DEFCON 201

North East New Jersey DEFCON Group Chapter. We meet at Sub Culture once a month to hack on technology projects! https://www.defcon201.org

.::DEFCON 201 Meet Up — June 2019 — PEBKAC::.

====================================================== Date: June 21st, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/262409039/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/2429540473771618/

Hackaday: TBA

======================================================

Welcome to the June 2019 DEFCON 201 Meet Up!

Defy the rain (why are we Washington State this week?) and come down to get your hack on! After a fabulous PRIDE event, we return to the reoccurring meeting which will have announcements on DEFCON 201 Membership, cool talks, free booze, huge sandwiches, video games, making fun of crypto bros, mainframe password cracking and much more!

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet 8:00pm — 8:10pm Configuring Privoxy & JonDo — n0ctilucient 8:10pm — 8:20pm Joy Con-ning The Nintendo Switch Hardware & Accessories— sirocyl 8:20pm — 8:40pm Learning About Libra and Why Facebook’s Cryptocurrency is Pure High Octane Nightmare Fuel — Sidepocket 8:40pm — 9:55pm Open Workshops Projects & Black Hat Webinar 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

.::LIGHTNING TALKS::.

Configuring Privoxy & JonDo :..>TBA

:.> Bio: n0ctilucient (TBA)

Joy-Con-ning The Nintendo Switch Hardware & Accessories :..>Bio: sirocyl — Member of SwitchRoot and Founder of the famitracker.org

Learning About Libra and Why Facebook’s Cryptocurrency is Pure High Octane Nightmare Fuel :..>A few days ago, Facebook announced Libra, a new worldwide cryptocurrency platform that the company hopes to become the new de facto in global eCommerce. In this talk, DEFCON 201 Co-Founder Sidepocket will go over the Libra platform, what makes it tick and why this whole initiative by Facebook is a horrible idea including privacy concerns and evil open source hacks.

:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

BLACK HAT WEBINAR REPLAY — Don’t Let Your Mainframe Passwords be the Weakest Link in Your Enterprise :..>Most massive financial institutions rely on the IBM Mainframe platform for their day-to-day business. Without this critical platform, those businesses would cease to function. At the heart of securing any system, no less the venerable IBM mainframe, are the authentication methods used to verify users. We will examine the various password storage options for IBM’s RACF (Resource Access Control Facility) as implemented in z/OS.

Could a breach of your mainframe lead to a breach of the rest of your network? If you synchronize passwords and use one of the legacy algorithms for RACF, the answer may be: yes!

Depending on how your z/OS system is configured, the passwords may be stored using algorithms ranging from what basically amounts to cleartext, all the way up to world-class password encryption. Did you know the mainframe supports long passphrases, Multi-Factor Authentication and can also generate passtickets? If your enterprise uses RACF to secure its mainframe, you should register.

This talk is geared for technical decision makers, mainframe security personnel that want to learn more, or anyone with an interest in how z/OS stores its passwords / passtickets. You will learn how RACF stores its password information; the different types of password storage algorithms — with weaknesses / strengths in each — and also how to implement passtickets properly to avoid compromise.

:..>Bio: Chad Rikansrud is the Director of North American Operations for RSM Partners — a world leader in IBM mainframe security consulting services. Most of Chad’s 20-year career has been in technology leadership for the financial services industry.

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

.::DEFCON 201 Special Meet Up — May 2019 — Be Gay, Hack Everything::.

====================================================== Date: June 20th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/259623877/

Facebook [TOR]: https://www.facebookcorewwwi.onion/events/372131916995241/

Hackaday: TBA

FetLife: TBA ======================================================

Welcome to the a Special June 2019 DEFCON 201 Meet Up!

Hacking is incredibly gay. Very gay. Heck, the earliest hackers coded on machines who had rainbows as their logos is how gay things were even back then. So we are going to take out time a day before our usual meet up to honor and celebrate those hackers and tinkerers who just happen to be part of the LGBTQ+ community.

