VXRL at Defcon Village

10-Aug to 11-Aug-2018, Tribune, Caesar’s Palace, Las Vegas

VXRL chip-off village

Come by the VXRL chip-off village and learn how to remove embedded eMMC chips for your own analysis. VXRL members will also teach you how to attack IoT/mobile devices to obtain privileges and gain access controls. In addition, some inexpensive JTAG/ISP and chip-off equipment will be made available for your testing and eMMC chips with circuit board kits will be made available for practice.

Agenda (tentative)

10-Aug-2018
Time Village Speakers
10:00 - 12:00 Chips off Village - Session 1
Captain
Alan
15:00 - 17:00 Chips off Village - Session 2
Boris
Anthony
Tessy
11-Aug-2018
Time Village Speakers
10:00 - 12:00 Chips off Village - Session 1
Zetta
Harry
Chris
15:00 - 17:00 Chips off Village - Session 2
Captain
Alan
Moonbeom

Run Down

Challenges

Speakers

Captain

Captain is the founder of Chip-off Village. It had been held in the different security conference like HITB AMS and Defcon China, and the coming Hardware Security Conference in The Hague and HITB Dubai. He has also delivered chip-off forensics analysis training in HTCIA US, HITCON and CodeBlue security conference.

Anthony

Anthony Lai focus on offensive "Kungfu", malware analysis, target attack research as well as attribution. He is passionate over Capture the Flag game, reverse engineering and exploitation for years. Anthony found VXRL since 2009 and he is Blackhat Asia and HITB CFP review board members, speaking at Blackhat USA and DEFCON on malware analysis, APT and DDoS attack techniques.

Alan

Alan Ho is passionate over Web and Application security and various research. He is now working as a Security Consultant and Engineer. He got experience in development, penetration test, incident response, security operation planning and investigation. Alan is also involved in secure cryptocurrency exchange platform design and development. He holds OSCP and SANS GWAPT (Gold) and has spoken at SANS DFIR Summit, DFRWS EU and HITCON.

Boris

Boris is a software security specialist in a world’s leading financial services institutes, specializing in software design and architecture, threat modeling, secure programming and static code analysis, penetration and simulation test, code obfuscation, steganography, as well as rootkit research. Currently he is involved in projects developing machine learning and statistical modeling application in threat detection. Boris holds 2 bachelor degrees in computing and surveying, and a master degrees in computer forensics.

Chris

Chris is a security analyst of Udomain Web Hosting Ltd, focusing on web application security, malware analysis and various research. He was contributed malware analysis to a Hong Kong threat intelligence sharing platform and first CTF in Hong Kong. He holds OSCP and CEH and is providing penetration test for web hosting client. He was a speaker of security congress APAC 2017 and DragonCon 2017.

Zetta

Zetta is a researcher who focuses on security-related topics. He holds a PhD degree in management information systems. He taught several courses on security from both technical and managerial perspectives for various audience ranging from master-level students to business managers. He is also the team leader of VXRL CTF team.

Harry

Harry is passionate over cryptography and security-related research. Being an undergraduate student in HKUST, he is now working as a security engineer at the same time. He is also a crew member of VXRL CTF team and involved in creating VXCTF, a CTF for local enthusiasts. Currently he is involved in projects around blockchains, distributed systems and cryptographic designs.

Tessy

AVTOKYO founder, CODE BLUE / SECCON / sutegoma2 from Japan

Moonbeom Park

Moonbeom is general researcher in KISA(Korea Internet Security Agency) of Korea, has 11 years of experience in hacking analysis, digital forensic, research on hacking and profiling hacking source. He is one of experts among government and private sector in fields of forensic, hacking analysis, hacker profiling, counter-attack on hackers. Also he has participated in various international security conference such as FIRST, TROOPERS, HITB, HITCON, Ekoparty, VXCON, AVTOKYO.

Instruction

IMPORTANT

Devices

T862++ IR Station

infrared infrared

Samsung KLM4G1FE3B-B001 /EMMC BGA153 chip

Samsung KLM4G1FE3B-B001 /EMMC BGA153 chip Samsung KLM4G1FE3B-B001 /EMMC BGA153 chip

Phone Board

Phone Board Phone Board

USB PCBA control board bga153/169 for Chip

EMMC/ EMCP BGA 153/169 USB Adaptor EMMC/ EMCP BGA 153/169 USB Adaptor

Dispenser

dispenser

Friends