DC29 Schedule
NOTE All listed times are Las Vegas local time, PDT/UTC-7!
Meetup Schedule
We have found over the years that some of the best content in our village came about organically. A couple of like minded hackers happened to be in the same place when the right topic came up, and suddenly a ton of good information is flying around and a crowd is assembling. Rather than wait for these random events, we thought we could create a space and a time for specific topics and see how it goes.
In some cases we have someone with interest to seed the discussion, others there is just a topic and an invite for people with a common interest. These take place in both text and voice chat. Some of them are repeated multiple times throughout DEF CON 29 in order to allow attendees from around the world to participate. While not all are repeated, we encourage you to continue the conversations. The meetup is a nexus for finding and starting the conversation. A place to meet people with the same interests or challenges and discuss. Bring your expertise and your questions.
Friday
| Start Time | End Time | Events | Location |
|---|---|---|---|
| 9:30 | 10:00 | Meetup: Some HHV challenges | #hhv-challenge-text and #hhv-meetups-A-voice |
| 14:30 | 15:00 | Meetup: PCB Proto and Rework | #hhv-meetups-a-text and #hhv-meetups-A-voice |
| 15:00 | 15:30 | Robo Sumo On site | HHV IRL |
| 15:30 | 16:00 | Meetup: Legacy Hardware | #hhv-meetups-a-text and #hhv-meetups-A-voice |
| 17:30 | 18:00 | Meetup: Some HHV challenges | #hhv-challenge-text and #hhv-meetups-A-voice |
Saturday
| Start Time | End Time | Events | Location |
|---|---|---|---|
| 13:00 | 13:30 | Meetup: Some HHV challenges | #hhv-challenge-text and #hhv-meetups-A-voice |
| 14:00 | 14:30 | Meetup: Sourcing Parts & The Global Parts Shortage | #hhv-meetups-a-text and #hhv-meetups-A-voice |
| 15:00 | 15:30 | Meetup: OSS ASIC | #hhv-meetups-a-text and #hhv-meetups-A-voice |
| 16:00 | 16:30 | Meetup: Certification Processes (UL, FCC, etc.) | #hhv-meetups-a-text and #hhv-meetups-A-voice |
Talk/Workshop Schedule
All of our talks and workshops will be run multiple times throughout DEF CON 28 Safe Mode and are staggered to help ensure attendees from around the world can be a part of them.
Friday
| Start Time | End Time | Events | Location |
|---|---|---|---|
| 10:00 | 10:30 | Hardware Hacking 101: Rogue Keyboards and Eavesdropping Cables | Video on Twitch & chat on #hhv-talk-qa-hw-hacking-101-text |
| 11:00 | 12:00 | Use a PortaProg to flash, dump, and test ISP and UPDI chips | Video on Twitch & chat on #hhv-talk-qa-use-a-portaprog-text |
| 12:00 | 12:30 | The Black Box and the Brain Box: When Electronics and Deception Collide | Video on Twitch & chat on #hhv-talk-qa-blackbox-brainbox-text |
| 12:30 | 13:30 | Walkthrough of DC 28 HHV Challenges | Video on Twitch & chat on #hhv-challenge-text |
| 13:30 | 14:30 | A Lazy r2 Solve of @mediumrehr Challenge 6 | Video on Twitch & chat on #hhv-challenge-text |
Saturday
| Start Time | End Time | Events | Location |
|---|---|---|---|
| 8:30 | 9:00 | Hardware Hacking 101: Rogue Keyboards and Eavesdropping Cables | Video on Twitch & chat on #hhv-talk-qa-hw-hacking-101-text |
| 9:30 | 10:30 | Use a PortaProg to flash, dump, and test ISP and UPDI chips | Video on Twitch & chat on #hhv-talk-qa-use-a-portaprog-text |
| 10:30 | 11:00 | The Black Box and the Brain Box: When Electronics and Deception Collide | Video on Twitch & chat on #hhv-talk-qa-blackbox-brainbox-text |
| 11:00 | 12:00 | Walkthrough of DC 28 HHV Challenges | Video on Twitch & chat on #hhv-challenge-text |
| 12:00 | 13:00 | A Lazy r2 Solve of @mediumrehr Challenge 6 | Video on Twitch & chat on #hhv-challenge-text |
Sunday
| Start Time | End Time | Events | Location |
|---|---|---|---|
| 9:00 | 10:00 | Walkthrough of DC 28 HHV Challenges | Video on Twitch & chat on #hhv-challenge-text |
| 10:00 | 11:00 | A Lazy r2 Solve of @mediumrehr Challenge 6 | Video on Twitch & chat on #hhv-challenge-text |
