BSidesLV 2015

Organizations continue to tout Application Whitelisting as one of the best counter-measures to deploy. We have developed several evasion techniques that put organizations at risk that use Application Whitelisting. We would like to share these techniques, and engage in dialogue about ways to improve or expand our research.

In early 2013 Soldier of Fortran had an idea. What if there were mainframes on the internet? He knew, of course, there had to be, the internet is just full of all kinds of weird stuff. But what if there’s also mainframes on there, what would that mean? What would they look like? Using some google fu he started the hunt, easily finding a handful, then later moving on to SHODAN and finally masscan. Having grown up in the BBS era he was happy to find hundreds of ‘green’ screens up and running with their beautiful EBCDIC art for all the world to see. This talk will walk through the story of how he found the mainframes, first by himself and later with the help of others. He’ll go through the growth process he went through to find the mainframes and how he helped augment tools like SHODAN to make the hunting easier. He’ll detail the tools he wrote specifically to hunt internet mainframes, the troubles he’s gotten in to for looking for them (like when someone came up to me after a talk to tell me it was one of theirs) and then provide MANY examples of the the kind of (scary) things he’s encountered on the web. He’ll also delve into some of the alarming statistics of mainframe security using what he’s seen as an example. There may even be some live examples of some of those mainframes.

Powercat allows testers to accurately replicate a variety of sophisticated command and control techniques used by skillful attackers. Attendees will learn; core functionality, the latest developments, and help determine future project plans.

It may seem like everyone in infosec has always been a hacker. However, many of us have come to hacking from other industries, and as we make our way through the infosec community it’s often hard to find others like us. This is a conversation for every hacker who started as a mechanic, a kindergarten teacher, or a gender studies major: let’s talk about where we came from, how we got here, and some of the unique challenges we’ve come across as hackers with “past lives”.

Stories of burnout in tech professionals are not rare, particularly in security pros. Building on the earlier work of the stress and burnout project team which presented at BSidesLV 2011 and RSA USA 2012 and adding new voices, perspectives, and research this panel will explore what we have learned about warning signs, prevention, support, and recovery- and what remains to be done. This will be a highly personal and conversational discussion. While this topic needs public discussion, we are submitting to the Underground track to encourage candid discussions which might be stifled by public exposure.

ClickOnce is a deployment solution that enables fast, easy delivery of packaged software. It is commonly used by organizations to deploy both internal and production-grade software packages along with their respective updates. By allowing end-users to accept the requested permissions of the software package without the intervention of an administrator, ClickOnce simplifies the deployment and use of robust software solutions.
It also provides an excellent opportunity for malicious actors to establish a foothold in your network.
In this talk, we will discuss how we combined ClickOnce technology and existing phishing techniques into a new methodology for establishing an initial presence in an environment. By minimizing user interaction, we only require that the user is fooled for "one click" - after that, we already have a foothold in their environment and are ready to pivot and escalate further.

Implantable electronic devices are becoming more common nowadays. Specifically subdermal implants are now being used in companies for employee identification, security access, medical records and authentication among other uses. These implantable devices can easily bypass current security check procedures in most enterprises as they are located inside the body of a human. A live demo of mobile exploitation using an implanted RFID chip into a subject's hand will be performed during this presentation. This proof of concept aims to show the possibilities of use of implantable devices as attack vectors.

Hacking a fish finder should be something that hasn't been seen or talked about. The talk will be fun and interest anyone inside or outside the BSides community. Many can relate, or understand the issues and risks of poor security for almost any new device. Most don't realize how powerful sonar units have become over the last 5 years. Fishing is one of the most popular activities in the world.

This talk can be 20 or 45 minutes

If you are new to Bug Bounties, learn how to start reporting bugs for cash. If you have experience with Bug Bounties, learn how to increase your chances of success and earn bigger rewards.

Threat intelligence. You keep using that term. I'm not sure it means what you think it means.
Plagued by meaningless generalized URLs and file hashes was supposed to be the role of AVs and proxies, how it came about that threat intelligence vendors keep providing those?
Actionable threat intelligence is the rainbow burping unicorn of infosec where such provided intelligence is actually useful for the specific organization.
In this talk we'll discuss about SOME of the way that this can be achieved and utilized in a risk management program.

"Ask EFF" will be a panel presentation and question-and-answer session with several staff members of the Electronic Frontier Foundation, the nation’s premiere nonprofit digital civil liberties group. Each staffer will discuss a particular issue that has been in the news or on EFF’s docket this yea.