30C3 hacker conference to start on the 27th. Wii U talk happening.

Discussion in 'GBAtemp & Scene News' started by FAST6191, Dec 26, 2013.

  1. FAST6191
    OP

    FAST6191 Techromancer

    pip Reporter
    23,747
    9,618
    Nov 21, 2005
    United Kingdom
    30c3_logo.png

    Others have mentioned it in passing and we tend to mention it as well. Anyway 30C3, the annual conference of the C3 hacker club, which is one of the biggest hacker conferences in the world and almost certainly the biggest one in Europe starts on the 27th of December. Most interestingly for many around here this year sees the return of sven and marcan (being joined by comex) with a console hacking talk, the "Console hacking 2008: Wii fail" talk back at 25c3 was widely heralded as the start of Wii hacking, similarly the 27c3 talk (also featuring marcan and sven) was what blew the PS3 wide open. This year they are looking at the Wii U and how its security was bypassed in near record time, though we should they are said to be downplaying things to avoid a repeat of the PS3 fiasco. Previous presentations from them have been nicer for those with a grounding in programming and/or electronics but even those with a passing interest have tended to gain an awful lot from them. The console hacking talk itself is scheduled for the 27th of December at 20:30 local time in Saal 2, as it is held in Hamburg the local time time is Berlin time so GMT+1 which should be nicer for our American members than a lot of previous conferences. As ever various members will be chatting and discussing the happenings on IRC during the event so you are welcome to join us there.

    Beyond that hacking conferences are some great places to learn about the latest and greatest hacking techniques, be introduced to techniques you have wanted to learn but never found a great explanation of and generally hear some interesting talks by some interesting people, the channels of the videos linked in the paragraph above feature many such videos from hacker conferences. C3 has long had some of the best live streaming of conferences anywhere, this year is set to be better than ever and many of the people responsible will mirror videos and upload them to the likes of youtube in very short order for those that missed them.

    For those unfamiliar with the C3 setup it is quite simple, being a German club and hosted in Germany some German terms get used but it is all good. Though it is a German conference no small number of talks are held in English, if you are looking at the schedule then it will have a bracketed (En) in the description for talks in English.

    The schedule is also known as the farhplan and you can view this year's on the following link
    https://events.ccc.de/congress/2013/Fahrplan/schedule.html
    Talks are then held in various rooms or Saal as they get called.
    Again streams can be viewed in various formats on various devices.
    https://events.ccc.de/congress/2013/wiki/Streams has links if you prefer to watch in something like VLC or even some android devices.
    http://streaming.media.ccc.de/ if you just want a simple web link.


    Talk a look through the talks list, are that any that catch your eye? A quick straw poll of the staff says there looks to be enough to occupy our downtime up until the US hacker conference season spins up.
     
    Xexyz likes this.
  2. Coto

    Coto GBAtemp Addict

    Member
    2,380
    420
    Jun 4, 2010
    Chile
    I'll be looking forward to it. Cheer up f0f, there is still people outside that appreciate how machine works..

    :yay:
     
    the_randomizer and Xexyz like this.
  3. Xexyz

    Xexyz GBATemp's™ Official Xexyz

    Member
    1,391
    463
    Jul 29, 2013
    United States
    沖縄県
    Can't wait! PokéBank and 30c3! :yay:
     
  4. FAST6191
    OP

    FAST6191 Techromancer

    pip Reporter
    23,747
    9,618
    Nov 21, 2005
    United Kingdom
    What talks do you all find yourself looking forward to other than the console one?
    I grabbed this in reverse order (started on day 4) but hey

    "The Exploration and Exploitation of an SD Memory Card"
    https://events.ccc.de/congress/2013/Fahrplan/events/5294.html
    I would have watched it anyway but as bunnie (among other things the guy that did a lot of good work on the original xbox) is one of the speakers I will probably do it live.

    The lightning talks are usually worth a look in.