| 11:30 | 12:30 | Use a PortaProg to flash, dump, and test ISP and UPDI chips | Video on Twitch & chat on #hhv-talk-qa-use-a-portaprog-text |
| 14:00 | 14:30 | Hardware Hacking 101: Rogue Keyboards and Eavesdropping Cables | Video on Twitch & chat on #hhv-talk-qa-hw-hacking-101-text |
| 15:00 | 15:30 | The Black Box and the Brain Box: When Electronics and Deception Collide | Video on Twitch & chat on #hhv-talk-qa-blackbox-brainbox-text |
Discord Channel Listing
- Welcome channel plus general Q&A; text only
- Our meetups are all held here, see the Meetup Schedule for what is happening and when; text only
#hhv-meetups-a-voice
- Voice channel to accompany the meetups, see the Meetup Schedule for what is happening and when; voice only (The link directly joins the #hhv-meetups-a-text channel, when there, click on the voice channel to join)
#hhv-talk-qa-hw-hacking-101-text
- Q&A for talk: Hardware Hacking 101: Rogue Keyboards and Eavesdropping Cables; text only
#hhv-talk-qa-use-a-portaprog-text
- Q&A for talk: Use a PortaProg to flash, dump, and test ISP and UPDI chips; text only
#hhv-talk-qa-blackbox-brainbox-text
- Q&A for talk: The Black Box and the Brain Box: When Electronics and Deception Collide; text only
- For sharing and discussing PCB bodges, repairs, reworks, and unique designs; text only
- A place to discuss HHV challenges, past, present, and future; text only
Meetup Details
Some HHV Challenges
@rehr
Description
HHV members have created a few challenges for this year’s DEF CON. Come learn and chat about those challenges, or bring new challenges to share with the community. This time will start with an introduction to this year’s HHV challenges, but the remaining time will be open to community questions and conversations
PCB Proto and Rework
K
Description
A place to meet people with the same interests or challenges and discuss. The meetup is a nexus for finding and starting the conversation. Bring your expertise and your questions.
Robo Sumo On site
ShortTie
Description
Come out for Robo Sumo meetup at the HHV IRL
Legacy Hardware
K
Description
A place to meet people with the same interests or challenges and discuss. The meetup is a nexus for finding and starting the conversation. Bring your expertise and your questions.
Sourcing Parts & The Global Parts Shortage
bombnav
Description
Sourcing parts in the COVID involves new challenges due to supply chain issues. Counterfeiting continues to be an problem with out of production parts. This meetup is designed to share ideas and sources for acquiring parts for electronic hobbyists.
OSS ASIC
Josh Marks
Description
Come geek out about ASICs! No ASIC knowledge? No problem — casual conversation about transistor structures, and basic circuit architectures included.
Certification Processes (UL, FCC, etc.)
ShortTie
Description
A place to meet people with the same interests or challenges and discuss. The meetup is a nexus for finding and starting the conversation. Bring your expertise and your questions.
Talk/Workshop Details
Hardware Hacking 101: Rogue Keyboards and Eavesdropping Cables
Federico Lucifredi
Abstract
This is a live tutorial of hacking with keystroke injection attacks. We take advantage of the inherent trust that computers place on what is believed to be a regular keyboard to unleash pre-programmed keystroke payloads at well over 1000 words a minute. We access the host system and bypass traditional security countermeasures for payloads that can include reverse shells, binary injection, brute force password attacks, and just about any attack that can be fully automated.
We misuse the trust the operating system places on USB human-interaction devices to demonstrate once again the old adage that if you can physically access a computing device, there is no real security to be had. I will review hardware, its capabilities, how to breach OS security, and how attackers can enable it to perform a variety of tasks with its own tools. I will then show how to build and install additional software and customize the device with binary or scripted payloads.
