DEFCON 201

North East New Jersey DEFCON Group Chapter. We meet at Sub Culture once a month to hack on technology projects! https://www.defcon201.org

.::DEFCON 201 Meet Up — October 2019 — Hacktoberfest 3.0::.

====================================================== Date: October 18th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/265113157/

Facebook [TOR]: TBA

Hackaday: TBA

======================================================

Welcome to the October 2019 DEFCON 201 Meet Up!

It’s October, one of our favorite months of the year so you know what that means…Pumpkin Spice everything and Christmas decorations being already on sale at your local supermarket. But for us, October is one of our favorite most hacker times of year. This is the month where we get to make our own Halloween cosplay, do Git Pull Requests for free computer swag, celebrate Cyber Security Awareness Month and attend the only reason to ever travel to Philly the police state: Pumpcon!

We invite you down to join our spooky madness!

About Our Venue:

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 7:55pm Meet & Greet 7:55pm — 8:00pm DEFCON 201 News, Updates & Announcements — Sidepocket 8:00pm — 8:35pm Locking Down Production Access at Startup Scale — Liz Fong-Jones 8:35pm — 8:40pm Hacktoberfest: The Stupid Content Tracker— Sidepocket 8:40pm — 9:55pm Open Workshops Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket

Hacktoberfest 2019 — Sidepocket

.::LIGHTNING TALKS::.

DEFCON 201 News, Updates & Announcements :..>The Co-Founders and some of it’s active attendees have been working on many awesome things. Here are some of them for the end of this year, 2019 and beyond!

:.> Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

Locking Down Production Access at Startup Scale :..>You don’t have to be Google to implement good security controls. Learn about what lessons translated when going from Google to a 25-person startup, and how a modicum of effort can better secure user data and access to production. We’ll cover implementing production changes using continuous integration, a variety of second factor solutions for SSH access to production, and more.

:..>Bio: Liz Fong-Jones is a developer advocate, labor and ethics organizer, and Site Reliability Engineer (SRE) with 15+ years of experience. She is an advocate at Honeycomb.io for the SRE and Observability communities, and previously was an SRE working on products ranging from the Google Cloud Load Balancer to Google Flights.

She lives in Brooklyn with her wife Elly, metamours, and a Samoyed/Golden Retriever mix, and in San Francisco and Seattle with her other partners. She plays classical piano, leads an EVE Online alliance, and advocates for transgender rights as a board member of the National Center for Transgender Equality.

Hacktoberfest: The Stupid Content Tracker :..>Hacktoberfest is a month-long celebration of open source software run by DigitalOcean and DEV. In this quick primer, you will learn how to navigate GitHub, how Git works, how to log into the Hacktoberfest website, how to do a Pull Request and what you need to do to earn your FREE T-Shirt and swag!

:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

Hacktoberfest 2019 :..>What’s Hacktoberfest?

Hacktoberfest — brought to you by DigitalOcean in partnership with DEV — is a month-long celebration of open source software. Maintainers are invited to guide would-be contributors toward issues that will help move the project forward, and contributors get the opportunity to give back to both projects they like and others they’ve just discovered. No contribution is too small — bug fixes and documentation updates are valid ways of participating.

Can’t make it to this event? Hacktoberfest is virtual and open to participants from around the globe. Sign up to participate today at https://hacktoberfest.digitalocean.com.

:Rules & Prizes:

First, sign up on the Hacktoberfest site at https://hacktoberfest.digitalocean.com. To qualify for the official limited edition Hacktoberfest shirt, you must register and make four pull requests between October 1–31. Pull requests can be to any public repo on GitHub, not just the ones with issues labeled Hacktoberfest. If a maintainer reports your pull request as invalid or behavior not in line with the project’s code of conduct, you will be ineligible to participate.

Connect with other Hacktoberfest participants by using #hacktoberfest on your social media platform of choice.

DEFCON 201 Hacktoberfest 2019 GitHub Highlights: https://github.com/defcon201

Full List Of Hacktoberfest 2019 GitHub Projects: https://github.com/search?q=label%3Ahacktoberfest+state%3Aopen+no%3Aassignee+is%3Aissue&type=Issues

Hacktoberfest 2019 Climate Change Projects: https://github.com/topics/climate-change

New to DigitalOcean? Receive USD $50 in infrastructure credit at https://do.co/hacktoberfest50.

:NOTE ON DEFCON 201 Stance On GitHub:

We are aware of the moral issues surrounding the GitHub platform. If any of our attendees do not want to participate this activity for this reason, we sympathize with your choice and we will do nothing to dissuade you otherwise.

DEFCON 201 does not endorse any of the corporate actions of GitHub.

The choice to do Hacktoberfest was decided upon months before the issues came to public and Hacktoberfest works only with GitHub as per-noted on the Hacktoberfest FAQ.

In 2020 and beyond, if Hacktoberfest doe not take our urging to team up with an alternative software repo such as GitLab or BitBucket, we will put to a member vote of continuing our Hacktoberfest tradition every October due to the moral controversy of GitHub’s actions.

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

::URGENT UPDATE: ATTEND HACKER RADIO SHOW “OFF THE HOOK” POSSIBLE LAST BROADCAST::

On the morning of October 7, 2019, staffers at WBAI in New York were locked out and all programming suspended. According to the Pacifica Foundation (parent of WBAI), this was done due to “serious and persistent financial losses at WBAI.” This necessitated the foundation laying off all the staff.

As of Tuesday, October 8, an injunction has been granted that allows WBAI to resume operations. We now expect “Off The Hook” to air in its normal timeslot this Wednesday.