    "Even More Tamagotchis Were Harmed in the Making of this Presentation"
    https://events.ccc.de/congress/2013/Fahrplan/events/5279.html
    I saw the Many Tamagotchis Were Harmed in the Making of this Presentation presentation last year and it was almost a masterclass in hacking devices of an era where you did not really need crazy equipment and crazier skills to do things (though with the perks of being able to do it on modern analysis equipment). You might not be able to latch onto the balls of a BGA and run a ram trace but you can capture the IR communications of these devices and play around with them. Similarly if you do ever want to get into the latch onto the BGA world then being able to point at playing with a Tamagotchi will be worth it.

    "Reverse engineering the Wii U Gamepad"
    https://events.ccc.de/congress/2013/Fahrplan/events/5322.html
    If it involves hacking a console I will give it a go, hacking wireless comms just seals the deal.

    "Making machines that make"
    I have seen countless videos and I am supposed to be an engineer that deals in this sort of thing but I will give it a look. That said it clashes with "India's Surveillance State" and I find both Indian politics and approaches of countries like India to such things to be fascinating so I might go that instead.

    "Script Your Car!"
    https://events.ccc.de/congress/2013/Fahrplan/events/5360.html
    Through no desire of my own I found myself learning car electrics and protocols to a reasonable level. tmbinc is also the one doing the presentation so I am in there.

    "FPGA 101"
    I like FPGAs and what they do. The Part time scientists (of which the speaker is one) have done some good presentations in years past as well.

    Introduction to Processor Design and The Year in Crypto clash so I am not sure what I will do. The former does for me similar things to FPGAs so eh.

    Mobile network attack evolution, Karsten Nohl does a good presentation. It just so happens this is also an area I kind of like (which is odd as old school phreaking has never interested me).

    "Breaking Baryons"
    https://events.ccc.de/congress/2013/Fahrplan/events/5305.html
    Got to do a science presentation really. Given I am a bit hazy on some of my subatomic stuff even better.


    And that is just the casual scan of things I am genuinely pumped for and will probably see before the year is out. There is bound to be enough stuff to occupy a free hour until whenever the US hacker conference season kicks off this year as well.
     
  5. Coto

    Coto GBAtemp Addict

    Member
    2,380
    420
    Jun 4, 2010
    Chile
    Anything that's a technique to re-direct or modify behaviour in chips is interesting to me:

    http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.ddi0360e/I1014942.html

    Code:
    keep in mind that CP15 is peripheral port remap register.
     
    (MRC = read to, MCR = write to, special co processor reg).
     
    /////////////////////default memory page (tlb) layout/////////////////////////////////
    cpt=0(coarse page table) //value that holds coarse page table
    cba=21(coarse base address)
    P=(1/0)(1 enables trap by index,0 affects the whole TLB belonging the victim)
    vi=(victim index0-7)
    SBZ=(Invalidate TLB address)
    NS=0(non secure bit)(for secure world or non-secure world execution)
    mode=0-3(defines 1 out 4 table formats required for a single TLB process)
    cpt=(cpt |  cba)
    cpt=(cpt | P)
    cpt=(cpt | vi)
    cpt=(cpt | SBZ)
    cpt=(cpt | NS)
    cpt=(cpt | SBZ)
    cpt=(cpt | mode)
    cpt=(cpt | mode)
    ////////////////////////////////////////////////////////////////////////////////
     
    MRC P15,0,rd,c10,c0,cpt;
    //read TLB (sets lockdown for a certain victim on the TLB) -- rd = destination  reg , CP15[sub c10+c0]
     
    MCR P15,0,rd,c10,c0,cpt; //locks down TLB given victim index, or absolute address space
     
    region affected: [TLB]
     
    [TLB]
    MicroTLB [stores virtual addresses,ASID, and various checks in a single cycle]
        -//->
        Main TLB[stores physical address by implementation]
          (index[8]=/this is what C10 reads and locks down/+RAM(lowlevelassoc:tagRAM+dataRAM))
    
    interesting TLB permissions, usermode,svc and such:

    http://www.sionsemi.com/knowhow/arm/memory-management-unit.html

    http://infocenter.arm.com/help/topic/com.arm.doc.ddi0338g/graphics/pipeline.svg

    http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.ddi0333h/Chdfjdgi.html

    http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.ddi0360e/CHDHEACG.html
     
  6. DinohScene

    DinohScene Feed Dino to the Sharks

    Member
    GBAtemp Patron
    DinohScene is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    16,348
    12,950
    Oct 11, 2011
    Antarctica
    В небо
    I'm going to watch the Wii U talk, Wii U game pad talk, WW2 hackers, SD exploit talk and the Script your car.
     
