WORKSHOP - Security PWNing Conference 2019

Software-Defined Radio Hacking: Initiation

This training teaches students how radio works, how to analyze a targeted signal and how to interface with it using SDR (Software-Defined Radio).

The class allows attendees to discover current radio techonologies a pentester or a vulnerability researcher can stumble upon missions. By understanding different radio technologies, attendees will get the necessary reflexes to attack current and future systems via the radio interface with the use of SDR software and hardware.

Prerequisites

This training is aimed at security professional willing to discover radio technologies and have hands-on sessions.
– Knowledge of Linux and a programming language such as C, C++, C# or Python is necessary.
– Basic knowledge of security and radio is a plus
– All attendees will need to bring a laptop capable of running VMware virtual machine (8GB of RAM is a minimum)

Scientific Program

Day 1 | 10:00 - 18:00
10:00
1. Introduction to radio
  • History, evolution, and regulations
  • Radio waves
  • Software-Defined Radio
  • Antennas
  • Gain impacts with amplificators and connectors
2. Observations
  • Tools: Waterfall and spectrum analysers
  • Signal identification
  • Modulation/Demodulation
  • Encoding/Decoding
-18:00
3. Hands-on Software-Defined Radio
  • Hardware
  • Introduction to GnuRadio
  • Practice with GnuRadio Companion
  • Block schemas
  • Simulations
  • Executing a block in a real SDR device
  • Listening to simple AM and FM signals
  • Features to process samples
Day 2 | 10.00 - 18.00
10:00
4. Attacking devices
  • Common sub-GHz Remotes
    – Capturing data
    – Replaying saved samples
    – Analysing samples: manually and with powerful tools like URH
    – Rolling codes: security level, possible attacks
  •  Devices using the mobile network (2G/3G/4G)
    – Monitoring
    – Existing tools: OpenBTS, YateBTS, srsLTE, etc.
    – Interception techniques in 2G/3G and 4G + our feedback in missions
    – Tooling with GnuRadio
    – Weird mobile features
  • Attacking Custom devices
    – Identification: looking at device’s references, components, etc.
    – Sniffing signals
    – Decoding signals and limits
    – Hardware hacking to break some limits
-18:00
Bonus: PWNing session if we have time => create your communication system, break other attendee's system, or bring your IoT device to break

Speakers

Sebastian Dudek
Information security expert working for the Synacktiv company. For over 7 years he has been particularly passionate about flaws in radiocomm... more

Place and date

12-13 November, Warszawa
Golden Floor Plaza
Warszawa, Aleje Jerozolimskie 123a

Registration form

Conditions for the participation

The pro forma invoice will be used for payment, which will be sent in PDF format to the email address you filled in the application.

When you don’t pay for the  pro forma invoice it doesn’t mean you give up your participation in the conference.

When you cancel your reservation later than 14 calendar days before the date of the event the organizer reserves the right to charge  full cost of participation in the  conference.

——————————————————————–

Participants includes:

  • admission to the workshop (2 days)
  • coffee breaks (2 days)
  • lunch (2 days)

Please complete the form below and accept the terms and conditions.

Date

12-13 November 2019, Warszawa

Price

pre-sale to 13 October 2019
4999 PLN
netto + Vat 23%
(to pay: 6148.77 PLN)
od 14 October 2019
5999 PLN
netto + Vat 23%
(to pay: 7378.77 PLN)

{{sectionTitle}}

VAT invoices data

Company/Institution
Individual

Terms of VAT exemption

Yes - I declare that participation in the conference is financed by public
No - participation in the conference is not financed by public resources

Payment type

Transfer after receiving the invoice
Pay-U