2600 Source: https://www.2600.com/content/lockout-wbai-hook-indefinitely-suspended-update

NY Times: https://www.nytimes.com/2019/10/07/business/media/wbai-pacifica-layoffs.html

NY Times: TOR: https://www.nytimes3xbfgragh.onion/2019/10/07/business/media/wbai-pacifica-layoffs.html

Video Of Pacifica Totalitarian Raid: https://www.facebook.com/deepdance/videos/10157633982881774/UzpfSTY2NDg3ODEyODpWSzoxMDE1NzU5MzI5ODMxNzkzNw/?multi_permalinks=10157593298317937%2C10157590716452937&notif_id=1570466111306619&notif_t=group_activity

Video Pacifica Raid TOR: https://www.facebookcorewwwi.onion/deepdance/videos/10157633982881774/UzpfSTY2NDg3ODEyODpWSzoxMDE1NzU5MzI5ODMxNzkzNw/?multi_permalinks=10157593298317937%2C10157590716452937&notif_id=1570466111306619&notif_t=group_activity

This is alarming and saddening for DEFCON 201 Staff. One of our first experiences (outside of BBS) with the hacker community at large was the 2600 Magazine and Off The Hook broadcasts. Our Co-Founders are also long time attendees of the NYC 2600 Meet Up that the 2600 Staff organizes and it was those meet ups that inspired the creation of DEFCON 201.

For anyone brave enough to use NJ Transit into Manhattan, PLEASE come join us for their live “Off the Hook” this Wednesday (October 9th) evening at 7:00 PM. It’s short notice, but a show of numbers and support is desperately needed.

Address: The Brooklyn Commons 388 Atlantic Ave Brooklyn, NY 11217

Spread The Word!

::END OF LINE::

.::DEFCON 201 Meet Up — September 2019 — Hak2Skool::.

====================================================== Date: August 20th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/264112037/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/2415851135356900/

Hackaday: TBA

======================================================

Welcome to the September 2019 DEFCON 201 Meet Up!

The Summer (and heatwaves) are finally over! Children are bringing their rented laptops in their Fortnite-branded backpacks to school and Adults are guzzling down endless gamer fuel next to the snoring dorm mates to get papers done for the upcoming semester.

We at DEFCON 201 want to keep this spirit of learning by trying and hacking including talking about our experience at the Application Security Training run by the SecureCodeWarrior & ISC NJ Local Chapters a day before.

Plus some awesome announcements for the end of 2019 and beyond!

About Our Venue:

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::.

7:00pm — 7:40pm Meet & Greet 8:00pm — 8:05pm DEFCON 201 News, Updates & Announcements— GI Jack 8:05pm — 8:30pm Making Diversity A Reality: Lessons Learned from Hypatia Software Organization — Dr. Brian Callahan 8:30pm — 8:35pm Curing LISP with Stutter— sirocyl 8:35pm — 9:55pm Open Workshops Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

Nintendo VR Blaster Build & Play — Sidepocket

Pre-InCTF 2019 Prep Time — GI Jack

.::LIGHTNING TALKS::.

DEFCON 201 News, Updates & Announcements :..>The Co-Founders and some of it’s active attendees have been working on many awesome things. Here are some of them for the end of this year, 2019 and beyond!

:.> Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

GI Jack is one of the Co-Founders of DEFCON 201. He might have seen a Ninja that had built their own hacker variant of Arch Linux known as Ninja OS. You might be able to also find this ninja at: https://ninjaos.org/

Making Diversity a Reality: Lessons Learned from Hypatia Software Organization

:..>Diversity in the tech sector has been an important social facet, particularly visible in the last few years. This talk documents the efforts of one particular diversity in tech group, Hypatia Software Organization, Inc., and its work to normalize the trans experience in the tech sector. We will discuss its beginnings and history, current efforts, and how it has grown from the brainchild of a single person into a large and positive force. We will talk about its flagship peer mentoring program. We will also talk about how Hypatia’s efforts are both similar and different from other diversity initiatives. We will end with a discussion of what the future of diversity initiatives, how Hypatia fits in, and how you can fit in.

:..>Bio: Brian has been an OpenBSD developer since early 2013. He mostly focuses on third-party ports and packages but also has interest in a few userland tools and exotic hardware support, and is especially committed to teaching new potential developers. He is an admin for the New York City *BSD User Group and one of the administrators of Devio.us, the free OpenBSD shell provider. When not working on OpenBSD, he is a classically trained bassoonist who still regularly performs.

Brian grew up in Central NJ but managed to escape to upstate NY. He is a Professor in the IT & Web Science program at Rensselaer Polytechnic Institute in Troy, NY.

Curing LISP with Stutter :..>Stutter is a stack-oriented LISP-alike program notation language with homo-iconic, declarative, passive program structure that works on stack frames at it’s base. This briefing will overview this language project and how it will impact LISP forever.

:.>Bio: sirocyl — is a DEFCON 201 alumni and is the founder of the famitracker.org FamiTracker and Famicom/NES music community.

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

Nintendo LABO VR Blaster Build & Play :..>We have a new cardboard engineering construction for anyone of any skill level to try out. Combine DIY fun with simple, shareable VR, plus a new programming tool you can use to make your own quick play VR games and experiences! When finished, we will take turns blasting through an alien invasion, test your skills at competitive hippo feeding, and go wherever else our imagination takes us!