After we mingle and learn, we will go and party at our local club Six 26 to see if we can convert some frogs to our organization!

NOTE, we are still going to have the usual meet up the day after! A link will be posted here if you want to read details about that meet up: TBA

About our NEW venue:

This Venue and Meet Up is a LGBTQ+ Safe Space

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet 8:00pm — 8:10pm An Introduction to Queercon 16 — QueerCon NYC 8:10pm — 8:25pm Queering up the Internet — Anna Lytical 8:25pm — 8:40pm Talk TBA — TBA 8:40pm — 9:00pm SESTA/FOSTA — Sidepocket & TBA 9:00pm — 9:55pm Open Workshops + Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP & SIX26 AFTER PARTY

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

.::LIGHTNING TALKS::.

An Introduction to Queercon 16 :..>Queercon started 10 years ago as a hacker party inside of the annual Defcon hacker conference. Over the decade Queercon has grown into the largest social network of LGBT hackers from around the world. This year, Queercon 16 will be hosted at the Alexis Park and connected to DEFCON 27 with various talks, activities and parties. Come hear what it’s about, what is new this year and see what creative hacks the LGBTQ+ Community has come up with!

:..> Bio: Queercon NYC is the New York City Metro Area Queercon chapter that support the community of LGBTQ+ hackers in the NYC metro area with social events and volunteer opportunities

Queering Up The Internet :..>I combined my passions of drag and coding together to create tutorials teaching programming and computer science using references that relate and engage LGBTQ+ people. I’ll show some of the projects I’ve built, preview upcoming work and talk about why I think it’s important to make coding not just accessible but also fun and exciting.

:..>Bio: Anna Lytical is drag queen, engineer at Google and on a mission to teach the dolls how to code!

TALK TBA :..>TBA

:.>Bio: TBA

SESTA/FOSTA :..>Stop Enabling Sex Traffickers Act (SESTA) and Allow States and Victims to Fight Online Sex Trafficking Act (FOSTA) are the U.S. Senate and House bills that as the FOSTA-SESTA package became law on April 11, 2018, passed the Senate with a vote of 97–2, with only senators Ron Wyden and Rand Paul voting against it. They clarify the country’s sex trafficking law to make it illegal to knowingly assist, facilitate, or support sex trafficking, and amend the Section 230 safe harbors of the Communications Decency Act (which make online services immune from civil liability for the actions of their users) to exclude enforcement of federal or state sex trafficking laws from its immunity. While sounding pretty on paper, it has caused huge complications for online users such as increased internet surveillance, racial and gender discrimination, mass censorship , creating greater economic disparity between sex workers and ultimately empower criminals and corporations over independent providers. In this talk, Sidepocket and a special guest will go over what these laws are, what is going wrong and how people are fighting back against it.

:..>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

.::OPEN PROJECTS::.

Six 26 Afterparty :..>The activities don’t end at 10:00 PM! After our normal meet up we will carry our hacks a few (walk-able) blocks to Six 26, a Lounge and Rooftop for the LGBTQ community! You must be 21+ to enter with ID. More info at: https://six26.co/

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

.::DEFCON 201 — Facebook CTF Online Practice Challenge::.

Welcome to the June DEFCON 201 Facebook CTF Practice Challenge!

For over two years we have been planing running our own Wargames and CTF to help people develop their hacking skills. While progress is still being made (we plan to launch our own in Winter 2019), DC201 will also occasionally enter into various online CTF Tournaments to test our skills and to get a sample on how one is set up so we have a blueprint in creating our own.

This weekend, from May 31th 8:00 PM EST to June 2nd 8:00 PM EST, we invite all DEFCON 201 Members, Attendees and Fans to help us hack the Facebook CTF 2019!


