WORKSHOP - Security PWNing Conference 2019

Software-Defined Radio Hacking: Initiation

This training teaches students how radio works, how to analyze a targeted signal and how to interface with it using SDR (Software-Defined Radio).

The class allows attendees to discover current radio techonologies a pentester or a vulnerability researcher can stumble upon missions. By understanding different radio technologies, attendees will get the necessary reflexes to attack current and future systems via the radio interface with the use of SDR software and hardware.

Prerequisites

This training is aimed at security professional willing to discover radio technologies and have hands-on sessions.
– Knowledge of Linux and a programming language such as C, C++, C# or Python is necessary.
– Basic knowledge of security and radio is a plus
– All attendees will need to bring a laptop capable of running VMware virtual machine (8GB of RAM is a minimum)

Scientific Program

Day 1 | 10:00 - 18:00

10:00

1. Introduction to radio

History, evolution, and regulations
Radio waves
Software-Defined Radio
Antennas
Gain impacts with amplificators and connectors

2. Observations

Tools: Waterfall and spectrum analysers
Signal identification
Modulation/Demodulation
Encoding/Decoding

-18:00

3. Hands-on Software-Defined Radio

Hardware
Introduction to GnuRadio
Practice with GnuRadio Companion
Block schemas
Simulations
Executing a block in a real SDR device
Listening to simple AM and FM signals
Features to process samples

Day 2 | 10.00 - 18.00

10:00

4. Attacking devices

Common sub-GHz Remotes
– Capturing data
– Replaying saved samples
– Analysing samples: manually and with powerful tools like URH
– Rolling codes: security level, possible attacks
Devices using the mobile network (2G/3G/4G)
– Monitoring
– Existing tools: OpenBTS, YateBTS, srsLTE, etc.
– Interception techniques in 2G/3G and 4G + our feedback in missions
– Tooling with GnuRadio
– Weird mobile features
Attacking Custom devices
– Identification: looking at device’s references, components, etc.
– Sniffing signals
– Decoding signals and limits
– Hardware hacking to break some limits

-18:00

Bonus: PWNing session if we have time => create your communication system, break other attendee's system, or bring your IoT device to break

Speakers

Sebastian Dudek

Information security expert working for the Synacktiv company. For over 7 years he has been particularly passionate about flaws in radiocomm... more

Place and date

12-13 November, Warszawa

Golden Floor Plaza
Warszawa, Aleje Jerozolimskie 123a

Registration form

Conditions for the participation

The pro forma invoice will be used for payment, which will be sent in PDF format to the email address you filled in the application.

When you don’t pay for the pro forma invoice it doesn’t mean you give up your participation in the conference.

When you cancel your reservation later than 14 calendar days before the date of the event the organizer reserves the right to charge full cost of participation in the conference.

——————————————————————–

Participants includes:

admission to the workshop (2 days)
coffee breaks (2 days)
lunch (2 days)

Please complete the form below and accept the terms and conditions.

Date

12-13 November 2019, Warszawa

Price

pre-sale to 13 October 2019

4999 PLN

netto + Vat 23%
(to pay: 6148.77 PLN)

od 14 October 2019

5999 PLN

netto + Vat 23%
(to pay: 7378.77 PLN)

Do you have a promotional code?

Add another participant

VAT invoices data

Company/Institution

Individual

Terms of VAT exemption

Yes - I declare that participation in the conference is financed by public

No - participation in the conference is not financed by public resources

Payment type

Transfer after receiving the invoice

Pay-U

Confirm

Prerequisites

Scientific Program

Speakers

Place and date