HITCON #15
HITCON Summer Training
Aug.19-22,2019
HITCON Community
2019.08.23-24
in Academia Sinica Taipei, Taiwan
Agenda
Day 1 (8/23)
08:30 - 09:20
|
- 報到時間 Attendant Registration Time
|
09:20 - 10:00
|
|
10:00 - 10:50
|
- Infiltrating Corporate Intranet Like NSA - Pre-auth RCE on Leading SSL VPNs
- Orange Tsai, meh
- Download Slide
|
10:50 - 11:00
|
|
11:00 - 11:50
|
|
- Finding Treasures in the ToyBox
- Shota Nakajima, Rintaro Koike
- Download Slide
|
|
|
11:50 - 13:00
|
|
13:00 - 13:50
|
- 某網通設備高危漏洞首次公開
- Henry Huang
|
- Hunting in the Near Field: An Investigation of NFC-related bugs of Android
- Qi Zhao (Joachim Hyrathon)
- Download Slide
|
- Some things about recent Internet IoT/ICS attacks - a perspective of honeypot
- Canaan Kao, Chizuru Toyama
- Download Slide
|
- HITCON 101 - BackSwap InfinityWar-Deep Dive Analysis of Banking Trojan
- IokJin Sih, KunYu Chen
- Download Slide
|
13:50 - 14:00
|
|
14:00 - 14:50
|
|
|
- Cheaper by the dozen: simultaneous attacks on SS7 and Diameter
- Sergey Puzankov
- Download Slide
|
|
14:50 - 15:30
|
|
15:30 - 16:20
|
|
- JiuWei: Cross Platform/Architecture Shellcode Executor
- NGUYEN Anh Quynh, Lau Kai Jern
- Download Slide
|
|
- HITCON 101 - 從架構面探討網頁漏洞形成
- Linwz
|
16:20 - 16:30
|
|
16:30 - 17:20
|
- Duplicate Paths Attack: Get Elevated Privilege from Forged Identities
- 馬聖豪
- Download Slide
|
- Global DNS Hijacking - Espionage
- Muks Hirani
|
|
- HITCON 101 - HITCON GIRLS 成果分享與 CyberSec week in Vegas
- shad0w, akee, Hazel Yen
- Download Slide
|
17:20 - 17:30
|
|
Day 2 (8/24)
08:30 - 09:00
|
- 報到時間 Attendant Registration Time
|
09:00 - 09:10
|
|
|
09:10 - 10:00
|
|
- Distrust in the Middle East - how information is stolen, manipulated and spread on cyber battlefield
- Yi-Jhen Hsieh
|
10:00 - 10:10
|
|
10:10 - 11:00
|
- Another one bites the Apple!
- Junho Jang
|
- Roaming Mantis: An Anatomy Of A DNS Hijacking Campaign
- Hiroaki Ogawa, Manabu Niseki, Suguru Ishimaru
- Download Slide
|
- 駭客算命攤 x 超。快速入門 - BAD ASN - A BGP Hijack Research
- Zuan
|
11:00 - 11:10
|
|
11:10 - 12:00
|
- Trust in Apple’s secret garden: Exploring & Reversing Apple’s Continuity Protocol
- es
- Download Slide
|
- Open Sesame! Pwning The State-Of-The-Art the IoT Hub
- Jisub kim, HongRyeol Lim
|
- 駭客算命攤 x 超。快速入門 - Finding Treasures in the ToyBox
- 寬寬
|
12:00 - 13:00
|
|
13:00 - 13:05
|
|
|
13:05 - 13:10
|
|
13:10 - 13:30
|
|
13:30 - 13:40
|
|
13:40 - 14:30
|
- About ICS/SCADA, You Must Need to Know
- Mars Cheng, Selmon Yang
|
- Spyware, Ransomware and Worms. How to prevent the next SAP tragedy
- Jordan Santarsieri
- Download Slide
|
|
14:30 - 14:40
|
|
14:40 - 15:30
|
- HITCON Badge 2019 秘辛: MCU ARM TrustZone challenges
- 李倫銓、張元、黃偉峻
- Download Slide
|
- How to make your SOC/CSIRT team more trustworthy?: ISOG-J Maturity Model and self-checking tool
- Yasunari Momoi
- Download Slide
|
|
15:30 - 16:10
|
|
16:10 - 17:00
|
|
17:00 - 18:00
|
- 閉幕 Closing / 花絮與展望 HITCON 2020
|
18:00 - 18:50
|
|