Website: https://www.fbctf.com/

CTF Time Page: https://ctftime.org/event/781


Anyone can enter by joining our group and entering our DISCORD Chat! Once in chat, select the #CTF channel and hack away!


DEFCON 201 Discord Link: https://discord.gg/PGgPNEF


::CLIENT INTERFACES::

Clear Net: https://discordapp.com/channels/@me

Windows: https://discordapp.com/api/download?platform=win

macOS: https://discordapp.com/api/download?platform=osx

Linux: https://snapcraft.io/discord

iOS: https://itunes.apple.com/us/app/discord-chat-for-games/id985746746

Android: https://play.google.com/store/apps/details?id=com.discord (We recommend using YALP)

:..>Join The DEFCON 201 CTF Time Group: https://ctftime.org/team/40304


::RULES::

Want to play? Here’s what you need to know:

A valid email address is required in order to participate.

Playing on multiple teams is not allowed and will lead to disqualification.

All flags will be in the form fb{} unless otherwise specified.

We use dynamic scoring. The more teams that correctly solve a problem, the less points that problem is worth.

Sharing flags or other collaboration between teams is not allowed.

Attacking the CTF infrastructure or engaging in activity to prevent other teams from solving competition challenges will result in disqualification.

If you discover any bugs that may allow for manipulation or disruption of the CTF, please report the vulnerability to gulshan@fb.com.

Blind brute force or automated vulnerability scanners are not required to solve any of the CTF challenges. Some challenges may require a small amount of brute force, but only after reducing the possibilities to a feasible range. If you’re unsure if you’ll be violating this rule, ask an admin.

Please read the full rules and conditions to determine eligibility.

Need Help?

Join the #fbctf-2019 IRC channel on Freenode, which you can access from your web browser here: https://webchat.freenode.net/?channels=%23fbctf-2019

Please reach out to gsingh93 on IRC with any questions.


Happy Hacking!

::END OF LINE::

.::DEFCON 201 Meet Up — May 2019 — The System Is Down::.

====================================================== Date: May 17th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up: https://www.meetup.com/DEFCON201/events/259623877/

Facebook: https://www.facebookcorewwwi.onion/events/2998856986821575/

Joind.In: TBA

Hackaday: https://hackaday.io/page/6206-defcon-201-meet-up-may-2019-the-system-is-down ======================================================

Welcome to the May 2019 DEFCON 201 Meet Up!

This is the start of the summer season for DEFCON 201 activities where we ramp up our hacks and do more events that involve going to that thing that exist outside of your apartment called the “outside”.

Coming off the heals of our new Coffee & Code series of social meet ups, the beginning of our Capture The Flag initiative and before our venture out to NJ SECON, join us in a continued celebration of our new venue and find out what is up ahead for DEFCON 201 from June to September!

About our NEW venue:

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet 8:00pm — 8:10pm Configuring Privoxy & JonDo — n0ctilucient 8:10pm — 8:40pm Talk TBA — NCommander 8:40pm — 8:50pm Vintage Computer Festival East 2019: A Recap and Show & Tell— sirocyl 8:50pm — 9:55pm Open Workshops + Projects & Black Hat Webinar 9:55pm — 10:00pm END OF OFFICIAL MEET UP & AFTERPARTY

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

.::LIGHTNING TALKS::.

Configuring Privoxy & JonDo :..>TBA :.> Bio: n0ctilucient (TBA)

Talk TBA :..>Bio: NCommander (TBA)

HVintage Computer Festival East 2019: A Recap and Show & Tell

:..>Two weeks ago from May 3rd to May 5th, the Vintage Computer Festival (VCF) East took place in Wall NJ. In this short talk, our presenter will go over the carnival of retro technology including a show and tell of the COMPAQ SLT 286 he bought at the festival.

:.>Bio: sirocyl — founder of the famitracker.org FamiTracker and Famicom/NES music community.

