30C3 hacker conference to start on the 27th. Wii U talk happening.

[FAST6191]

Others have mentioned it in passing and we tend to mention it as well. Anyway 30C3, the annual conference of the C3 hacker club, which is one of the biggest hacker conferences in the world and almost certainly the biggest one in Europe starts on the 27th of December. Most interestingly for many around here this year sees the return of sven and marcan (being joined by comex) with a console hacking talk, the "Console hacking 2008: Wii fail" talk back at 25c3 was widely heralded as the start of Wii hacking, similarly the 27c3 talk (also featuring marcan and sven) was what blew the PS3 wide open. This year they are looking at the Wii U and how its security was bypassed in near record time, though we should they are said to be downplaying things to avoid a repeat of the PS3 fiasco. Previous presentations from them have been nicer for those with a grounding in programming and/or electronics but even those with a passing interest have tended to gain an awful lot from them. The console hacking talk itself is scheduled for the 27th of December at 20:30 local time in Saal 2, as it is held in Hamburg the local time time is Berlin time so GMT+1 which should be nicer for our American members than a lot of previous conferences. As ever various members will be chatting and discussing the happenings on IRC during the event so you are welcome to join us there.

Beyond that hacking conferences are some great places to learn about the latest and greatest hacking techniques, be introduced to techniques you have wanted to learn but never found a great explanation of and generally hear some interesting talks by some interesting people, the channels of the videos linked in the paragraph above feature many such videos from hacker conferences. C3 has long had some of the best live streaming of conferences anywhere, this year is set to be better than ever and many of the people responsible will mirror videos and upload them to the likes of youtube in very short order for those that missed them.

For those unfamiliar with the C3 setup it is quite simple, being a German club and hosted in Germany some German terms get used but it is all good. Though it is a German conference no small number of talks are held in English, if you are looking at the schedule then it will have a bracketed (En) in the description for talks in English.

The schedule is also known as the farhplan and you can view this year's on the following link
https://events.ccc.de/congress/2013/Fahrplan/schedule.html
Talks are then held in various rooms or Saal as they get called.
Again streams can be viewed in various formats on various devices.
https://events.ccc.de/congress/2013/wiki/Streams has links if you prefer to watch in something like VLC or even some android devices.
http://streaming.media.ccc.de/ if you just want a simple web link.


Talk a look through the talks list, are that any that catch your eye? A quick straw poll of the staff says there looks to be enough to occupy our downtime up until the US hacker conference season spins up.

 

[Coto]

I'll be looking forward to it. Cheer up f0f, there is still people outside that appreciate how machine works..

 

[Xexyz]

Can't wait! PokéBank and 30c3!

 

[FAST6191]

What talks do you all find yourself looking forward to other than the console one?
I grabbed this in reverse order (started on day 4) but hey

"The Exploration and Exploitation of an SD Memory Card"
https://events.ccc.de/congress/2013/Fahrplan/events/5294.html
I would have watched it anyway but as bunnie (among other things the guy that did a lot of good work on the original xbox) is one of the speakers I will probably do it live.

The lightning talks are usually worth a look in.

"Even More Tamagotchis Were Harmed in the Making of this Presentation"
https://events.ccc.de/congress/2013/Fahrplan/events/5279.html
I saw the Many Tamagotchis Were Harmed in the Making of this Presentation presentation last year and it was almost a masterclass in hacking devices of an era where you did not really need crazy equipment and crazier skills to do things (though with the perks of being able to do it on modern analysis equipment). You might not be able to latch onto the balls of a BGA and run a ram trace but you can capture the IR communications of these devices and play around with them. Similarly if you do ever want to get into the latch onto the BGA world then being able to point at playing with a Tamagotchi will be worth it.

"Reverse engineering the Wii U Gamepad"
https://events.ccc.de/congress/2013/Fahrplan/events/5322.html
If it involves hacking a console I will give it a go, hacking wireless comms just seals the deal.

"Making machines that make"
I have seen countless videos and I am supposed to be an engineer that deals in this sort of thing but I will give it a look. That said it clashes with "India's Surveillance State" and I find both Indian politics and approaches of countries like India to such things to be fascinating so I might go that instead.

"Script Your Car!"
https://events.ccc.de/congress/2013/Fahrplan/events/5360.html
Through no desire of my own I found myself learning car electrics and protocols to a reasonable level. tmbinc is also the one doing the presentation so I am in there.

"FPGA 101"
I like FPGAs and what they do. The Part time scientists (of which the speaker is one) have done some good presentations in years past as well.

Introduction to Processor Design and The Year in Crypto clash so I am not sure what I will do. The former does for me similar things to FPGAs so eh.

Mobile network attack evolution, Karsten Nohl does a good presentation. It just so happens this is also an area I kind of like (which is odd as old school phreaking has never interested me).

"Breaking Baryons"
https://events.ccc.de/congress/2013/Fahrplan/events/5305.html
Got to do a science presentation really. Given I am a bit hazy on some of my subatomic stuff even better.


And that is just the casual scan of things I am genuinely pumped for and will probably see before the year is out. There is bound to be enough stuff to occupy a free hour until whenever the US hacker conference season kicks off this year as well.