Pre-InCTF 2019 Prep Time :..>InCTF is India’s First Online Capture the Flag Cybersecurity Contest hosted by @teambi0s and @AmritaEDU. They have received a perfect rating on @CTFtime for the past 2 years. This year they continue improving the quality of challenges, with some new additions such as browser and kernel exploitation. DEFCON 201 will be participating in the CTF as part of our Capture The Flag research. For those who want to join up and try out regardless if you’re a n00b or a CTF Junkie, we will prepare for the challenges ahead and have links and passwords to sign on our team. Registration is FREE and you can use any computer, anywhere with whatever tools you need to test out these challenges. At 10:00 PM EST (when our meet up ends) the InCTF 2019 CTF will begin and will run for 48 hours Get ready for some high quality challenges!

More information COMING SOON!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

.::DEFCON 201 Meet Up — September 2019 — Hak2Skool::.

====================================================== Date: August 20th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/264112037/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/2415851135356900/

Hackaday: TBA

======================================================

Welcome to the September 2019 DEFCON 201 Meet Up!

The Summer (and heatwaves) are finally over! Children are bringing their rented laptops in their Fortnite-branded backpacks to school and Adults are guzzling down endless gamer fuel next to the snoring dorm mates to get papers done for the upcoming semester.

We at DEFCON 201 want to keep this spirit of learning by trying and hacking including talking about our experience at the Application Security Training run by the SecureCodeWarrior & ISC NJ Local Chapters a day before.

Plus some awesome announcements for the end of 2019 and beyond!

About Our Venue:

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::.

7:00pm — 7:40pm Meet & Greet 8:00pm — 8:05pm DEFCON 201 News, Updates & Announcements— GI Jack 8:05pm — 8:30pm Making Diversity A Reality: Lessons Learned from Hypatia Software Organization — Dr. Brian Callahan 8:30pm — 8:35pm Curing LISP with Stutter— sirocyl 8:35pm — 9:55pm Open Workshops Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

Nintendo VR Blaster Build & Play — Sidepocket

Pre-InCTF 2019 Prep Time — GI Jack

.::LIGHTNING TALKS::.

DEFCON 201 News, Updates & Announcements :..>The Co-Founders and some of it’s active attendees have been working on many awesome things. Here are some of them for the end of this year, 2019 and beyond!

:.> Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

GI Jack is one of the Co-Founders of DEFCON 201. He might have seen a Ninja that had built their own hacker variant of Arch Linux known as Ninja OS. You might be able to also find this ninja at: https://ninjaos.org/

Making Diversity a Reality: Lessons Learned from Hypatia Software Organization

:..>Diversity in the tech sector has been an important social facet, particularly visible in the last few years. This talk documents the efforts of one particular diversity in tech group, Hypatia Software Organization, Inc., and its work to normalize the trans experience in the tech sector. We will discuss its beginnings and history, current efforts, and how it has grown from the brainchild of a single person into a large and positive force. We will talk about its flagship peer mentoring program. We will also talk about how Hypatia’s efforts are both similar and different from other diversity initiatives. We will end with a discussion of what the future of diversity initiatives, how Hypatia fits in, and how you can fit in.

:..>Bio: Brian has been an OpenBSD developer since early 2013. He mostly focuses on third-party ports and packages but also has interest in a few userland tools and exotic hardware support, and is especially committed to teaching new potential developers. He is an admin for the New York City *BSD User Group and one of the administrators of Devio.us, the free OpenBSD shell provider. When not working on OpenBSD, he is a classically trained bassoonist who still regularly performs.

Brian grew up in Central NJ but managed to escape to upstate NY. He is a Professor in the IT & Web Science program at Rensselaer Polytechnic Institute in Troy, NY.

Curing LISP with Stutter :..>Stutter is a stack-oriented LISP-alike program notation language with homo-iconic, declarative, passive program structure that works on stack frames at it’s base. This briefing will overview this language project and how it will impact LISP forever.

:.>Bio: sirocyl — is a DEFCON 201 alumni and is the founder of the famitracker.org FamiTracker and Famicom/NES music community.

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

Nintendo LABO VR Blaster Build & Play :..>We have a new cardboard engineering construction for anyone of any skill level to try out. Combine DIY fun with simple, shareable VR, plus a new programming tool you can use to make your own quick play VR games and experiences! When finished, we will take turns blasting through an alien invasion, test your skills at competitive hippo feeding, and go wherever else our imagination takes us!

Pre-InCTF 2019 Prep Time :..>InCTF is India’s First Online Capture the Flag Cybersecurity Contest hosted by @teambi0s and @AmritaEDU. They have received a perfect rating on @CTFtime for the past 2 years. This year they continue improving the quality of challenges, with some new additions such as browser and kernel exploitation. DEFCON 201 will be participating in the CTF as part of our Capture The Flag research. For those who want to join up and try out regardless if you’re a n00b or a CTF Junkie, we will prepare for the challenges ahead and have links and passwords to sign on our team. Registration is FREE and you can use any computer, anywhere with whatever tools you need to test out these challenges. At 10:00 PM EST (when our meet up ends) the InCTF 2019 CTF will begin and will run for 48 hours Get ready for some high quality challenges!

More information COMING SOON!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

.::DEFCON 201 August Social Meet Up  —  Caffeine and Code::.

====================================================== Date: August 25th, Sunday

Time: 7:00 PM — 10:00 PM

Location: Las Chicas Bakery & Cafe (4707 Bergenline Ave Union City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/263259737/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/1153267718209640/

======================================================

Welcome to our Caffeine & Code DEFCON 201 Social Meet Up of 2019!

DEFCON 201 Social Meet Ups are the reverse of our normal meetings. Unstructured, relaxed, casual, social exploring a new part of North East New Jersey at different days and times. This allows us to bring out people who could normally not make our monthly meet ups and allows us to get some fresh perspectives and have fun with new people.

