 1997 MacWorld Demo CD, it includes a number of apps and games, including Photoshop 3, Illustrator 5.5, Civilization II, and, of course, Oregon Trail. In this brief overview, NCommander of HACK + ALT + NCOMMANDER fame will do what he does best; disect this retro operating system and point out the quirks and WTF-ness of this unholy emulated beast.

:..>Bio: NCommander (@fossfirefighter) lives in Jersey City and is a contributor to multiple free and open-source software projects, an Ubuntu core developer, and an active developer for the Hermes Center for Transparency working on the GlobaLeaks project. In his free time, he likes to travel, write, and play with radios.

A Kinky Hack To Sideload iOS Applications :..>The iOS AppStore. The store features around 1.8 million apps, earned over $155 billion to developers and has caused headaches for many from their kow-towing to China to their weird restrictions of video game streaming applications. The walled garden nature is it’s biggest strength, leading Apple to control all software with 1984 percision. Or can they? Thanks to a website that allows BDMS folks to kink out on the world wide shibari, we will walk through how they exploited the development mode of iOS and XCode to inject their own software bypassing Apple’s insular storefront. Then we will quickly go over how this blew a giant wall in Apple’s iOS software approval proccess opening up to a world that only Apple users can dream of and Android users do in this world outside of the Cult Of Mac called “reality”.

:..>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

Old Man Yells At iCloud :..>The Apple Computer 1, originally released as the Apple Computer and known later as the Apple I, or Apple-1, is a desktop computer released by the Apple Computer Company (now Apple Inc.) in 1976. Since then, Apple has left a legacy that has pissed a ton of people off from programmers, artist, buisnessmen and people name Tim. Few however, know the company and it’s hardware from it’s formation to the dumpster fire that is 2020. And so who better to cover it all than someone who is so retro you have to use a butter knife to rewind him! This rant on Apple products past and present will be so long and so foul that it will end and only end when Sub Culture shuts the place down and our livestream ends! Plus, comments from the peanut gallery (coughsirocylcoughNCommandercoughSidepocketcough) will cause this digital caveman to go into cardiac arrest before the #FailFactory he works at does!

:..>Bio: Interdisciplinary autodidacts always look bad on paper. Good hackers know they know not, and xio (@XioNYC) is of that rare breed which knows not that they know. He has experienced eight years of digital talking books from pre-production to shipped product, 12 years as an accessibility specialist, 16 years of video editing and DVD authoring, and over 24 years of broadcast radio, as well as a lifetime at the QWERTY and in deep thought.

.::OPEN PROJECTS::.

Open Jam 2020 :..>Open Jam is a game jam with 🖤. At Open Jam, you build an open-source video game over the weekend, rate other creators’ games, and compete for delicious open source karma. Open Jam is a game jam that promotes open source games and game creation tools. This jam encourages use of open source game engines, authoring tools, and platforms, and Creative Common assets, and to link those tools in your submission. Anything open source in your game creation process is encouraged! Open Jam is all about open games and open game development. Open Jam will be a 80 hour Jam based on a theme.

Please stop by the community and introduce yourself or team and share your progress once the jam starts

Join our discord channel if you want to keep in touch in real-time

Follow these twitter accounts: @openjamio, @caramelcode, @mwcz Use social hashtag: #openjam2020

At the end of the weekend, release your game and code to the world, play other participants’ games, and rate them.

:..>What You’ll Need: You can use any tools to create your game and it can run on any platform, open source tools and platforms are encouraged.

There is a new voting category for “Open Source Karma” based on open source friendly your game is i.e. how many open tools you used, if your game runs on an open platform, and a nice github repo. See table below.

It is very important to list all the open source tools you used and link to your git repo in your game entry, so you can get credit for your Open Source Karma

Games source should be available and licensed as open source.

You can create or use your own assets or use existing, openly licensed assets (e.g., Creative Commons).

You can work solo or on a team.

The theme will be announced at 1:00 PM September 18th (US Eastern).

Judging will be peer-based and and possible guest judges if not enough people rate games.

Games require a minimum of 10 ratings to place in the top 3. Games must be original for Open Jam, they can’t be entries submitted to other game jams or forks of other games.

Folding@Home VS Coronavirus :..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960

:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/

::END OF LINE::