HITCON #15
HITCON Summer Training
Aug.19-22,2019
HITCON Community
2019.08.23-24
in Academia Sinica Taipei, Taiwan

Agenda

Day 1 (8/23)

08:30 - 09:20
  • 報到時間 Attendant Registration Time
09:20 - 10:00
  • 總召致詞 & Opening
10:00 - 10:50
  • Infiltrating Corporate Intranet Like NSA - Pre-auth RCE on Leading SSL VPNs
  • Orange Tsai, meh
  • Download Slide
10:50 - 11:00
  • Break
11:00 - 11:50
  • Finding Treasures in the ToyBox
  • Shota Nakajima, Rintaro Koike
  • Download Slide
  • EDR 與那些彎繞的技巧
  • JohnThunder
  • HITCON 101 - HOOKING 輕鬆做 SYSCALL 輕鬆學
  • 劉哲豪, Dylandy
  • Download Slide
11:50 - 13:00
  • Lunch
13:00 - 13:50
  • 某網通設備高危漏洞首次公開
  • Henry Huang
  • Hunting in the Near Field: An Investigation of NFC-related bugs of Android
  • Qi Zhao (Joachim Hyrathon)
  • Download Slide
  • Some things about recent Internet IoT/ICS attacks - a perspective of honeypot
  • Canaan Kao, Chizuru Toyama
  • Download Slide
  • HITCON 101 - BackSwap InfinityWar-Deep Dive Analysis of Banking Trojan
  • IokJin Sih, KunYu Chen
  • Download Slide
13:50 - 14:00
  • Break
14:00 - 14:50
  • Cheaper by the dozen: simultaneous attacks on SS7 and Diameter
  • Sergey Puzankov
  • Download Slide
  • HITCON 101 - SELinux 從不認識到在一起
  • 王禹軒
  • Download Slide
14:50 - 15:30
  • Coffee Break
15:30 - 16:20
  • NAS 與 CVE 之間的距離
  • ddaa
  • JiuWei: Cross Platform/Architecture Shellcode Executor
  • NGUYEN Anh Quynh, Lau Kai Jern
  • Download Slide
  • ZeroDay 發表會
  • Allen Own
  • HITCON 101 - 從架構面探討網頁漏洞形成
  • Linwz
16:20 - 16:30
  • Break
16:30 - 17:20
  • Duplicate Paths Attack: Get Elevated Privilege from Forged Identities
  • 馬聖豪
  • Download Slide
  • Global DNS Hijacking - Espionage
  • Muks Hirani
  • ZeroDay 發表會
  • Allen Own
  • HITCON 101 - HITCON GIRLS 成果分享與 CyberSec week in Vegas
  • shad0w, akee, Hazel Yen
  • Download Slide
17:20 - 17:30
  • Closing

Day 2 (8/24)

08:30 - 09:00
  • 報到時間 Attendant Registration Time
09:00 - 09:10
  • Opening
09:10 - 10:00
  • Distrust in the Middle East - how information is stolen, manipulated and spread on cyber battlefield
  • Yi-Jhen Hsieh
10:00 - 10:10
  • Break
10:10 - 11:00
  • Another one bites the Apple!
  • Junho Jang
  • Roaming Mantis: An Anatomy Of A DNS Hijacking Campaign
  • Hiroaki Ogawa, Manabu Niseki, Suguru Ishimaru
  • Download Slide
  • 駭客算命攤 x 超。快速入門 - BAD ASN - A BGP Hijack Research
  • Zuan
11:00 - 11:10
  • Break
11:10 - 12:00
  • Trust in Apple’s secret garden: Exploring & Reversing Apple’s Continuity Protocol
  • es
  • Download Slide
  • Open Sesame! Pwning The State-Of-The-Art the IoT Hub
  • Jisub kim, HongRyeol Lim
  • 駭客算命攤 x 超。快速入門 - Finding Treasures in the ToyBox
  • 寬寬
12:00 - 13:00
  • Lunch
13:00 - 13:05
  • 協會時間
13:05 - 13:10
  • 協會時間
13:10 - 13:30
  • 奇葩獎頒獎典禮
13:30 - 13:40
  • Break
13:40 - 14:30
  • About ICS/SCADA, You Must Need to Know
  • Mars Cheng, Selmon Yang
  • Spyware, Ransomware and Worms. How to prevent the next SAP tragedy
  • Jordan Santarsieri
  • Download Slide
14:30 - 14:40
  • Break
14:40 - 15:30
  • HITCON Badge 2019 秘辛: MCU ARM TrustZone challenges
  • 李倫銓、張元、黃偉峻
  • Download Slide
  • How to make your SOC/CSIRT team more trustworthy?: ISOG-J Maturity Model and self-checking tool
  • Yasunari Momoi
  • Download Slide
15:30 - 16:10
  • Coffee Break
16:10 - 17:00
  • Lightning Talk
17:00 - 18:00
  • 閉幕 Closing / 花絮與展望 HITCON 2020
18:00 - 18:50
  • 散場 See You