Reports and contests at NeoQUEST-2014

NeoQUEST-2014, a large-scale cybersecurity event, will take place soon in St. Petersburg: with fascinating reports from information security practices, spectacular demonstrations of attacks, and fun contests for both beginner hackers and real pros! As part of NeoQUEST, the final match of the winners of the online hack quest online tour will take place traditionally!

Admission to NeoQUEST-2014 is free! Only registration is required here .

Topics of reports of the main technical program NeoQUEST-2014:
')
1. “tpm.txt: what is overseas iron capable of?” : Report on TPM and TXT technologies, hardware protection.
2. “I2P and TOR: you can not execute pardon. Anonymity on the Internet - illusion or reality? ” : Anonymous decentralized I2P and TOR networks, their advantages and vector of attacks on them.
3. “IN MESNESHIP: how safe are mesh networks?” : A report on mesh networks, looks from two opposite sides.
4. “How to steal a cat via USB” : interception of personal data, such as photos, videos, contacts from your smartphone using a USB protocol and ways to resist an attack.
5. “A car is like a big smartphone: cyber security threats” : cyber attacks on the CAN-bus of your car.
6. "L4" : a mysterious report with a no less mysterious name!

Under the cut - even more about the reports, contests, demonstrations and, of course, the hack quest itself!

How will everything be

The event will take place on July 3 in St. Petersburg, in the bright and spacious conference hall of the Resource Center for International Activities ( here is a link to the virtual tour, which includes a conference hall). Guests can not only listen to the reports, but also participate in interesting contests. For example, try yourself as a hacker in the hacker version of the escape room and get a prize for speed, ingenuity and sleight of hand. Or help the NeoQUEST team in organizing the most genuine cold-boot attacks! In addition to contests and reports, coffee breaks and chatting with colleagues are waiting for everyone in a pleasant atmosphere.

NeoQUEST reports

Guests will receive an extensive report on Intel technologies such as TXT (Trusted Execution Technology) and TPM (Trusted Platform Module), and then immediately - to cool the hot and ready to explode from the abundance of brain difficult to understand information - we decided that after the “Frozen Computer” task in the online tour, such a demonstration really suggests itself!).

The report “ In intercountry: how safe are mesh networks? ” Will be a conversation about the security mechanisms used in mesh networks, which are based on cryptographic algorithms and are aimed, first of all, at protection from an external intruder. The speaker will tell you what opportunities an internal intruder has in such a situation, and how to implement attacks on the mesh network. Immediately after the report, it will be demonstrated how to assemble your own mesh network from what is at hand.

A little paranoia among listeners can be caused by the report “ How to Steal a Cat via USB ”, in which the speaker will talk about the dangers that all smartphone owners face when transferring data via USB. The report will review the protocols used to synchronize smartphones with a PC, describe a possible method for intercepting data and give an example of the implementation of a software tool that allows this. Following will be highlighted various ways to counter attacks, both from the smartphone and from the PC, as well as examples of their practical implementation.

Believe in anonymity online? Do you use TOR or I2P? For you - a report about anonymous decentralized networks I2P and TOR , which will highlight their strengths and weaknesses, and also describe the possible vectors of attacks on them.

The report with the strange, at first glance, the name " L4 " will please specialists interested in modern trends in building operating systems!

And for car owners and car enthusiasts - the story in the report “A car is like a big smartphone: cyber security threats ” about the safety of car driving; , again, driving safety. All these systems can be subject to significant security threats, and you will learn about the sources of such threats and attack scenarios on NeoQUEST!

NeoQUEST contests

NeoQUEST guests can enjoy short competitions as well as all-day competitions. Like last year, small tasks will be published every hour in NeoQUEST twitter, the answers to which will need to be sent to the specified e-mail. The best participant on the basis of all tasks will receive a small prize. Lovers of big prizes are waiting for competitions more difficult, there already have to show deeper hacking skills.

There will definitely be contests on the subject of practical reports, so we advise you to listen to them carefully!

Hack quest

Participants of the hack quest will be separate from the spectators in a specially equipped room of the same Resource Center, where they will not be disturbed by the noise of the guests. But from the room with the participants will be a video broadcast, from which viewers will be able to learn about who is in the lead at the moment.

In continuation of the legend of the online tour, participants will need to stop the rocket, which they (accidentally!) And launched. To get rid of this threat, they have to go through difficult tests (read - tasks), which will be related to the security of mobile devices and the Web, virtualization, competitive intelligence and hardware (we remember that in the past NeoQUEST liked our participants).

Summarizing

At the end of the day, the results will be summed up and everyone will know which of the participants will win the main prize - a trip to one of the international conferences on information security! Prize-winners of the second and third places are also waiting for prizes!

For those who can not visit NeoQUEST, there will be an online broadcast of the event. A video with reports and demonstrations, as well as an analysis of the tasks of the NeoQUEST face-to-face tour, will be published on Habré soon after the quest is completed.
Recall once again that admission is free ! We will be very happy to see new guests, no matter how long and how densely you are engaged in cybersecurity. At NeoQUEST-2014, absolutely everyone will be able to learn something new! Register on the site and come to expand the cyber horizons of your knowledge!