This is the third in a special series called “Caffeine & Code”.

Bring your laptops and get pumped full of bean juice as you hack away at code!

Our third Caffeine & Code will take place at the Las Chicas Bakery & Cafe, 4707 Bergenline Ave Union City, NJ (a block and a half from the Bergenline Ave stop on the Hudson-Bergan Light Rail).

https://www.laschicasbakery.com/

As long as you order a drink and/or food item, you can code with us!

::END OF LINE::

.::DEFCON 201 Meet Up — August 2019 — DEFCON 27 Decompression::.

====================================================== Date: August 16th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/262871631/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/460794951165937/

Hackaday: https://hackaday.io/page/6458-defcon-201-meet-up-august-2019-defcon-27-decompression

======================================================

Welcome to the August 2019 DEFCON 201 Meet Up!

Hacker Summer Camp in 2019 has ended. BSides LV had an amazing first CISO line up, Black Hat USA has the most sexism a modern hacker convention can get, and DEFCON 27 absolutely rocked with new villages, lots of lost and found items, shuttle buses breaking down and raising funds for breast cancer at the first ever b00bcon.

If you survived that crazy week, come to our meeting to tell your tale and show off your swag! If you didn’t come down, this will be the calm before the storm for Fall 2019 so bring that project you have been working on since Bitcoin Cash forked (again) and work on it with fellow tech heads!

About our venue:

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet 8:00pm — 8:10pm Configuring Privoxy & JonDo — n0ctilucient 8:10pm — 8:40pm Hacker Summer Camp Show & Tell — Everyone 8:40pm — 9:55pm Open Workshops Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

.::LIGHTNING TALKS::.

Configuring Privoxy & JonDo :..>TBA :.> Bio: n0ctilucient (TBA)

Hacker Summer Camp Show & Tell :..> Did you visit Las Vegas anytime between August 6th through August 11th? Did you go to BSides Las Vegas, Black Hat 2019, Wicked6 Cyber Games, QueerCon, Dianna Initiative or any other Hacker Summer Camp SIGS? Come down, bring your swag and share your experience, stories, tales and drunken rants about this year’s hacker insanity with fellow Dirty Jersians!.

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

.::DEFCON 201 Online CTF Practice — Crypto CTF — August 10th-11th::.

Welcome to the DEFCON 201 Crypto CTF Practice Challenge!

For over two years we have been planing running our own Wargames and CTF to help people develop their hacking skills. While progress is still being made (we plan to launch our own in Winter 2019), DC201 will also occasionally enter into various online CTF Tournaments to test our skills and to get a sample on how one is set up so we have a blueprint in creating our own.

This Saturday, from August 10th 2:00 PM EST to August 11th 2:00 PM EST, we invite all DEFCON 201 Members, Attendees and Fans to help us hack the Crypto CTF 2019!

Website: https://cryp.toc.tf/

CTF Time Page: https://ctftime.org/event/809

Meet-Up: https://www.meetup.com/DEFCON201/events/262871871/

Anyone can enter by joining our group and entering our DISCORD Chat! Once in chat, select the #CTF channe. Our Discord will have our Team Invite passphrase. When registering your username, select “I have an invitation code to an existing team” and enter the passphrase posted in our Discord #CTF chat. You are then ready to hack away!

========================================================== DEFCON 201 Discord Link: https://discord.gg/PGgPNEF

CLIENT INTERFACES

Clear Net: https://discordapp.com/channels/@me

Windows: https://discordapp.com/api/download?platform=win

macOS: https://discordapp.com/api/download?platform=osx

Linux: https://snapcraft.io/discord

iOS: https://itunes.apple.com/us/app/discord-chat-for-games/id985746746

Android: https://play.google.com/store/apps/details?id=com.discord (We recommend using YALP)

Join The DEFCON 201 CTF Time Group: https://ctftime.org/team/40304 ==========================================================

::RULES::

Welcome to the Crypto CTF!

Crypto CTF is an online competition for hackers to test, evaluate, and expand their cryptography exploiting skills. In this CTF we will provide various crypto challenges regarding modern cryptography techniques.

All crypto lovers are most welcome

Each task will be based on a particular cryptographic primitive or it will include a direct application of cryptography in other fields.

Each team is only allowed to participate under one name.

There is no restriction on the number of team members.

If you have questions about tasks, ask moderators in IRC chat or Email. No points will be deducted for these questions.

If this is the first time you play over, you should know that a flag is a sentence or code that you should find in each level. There is no exact procedure to find them, you have to do several tests and think out of the box to get them. Eventually, you’ll understand the dynamics of the CTF and how to quickly solve challenges.

If you are sure your flag is true (we mean %100 SURE), but our system does not accept it, inform us via chat.

Reporting bugs in the contest infrastructure has a reward.

Thou shalt not be a jerk. We are all here to learn something new.

Any attempt to disrupting the contest will result in disqualification.

We have a dynamic scoreboard. That means the more teams solve a challenge, the less point each team gets.

All flags must be in this form: CCTF{[0–9a-zA-Z_–]+.}, unless the contrary is stated.

Flag example: CCTF{somel33tstringl1k37hi5}

There would be at least 24 tasks.

You can find the latest news and announcements about this contest on the announcements page.

Registration will be open until the end of the game.

The address of the live chat channel is freenode #cryptoCTF

Long Live Crypto!

Happy Hacking!

::END OF LINE::

.::DEFCON 201 — Ye Official Constitution::.

