I’m here in DC getting ready for ShmooCon which starts tomorrow. I had some time to blog before things get crazy later tonight when everyone starts to arrive for the con.
UPDATE: Ummm…someone *may* have hacked the Windows kiosks at the hotel…saw Ubuntu loading on one and Howard the Duck playing on another…probably shouldn’t use those kiosks, huh?
Anyway, I thought I would share some first impressions of the talks and what I will probably attend. Keep in mind, there are lots of great talks going on all weekend and it will be really hard to make all the ones I want to see but here is my short list of not to miss talks:
Friday, February 6th
Open Vulture – Scavenging the Friendly Skies Open Source UAV Platform
Ethan O’Toole and Matt Davis
An open source UAV? How friggin’ sweet is that? Now you too can spy on your own neighborhood… 🙂
Building the 2008 and 2009 ShmooBall Launchers
Larry Pesce and David Lauer
Of course I will be in this one! Dave from Security Justice and Larry from PaulDotCom will be talking all about the new ShmooBall launchers for this year. Dave and Larry never disappoint and I assume there will be some surprises as well.
Decoding the SmartKey
Shane Lawson
I love physical security just about as much as information security so this one should be interesting. Shane will talk about how to decode the Kwikset SmartKey with materials costing under $5.
I will be there along with Matt and Dave from Security Justice. Looks like we are going to do a live show at 8pm, give away some prizes, start FireTalks then party with the folks from HacDC. Check out the podcasters meetup site for more details on times and official schedule.
Saturday, February 7th
Radio Reconnaissance in Penetration Testing – All Your RF Are Belong to Us
Matt Neely
My friend and fellow co-host of the Security Justice podcast, Matt Neely is doing a talk on ways to use radio reconnaissance in pentests. Matt does a ton of research with wireless so it should be really interesting to see what new techniques he has come up with. I hear that Shmoo Balls may be launched during this talk…. 🙂
Fail 2.0: Further Musings on Attacking Social Networks
Nathan Hamiel and Shawn Moyer
I was at BlackHat last year and saw Nathan and Shawn’s talk titled “Satan is on my friends list”. These guys do great research on social network security and I am looking forward to see the new stuff they came up with for this year. As a bonus, they should have AFF (Adult Friend Finder) pr0n and related adventures. 😉
Man in the Middling Everything with The Middler
Jay Beale
Jay Beale is speaking once again about the Middler! You may remember the Middler was to be released at Defcon last year…that didn’t happen for a bunch of reasons. However, I think Jay will finally be ready to release it! Jay is a great presenter to boot..highly recommended you attend this one. Another talk to beware of Shmoo Ball cannon fire…
802.11 ObgYn or “Spread Your Spectrum“
Rick Farina
All Your Packets are Belong To Us: Attacking Backbone Technologies
Enno Rey and Daniel Mende
The Fast-Track Suite: Advanced Penetration Techniques Made Easy
David Kennedy
You may remember Dave from one of the first Security Justice Special Editions last year. Dave will be going in depth with the Fast-Track suite which is part of Backtrack 3. Knowing Dave, I’m sure he will be talking about and/or demoing new features in Backtrack 4. Shmoo Ball cannon may make an appearance…
Sunday, February 8th
Enough with the Insanity: Dictionary Based Rainbow Tables
Matt Weir
Yes! Improvements to rainbow tables…can’t wait!
RFID Unplugged
3ric Johanson
Looks like RFID is going to torn apart in this one…good stuff! Interested in the PayPass vulnerabilities he is going to talk about.
0wn the Con
The Shmoo Group
What to know what it takes to put ShmooCon together? Be sure to check out this talk and learn how it’s all done.
If you are around the con send me a tweet on Twitter or stop by the Podcasters Meetup if you want to chat! Hoping I can blog and/or live Tweet from some of the talks.
Tom: Re "Fail 2.0" . . . my research documents reports of the Koobface worm infecting (or attempting to infect) workplace-related computers by way of Facebook. Employers/organizations thus have security as a reason to block social network sites. <a href="http://computersafety.wordp…">http://computersafety.wordpress.com/2009/01/19/security-threat-facebook-and-myspace-at-work/</a> –Ben