    Xexyz likes this.
  7. Clarky

    Clarky Don't you know who I think I am?

    Member
    1,960
    676
    Oct 4, 2007
    United States
    I looks forward to the Wii U talk, should be interesting to see what these wizards have found
     
    Xexyz likes this.
  8. Snailface

    Snailface My frothing demand for 3ds homebrew is increasing

    Member
    4,324
    1,983
    Sep 20, 2010
    Engine Room with Cyan, watching him learn.
    The times in the US for the console hacking conference are:
    (from 8:30pm Hamburg time)

    12:30pm ET
    1:30pm CT
    2:30pm MT
    3:30pm PT

    Pretty convenient this time :)
     
  9. bkifft

    bkifft avowed Cuthwaldian

    Member
    600
    266
    Jun 10, 2010
    Gambia, The
  10. pwsincd

    pwsincd Garage Flower

    Member
    GBAtemp Patron
    pwsincd is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    3,368
    1,740
    Dec 4, 2011
    Manchester UK
  11. MichiS97

    MichiS97 "Leftist snowflake milennial"

    Member
    GBAtemp Patron
    MichiS97 is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    1,361
    760
    Jun 14, 2011
    Germany
    Munich
    I can't access the page o.O Anyone of those links just gives me a connection time out o.O
     
  12. FAST6191
    OP

    FAST6191 Techromancer

    pip Reporter
    23,747
    9,618
    Nov 21, 2005
    United Kingdom
    Heh I missed Travis Goodspeed had a presentation. +1 to him doing a good one.

    Anyway I stayed up all night listening to audiobooks so I missed everything thus far. Streamdumps and youtube uploads should happen before long anyway. The site appears to be being hammered right now but the streamdumps are hosted elsewhere
    http://wtf1.muling.lu/ is the more complete but apparently they are also up on http://30c3.ex23.de/ (the searchable list seems to not do well at this point).

    I also forgot to mention in the opening post that the streams are broadcast to various universities and hackerspaces.
    https://events.ccc.de/congress/2013/wiki/Static:Congress_everywhere
    Most are in Germany and a few more in Europe though there are some in China, India and San Fransisco.
    https://noisebridge.net/wiki/30c3
     
  13. Coto

    Coto GBAtemp Addict

    Member
    2,380
    420
    Jun 4, 2010
    Chile
  14. capt.fruitcake

    capt.fruitcake Advanced Member

    Newcomer
    92
    0
    Dec 8, 2006
    Netherlands
    Xanadu
  15. JayPea

    JayPea Member

    Newcomer
    47
    4
    Mar 13, 2006
    and we're off... :)
     
  16. Valfore

    Valfore Advanced Member

    Newcomer
    54
    27
    Feb 3, 2008
    I'm having huge difficulties streaming this, the website above plays the stream for 2 seconds then stops entirely, the streams link page is now inaccessible however i managed to grab the LQ and HQ HLS links which unbearably stutter on VLC

    Got a 10mbps connection, however i am in australia, probably will be that :(, anyone else having any problems?
     
  17. JayPea

    JayPea Member

    Newcomer
    47
    4
    Mar 13, 2006
    butter here. very interesting viewing.
     
  18. the_randomizer

    the_randomizer The Temp's official fox whisperer

    Member
    22,480
    10,809
    Apr 29, 2011
    United States
    Dr. Wahwee's castle

    I hear ya, my internet can't stream worth crap, so I'll wait till there are YT uploads ;)
     
  19. DaRk_ViVi

    DaRk_ViVi Sending you back... to the future!

    Member
    1,069
    58
    Apr 13, 2004
    Italy
    Asti, Italy
    I missed the first part, did they already show something (I mean, Homebrew) or they directly started talking about the reverse engineering of the WiiU through vWii?
     
  20. JayPea

    JayPea Member

    Newcomer
    47
    4
    Mar 13, 2006
    just started that now.

    "a wild boot0 appeared....." :)