// // 0:20:00
Milliways
milliways. The village at the end of the universe.
Kontakte
Habitat Mitglieder
Village Projekte
Village Räume
- Milliways 160
- Milliways Workshop Dome 50
Village-Events
-
Leveraging the use of dynamic instrumentation for pentesting mobile apps -
Networking Hacking Workshop // // 2:00:00
In this workshop you’ll learn some of the fundamental techniques of network hacking and how you can use them to find com...
-
What de.fac2? Attacking an opensource U2F device in 30 minutes or less // // 0:45:00
De.fac2 is a Common Criteria (CC) and FIDO certified FIDO U2F Java Card applet developed and certified by Federal Office...
-
Introduction to ATT&CK framework for risk managers and threat analysts // // 0:20:00
-
Bits and Bytes in Microgravity: Insights into the hardware and software of sounding rockets // // 0:45:00
The Mobile Rocket Base (MORABA), a department of DLR's Space Operations and Astronaut Training, allows scientists to con...
-
Demystifying eSIM Technology // // 1:00:00
-
Design a circuit board with KiCad (Day 1) // // 1:30:00
**Important:** You need to bring a Notebook with KiCad 7.x including the symbol- and footprint libraries installed. It d...
-
How to grow a flow3r // // 0:45:00
Music brings us together. Vibrant colors captivate us. The flow3r is an electronic instrument - it turns touch and gestu...
-
Movie Night: 23 // // 2:00:00
-
If It Ain't Broken, Do Fix It: Building Modern Cryptography // // 0:45:00
This talk is a primer in modern cryptographic best practices, supporting them by examples of recent breaks and vulnerabi...
-
Chaos meets Museumsbahn // // 2:00:00
Was müssen wir tun, damit Ihr bei einer Museumbahn mitmacht? Eine offene Diskussionsrunde um den Überlapp zwischen Museu...
-
Making CCCamp in a video game mod! // // 0:45:00
At Camp2019 some ingenuitive hackers from Milliways and a handful of other villages took the modding tools of OFF GRID a...
-
Identifying Social Engineering // // 0:20:00
-
Build Your Own Satellite Ground Station 📡 // // 2:00:00
Are you fascinated by space and want to learn how to receive data from satellites and weather probes? Join Jeffery from ...
-
For Fox’s Sake: Bypassing Enterprise Policy in Firefox // // 0:20:00
-
Fake 10Gb until you make 10Gb // // 0:45:00
Born from building and tearing down a bunch of fibre for CCC event networks: a pocket tool to help quickly troubleshoot ...
-
So you're interested in social engineering? The very first steps // // 0:45:00
We will cover the following topics: - Introduction to social engineering - Using OSINT to collect initial inform...
-
CTF - What? // // 2:00:00
I have participated in Capture-The-Flag events an unhealthy amount of time in the last few years and would now like to p...
-
Our Time in a Product Review Cabal: And the malware and backdoors that came with it. // // 0:45:00
1. Introduction 2. Speedy (free) delivery! 3. Other Vendors? 4. Escalation 5. Can I Bring a Friend? 6. But what abo...
-
Jens Spahns credit score is "very good" // // 0:45:00
In the context of the CCC, we usually do our vulnerability disclosures responsibly. So we ensure that a vulnerability is...
-
Chat-Control: now is the time to take action! // // 0:45:00
The EU's plans for chat-control, which in the European Commission's draft remain limited to finding material of sexual e...
-
Disclosure, Hack and Back // // 0:45:00
In the first part, we focus on companies that fail to eliminate security issues. In the second part, we address access ...
-
Stories from the Life of an Incident Responder // // 0:45:00
-
Leihroller hacken. Ein Kasperltheater. // // 0:45:00
CCCasperl und Pezi finden einen kaputten `Leihroller` im Wald und beschliessen das Ding zu zerlegen. Sie finden dabei...
-
Movie Night: Hackers // // 1:00:00
Hack the Planet.
-
Read and Manipulate Network Traffic on Android with mitmproxy // // 0:20:00
Sniffing into network traffic can be really interesting. It can help you understand complex systems better, double-check...
-
Demystify Mach-O // // 0:45:00
Apple systems can be quite obscure and archaic considering how popular and ubiquitous their devices are. Learning more a...
-
Deep Dive: External Attack Surface Mapping - First Steps (Part 1 of 2) // // 2:00:00
External attack surface mapping is an important capability to have in the toolkit for everyone working on internet secur...
-
📶 Analyzing Cellular Basebands with FirmWire 🔎 // // 0:45:00
This talk will discuss cellular basebands and FirmWire, our open-source platform for baseband firmware. The platform all...
-
How to survive getting DDoSed by Anonymous, Cyberberkut, Killnet and noname057(16) since 2012 // // 0:45:00
-
Fantastic OPRFs and where to find them // // 0:45:00
The talk is structured in two parts, a theoretic part which explains various types of OPRFs, their properties and where ...
-
r2wars - battle bots in shared memory // // 1:51:00
This workshop is about r2wars: two programs are executed simultaneously in shared memory (more about this in the worksho...