BLACK HAT WEBINAR — The Importance of Logs: You Won’t See What You Don’t Log

:..>As a Team, Cisco’s CX EMEAR Security Architecture team sees an awful lot of customer sites and systems where logging is either unconfigured or where it is configured in an inappropriate fashion.

In our experience, we find issues relating to this in over 50% of assessment engagements which climbs still further for engagements where we’re asked to actively deliver our incident response capabilities. It’s not often talked about but effective logging is a key control both to give the blue team visibility of the network they’re defending and to enable accurate analysis in the event of an incident. This talk will cover:

Why logging goes wrong How to start to plan your logging requirements Case studies Where to go next

:..>Bio: Tim (Wadhwa-) Brown joined Cisco as part of their acquisition of Portcullis for whom he worked for almost 12 years. He is equally happy performing white box assessments with access to source code or where necessary diving into proprietary binaries and protocols using reverse engineering methodologies. Tim has contributed to a number of Cisco’s bespoke methodologies covering subjects as diverse as secure development, host hardening, risk and compliance, ERP and SCADA. In 2016–2017, Tim looked at targets as varied as Active Directory, z/OS mainframes, power stations, cars, banking middleware and enterprise SAP Landscapes. Outside of the customer driven realm of information assurance, Tim is also a prolific researcher with papers on UNIX, KDE, Vista and web application security to his name.

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

.::DEFCON 201 CTF Practice Challenge — May 10th-May 13th::.

Welcome to the May DEFCON 201 CTF Practice Challenge!

For over two years we have been planing running our own Wargames and CTF to help people develop their hacking skills. While progress is still being made (we plan to launch our own in Winter 2019), DC201 will also occasionally enter into various online CTF Tournaments to test our skills and to get a sample on how one is set up so we have a blueprint in creating our own.

This weekend, from May 10th 0:00 UTC (8:00 PM EST) to May 13th 0:00 UTC (8:00 PM EST), we invite all DEFCON 201 Members, Attendees and Fans to help us hack the Order Of The Overflow DEFCON 27 CTF Qualifier!

Website: https://www.oooverflow.io/dc-ctf-2019-quals/

CTF Time Page: https://ctftime.org/event/762

Anyone can enter by joining our group and entering our DISCORD Chat! One in chat, select the #CTF channel and hack away!

DEFCON 201 Discord Link: https://discord.gg/PGgPNEF

CLIENT INTERFACES

Clear Net: https://discordapp.com/channels/@me

Windows: https://discordapp.com/api/download?platform=win

macOS: https://discordapp.com/api/download?platform=osx

Linux: https://snapcraft.io/discord

iOS: https://itunes.apple.com/us/app/discord-chat-for-games/id985746746

Android: https://play.google.com/store/apps/details?id=com.discord (We recommend using YALP)

P.S. Join The DEFCON 201 CTF Time Group: https://ctftime.org/team/40304

-RULES-

:..>No Denial of Service — DoS is super lame, don’t do it or you will be banned :..>No sharing flags, exploits, or hints — Do your own hacks :..>No attacks against our infrastructure — Hack the challenges, not us :..>No automated scanning — For these challenges, do better

-New Challenge Type: SPEEDRUN-

We want to see who the fastest hackers are on the planet. So we created a new type of challenge: the speedrun. There will be one speedrun challenge released every 2 hours starting at May 11th 03:00 UTC for 24 hours (for a total of 12 challenges). Every speedrun challenge is running on the latest Ubuntu 18.04 with libc-2.27 md5 hash of 50390b2ae8aaa73c47745040f54e602f. To the winner go the spoils.

-SCORING-

As in 2018, all challenges (except for speedruns) will be adaptive scoring based on the number of solves: starting at 500 and decreasing from there (based on the total number of teams that solved the challenge).

Speedrun challenges have two ways to earn points: individual and overall.

