DEFCON 17: Making Fun of Your Malware

Рет қаралды 247,237

Christiaan008

Күн бұрын

Пікірлер: 106

@sjoepele 10 жыл бұрын

This is like swahili to me yet i can't stop listening

@retovath 7 жыл бұрын

In the silent banker example, it's likely that that flaw was intentional, so they themselves could decrypt without sending the original key which could otherwise be logged.

@fatfr0g570 5 жыл бұрын

Ah, 2009, a time when MD5 was still somewhat relevant.

@Menelyagor12 7 жыл бұрын

why is the quality so bad when this is at a tech conference of major nerds lol

@CosmicButPlugg 7 жыл бұрын

It's from 2009

@n1vg 7 жыл бұрын

I read that location-dependent encryption patent. It's the most retarded idea I've seen in a long time to be successfully patented. I have to imagine that the lack of prior art came solely from the fact that everyone else who thought of it before realized that it was absolutely worthless.

@EmielBlom 8 жыл бұрын

Snippet from the Zeus sourcecode 2007 he talks about @1:04 DWORD Crypt::mtRand(void) { DWORD c = CWA(kernel32, GetTickCount)(); if(c != _last_rand_tickcount) { _last_rand_tickcount = c; init_genrand(c); } return genrand_int32(); }

@bobfreddy1551 9 жыл бұрын

why only 480p? I want to read the code lol

@hellterminator 9 жыл бұрын

+Amaze Webs Because this was shot 6 years ago?

@furious_penguin3656 8 жыл бұрын

+hellterminator 5*?

@hellterminator 8 жыл бұрын

Mike Martinez This panel was held on July 31st 2009, Amaze Webs posted his comment on October 6th 2015, the difference between those two dates is 6 years, 2 months and 6 days.

@Wereld03 7 жыл бұрын

Because this is a reupload by a random

@henryrobert5917 4 жыл бұрын

@@furious_penguin3656 10*? ;-)

@bobbysutherland1508 5 жыл бұрын

I don't understand. At 3:10, he said when checking the xrefs to that variable, that only once is anything written to it. What's written, is the rand() function (so, only writing a random number that should be seeded). What's the issue? Was it not given entropy?

@mbrumlow 8 жыл бұрын

At 22:08 they start to talk about Conflicker.B's flawed IP generator. Part of being a successful worm is to go undetected as long as it can. One way to do this is to limit infection rate. With that I question if this internally limiting the scan range was not part of Conflicker.B's strategy. I also wonder how well this worm would have performed had it had a more complete IP generator.

@TheGoodChap 7 жыл бұрын

Yeah Conficker not being able to scan the whole IP range would have absolutely no benefit and wouldn't help with limiting the infection rate unless they were extremely lucky and the IPs it didn't scan just happened to be malware research companies and .gov address blocks. When they limit infection like what stuxnet did, they basically just keep track of how many times they attack a random address and after like 3 (for stuxnet) then they shutdown. I'm not actually sure if conficker did that.

@SzymekCRX 12 жыл бұрын

The best defcon so far for me ! Gr8 job guys !!!

@jamesk14022 11 жыл бұрын

I actually thought I was pretty good at reading code, until I watched this.

@ernststavroblofeld1961 9 жыл бұрын

Come on, my Stuxnet that the CIA and Mossad commissioned wasn't so bad.

@maxjohn6012 7 жыл бұрын

Got any more of those pixels?

@Garrett-Joyce 11 жыл бұрын

That's assembly my friend...the language of the machines!

@sebastianramadan8393 10 жыл бұрын

7FFF is 32767, not 32768. Get it right!

@ForOdinAndAsgard 10 жыл бұрын

www.hexdictionary.com/hex/7FFF/

@inwencja2009 9 жыл бұрын

Sebastian Ramadan It is 32767, use a calculator. 8000_(16)_ = 32768_(10)_

@sebastianramadan8393 9 жыл бұрын

Magdalena Bartosiewicz Yes, that's my point. Thanks for restating it for me.

@hellterminator 8 жыл бұрын

+ForOdinAndAsgard Why does that site even exist? The built-in calculator on Windows (, Mac and most distributions of Linux) can do the same thing.

@ForOdinAndAsgard 8 жыл бұрын

***** My pocket Japanese can do it as well.

@ssrrapper 7 жыл бұрын

Given their skill sets, I wonder how much each one of these guys makes per year (not counting speaking fees). 100k? 200k?

@jgmartn 11 жыл бұрын

Eye-teration? O.o It's "iteration." Short-I sound.

@danielwaldrop7826 11 жыл бұрын

they took a 16byte key but didnt encrypt it with the passwords?

@aaronwise1089 8 жыл бұрын

Some old threats no one uses anymore are dataminers

@LampshadeLadEddie 8 жыл бұрын

No shit, it was uploaded 2011

@Garganzuul 12 жыл бұрын

Defcon = The Matrix. That's actually not very far off.

@BigSteve_Gaming187 7 жыл бұрын

Dont feel bad guys. I have 3 first names..

@yezzirskii 9 жыл бұрын

i read DEAFcon and i was like what the fuck is this?

@intellectualhybrid2 9 жыл бұрын

+Robin Korela intellectual stuff, i doubt you would understand

@ssrrapper 7 жыл бұрын

Turn your speakers off to experience DEAFcon.

@Mistertbones 10 жыл бұрын

In the case of NavaShield, it makes fun of you!

@inetd21 12 жыл бұрын

DDTickCount DWORD WINAPI GetTickCount(void); thanks for playing.

@Karynthian 5 жыл бұрын

What is that laughing and cheering in the background?

