All Your Things Are Belong To Us

Presented at DEF CON 25 (2017), July 29, 2017, 11:30 a.m. (75 minutes)

Get out your rollerblades, plug in your camo keyboard, and fire up your BLT drive. It's 25 years later and we're still hacking the planet. The Exploitee.rs are back with new 0day, new exploits and more fun. Celebrating a quarter century of DEF CON the best way we know how: hacking everything! Our presentation will showcase vulnerabilities discovered during our research into thousands of dollars of IoT gear performed exclusively for DEF CON. We will be releasing all the vulnerabilities during the presentation as 0days to give attendees the ability to go home and unlock their hardware prior to patches being released. As always, to give back to the community that has given us so much, we will be handing out free hardware during the presentation so you can hack all the things too!Come party with us while we make "All Your Things Are Belong To Us."

Presenters:

• CJ Heres / CJ_000 - Hacker   as CJ_000
  Cj_000 (@cj_000) is a researcher in the Cyber and Information Security directorate at *redacted* and also a member of Exploitee.rs. CJ has been involved in the release and responsible disclosure of vulnerabilities in a number of devices including TV's, media players, and refrigerators. CJ has presented at multiple DEF CON's and believes that a simple approach is often the most elegant solution. @cj_000
• Khoa Hoang / Maximus64 - Hacker   as Maximus64
  Maximus64 (@maximus64_) is an undergraduate student at the University of Central Florida. Khoa enjoys a hardware based approach in researching embedded devices and is a master of the soldering iron. Khoa has disclosed numerous vulnerabilities in various set-top boxes and other "smart" devices to multiple vendors. He is currently listed on various "Security Hall of Fame" pages for successful bug bounty submissions including AT&T, Samsung and Roku. @maximus64_
• 0x00string - Hacker
  0x00string (@0x00string) is hacker and security researcher, a recent addition to Exploitee.rs who has presented at BSidesSATX and ISSW. His previous published work includes Reverse Engineering The Kankun Smart Plug, and Hacking The Samsung Allshare Cast Hub. His hobbies include bug collecting and hacking all the things. @0x00string
• Amir Etemadieh / Zenofex - Hacker   as Zenofex
  Zenofex (@zenofex) is a researcher with Exploitee.rs. Amir founded "Exploitee.rs" which is a public research group and has released exploits for over 45 devices including the Amazon FireTV, Roku Media Player and the Google Chromecast. Amir is also a member of Austin Hackers and has spoken at a number of security conferences including DEF CON, B-Sides Austin, and InfoSec Southwest. @exploiteers @zenofex

Links:

• https://defcon.org/html/defcon-25/dc-25-speakers.html#Zenofex
• https://infocon.org/cons/DEF CON/DEF CON 25/DEF CON 25 video and slides/DEF CON 25 - Zenofex and 0x00string and CJ_000 and Maximus64 - All Your Things Are Belong To Us.mp4
• https://infocon.org/cons/DEF CON/DEF CON 25/DEF CON 25 video and slides/DEF CON 25 - Zenofex and 0x00string and CJ_000 and Maximus64 - All Your Things Are Belong To Us.srt (subtitles)
• https://www.youtube.com/watch?v=ClDO4PyMI-g

Similar Presentations:

• DEF CON 31 (2023) / DEF CON 101 - Welcome to DEF CON Panel
• DEF CON 30 (2022) / Panel - "So It's your first DEF CON" - How to get the most out of DEF CON, What NOT to do.
• DEF CON 27 (2019) / DEF CON 101 Panel