-
All cops are broadcasting: Obtaining the secret TETRA primitives after decades in the shadows // // 0:45:00
-
Ethical hacking, good intentions and questionable outcomes // // 0:45:00
This talk discusses ethical boundaries, the existence and lack of them, but also the grey areas in between. The spark fo...
-
Social Engineering Is not how to teach security to your colleagues // // 0:20:00
Social engineering and education techniques may look like the same thing from afar. They are not. This talk is about wha...
-
Deep Dive: External Attack Surface Mapping - Digging Deeper (Part 2 of 2) // // 2:00:00
External attack surface mapping is an important capability to have in the toolkit for everyone working on internet secur...
-
Hacks and leaks, then and now // // 0:45:00
A discussion on the evolution of digital resistance, from direct action hacking to whistleblowing. How can hacktivists s...
-
A Guided Tour through Tor Network Health and Performance // // 0:45:00
-
HiP Party // // 3:00:00
We had a great little congress in december, organized by people from xHain, Milliways, c-base, Digitale Gesellschaft and...
-
Fantastic build system failure modes and how to fix them // // 0:20:00
”Listen Morty, I hate to break it to you, but what people call a build system is just a bunch of rules that compel compu...
-
TrustMeRelay? Investigating Apple's iCloud Private Relay // // 0:45:00
Apple's iCloud Private Relay is a novel Internet privacy service allowing users to securely and privately browse the Int...
-
Horror Stories from the Automotive Industry // // 0:45:00
Working with some of the biggest OEMs and Tier 1 suppliers on pre-production vehicles gave us an understanding and exper...
-
Physical Vulnerability Research // // 0:45:00
-
Peeking over the tape moat // // 0:20:00
This presentation will have two parts: A brief introduction to how magnetic tape works and is used in a data center, fol...
-
reconFTW: Discover and Optimize Your Reconnaissance and Exploitation Techniques // // 2:00:00
ReconFTW (https://github.com/six2dez/reconftw) is a comprehensive tool that covers a wide range of reconnaissance and ex...
-
Defeating planned obsolescence for Cisco Meraki switches // // 0:20:00
This talk will include a hardware overview of various Cisco Meraki Ethernet switch models (past and present). We will lo...
-
Mastering the Maze: Unleashing Reinforcement Learning in Penetration Testing for Lateral Network Movement // // 0:20:00
We like show an overview, on how reinforcement learning can be integrated into the penetration testing process to gain a...
-
DON’T PANIC - bytes, blocks, bugs // // 0:45:00
-
How to succeed at capturing the flag // // 0:45:00
-
Making yourself into a videogame character in the CCCamp mod pt.1 // // 2:00:00
At CCCamp2019 some ingenuitive hackers from Milliways and a handful of other villages embarked on using the modding tool...
-
Service Location Protocol DoS Amplification Attack // // 0:45:00
Overview 1. Introduction to DoS attacks 2. Introduction to SLP 3. How is the attack working 4. Observations in the ...
-
WTF DJI, UAV CTF?! - A hacker's view at commercial drone security // // 0:45:00
-
How to use Internet scans and passive measurements to analyze Russian attacks and their impact in Ukraine // // 0:45:00
-
Making yourself into a videogame character in the CCCamp mod pt.2 // // 2:00:00
At CCCamp2019 some ingenuitive hackers from Milliways and a handful of other villages embarked on using the modding tool...
-
Was das Mykonos-Attentat mit dem abgeschotteten Netz Irans zu tun hat // // 0:45:00
Ein deutsches Unternehmen aus Meerbusch in Nordrhein-Westfalen war zusammen mit dem iranischen Internetunternehmen Arvan...
-
Whiskyleaks // // 3:00:00
-
Debugging Microcontrollers // // 0:45:00
This talk gives you an overview of debugging ARM Cortex-M microcontrollers with a focus on the *practical* configuration...
-
Electronics prototyping is way too easy and there's no reason you can't do it // // 0:20:00
In 2015, someone was wrong on the Internet. To prove a point, I started teaching people how to prototype electronics. By...
-
Hashing Pico Berries // // 0:20:00
Nachhaltige Kryptographische Sicherheit stellt insbesondere für stromsparende Hardware eine Reihe von Herausforderungen ...
-
Vacuum robot security and privacy - prevent your robot from sucking your data // // 0:45:00
-
Movie Night: wargames // // 2:00:00
Yes, but not official.
-
My best worst nixOS setup: Game Development on SteamDeck // // 0:45:00
This talk will be about my journey of doing on-the-go Game Development on a SteamDeck using FOSS tools such as Godot4, B...
-
Energy transition into the future, but what about ICT? // // 0:45:00
-
Hack My handicap // // 0:20:00
-
Unlock the Door to my Secrets, but don’t Forget to Glitch // // 0:20:00
-
CANCELED [Design a circuit board with KiCad (Day 5)] // // 1:30:00
CANCELED
-
Bootloader Crimes - Building disposable Windows VMs // // 0:20:00
-
FIDO2 - the superior Multi Factor Authentication Framework // // 0:45:00
-
Bosch sensors in the flow3r badge // // 0:45:00
I will give a quick introduction into the Bosch MEMS technology and sensors. Next I want to show some very basic steps ...
Village Badges
Es sind keine Badges öffentlich verfügbar.