We take the discussion to the next level by removing the need for a device and exploring attacks that can be delivered directly by a plain USB cable. We dissect easily-sourced, low-cost hardware implants embedded in standard, innocent-looking USB cables providing an attacker with further capabilities, including among them the ability to track its own geolocation.
Bio
Federico Lucifredi is the Product Management Director for Ceph Storage at Red Hat and a co-author of O’Reilly’s ““Peccary Book”” on AWS System Administration. Previously, he was the Ubuntu Server product manager at Canonical, where he oversaw a broad portfolio and the rise of Ubuntu Server to the rank of most popular OS on Amazon AWS. A software engineer-turned-manager at the Novell corporation, he was part of the SUSE Linux team, overseeing the update lifecycle and delivery stack of a $150 million maintenance business. A CIO and a network software architect at advanced technology and embedded Linux startups, Federico was also a lecturer for over 200 students in Boston University’s graduate and undergraduate programs, and simultaneously a consultant for MIT implementing fluid-dynamics simulations in Java.
Social Media: 0xF2 Website: f2.svbtle.com
Use a PortaProg to flash, dump, and test ISP and UPDI chips
Bradán Lane, Sara Cladlow
Abstract
What is a PortaProg and why would I use it? You can use the PortaProg for flashing firmware to a wide range of Atmel chips using the ISP or UPDI interfaces. It can also read/write FUSES, and access EEPROM. It can flash a chip interactively during development or from its on-board SPIFFS storage at the bench or in the field. The talk will demonstrate it being used for rapid programming of ATTiny badges, performing an update to an ATMega device in the field, and dumping the firmware from an Ardiuno based device without a computer. You will also see how the PortProg has spawned a 3D printed plug-and-play test jig design …. or just attend to see if the demos crash and burn.
Bio
Bradán Lane is a UX Design and User Researcher who had his own ““Alice’s Adventures in Wonderland”” experience when he discovered badge making. While he has made a number of fun blinky beepy ornaments and badges, his found his passion with the 2020 eChallengeCoin - an interactive and text story challenge puzzle. To help with his development, he created the PortableISP. The 2021 eChallengeCoin required a new chip which precipitated the creation of the PortaProg which serves as both his development tool an his production and test device.
Social Media: @bradanlane Website: aosc.cc gitlab.com/bradanlane aosc.cc/blinks
The Black Box and the Brain Box: When Electronics and Deception Collide
Gigs
Abstract
Electricity has, from the earliest history of man, been seen as an almost mystical force. From Thor’s lightning onward, various individuals and groups have used electricity and electrical devices to baffle, mystify, mislead, and control people. In the modern day, this practice continues in the form of polygraph, questionable uses of fMRI and EEG, and other high-tech props intended to dazzle the victim or lend a technological veneer of credibility to the user. This talk will focus on the history and current applications of deception by and with electrical and electronic devices.
Bio
Gigs is the founder of ##electronics on Freenode (may it rest in peace), and a long time electronics enthusiast and DEF CON HHV volunteer. He, working with see_ess, did the PCB and hardware design for this year’s TorBadge, a mini-polygraph device.
Social Media: @gigstaggart twitter Website: gigsatdc.org
Walkthrough of DC 28 HHV Challenges
rehr
Abstract
Last year we (the HHV) released a series of hardware hacking challenges for DEF CON attendees to solve during the conference (and after). Many attempted the challenges, but only a few (3) solved all 5! Join us as we will walk through how to solve all 5 of the DC 28 HHV challenges, and attempt to demystify the world of hardware hacking. We may even drop a hint or two for this years’ challenges.
Bio
Rehr is an electrical engineering, and long-time Hardware Hacking Village volunteer. He enjoys teaching and creating challenges that help grow and challenge the hardware hacking community.
Social Media: twitter: mediumrehr
A Lazy r2 Solve of @mediumrehr Challenge 6
Ben Gardiner (0xstatic)
Abstract
Join Ben for an informal let’s play of @mediumrehr’s Hardware Hacking Village challenge 6. Some topics we will cover include: radare2 , AVR assembly, 7 segment displays, and sigrok. It should be fun and relaxed with plenty of time to stop and re-do some steps if something needs more deliberation. See you there.