Individual challenge scoring is based on the solve order of the speedrun:

First to solve: 25 points Second to solve: 20 points Third to solve: 15 points Fourth to solve: 10 points All other solves: 5 points

Overall speedrun scoring is based on the total solve time of a team over all speedruns (max of 2 hours for unsolved challenges):

First place: 300 points Second place: 200 points Third place: 100 points

For example, if one team solves all speedrun challenges first, they would receive 300 (25*12) points on individual speedrun and 300 points for being in first place overall.

-FLAG FORMANT-

Unless otherwise noted in the challenge description, all flags will be in the format:

OOO{...}

AND YOU MUST SUBMIT THE WHOLE THING, INCLUDING THE OOO{…}. POW

We may implement a POW (proof of work) in front of a challenge if we feel it is necessary. Specific POW, along with a client, will be released at game time.

-HINTS-

Do not expect hints. Particularly if a service is already pwned, it would be unfair to give one team a hint when it’s already solved. If we feel that something is significantly wrong, then we will update the description and tweet about it.

Happy Hacking!

::END OF LINE::

.::DEFCON 201 Social Meet Up ~ Caffeine & Code::.

========================================= Date: April 28th, Sunday

Time: 2:00 PM — 7:00 PM

Location: LACKAWANNA COFFEE (295 GROVE ST JERSEY CITY NJ 07302)

Meet-Up [CLEARNET]: https://www.meetup.com/DEFCON201/events/259624779/

Facebook: https://www.facebookcorewwwi.onion/events/338572970128821/

=========================================

Welcome to our first DEFCON 201 Social Meet Up of the year!

DEFCON 201 Social Meet Ups are the reverse of our normal meetings. Unstructured, relaxed, casual, social exploring a new part of North East New Jersey at different days and times. This allows us to bring out people who would normally not make our monthly meet ups and allows us to get some fresh perspectives and have fun with new people.

This will be a first in a special series called “Caffeine & Code”.

Bring your laptops and get pumped full of bean juice as you hack away at code!

Our first Caffeine & Code will take place at the LACKAWANNA COFFEE on Grove Street (two blocks from the Grove Street PATH Station).

As long as you order a drink and/or food item, you can code with us!

::END OF LINE::

.::DEFCON 201 Meet Up — April 2019 — #Moonstruck::. =============================================================

Date: April 19th, Friday

Time: 7:00 PM — 10:00 PM

Location: Sub Culture (260 Newark Ave, Jersey City, NJ)

Meet-Up [CLEAR NET]: https://www.meetup.com/DEFCON201/events/259623485/

Facebook: https://www.facebookcorewwwi.onion/events/601470103653466/

Joind.In [CLEAR NET]: TBA

Hackaday [CLEAR NET]: https://hackaday.io/page/6117-defcon-201-meet-up-april-2019-moonstruck-new-venue =============================================================

Welcome to the April 2019 DEFCON 201 Meet Up!

This day, we plan to do something special and unexpected. On this day, the day of the full moon, we will detox from the digital ruckus — close our laptops, turn off the TV, and leave our phones at home (or in pocket) for a whole 24 hours. For one day, we free our inundated minds from digital distractions. Recalibrate your relationship to tech. It’s time to prepare for the imminent moon days by decluttering your mental environment.

#Moonstruck is the new day of reckoning in a distracted world.

No digital. No screens. All analog.

Welcome to the Real World.

Also, we are trying out a new venue! (Third Times the charm)

We welcome you to Sub Culture at 260 Newark Ave in Jersey City. Five blocks from the Grove Street Path station and right on the NJ Transit Bus Stop; enjoy Free-Wifi, affordable (meat and vegan) food, power strips, video games on Raspberry Pi and sweet times! More information at https://www.subculturejc.com

If you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet 8:00pm — 8:05pm #Moonstruck — Sidepocket 8:05pm — 8:25pm HAM Radio Talk — ARRL TBD 8:25pm — 8:50pm ‘Fone’s Broke? I’ll Just Call A Repair Man — Sidepocket 8:50pm — 9:00pm Introduction to Lockpicking — Sidepocket 9:00pm — 9:55pm Open Workshops + Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

Practice Lockpicking & Locksport — Sidepocket & GI Jack

.::LIGHTNING TALKS::.

