CONFidence. Again about how cool it is
Hello! And now I will tell you about my trip to one of the most famous conferences dedicated to information security, namely CONFidence, which this year traditionally took place in the Polish city of Krakow and collected a large number of specialists from all over the world.
The guys from our company more than once successfully got to the event, passing the selection of reports, and even shared their impressions of the trip on the pages of Habr. This year, my report “Breaking, Forensicating and Anti-Forensicating SAP Portal and J2EE Engine” was reviewed by the selection committee, and I received an invitation to speak with him at the conference.
In addition to me at CONFidence there were several other guys from Russia: Nikita Tarakanov with “Exploiting Hardcore Pool Corruptions in Microsoft Windows Kernel”, Arseny Reutov with “PHP Object Injection Revisited” and Yuri Chemerkin with “Insecurities in Blackberry”. It’s very cool that every year the Russian speakers at conferences on information security are becoming more and more.
')
First of all, I would like to note the incredible concern of the conference organizers about the speakers. During my visit to Poland, I have never had any problems with transportation, lunch, accommodation, or pastime. Everything was prepared in advance by the sweetest Polish guys, for which many thanks to them.
I flew to Krakow closer to midnight, but I was immediately greeted and sent to dinner to mark the opening of the event, which brought together organizers and speakers of this year.
Oh, this is Polish hospitality. Like all international gatherings, it ended with everyone teaching each other the peculiarities of national languages ​​(especially everyone was interested in various obscene words :))
Of course, there were also some controversies and discussions on topics related to infobase. I returned to the hotel with a great mood, a clear understanding of what a wonderful place I got, and immediately fell asleep.
The conference itself was held in the suburbs of Krakow on the territory of the WWII water treatment plant. For the convenience of visitors, shuttles were organized that took the participants to the venue of the event. It is worth noting that such an unusual place favorably differs from the classical halls of the congress centers by its entourage and the opportunity to enjoy the view. BBQ and sausages were prepared on the street, beer and tea were poured, they played football and were actively talking about something.
The interiors were also full of people. Someone opened locks for speed with the help of master keys, someone hacked classic PBX, someone played Guitar Hero MK. However, most people rushed to 2 tracks where lectures were given.
I see no point in talking about all the reports, because All material is already available on the conference site , except for the following comrades: Adam Abrocki (Crashdumps: 0-days and Rootkits), Felix “FX” Lindner (Cisco in the Sky with Diamonds), Mateusz “j00ru” Jurczyk (Beyond MOV ADD XOR - The Unusual and Unexpected in x86), Sergey Bratus (ELF Eccentricities, ABI and Architecture Metadata).
As in any conference, it is not so much the reports that bring pleasure, but the conversations after them. The possibility of direct communication with the speakers is what many people come to at CONFidence. Meetings with like-minded people fill with new ideas that you can not wait to implement.
An indescribable feeling of delight arises when you realize the great results that researchers in different fields achieve. After that, I want to quickly get to the computer and start doing, doing, doing.
In addition to the interesting educational part, an entertainment program has been implemented at CONFidence. I have already mentioned a bunch of consoles, football and kebabs with BBQ.
Many interesting contests also took place: for example, those who wanted were handcuffed, after which they were given 5 minutes to get out of them with the help of a master key.
But the now traditional quest X-traction point, the participants of which needed to free the hostages, making their way into an abandoned bunker through various kinds of alarms. Viewers could watch the action using live stream with cameras attached to the participants. It was all incredibly cool and fun.
Summarizing what has been written, it can be said that such events as CONFidence belong to the category of obligatory visits. If you are not indifferent to everything related to information security, you will definitely find such an event useful. If you have any kind of credit, do not hesitate to send it as an application for a speech. Russian hackers are loved and respected, and the Russian IT community is genuinely interested in foreigners. Why are there a community, Russian interesting as a nation. It was very fun to listen to how foreigners talk about unusual kvass drink or about someone’s incredible experience of traveling in our second-class carriages in the intervals between conversations about various techniques of attacks on computer systems.