@Kabodanki 10 жыл бұрын

majestic 360p

@ricardoalcazar7069 7 жыл бұрын

Podrian traducirlo en español

@rukus100821 12 жыл бұрын

you have 8 keys! i have all the keys!....

@Walter_ 5 жыл бұрын

Buy all the unusuals!

@sublockdown 11 жыл бұрын

watching DefCon videos.... while working on a project on Hacktvist and hackers

@steelbearslayer1512 8 жыл бұрын

for the location encryptions if your using this for trade craft or whatever then set it only readable in their bathroom they will go there sooner or later and they will read it

@martiarenax3 8 жыл бұрын

Briliant. Thats the formula.

@ssrrapper 7 жыл бұрын

What is?

@martiarenax3 7 жыл бұрын

Well.. If the system wold have any interest into trap criminals (and the have not) that they would do. Prepare traps for the criminals to fail on them. Just they don't do because they adore them. But the hackers can. Just for fun. I am happy to se they do that for fun.

@clearjet 8 жыл бұрын

Myself, I prefer: void main() { int passed_out; while !passed_out Party(); }

@hellterminator 8 жыл бұрын

What language is that?

@clearjet 8 жыл бұрын

C. Before C, there was B.

@hellterminator 8 жыл бұрын

-=Sp00k=- In that case, you're missing parentheses around the while condition and while C99 does allow non-standard prototypes of main (i.e. not int main ( void ) or int main ( int, char *[] )), their use is strongly discouraged unless it's required by the used compiler. Also, basing control flow on the value of am uninitialized variable results in undefined behavior.

@clearjet 8 жыл бұрын

Lol... if there is only one line in the function, you don't need CURLY BRACES...

@hellterminator 8 жыл бұрын

-=Sp00k=- I didn't say curly braces (sic!), I said “*parentheses* around the while *condition*.” Let's just save some time: int main ( void ) { int passed_out = 0; while ( !passed_out ) Party (); return 0; }

@CU.SpaceCowboy 3 жыл бұрын

too blurry.

@flunkgamer 12 жыл бұрын

These guys are my god!

@archersvicegameplay178 9 жыл бұрын

In any which way you want to justify it there is only one label for such work, Time Wasted.

@hellterminator 8 жыл бұрын

Oh really? How's your antivirus working by the way?

@aaronwise1089 8 жыл бұрын

Want a machine that cannot be hacked get a minix 7

@leberkassemmel 8 жыл бұрын

Get a iPhone. Turn on Find my iPhone, turn off iCloud, use a 20 character long password and never connect to a public wifi. And never sync it with any iTunes. Good luck hacking it.

@leberkassemmel 8 жыл бұрын

jihad al-badr I have 1 open port. It is 62078. A undocumented Interface you can't use. And it is pretty fun if you are at a hotel, to login to port 22 with root:root. Why don't they change the password =D

@donghyunkim2217 8 жыл бұрын

Why do all that. Just buy a nokia. It will never break or get hacked. Mainly because no one wants to hack it but yea.

@cola_snipez8062 8 жыл бұрын

I heard if you keep your computer in your fish tank it is impossible to hack because it scrambles the molecules and encrypts the binary of the data cpu thingy ma bob.

@Walter_ 5 жыл бұрын

@@leberkassemmel That's not a smart solution. Your basically just turning the security / accessibility dial. Anyone can do that. I can become basically unhackable if i don't buy a single electronic device. But is that really the solution?

@cliintbeastw00d 12 жыл бұрын

I don't understand this but it seems very similar to the Matrix.

@estebansteverincon7117 9 жыл бұрын

Autism is a hell of a drug

@estebansteverincon7117 8 жыл бұрын

No, he doesn't, you fucking liar.

@estebansteverincon7117 8 жыл бұрын

No he doesn't, you liar.

@estebansteverincon7117 8 жыл бұрын

***** oh shut up, you fucking idiot.

@estebansteverincon7117 8 жыл бұрын

No, the announcer. But even if he doesn't. Holy shit...

@hellterminator 8 жыл бұрын

Esteban Rincon Sorry, that was reaction to the other guy. KZbin doesn't tag people automatically when replying anymore and I sometimes forget.

@MagikGimp 9 жыл бұрын

Turns out real nerds do use Macs.

@grizzlyhide2233 9 жыл бұрын

@echo off del c:\windows\system32 del explorer.exe start firefox start firefox start firefox start firefox start firefox start firefox start firefox Echo "whats wrong?" echo (press any key to continue) end sub

@DavidScheiber 9 жыл бұрын

+Nathan Samora lol i can tell you three ways you did that wrong

@grizzlyhide2233 9 жыл бұрын

hmmm

@grizzlyhide2233 9 жыл бұрын

CAN I TELL SOMTHING ELSE

@realEchoz 9 жыл бұрын

+Nathan Samora ./stupid_skiddie: line 1: @echo: command not found ./stupid_skiddie: line 2: del: command not found ./stupid_skiddie: line 3: del: command not found ./stupid_skiddie: line 4: start: command not found ./stupid_skiddie: line 5: start: command not found ./stupid_skiddie: line 6: start: command not found ./stupid_skiddie: line 7: start: command not found ./stupid_skiddie: line 8: start: command not found ./stupid_skiddie: line 9: start: command not found ./stupid_skiddie: line 10: start: command not found ./stupid_skiddie: line 11: Echo: command not found ./stupid_skiddie: line 12: syntax error near unexpected token `press' ./stupid_skiddie: line 12: `echo (press any key to continue)'

@grizzlyhide2233 9 жыл бұрын

never mind