==Preamble==

We hold these truths to be self evident that all human hackers are created equal, and that all things are designed to be engineered, taken apart, and hacked. We, the hackers, of DEFCON 201, North New Jersey do solemnly conspire to hold in institution the finest collection of backyard engineer, hacks, and creative uses for all manners of technology. We seek a space to discus technology and work on projects free of outside restrictions imposed by detrimental social constructs. We inspire to be ethical, and hold the use of technology for the better of mankind in our works and plans. We are a DEF CON Group, Area Code 201, Northern New Jersey.

==Section I – Vision==

DEFCON 201 is a DEF CON group, and affiliate of the DEF CON Groups program started by DEF CON Hacker & Security Convention. We aim to provide the DEF CON experience in the off season, providing talks and workshops,in the Northern Eastern Section (general Hudson County area) of New Jersey. This shall be defined from the New York Border, South to the Driscol Bridge, and west until where Route 15 intersects Route 80. We encourage all others outside of this range to start or join other local DEF CON groups, but shall be welcome to attend anyway.

DEFCON 201 is a technical group, but we seek to involve members of all skill levels, and there is no skill level requirement to join. We are not an “elite” group, we invite all skill levels to attend and participate where hopefully everyone can learn something, and encourage public participation.

DEFCON 201 aims to give back to the community, and assist with charitable works of technology, and improving the lives of New Jerseyians through better use of technology.

DEFCON 201 is to identify as a hacker group, not an InfoSec organization or other labels. We aspire the keep the hacker spirit going. We aspire to be FREE as in speech, thinkers, and promote the ability of the individual to freely operate machines and all engineered constructs as they see fit, for ethical purposes.

DEFCON 201 aspires to register itself as a 501.3 charitable organization or whatever shall happen to replace that statue if said stature it is replaced that fulfills the same role. We aspire to do charity works of bringing technology to the communities of Northern New Jersey in a way that is FREE, OPEN, and helpful to the people of New Jersey. We seek to bridge the digital divide, not of just who gets to use technology but who gets to create technology.

DEFCON 201 as such, conspires to be a democracy of members, where members are equals brought together for their love of technology, engineering, and hacking in general.

DEFCON 201 is a DEF CON group, and shall do its earnest to place itself on good terms with all other DEF CON groups local and abroad in addition to the DEFCON event in Las Vegas.

==Section II – Membership==

  1. Membership is to be open to all persons who either live, work, play, or identify with North Eastern New Jersey. Membership shall be open to, and without prejudice for members of any gender, gender identity, gender expression, sexual orientation, age, disability, physical appearance, body size, race, national origin, or religion. There shall be no test of religion, ideology, creed or other belief, but we reserve the right to reject anyone who holds beliefs against the rights, dignity, and freedoms of persons based on race, national origin, gender, or sexual orientation. We reserve the right to refuse people who have made themselves known to start negative trouble with existing members, other groups, or in general. While we do not restrict membership based on age, but we ask that persons be intellectually and emotionally mature.

  2. DEFCON 201 is a formal organization with an official membership list. To join DEFCON 201 you must be asked to join by the existing membership and then will be voted on by existing members. All membership votes must be unanimous. Only full members will have a right to vote on topics involving DEFCON 201’s operation methods and planning timeline. Membership will be phased to potentially weed out problematic persons and can revoked for violation of member rules.

  3. There shall be three phases of Membership:

    A. Associate (Honorary Member, and/or Friend) of DEFCON 201. For all people just joining us, members of other DC groups, from outside the area, or with no real interest of formally joining. People who come and go, but have not made themselves unwelcome in any part. Will not have any responsibilities. May volunteer or express interest in joining formally. Not formally part of the organization. No voting rights and no access to DEFCON 201 Membership Resources.

    B. Trial Member. After being an Associate for about 3 months or until our members feel comfortable about your public behavior and you’ve expressed interest in joining, you might be asked to be a Trial Member. Trial members are not to be abused, ordered around, or hazed. They must participate in DEFCON 201 events, and help out with things as members. Trial Members do not get a vote in group matters.

    C. Full Member. In general, after another minimum 3 months, when the existing members feel comfortable. A Trial Member will be asked to join DEFCON 201 as a full member. All full members are considered equals. The vote must be unanimous, and it is a measure of trust in the member who is joining. Members shall have a vote on group issues and operations. Members shall have access to shared resources of the group, either equally, or as voted by DEFCON 201.

    D. Founding Members. The Founding members of DEFCON 201 are Sidepocket and GI_Jack. There shall be no special privilege to founding, except their membership was not voted upon.

  4. Revoking Membership. On the rare occasion we might need to revoke membership. A “vote to kick” may be brought up by any Full Member, and Full Member only. A reason why must be given. Valid reasons include: breaching the code of conduct, harassing other members, committing disreputable actions in the name of DEFCON 201, misusing monies or other club resources, and/or not participating for extended periods of time. The vote to kick must be unanimous of all voting members.

==Section III – Business, Organization, Operation==

  1. While understanding and appreciating the difference between “black hat” and “unethical” actions: Neither black hat, nor unethical activities shall be brought to DEFCON 201.

  2. All major issues shall be brought to vote. Simple issues shall require a simply majority to pass. Motions to change policy or the constitution shall require a 2/3rds super majority. All membership votes either in or out shall be unanimous.

  3. Voting can either occur in person or via official DEFCON 201 online resources. The members section of the website has a poll. This shall be considered official. Online polls involving group business shall be online for about a week and made known to all members.

