On 3/13/2010, HackMiami will present on the methods of password cracking, the tools used to carry it out, and ways to mitigate the threat. We will touch upon online cracking, offline cracking, rainbow tables, fuzzing, wordlists, salts, hashes, and more!
We will also have a few systems with various tools running on them (wifi cracking and offline hash cracking).
Bring your (anonymized!!!!) hashes and handshakes to feed to the machines and see how they hold up. They take it with and without salt.
After the presentation there will be open discussions regarding the latest trends in hacking, cracking, reverse engineering, lockpicking, and more!
Everyone is welcome, n00bz and 1337z alike!
Notice we have changed location, we are no longer at FIU… we are now at Pizza Mansion, it’s a new place that has beer and free wifi!!!
Date: Saturday, March 13, 2010
Time: 1:00pm – 6:00pm
Location: Pizza Mansion
Street: 6917 west flagler st.
City/Town: Miami, FL
HackMiami member Alexander Heid was recently quoted in MIT’s Technology Review about the Zeus trojan and anti-virus evasion.
(Technology Review) – Even the basic Zeus kits include obfuscation techniques to help escape detection by antivirus software and other security measures. In one experiment, consultant Alex Heid of Information Security Services found that only about half of antivirus software detected a known Zeus payload. After employing some simple techniques for masking the code, the detection rate dropped even further, to 10 percent. “The cybercrime technologies are advancing faster than the security technologies,” Heid says. Full article
Join us for an afternoon of espionage and intrigue.
HackMiami is proud to present “Hacking Terrorist Networks.”
The presentation will touch on multiple aspects of forensics, encryption, hacking methodology, and discuss how they relate to the tracking of extremists.
The presenter has several years of experience in this very unique field, and has put together one of the world’s largest open source databases of extremist multimedia.
After the presentation there will be open discussions regarding the latest trends in hacking, cracking, reverse engineering, lockpicking, and more!
HackMiami won 3rd place at Shmoocon’s Ghost in the Shell Code hacking contest. It was a CTF style game that incorporated multiple aspects of hacking methodology. Good work!
Unfortunately we had to drive back to Miami early Sunday morning and we missed the closing ceremonies.
At 1:30pm we will have a presentation by Alexander Heid entitled “Tools of the Underground.” The presentation will focus on the tools and methodologies of the cybercrime underground, including information about the Zeus trojan, shell scripts, exploit kits, and more.
Alexander Heid is a local security researcher, vulnerability analyst, board member of South Florida OWASP, and board member of HackMiami.
Afterwards, we will also be featuring a presentation by Peter Greko entitled “Maintaining Access on Compromised LAMP Servers.” The presentation will focus on the concepts of backdoors and injections used by malicious actors to keep stealth access on compromised servers.
Peter Greko is a local security researcher, application analyst, and board member of HackMiami.
After the presentations we will have a lab where we will be hacking, cracking, as well as the usual bouts of malware reverse engineering, lockpicking, and more.
Everyone is welcome, n00bz and 1337z alike!
February 13, 2010
1pm – 6pm
Florida International University – ECS 280 (Engineering & Computer Science Building Room 280)
11200 SW 8th Street
Miami, FL
At 3pm we will have a presentation by Christopher Triana on using DD-WRT & OpenWRT to hack router firmware. The presentation will focus on uses, modification, and exploitation of misconfigurations. Christopher Triana is a local security researcher and member of HackMiami.
Afterwards, we will also be featuring a presentation by Peter Greko on using perl scripts to assist in wordfile creation for use in brute force dictionary attacks. Peter Greko is a local security researcher, application analyst, and member of HackMiami.
After the presentations we will have a lab where we will be hacking router firmware and installing DD-WRT & OpenWRT, as well as the usual bouts of malware reverse engineering, web app / infrastructure hacking, lockpicking, and more.
Everyone is welcome, n00bz and 1337z alike!
January 30, 2010
1pm – 6pm
Florida International University – ECS 280
11200 SW 8th Street
Miami, FL
This Saturday we will get together for an afternoon of educative destruction where we will be disassembling old or busted electronics and salvaging parts for new projects (and as a side effect, learning a bit more about how these things are put together).
You don’t need to bring anything, we will provide soldering irons, desoldering copper braids, and plenty of stuff to take apart. That said, if you have old busted electronics that you would like to get
rid of, feel free to bring them with you. In the past we have taken apart CD drives, routers, VCRs, printers, scanners, and even a belt sander.
We will also be having a presentation on Windows 7 Security by Jorge Orchilles at the beginning of the afternoon.
As always, you can just work on your projects, read, study, or just hang out.
The details:
WHERE: FIU (University Park Campus), ECS 280
WHEN: Saturday, September 5
TIME: 1 – 6 PM
As a result of last Saturday’s Hack-a-Thon, Latrokles finished up the first version of his speech recognition and synthesis library for openFrameworks. As a wrapper around the speech APIs in OS X, it only works on the mac at the moment, but there are plans to begin porting the same functionality over to windows and linux. There is also future functionality in the pipeline.
The lib could be used without openFrameworks with minimal tweaking, in the future there will be no tweaking necessary to use with or without oF.
Here’s a short video showing some of the library functionality.
Today is world Scratch Day. Scratch is a project from the MIT Media Lab, a programming language that makes it easy to create interactive stories, games, animation, etc. It was designed to get kids involved in programming and to teach them the fundamental ideas behind computation and mathematics while allowing them to play around and work creatively. For more information, visit scratch.mit.edu
Jeremy Conn created, with in a matter of minutes, a full fledged pong game using Scratch with collision detection, score keeping, and a simple AI.
Join us for an afternoon of password cracking!
(Technology Review) – Even the basic Zeus kits include obfuscation techniques to help escape detection by antivirus software and other security measures. In one experiment, consultant Alex Heid of Information Security Services found that only about half of antivirus software detected a known Zeus payload. After employing some simple techniques for masking the code, the detection rate dropped even further, to 10 percent. “The cybercrime technologies are advancing faster than the security technologies,” Heid says. 
Alexander Heid is a local security researcher, vulnerability analyst, board member of South Florida OWASP, and board member of HackMiami.
