.::DCG 201 Hybrid Meet Up — May 2022 — System Restore::.

May 29, 2022

====================================================== Date: May 30th, Monday

Time (IN PERSON): 6:00 PM EST — 10:00 PM EST

Time (ONLINE): 7:30 PM EST — 9:00 PM EST

Location: Helen’s Pizza(183 Newark Ave, Jersey City, NJ 07302)

Meet-Up: https://www.meetup.com/DEFCON201/events/286195718/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/536996314638919/

Hackaday: TBA

=====================================================

Welcome to the May 2021 DCG 201 Meet Up!

Hiya Fellas.

It’s been a long time. We miss you.

We know it’s been frustrating seeing meetings change at the last minute and delay after delay. We are even more frustrated as we love meeting up with all of you fine hacker folks but adulting comes to bite us in the ass than rolling our own crypto built in jSON during the log4j crisis.

That ends now!

Join us for an unusual meet-up at unusual hours during Memorial Day!

Be the first to test us out experimenting meeting at a venue we have loved (and who have loved us) for years but never had the time to put something like this together! (We still love and are working with Sub Culture just want to explore more of Jersey City, we will be back soon.)

Smaller, more direct, intimate.

Lots to talk about like our upcoming DCG 201 Meet Ups, HushCon, SummerC0n, A New Hope, DEF CON 30…

This will be a meet-up you don’t want to miss for those who attend will be part of and help shape a new chapter in DCG 201!

NOTE ABOUT LIVE STREAMS: Since we are testing out a new venue, if we are unable to stream that day we will instead stream the same content Tuesday at 9pm EST.

====================================================== Live Streams: ====================================================== Twitch: https://www.twitch.tv/defcon201live

dLive: https://dlive.tv/defcon201

YouTube: https://www.youtube.com/c/defcon201

Invidious [TOR]: http://grwp24hodrefzvjjuccrkw3mjq4tzhaaq32amf33dzpmuxe7ilepcmad.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg

Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/

PeerTube: https://diode.zone/accounts/dc201/video-channels ======================================================

.::AGENDA & SCHEDULE::.

ALL TIMES ARE EASTERN STANDARD (EST)

— IN PERSON @ HELEN'S PIZZA SCHEDULE — 6:00pm — 7:50pm Meet & Greet + Open Workshops Projects 7:50pm — 8:00pm DCG 201 Vote: What IRC Instance Should We Move To? 8:00pm — 8:05pm DCG 201 Announcements 8:05pm — 8:25pm ZAP Those Bugs! The OWASP Zed Attack Proxy — Simon Bennetts 8:25pm — 8:40pm When (Fire)Fox Gets Angy! A Web Browser For Red Teamers — Sidepocket 8:40pm — 9:00pm Talk — TBA 9:00pm -10:00pm Hacks & Hangout + Open Workshop Projects 10:00pm — ??? Drinks & Games +21 @ Barcade Jersey City (163 Newark Ave, Jersey City, NJ 07302)

— ONLINE LIVE STREAM SCHEDULE — 7:00pm — 8:00pm PRE SHOW :: Black Hat Webinar: Inside the Cyber Safety Review Board — Jeff Moss, Chair Rob Silvers, Heather Adkins 8:00pm — 8:05pm DCG 201 Announcements 8:05pm — 8:25pm ZAP Those Bugs! The OWASP Zed Attack Proxy — Simon Bennetts 8:25pm — 8:40pm When (Fire)Fox Gets Angy! A Web Browser For Red Teamers — Sidepocket 8:40pm — 9:00pm Talk — TBA 9:00pm — 9:10pm END OF LIVE STREAM + Twitch Channel Raid

.::OPEN PROJECTS::. Hacker Show & Tell — Everyone RiffTrax The Game & Nintendo Switch Video Games — Everyone Practicing Lockpicking & Locksport — Sidepocket DCG 201 Vote: What IRC Instance Should We Move To? #BadgeLife for DEF CON 30 Hackathon DCG201 Session Exclusive In-Person Invite

.::BONUS AFTER PARTY::. DCG 201 After Dark @ Barcade Jersey City

====================================================== .::LIGHTNING TALKS::.

ZAP Those Bugs! The OWASP Zed Attack Proxy :..> The OWASP Zed Attack Proxy (ZAP) is one of the world's most popular free security tools and is actively maintained by a dedicated international team of volunteers. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. Join us with an interview with the ZAP Project Lead about this toolset and the future landscape of security in a COVID-Cold War internet!

:.>Bio: Simon Bennetts is the OWASP Zed Attack Proxy (ZAP) Project Leader and a Distinguished Engineer at StackHawk, a company that uses ZAP to help users fix application security bugs before they hit production. He has talked about and demonstrated ZAP at conferences all over the world, including Blackhat, JavaOne, FOSDEM and OWASP AppSec EU, USA & AsiaPac. Prior to making the move into security he was a developer for 25 years and strongly believes that you cannot build secure web applications without knowing how to attack them.

When (Fire)Fox Gets Angy! A Web Browser For Red Teamers :..>When most users, hackers and cybersecurity folks think of web browsers we think of the need for only privacy and defensive security. However, after playing countless CTF Tournaments where a major category is web security, I started to wonder, what would a web browser look like if it was built for offensive capabilities over defensive. In this short presentation I show off a modified version of Firefox with a curated list of extensions and tools that allow everything from script injections, man in the middle attacks, in-depth forensics, vlun scanning and even launching into a command line shell directly in the browser. After the presentation, attendees will be able to try out the modified browser in person and the download for it’s Firefox Profile will be posted on the DCG 201 blog!