`Fone’s Broke? I’ll Just Call A Repairman :..>Phone Phreaking. Some people call it a fun past time from a bygone era. Others still view it as an illegal criminal activity. In this primer, you will learn the history of phone phreaking from someone who lived through par tof it, sharing both global stories and personal hacks and enjoy a live demo of Blue Boxing.

:.>Bios: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

HAM Radio Talk :..>TBA

.::OPEN PROJECTS::.

Practicing Lockpicking & Locksport :..>DEFCON 201 will have padlocks and professional practice tumblers provided by TOOOL to practice on. Fun and easy to learn for all ages and backgrounds with two expert instructors!

::END OF LINE::

DEFCON 201 Meet Up — March 2019 — Two F&#%ing Years

Two Years. Two F&#%ing Years!!! Two Years of crazy hacker experiments in New Jersey. Two years of being high on caffeine and two years of attending (and creating) conventions and meet ups. We still can’t believe it…

After years of New Jersey trying to host a DEFCON group and failing each time after only a few months, we are honored that you 1337-guys and gals kept this going for this long. We at DEFCON 201 would like to thank you for committing your time and energy to this institution and we plan on making it bigger and better into our third year.

Join us this meet up for a party fit for the terrible twos. Bring your own booze, drinks and snacks as we will bring our own. Cool freebies for all, the last batch of the DEFCON 201 Homebrew Beer, music, video games and many surprises in store!

Again, if you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet & DEFCON 201 Two Year Anniversary Party 8:00pm — 8:10pm DEFCON 201 Year In Review — Sidepocket + GI Jack 8:10pm — 8:20pm DEFCON 201 Zine— sirocyl 8:20pm — 8:30pm $brew Open Source Beer: A Study Of Large Scale Projects — Sidepocket 8:30pm — 9:00pm Whose Slide Is It Anyway? — DEFCON 201 Attendees 9:00pm — 9:55pm Open Workshops + Projects 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

NJ Makers Day Volunteer Recruitment — Sidepocket, GI Jack

DEFCON 201 VIDEO FILMING — Sidepocket, GI Jack & Xio

.::LIGHTNING TALKS::.

$brew Open Source Beer — A Study of Large Scale Projects

:..>In Spring 2018, Firefox’s parent company Mozilla partnered with Portland, Oregon’s premier brewery, Widmer Brothers to make a beer. Widmer Brothers developed a recipe for called Open Sourcery, a 7 percent ABV, 70 IBU tropical IPA. And it’s completely open source on GitHub. DEFCON 201 took on this challenge and we brewed it ourselves with our own twist. This talk will go over how to brew your own beer, the triumphs and disasters of the process, how we created our own spin on it and how you can apply what we learned to your own project, alcohol related or not. After the presentation, participants of legal drinking age (21+) will be able to sample and enjoy the result of our literal homebrew.

:.>Bios: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

Whose Slide Is It Anyway?

:..>“Whose Slide Is It Anyway?”” is an unholy union of impov comedy, hacking and slide deck sado-masochism.

The How: Our team of slide monkeys (aka Sidepocket) will create 13 short slide-decks on whatever nonsense tickles our fancy this week. Slides are not exclusive to technology, they can and will be about anything. DEFCON 201 Attendees will take the stage and choose a random number corresponding to a specific slide deck. They will then improvise a five-minute lightning talk, becoming instant subject matter experts on whatever topic/stream of consciousness appears on the screen.

The Why: Whether you delight in the chaos of watching your fellow hackers squirm or would like to sacrifice yourself to the Demo Gods, it’s a night of schadenfreude for the whole family. It is also a great way to learn public speaking abilities and how to improv when presenting subject matter while dealing with a live audience.

