BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Badge of Shame: Breaking into Secure Facilities with
  OSDP\n   When: Saturday\, Aug 12\, 09:30 - 10:15 PDT\n   Where: Caesars F
 orum - Forum - 105\,135\,136 - Track 1 - [1]Map\n   Speakers:Dan "AltF4" P
 etro\,David Vargas\n\n   SpeakerBio:Dan "AltF4" Petro \, Senior Security E
 ngineer at Bishop Fox\n   Dan "AltF4" Petro is a Senior Security Engineer 
 at Bishop Fox. Dan is\n   widely known for the tools he creates: Eyeballer
  (a convolutional\n   neural network pentest tool)\, the Rickmote Controll
 er (a\n   Chromecast-hacking device)\, Untwister (pseudorandom number gene
 rator\n   cracker)\, and SmashBot (a merciless Smash Bros noob-pwning mach
 ine).\n\n   SpeakerBio:David Vargas \, Senior Security Consultant at Bisho
 p Fox\n   David "Shad0" Vargas is a senior red teamer at Bishop Fox. He en
 joyes\n   breaking into secure facilities by exploiting physical\, social 
 and\n   network security controls. In a past life\, David designed a power
 \n   system for a cube satellite to be launched into space.\n\n   Descript
 ion:\n   Breaking into secure facilities used to be possible by inserting 
 a\n   listening device (such as an ESPKey) behind an RFID card reader and\
 n   sniffing the unencrypted Wiegand badge numbers over the wire as they\n
    go to the backend controller. The physical security industry has taken\
 n   notice and there's a new sheriff in town: The encrypted protocol OSDP\
 n   which is starting to be rolled into production. Surely encryption will
 \n   solve our problems and prevent MitM attacks right? ... right?\n\n   I
 n this presentation\, we'll demonstrate over a dozen vulnerabilities\,\n  
  concerning problems\, and general "WTF"s in the OSDP protocol that let\n 
   it be subverted\, coerced\, and totally bypassed. This ranges from\n   d
 eeply in-the-weeds clever cryptographic attacks\, to boneheaded\n   mistak
 es that undermine the whole thing. We will also demonstrate a\n   practica
 l pentesting tool that can be inserted behind an RFID badge\n   reader to 
 exploit these vulnerabilities.\n\n   Get your orange vest and carry a ladd
 er\, because we're going onsite!\n\n   REFERENCES\n         * ESPKey [2]ht
 tps://github.com/octosavvi/ESPKey * OSDP v2.2 Spec\n         [3]https://ww
 w.securityindustry.org/2020/12/15/security-industry-association-releases-v
 ersion-2-2-of-sia-osdp-standard/\n         [4]https://libosdp.gotomain.io/
 protocol/introduction.html *\n         RS485 [5]https://en.wikipedia.org/w
 iki/RS-485\n\n   '\n\n   1. #CaesarsForumBR\n   2. https://github.com/octo
 savvi/ESPKey\n   3. https://www.securityindustry.org/2020/12/15/security-i
 ndustry-association-releases-version-2-2-of-sia-osdp-standard/\n   4. http
 s://libosdp.gotomain.io/protocol/introduction.html\n   5. https://en.wikip
 edia.org/wiki/RS-485\n\n\n
DTEND:20230812T171500Z
DTSTART:20230812T163000Z
LOCATION:DC - Caesars Forum - Forum - 105\,135\,136 - Track 1
SUMMARY:Badge of Shame: Breaking into Secure Facilities with OSDP
END:VEVENT
END:VCALENDAR