  4. Membership can be revoked by a group vote to kick out an existing DEFCON 201 Member. Reasons to revoke membership include breaching the code of conduct, harassing other members, committing disreputable actions in the name of DEFCON 201, misusing monies or other club resources, and/or not participating for extended periods of time.

  5. Club Officers shall be elected to fulfill roles in the organization. The only set role shall be moderator who leads discussions, and shall be able to break ties in organization votes. When DEFCON 201 incorporates as a charity, or for any other reason gains a budget or holds money, financial instruments or things of value, a Treasurer is to be elected for the purpose of managing these. Officers, other than moderators have no special rights, and are role oriented positions. The moderator is not to be above any other member.

  6. Elections for moderator and all other officer positions are to be done every year during March of the organization’s Anniversary. Any full member in good standing may run. Voting is to be done in person, at the March meeting, or online if agreed by a 2/3s vote. If voting online, a vote must be posted in the members section, and be online for at least 1 month, or until all members vote. The winner of any election will be that person who receives the most votes, so long as they are more than %50 of the membership. If no candidate receives more than %50 of the vote, a runoff with the top three candidates will take place. If

6a. Recall Vote: Any elected position may be recalled with 60% super majority vote at any time for any reason. After a recall, a new vote shall be held to fulfill that position at earliest possible convenience.

  1. In any vote two thirds (66%) of all eligible members need to vote for it to count. If a member has a good excuse for an absence on voting, and would wish to vote, it can be amended if no action has been taken.

  2. No one shall trick or coerce a member into voting a certain way. Tricked or coerced votes will not be counted, and the voting process shall be restarted without tricks or coercion.

  3. The moderator may do day to day running of the club and resolve minor issues on their own authority. However, any member at any time may reject this and call any club action of the moderator to a vote. The vote will always override a moderator’s decision.

  4. Leave of Absence. Full members may leave for up to 1 year, where they are marked as inactive. Inactive members have no vote, but may keep their online services intact(such as email). After such time they will be removed.

  5. Any person exhibiting abusive behavior, violating the rules, or acting counter to good nature of DEFCON 201 may be banned from DEFCON 201 meetings and events. Provokers will not be exempt from the DEFCON 201’s Constitution or Code of Conduct rules due to personal reasons.

==Section IV – Five Points==

It is here recognized our earlier 5 Points from the weblog are part of the creed DEFCON 201 character. This wording shall be considered cannon moving forward.

  1. Project Oriented Workshop DEFCON 201 is here to be a “hands on” workshop. While we aim to have great speakers from about the nation, and globe, we encourage our members, friends, associates and participants to get their hands dirty. We love to host talk by any participant. Share your interesting idea, and recruit more people to help further your technological endeavors.

  2. No 1337 Skill requirements We are not not an “elite” group, but instead aim to engage people of all skill levels and challenge them to learn more. We cater to all skill levels from beginner to advanced. Our mantra of “better than you where yesterday” is the only level of skill you need to obtain.

  3. Rekindling the Hacker Ethic and Hacker Mentality Information was meant to be FREE. This cannot be stated enough. We collectively feel a lot of the old hacker mindset has been washed away by very same skill specific trades such as “InfoSec” which have become glorified QA. It is even more appalling that many of these trades where started by hackers, but to the current crop of “professional”, hacker remains a dirty word. We want to challenge the way people look at technology, and this is more than simply a career path. This is a way of thinking, and a way of approaching certain situations. We are here to keep cyberspace Free, and the tools and information about these tools to be Freely available both online and off. We aspire to promote Free as in speech software and tools, and FREE, Democratic, Peer-led organizations to solve real world problems that real persons face.

  4. Leave Nobody Behind Our Founders and Members are all too familiar with being in an environment where you are attempting to learn and instead of guidance your peers are instead antagonistic and brings petty scene drama into the subject. We feel that not only does this stifle learning hacker skills and mentality but contributes to the already negative stigma of hackers in our community. Therefore, we declare that DEFCON 201 will be an environment with a policy of improving everyone and not leaving people behind in the learning process. We either all succeed together or all fail together and we will repeat and try new methods of teaching for skills until everyone is on the same page.

  5. Improve & Give Back To Local Community There continues to be a stunning “digital divide” in who gets access to technology. DEFCON 201 aspires to give back to the community by helping bridge this gap, by making digital creation tools available to the public, and participate in projects that make a full internet capable general purpose computers available to all members of society regardless of their background, technical proficiency and perceived social status. To create projects that feature accessibility as a priority and to make fast, unrestricted internet available for eveyone. Information is not truly FREE unless all are FREE to access it.

==Section V – Code of Conduct==

  1. We at DEFCON 201 do not tolerate verbally or physical harassment, discrimination or disparaging remarks of event participants, attendees or DEFCON 201 Members in any form.

1a. Harassment includes—but is not limited to—unwelcome conduct or offensive verbal comments related to gender, gender identity, gender expression, sexual orientation, age, disability, physical appearance, body size, race, national origin, or religion; deliberate intimidation, stalking, following, unwelcome or unauthorized photography or recording, sustained disruption of talks or other events, inappropriate physical contact, and unwelcome sexual attention.

1b. Encouraging others to engage in such behavior is not permitted, nor are false accusations of harassment.

1c. Event participants, attendees and DEFCON 201 Members must own up to their own mistakes if confronted by DEFCON 201 CoC Officers about a report or witnessing of an event participant/attendee/DEFCON 201 Member is being harassed.