:.>Bio: A Co-Founder of DCG 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DCG 201 at: http://www.defcon201.org

Talk TBA :..> TBA :.>Bio: TBA

Black Hat Webinar: Inside the Cyber Safety Review Board :..>Ahead of the inaugural meeting of the new Cyber Safety Review Board (CSRB), join the Board's Chair and Deputy Chair, Rob Silvers (DHS Undersecretary for Policy) and Heather Adkins (head of Security, Google), for an exclusive conversation with Jeff Moss. Rob and Heather will preview how the Board will approach its first review, which will focus on the vulnerabilities in the Log4j software library, and drive actionable recommendations to better protect the nation's networks and infrastructure.

Established through President Biden's Executive Order on Improving the Nation's Cybersecurity, the CSRB is an unprecedented public-private initiative that will bring together government and industry leaders. Members will take a deep dive into the most significant cybersecurity incidents, conduct after action analysis, and identify lessons learned. The CSRB does not have regulatory powers and is not an enforcement authority. Its purpose is to identify and share lessons learned to enable advances in national cybersecurity.

:.>Bio: Jeff Moss, also known as Dark Tangent, is an American hacker, computer and internet security expert who founded the Black Hat and DEF CON computer security conferences. In April 2011 Mr. Moss was appointed as the Chief Security Officer for the Internet Corporation for Assigned Names and Numbers (ICANN), a non-profit whose responsibilities include coordinating and ensuring the security, stability and resiliency of the Internet's unique global identifiers as well as maintaining the root zone of the Internet.

Mr. Robert Silvers serves as the Under Secretary for Policy at the Department of Homeland Security, and will serve as the inaugural Chair of the Cyber Safety Review Board. He is responsible for driving policy and implementation plans across all of DHS's missions, including counterterrorism; cybersecurity, infrastructure security, and resilience; border security and immigration; international affairs; and trade and economic security.

Heather Adkins will serve as Deputy Chair of the Cyber Safety Review Board. She is a 19-year Google veteran and founding member of the Google Security Team. As Sr Director of Information Security, she has built a global team responsible for maintaining the safety and security of Google's networks, systems and applications. She has an extensive background in practical security and has worked to build and secure some of the world's largest infrastructure. ======================================================

.::OPEN PROJECTS::.

DCG 201 Hacker Show & Tell :..>Before our lightning talks and during the After Dark Party, DCG 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time!

Five Year Anniversary Hacker Raffle :..> Every hacker who shows up in person will get one raffle ticket. After our Lightning Talks we will draw a ticket for someone to win various cool hacker prizes! One prize per winner, no double winners so everyone has a fair chance of getting some cool sh!t.

DCG 201 Vote: What IRC Instance Should We Move To? :..> If you have been living under a rock lately, we regret to inform you that Freenode imploded under it's own arrogance and stupidity leading to a mass exodus of IRC Channels. Since we use to host under Freenode, we plan on moving the #DEFCON201 IRC Channel to another IRC Server. We your help in us voting in a new one. The options are: >LiberaChat >HackInt >OFTC

We want to hear your opinions in person and you can help online by voting on our active poll on our Twitch Channel! Practicing Lockpicking & Locksport

:..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors! We will also have sanitation and social distancing rules in place due to the ongoing COVID-19 Pandemic. :..>What To Bring: All lockpicking tools and practice locks will be provided. You are free to bring any lock you own that you DON'T RELY ON or any lockpicking tools and bypasses to the space. If you decide to bring something, we have a mandatory sanitation on site of the tool/lock you bring before it's allowed to be interacted with.

RiffTrax The Game & Nintendo Switch Video Games :..>In addition to various classic retro games running on Raspberry Pi, we will try to play a couple of rounds of our new favorite community game What The Dub? What The Dub?! is a multiplayer party game where each player overdubs missing dialogue from hilariously awful B-movies, woefully outdated PSAs, and bizarre industrial films, with their own witty (or just plain stupid) dubs. Players watch the dubs and vote on the best one. The player with the highest score at the end of the game wins! :..>What To Bring: Any Smartphone, Laptop or device with a modern browser, preferably Firefox or Chrome.

#BadgeLife for DEF CON 30 Hackathon :..>DEF CON 30 will take place August 11th through August 14th at Caesars Fourm and other various hotels in Las Vegas, Nevada. This year will be the year where we are going to attempt to create our own badges for our members can rep DCG 201 at the convention! Join us In-Person only to talk some ideas and set up future meet ups to work on our first ever entry for #BadgeLife!

DCG201 Session Exclusive In-Person Invite :..>Those who attend in person will be among the first to sign up for our in-person attendee only Session Group Chat (moving on from our Keybase platform). Session is a decentralized messenger with a focus on private, secure, and anonymous communications. Session offers support for direct messages, group chats, and voice calls. It utilizes the decentralized Oxen Service Node Network to store and route messages. Every encrypted message is routed through three nodes in the Oxen Service Node Network, making it virtually impossible for the nodes to compile meaningful information on those using the network. It is available for Android, iOS, Windows, macOS, and Linux. You can also find the APK package on its official website and GitHub repository. More info at: https://getsession.org/

:..>What To Bring: Any Smartphone with Android or iOS and any computer that can run Windows, MacOS or Linux. ======================================================

.::BONUS PARTY::. After our Official Meet Up at Helen’s Pizza, walk with us a block or three to the Barcade Jersey City (163 Newark Ave, Jersey City, NJ 07302) for drinks & arcade games until we are so drunk we are using eMacs as a viable text editor! 21+ ID with Vaccination Card.

Come to our main meet up to get FREE Barcade Tokens while supplies last!

::END OF LINE::