 

[Coto]

Anything that's a technique to re-direct or modify behaviour in chips is interesting to me:

http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.ddi0360e/I1014942.html

keep in mind that CP15 is peripheral port remap register.
 
(MRC = read to, MCR = write to, special co processor reg).
 
/////////////////////default memory page (tlb) layout/////////////////////////////////
cpt=0(coarse page table) //value that holds coarse page table
cba=21(coarse base address)
P=(1/0)(1 enables trap by index,0 affects the whole TLB belonging the victim)
vi=(victim index0-7)
SBZ=(Invalidate TLB address)
NS=0(non secure bit)(for secure world or non-secure world execution)
mode=0-3(defines 1 out 4 table formats required for a single TLB process)
cpt=(cpt |  cba)
cpt=(cpt | P)
cpt=(cpt | vi)
cpt=(cpt | SBZ)
cpt=(cpt | NS)
cpt=(cpt | SBZ)
cpt=(cpt | mode)
cpt=(cpt | mode)
////////////////////////////////////////////////////////////////////////////////
 
MRC P15,0,rd,c10,c0,cpt;
//read TLB (sets lockdown for a certain victim on the TLB) -- rd = destination  reg , CP15[sub c10+c0]
 
MCR P15,0,rd,c10,c0,cpt; //locks down TLB given victim index, or absolute address space
 
region affected: [TLB]
 
[TLB]
MicroTLB [stores virtual addresses,ASID, and various checks in a single cycle]
    -//->
    Main TLB[stores physical address by implementation]
      (index[8]=/this is what C10 reads and locks down/+RAM(lowlevelassoc:tagRAM+dataRAM))

interesting TLB permissions, usermode,svc and such:

http://www.sionsemi.com/knowhow/arm/memory-management-unit.html

http://infocenter.arm.com/help/topic/com.arm.doc.ddi0338g/graphics/pipeline.svg

http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.ddi0333h/Chdfjdgi.html

http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.ddi0360e/CHDHEACG.html

 

[DinohScene]

I'm going to watch the Wii U talk, Wii U game pad talk, WW2 hackers, SD exploit talk and the Script your car.

 

[Clarky]

I looks forward to the Wii U talk, should be interesting to see what these wizards have found

 

[Snailface]

The times in the US for the console hacking conference are:
(from 8:30pm Hamburg time)

12:30pm ET
1:30pm CT
2:30pm MT
3:30pm PT

Pretty convenient this time

 

[bkifft]

Besides quite a lot of interesting technical talks I'm looking mostly forward to Hacker Jeopardy (http://events.ccc.de/congress/2013/Fahrplan/events/5577.html), they might even manage a live english translation this year.

Oh, and of course the Fnord News Show (http://events.ccc.de/congress/2013/Fahrplan/events/5490.html).

 

[pwsincd]

i generally look forward to anything travis goodspeed presents , always a fascinating watch , this year his talking on a low earth orbit satelitte tracking ssytem hes devved .. mans a boffin.http://events.ccc.de/congress/2013/Fahrplan/events/5463.html

 

[MichiS97]

I can't access the page o.O Anyone of those links just gives me a connection time out o.O

 

[FAST6191]

Heh I missed Travis Goodspeed had a presentation. +1 to him doing a good one.

Anyway I stayed up all night listening to audiobooks so I missed everything thus far. Streamdumps and youtube uploads should happen before long anyway. The site appears to be being hammered right now but the streamdumps are hosted elsewhere
http://wtf1.muling.lu/ is the more complete but apparently they are also up on http://30c3.ex23.de/ (the searchable list seems to not do well at this point).

I also forgot to mention in the opening post that the streams are broadcast to various universities and hackerspaces.
https://events.ccc.de/congress/2013/wiki/Static:Congress_everywhere
Most are in Germany and a few more in Europe though there are some in China, India and San Fransisco.
https://noisebridge.net/wiki/30c3

 

[Coto]

CET Hamburg (GMT+1)

UTC-4 (Santiago Chile) (13:13pm)

edit:
http://streaming.media.ccc.de/saal2/native/lq/

240kbps / 30KB/s, and it barely stutters.

 

[capt.fruitcake]

http://streaming.media.ccc.de works fine

 

[JayPea]

and we're off...

 

[Valfore]

I'm having huge difficulties streaming this, the website above plays the stream for 2 seconds then stops entirely, the streams link page is now inaccessible however i managed to grab the LQ and HQ HLS links which unbearably stutter on VLC

Got a 10mbps connection, however i am in australia, probably will be that , anyone else having any problems?

 

[JayPea]

butter here. very interesting viewing.

 

[the_randomizer]

I'm having huge difficulties streaming this, the website above plays the stream for 2 seconds then stops entirely, the streams link page is now inaccessible however i managed to grab the LQ and HQ HLS links which unbearably stutter on VLC

Got a 10mbps connection, however i am in australia, probably will be that , anyone else having any problems?

I hear ya, my internet can't stream worth crap, so I'll wait till there are YT uploads

 

[DaRk_ViVi]

I missed the first part, did they already show something (I mean, Homebrew) or they directly started talking about the reverse engineering of the WiiU through vWii?

 

[JayPea]

just started that now.

"a wild boot0 appeared....."