  1. There shall be no official ideology of DEFCON 201. However, people espousing ideas or belonging to groups that deny social, economic and/or political agency to persons or groups based on their race, ethnicity, religion, national origin, gender identity/expression, disability status, sexual orientation, or perception thereof; therefor will not be allowed to attend or participate is DEFCON 201 events and meet ups. Persons openly espousing ideas that remove others Freedoms shall not be welcome. This includes any groups that openly states in denying agency to said persons regardless of their actual capacity to do so.

2a. Persons known to be participating in organizations designed to remove political rights, harm, harass, disparage others based on real or perceived sexual orientation, gender, racial or ethnic background will not be tolerated.

  1. You will not otherwise violate principles found in this constitution.

  2. You will not steal, harass, defraud, coerce, lie to, assault, anyone else in DEFCON 201, any welcome guests, to include any other member of any other DEFCON group. This includes sexual harassment.

4a. This includes threats or implying any action from section 4.

4b. Any attempts at black hat social engineering on DEFCON 201 members for whatever reason will be considered assault.

  1. All persons at DEFCON 201 events shall be addressed by whatever names they ask to be addressed as. No exceptions. Pseudonyms are recommended and encouraged due to hacker tradition, but it is not demanded.

5.a All persons at DEFCON 201 events shall be identified by whatever gender they identify themselves as, and use whatever pronouns the person wishes. No exceptions. If you need to know, ask in a polite and respectful manner.

6*. Members of DEFCON 201, who are of age of legal age, and not of responsibilities such as driving that would prohibit them, may consume alcoholic beverages served and/or brought at DEFCON 201 events, provided they are otherwise not prohibited by law or good taste. Members of DEFCON 201 may also abstain from alcohol for any reason as well.

  • – As of this writing, legalization of marijuana for recreational consumption is being considered by the State of New Jersey. If New Jersey does in fact legalize cannabis for recreational consumption, members are allowed to consume on the same terms as alcohol.

6a. Consumption of alcohol or any other intoxicating substance is not an excuse for poor behavior. All rules are still in effect drunk or sober,. “had a bit too much to drink” will never be an excuse.

  1. No member of DEFCON 201 will doxx, or leak documents containing personal information of anyone. No member of DEFCON 201 will publish noted private information to the public, or other parties not given due authorization. This also applies for DEFCON 201 private documents, to private communications, to personal communications with another person that has not consented to release explicitly. Exception to this will be leaking or reporting to authorities evidence of wrongdoing with the interesting in remediating such.

  2. You shall not sexually harass or make any unwanted sexual advances to anyone. Accusations of such will be taken seriously. Reports of sexual misconduct are to be investigated by DEFCON 201 CoC Officers.

  3. All attendees, speakers, on-location event staff and volunteers at our events are required to refrain from harassment and to follow the DEFCON 201 CoC Guidelines established in Section V. DEFCON 201 CoC Officers will enforce this Code throughout the event(s), and expects cooperation from all participants, attendees and DEFCON 201 Members.

9a. In normal event interaction if you as an event participant/attendee/DEFCON 201 member and encounter an interpersonal situation where you are being negatively affected by (a) disparaging remark(s) we encourage you to request that the person stop the unwelcome or harassing behavior, provided that it is safe to do so. Participants who are asked to stop any such behavior are expected to comply immediately.

9b. If the scenario in 9a of the DEFCON 201 CoC persists with out any rectification of error by the instigator and/or you are being harassed, notice that someone else is being harassed, or have any related concerns, please contact a DEFCON 201 CoC Officer or event organizers immediately. DEFCON 201 CoC Officers can be identified by their clearly marked “DEFCON 201 CoC Officer” sticker badge. You can also phone email DEFCON 201 CoC Officers directly at info@DEFCON201.org or communicate by talking to a DEFCON 201 CoC Officer using the DEFCON 201 the Keybase, IRC #DEFCON201 on Freenode, Twitter @defcon201nj or Discord communication services via private messages.

  1. Those approved to present Lightning Talks and/or Workshops at DEFCON 201 events are responsible for the content of their presentations. DEFCON 201 requests that speakers be aware of potentially offensive actions, language, or imagery, and that they evaluate under guidance of DEFCON 201 CoC Officers whether it is necessary to convey their message. If said speaker and DEFCON 201 decide to include said content, DEFCON 201 asks that the presenter warn the audience at the beginning of the talk, and provide them with the opportunity to leave the room to avoid seeing or hearing the material.

==Section VI – Status Of A Living Document==

Henceforth, the published DEFCON 201 Constitution and Code fo Conduct will be perceived as a Amendable Living Document. Terms and conditions for changing the rules are in Section III DEFCON 201 business.

The Constitution and Code of Conduct are published publicly on our website, blogs and editor websites such as GitHub (https://github.com/defcon201/). Each version of this document will also be archived on the DEFCON 201 Website and via the Internet Archive. We do not have any hidden rules, agendas or sections of this document outside of unpublished updated versions that are being edited for review. Only when a rewritten DEFCON 201 Constitution and Code of Conduct is published publicly does it go into “law” and can be referenced and acted upon.

This last sentence states that what has been written above has been edited, read, understood and approved by members who have voted to agree to published that will be verified by the DEFCON 201 Warrant Canary**.

**-As of this writing, the DEFCON 201 Warrant Canary is in Development

::END OF LINE::

.::DEFCON 201 — Google CTF Practice Challenge — June 22nd::.

Welcome to the DEFCON 201 Google CTF Practice Challenge!

For over two years we have been planing running our own Wargames and CTF to help people develop their hacking skills. While progress is still being made (we plan to launch our own in Winter 2019), DC201 will also occasionally enter into various online CTF Tournaments to test our skills and to get a sample on how one is set up so we have a blueprint in creating our own.