.::OPEN PROJECTS::.

NJ MAKERS DAY RECRUITMENT

:..>NJ Makers Day will take place at the Liberty Science Center on March 22nd and 23rd. We are going to have a giant booth there as well as assist with the various operations of the con. If you have nothing to do on those days and want to earn cool swag, email us at info (AT) DEFCON201 [dot] ORG

DEFCON 201 VIDEO FILMING

:..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::

DEFCON 201 Updates — Keybase, Discord & More!

Greetings Dirty Jersey Hackers! We have a few house cleaning updates we would like to share with you regarding communications and social media.

Starting with…

::DEFCON 201 ATTENDEE KEYBASE TEAM::

We are excited to announce that DEFCON 201 now has it’s own Keybase Team!

What is Keybase?

Keybase is a key directory that offers an end-to-end encrypted chat and cloud storage system, called Keybase Chat and the Keybase filesystem respectively. Keybase allows users to “prove” a link between certain online identities (such as a Twitter or Reddit account) and their encryption keys. Instead of using a system such as OAuth, identities are proven by posting a signed statement as the account a user wishes to prove ownership of. Since the Keybase app checks the proof, it avoids trust on first use.

You can also pipe all Keybase traffic via TOR and access the profile web-gui via the Tor Browser.

A browser extension for Chrome and Firefox allows you to add users on social media directly to Keybase.

Also, once the client is installed you can also run Keybase through the Command Line.

NOTE: This chat method is ONLY for those who have attended a DEFCON 201 Meet Up and joined our Mailing List. If you are on our Mailing List and are having issues/did not receive the invite please contact us at the next available meet up or email us at INFO (at) DEFCON201 {dot} ORG

.::CLIENT INTERFACES::.

Clear Net Website: https://keybase.io/

Tor Onion: http://fncuwbiisyh6ak3i.onion

Windows: https://prerelease.keybase.io/keybase_setup_amd64.msi

macOS: https://prerelease.keybase.io/Keybase.dmg

Linux: https://keybase.io/docs/the_app/install_linux

iOS: https://itunes.apple.com/us/app/keybase-crypto-for-everyone/id1044461770

Andorid: https://play.google.com/store/apps/details?id=io.keybase.ossifrage (We recommend using YALP, working on F-Droid version)

Chrome Extension: https://chrome.google.com/webstore/detail/keybase-for-reddit/ognfafcpbkogffpmmdglhbjboeojlefj

Firefox Extension: https://addons.mozilla.org/en-US/firefox/addon/keybase-for-firefox/

::DEFCON 201 PUBLIC DISCORD::

For those who can’t make it to meet ups/just fans and want to talk with us online all the time, we have open a public channel on Discord that anyone can join! This will be used in conjunction with our IRC Channel on Freenode (#defcon201) and later this month both platforms will be merged together!

DEFCON 201 Discord Link: https://discord.gg/PGgPNEF

.::CLIENT INTERFACES::.

Clear Net: https://discordapp.com/channels/@me

Windows: https://discordapp.com/api/download?platform=win

macOS: https://discordapp.com/api/download?platform=osx

Linux: https://snapcraft.io/discord

iOS: https://itunes.apple.com/us/app/discord-chat-for-games/id985746746

Android: https://play.google.com/store/apps/details?id=com.discord (We recommend using YALP, working on F-Droid version)

NOTE: All previously mentioned social media networks (except for GNU Social, switch to our Mastodon) and communication portals are still active, live and viable!

::END OF LINE::

.::DEFCON 201 Meet-Up — January 2019 — SHMOO-ZING AROUND::. =============================================================

Date: January 18th, Friday

Time: 7:00 PM — 10:00 PM

Location: WHEALTH Cafe (615 Pavonia Ave, Jersey City, NJ)

Facebook: TBA

Meet-Up: https://www.meetup.com/DEFCON201/events/258150054/

Joind.In: TBA

Hackaday: TBA

New Year, New You, New Hacks!