Bio
Mr. Gardiner is an independent consultant at Yellow Flag Security, Inc. presently working to secure heavy vehicles at the NMFTA. With more than ten years of professional experience in embedded systems design and a lifetime of hacking experience, Gardiner has a deep knowledge of the low-level functions of operating systems and the hardware with which they interface. Prior YFS Inc. and joining the NMFTA team in 2019, Mr. Gardiner held security assurance and reversing roles at a global corporation, as well as worked in embedded software and systems engineering roles at several organizations. He holds a M.Sc. Eng. in Applied Math & Stats from Queen’s University. He is a DEF CON Hardware Hacking Village (DC HHV) and Car Hacking Village (CHV) volunteer.
Social Media: @BenLGardiner
Video List
While you wait, why not watch some awesome videos from awesome people (in no particular order, just things we thought are neat):
Joe Grand
NorCal715
Jeri Ellsworth
- Resistive Multi-touch Pad Prototype
- Homebrew NMOS Transistor Step by Step - So Easy Even Jeri Can Do It
- Make a Point Contact Transistor at home
- Magnetic Logic - Forgotten Technology
- Secret to Learning Electronics - Fail and Fail Often
LiveOverflow
CrowdSupply
- Searching for the Light Using OpticSpy to Receive Optical Transmissions
- Design and Reverse Engineering Playing on both sides of the field
- How to Make Your Own Designs Hackable
- Kicad Designing With Complex Shapes
- Making Open Source Schematics Not Suck
Applied Science
Great Scott
- Battery Spot Welder (CD Welder) DIY or Buy
- DIY LiPo ChargeProtect5V Boost Circuit
- How to Solder properly Through-hole (THT) & Surface-mount (SMD)
Scanlime
StrangeParts
- Bringing BACK The iPhone Headphone Jack - in China
- Inside a Huge PCB Factory - in China
- How I Made My Own iPhone - in China
- How I Upgraded My iPhone Memory 800 - in Shenzhen, China
- I found wireless LEDs - no batteries needed in Akihabara, Tokyo
Make
- Circuit Skills Circuit Board Etching
- Collins Lab: Schematics
- MAKE presents: The Capacitor
- MAKE presents: The Diode
- MAKE presents: The Transistor
Adafruit Industries
Kevin Darrah
Pace World Wide
- Basic Soldering Lesson 1 - “Solder & Flux”
- Basic Soldering Lesson 2 - “Soldering To PCB Terminals”
- Basic Soldering Lesson 6 - “Component Soldering”
- Basic Soldering Lesson 7 - “Integrated Circuits: The DIP-Type Package”
- Basic Soldering Lesson 8 - “Integrated Circuits”
- Basic Soldering Lesson 9 - “Integrated Circuits: The Flatpack & Other Planar-mounted Components”
FSE elearning
ElectroBOOM
RetroComputing
RetroGameModz
- PCB solder pad repair & corrosion clean up - The epoxy method
- Repair tip - What to look for on corroded through-hole PCBs
- Soldering to a QFP that has broken pins - Maxtor HDD repair
- LCD TV repair - Samsung LW20M21CP not powering up
CuriousInventor
G-Lon
- iPhone 6S Plus Replace RAM
- iPhone 7 Plus change the CPU Baseband CPU and Hard disk
- iPhone 7 water damage repair
- iMesa Repair Touch ID
Samy Kamkar
- MagSpoof - magnetic stripe spoofer / credit card magstripe emulator
- OpenSesame - hacking garages in seconds using a Mattel
- PoisonTap - exploiting locked machines w/Raspberry Pi Zero
- USBdriveby - exploiting USB in style
DEFCON
- DEF CON 22 - Joe Grand aka Kingpin - Deconstructing the Circuit Board Sandwich
- DEF CON 23 - Hardware Hacking Village - Soldering 101 - Melting metal for fun and profit
- DEF CON 24 - Joe FitzPatrick, Joe Grand - 101 Ways to Brick your Hardware