This Saturay, from June 21st 7:00 PM EST to June 22nd 7:00 PM EST, we invite all DEFCON 201 Members, Attendees and Fans to help us hack the Google CTF 2019!

Website: https://capturetheflag.withgoogle.com/

CTF Time Page: https://ctftime.org/event/809

Anyone can enter by joining our group and entering our DISCORD Chat! Once in chat, select the #CTF channel and hack away!

DEFCON 201 Discord Link: https://discord.gg/PGgPNEF

::CLIENT INTERFACES::

Clear Net: https://discordapp.com/channels/@me

Windows: https://discordapp.com/api/download?platform=win

macOS: https://discordapp.com/api/download?platform=osx

Linux: https://snapcraft.io/discord

iOS: https://itunes.apple.com/us/app/discord-chat-for-games/id985746746

Android: https://play.google.com/store/apps/details?id=com.discord (We recommend using YALP)

:..>Join The DEFCON 201 CTF Time Group: https://ctftime.org/team/40304

::RULES::

Welcome to the Google CTF 2019 Quals

If this is your first time playing a CTF competition, we suggest you start in the Beginner’s Quest here. If you are a seasoned and experienced player, or feel ready for a harder challenge, our competition will be running from June 22 00:01 UTC until June 23 23:59 UTC. Once the competition starts, the challenges for the main competition will be available here.

Q: Is there a limit of players per team?

A: There is no limit of players in a team.

Q: I got an error: PERMISSION_DENIED: Permission denied.

A: Try picking a different team name, the team name you inserted is already taken.

Q: I got an error: This browser is not supported or 3rd party cookies and data may be disabled.

A: Enable 3rd party cookies. Instructions for Chrome are available under “Allow or block cookies by default”. https://support.google.com/chrome/answer/95647 Where can I submit a write-up?

Please submit all write-ups as an attachment in CommonMark Markdown format to google-ctf-writeups@google.com. If your write-up can’t be submitted in Markdown (for example, if it’s a video, or an app), please send us a link to a ZIP file we can use to download it. The deadline for write-up submission is June 30 23:59 UTC. Any write-up received after that will not be accepted. Where can I ask a question?

During the competition, you can reach the Google CTF team on IRC on ##ctfcompetition on freenode. Click here to join with your web browser. You can also reach us by email at google-ctf@google.com.

Happy Hacking!

::END OF LINE::

.::DEFCON 201 Meet Up — June 2019 — PEBKAC::.

====================================================== Date: June 21st, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/262409039/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/2429540473771618/

Hackaday: TBA

======================================================

Welcome to the June 2019 DEFCON 201 Meet Up!

Defy the rain (why are we Washington State this week?) and come down to get your hack on! After a fabulous PRIDE event, we return to the reoccurring meeting which will have announcements on DEFCON 201 Membership, cool talks, free booze, huge sandwiches, video games, making fun of crypto bros, mainframe password cracking and much more!

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet 8:00pm — 8:10pm Configuring Privoxy & JonDo — n0ctilucient 8:10pm — 8:20pm Joy Con-ning The Nintendo Switch Hardware & Accessories— sirocyl 8:20pm — 8:40pm Learning About Libra and Why Facebook’s Cryptocurrency is Pure High Octane Nightmare Fuel — Sidepocket 8:40pm — 9:55pm Open Workshops Projects & Black Hat Webinar 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

.::LIGHTNING TALKS::.

Configuring Privoxy & JonDo :..>TBA

:.> Bio: n0ctilucient (TBA)

Joy-Con-ning The Nintendo Switch Hardware & Accessories :..>Bio: sirocyl — Member of SwitchRoot and Founder of the famitracker.org

Learning About Libra and Why Facebook’s Cryptocurrency is Pure High Octane Nightmare Fuel :..>A few days ago, Facebook announced Libra, a new worldwide cryptocurrency platform that the company hopes to become the new de facto in global eCommerce. In this talk, DEFCON 201 Co-Founder Sidepocket will go over the Libra platform, what makes it tick and why this whole initiative by Facebook is a horrible idea including privacy concerns and evil open source hacks.

:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

BLACK HAT WEBINAR REPLAY — Don’t Let Your Mainframe Passwords be the Weakest Link in Your Enterprise :..>Most massive financial institutions rely on the IBM Mainframe platform for their day-to-day business. Without this critical platform, those businesses would cease to function. At the heart of securing any system, no less the venerable IBM mainframe, are the authentication methods used to verify users. We will examine the various password storage options for IBM’s RACF (Resource Access Control Facility) as implemented in z/OS.

Could a breach of your mainframe lead to a breach of the rest of your network? If you synchronize passwords and use one of the legacy algorithms for RACF, the answer may be: yes!

Depending on how your z/OS system is configured, the passwords may be stored using algorithms ranging from what basically amounts to cleartext, all the way up to world-class password encryption. Did you know the mainframe supports long passphrases, Multi-Factor Authentication and can also generate passtickets? If your enterprise uses RACF to secure its mainframe, you should register.

This talk is geared for technical decision makers, mainframe security personnel that want to learn more, or anyone with an interest in how z/OS stores its passwords / passtickets. You will learn how RACF stores its password information; the different types of password storage algorithms — with weaknesses / strengths in each — and also how to implement passtickets properly to avoid compromise.

:..>Bio: Chad Rikansrud is the Director of North American Operations for RSM Partners — a world leader in IBM mainframe security consulting services. Most of Chad’s 20-year career has been in technology leadership for the financial services industry.

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::