Welcome to the first DEFCON 201 Meet Up of 2019! Despite a crazy schedule and a potential snowstorm, we are still meeting up today for some hacker shenanigans. In this installment, we are going to learn about WebPKI, live stream Shmoocon and share some good times together as we launch big workshops, projects and events February and beyond!

About our meet-up location WHEALTH & CO. CAFE in Jersey City: Outside of WHEALTH & CO. Cafe in Journal Square Interior of WHEALTH & CO. Cafe in Journal Square Overhead Map of WHEALTH & CO Cafe in relation to the Journal Square PATH & Bus Station

Centered right at the heart of the Journal Square PATH STATION with mobile accessibility, coffee and food, inside and outside areas and a passion for the hacker community. BONUS, our venue is allowing us to BYOB so continue that tradition!

Again, if you like to do a talk at our meet ups our collaborate with our staff and members in a project partnership shoot us a email at:

INFO {at} DEFCON201 [DOT] ORG

.::AGENDA & SCHEDULE::. 7:00pm — 8:00pm Meet & Greet & Shmoocon Live Stream 8:00pm — 8:05pm DEFCON 201: The First Half of 2019— Sidepocket 8:05pm — 9:00pm Understanding WebPKI — NCommander 8:50pm — 9:55pm Open Workshops + Projects & Shmoocon Live Streaming 9:55pm — 10:00pm END OF OFFICIAL MEET UP

.::OPEN PROJECTS::.

DEFCON 201 VIDEO FILMING — Sidepocket, GI Jack & Xio

.::LIGHTNING TALKS::.

DEFCON 201: The First Half of 2019 :..>Another year has gone by and we are super close to our Two Year Anniversary in March! Come learn the meeting details from Feburary to May as we explore hacker cons, DEFCON 201 Membership and the awesome line up of content in our meet ups for 2019.

:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org

Understanding WebPKI :..>What does that green lock in your URL entry bar mean? How web encryption works and what does it mean to be a “verified encrypted website”? In this talk, NCommander gives a brief understanding of TLS/HTTPS/certificate authorities and will take any questions you throw at him.

:.>Bio: NCommander (@fossfirefighter) lives in New York and is a contributor to multiple free and open-source software projects, an Ubuntu core developer, and an active developer for the Hermes Center for Transparency working on the GlobaLeaks project. In his free time, he likes to travel, write, and play with radios.

.::OPEN PROJECTS::.

SHMOOCON LIVE STREAM :..>ShmooCon is an annual east coast hacker convention hell-bent on offering three days of an interesting atmosphere for demonstrating technology exploitation, inventive software and hardware solutions, and open discussions of critical infosec issues. DEFCON 201 will be streaming the 19:00 to 21:10 of the “One Track Mind” section of talks. See the Shmoocon 2019 schedule for details of speakers and subjects: https://www.shmoocon.org/schedule/

DEFCON 201 VIDEO FILMING :..>DEFCON 201 will expand into video media in late September. We will be launching various videos including an Introduction, Member Spotlights, Archived Lightning Talks, Tutorials, Directions and more on the DTube, Vimeo and YouTube Mirror platforms. We will also have downloadable copies on the DEFCON 201 NextCloud of select media for DEFCON 201 Members who want hard copies of videos. If you want to be in the Introduction, Member Spotlights or Archive Lighting Talks you can inquire into us about signing our DEFCON 201 Consent Forums and we will walk you through the process. Those who have not signed our DEFCON 201 Consent Forums during meetings will NOT be recorded in Video or Audio as per our policy. Furthermore, any instances of media recording photo/video/audio via DEFCON 201 Staff will be alerted to all president attendees beforehand prior to recording.

::END OF LINE::