Perhaps the post came out slightly emotional. However, this was the only way to try to convey the atmosphere created by the organizers of CONFidence 2013.
Miracles
The guys from our company more than once successfully got to the event, passing the selection of reports, and even shared their impressions of the trip on the pages of Habr. This year, my report “Breaking, Forensicating and Anti-Forensicating SAP Portal and J2EE Engine” was reviewed by the selection committee, and I received an invitation to speak with him at the conference.
In addition to me at CONFidence there were several other guys from Russia: Nikita Tarakanov with “Exploiting Hardcore Pool Corruptions in Microsoft Windows Kernel”, Arseny Reutov with “PHP Object Injection Revisited” and Yuri Chemerkin with “Insecurities in Blackberry”. It’s very cool that every year the Russian speakers at conferences on information security are becoming more and more.
')
First of all, I would like to note the incredible concern of the conference organizers about the speakers. During my visit to Poland, I have never had any problems with transportation, lunch, accommodation, or pastime. Everything was prepared in advance by the sweetest Polish guys, for which many thanks to them.
I flew to Krakow closer to midnight, but I was immediately greeted and sent to dinner to mark the opening of the event, which brought together organizers and speakers of this year.
Oh, this is Polish hospitality. Like all international gatherings, it ended with everyone teaching each other the peculiarities of national languages ​​(especially everyone was interested in various obscene words :))
Of course, there were also some controversies and discussions on topics related to infobase. I returned to the hotel with a great mood, a clear understanding of what a wonderful place I got, and immediately fell asleep.
The conference itself was held in the suburbs of Krakow on the territory of the WWII water treatment plant. For the convenience of visitors, shuttles were organized that took the participants to the venue of the event. It is worth noting that such an unusual place favorably differs from the classical halls of the congress centers by its entourage and the opportunity to enjoy the view. BBQ and sausages were prepared on the street, beer and tea were poured, they played football and were actively talking about something.
The interiors were also full of people. Someone opened locks for speed with the help of master keys, someone hacked classic PBX, someone played Guitar Hero MK. However, most people rushed to 2 tracks where lectures were given.
I see no point in talking about all the reports, because All material is already available on the conference site , except for the following comrades: Adam Abrocki (Crashdumps: 0-days and Rootkits), Felix “FX” Lindner (Cisco in the Sky with Diamonds), Mateusz “j00ru” Jurczyk (Beyond MOV ADD XOR - The Unusual and Unexpected in x86), Sergey Bratus (ELF Eccentricities, ABI and Architecture Metadata).
As in any conference, it is not so much the reports that bring pleasure, but the conversations after them. The possibility of direct communication with the speakers is what many people come to at CONFidence. Meetings with like-minded people fill with new ideas that you can not wait to implement.
An indescribable feeling of delight arises when you realize the great results that researchers in different fields achieve. After that, I want to quickly get to the computer and start doing, doing, doing.
In addition to the interesting educational part, an entertainment program has been implemented at CONFidence. I have already mentioned a bunch of consoles, football and kebabs with BBQ.
Many interesting contests also took place: for example, those who wanted were handcuffed, after which they were given 5 minutes to get out of them with the help of a master key.
But the now traditional quest X-traction point, the participants of which needed to free the hostages, making their way into an abandoned bunker through various kinds of alarms. Viewers could watch the action using live stream with cameras attached to the participants. It was all incredibly cool and fun.
Summarizing what has been written, it can be said that such events as CONFidence belong to the category of obligatory visits. If you are not indifferent to everything related to information security, you will definitely find such an event useful. If you have any kind of credit, do not hesitate to send it as an application for a speech. Russian hackers are loved and respected, and the Russian IT community is genuinely interested in foreigners. Why are there a community, Russian interesting as a nation. It was very fun to listen to how foreigners talk about unusual kvass drink or about someone’s incredible experience of traveling in our second-class carriages in the intervals between conversations about various techniques of attacks on computer systems.
Perhaps the post came out slightly emotional. However, this was the only way to try to convey the atmosphere created by the organizers of CONFidence 2013.
Miracles
Source: https://habr.com/ru/post/182764/
All Articles