#352 – Conning with Michael Ossmann

Podcast: Play in new window | Download

Subscribe: Apple Podcasts | RSS

Welcome back, Michael Ossmann of Great Scott Gadgets! (his last appearance was on episode #318)

• Mike didn’t know the HackRF has a subreddit. But he did know about the IRC (Freenode) and the mailing list.
• XKCD talked about slack hooking to other services and venn diagrams.
• Great Scott Gadgets has interns! One of them maintains 6502.org.
• Conferences coming up: Black Hat, B-Sides, Defcon
• The GreatFET / GoodFET / BusPirate is meant for interfacing software to the real world. There will soon be expansion boards.
• The HackRF1 was used for the badge at at CCC. People are still using it because the toolchain is similar for badge as HackRF.
• Dominic Spill and Mike will be presenting at BlackHat.
• They’re currently working on spectrum monitoring tools. These are different than the PortaPak waterfall view, instead sweeping across 6GHz.
• It uses a software called qspectrum analyzer.
• Spectrum analyzers (and the math behind them) is the reason for calling it “Contextual” electronics.
• They are also working with ShinySDR.
• Silicon Valley pineapple episode
• Direct sequence spread spectrum
• Information theory
• GPS uses a lot of code matching to “dig the signal out of the noise”
• There is now spoofing/simulation for GPS. This reminded Chris of the plot in GoldenEye Tomorrow Never Dies.
• Paper about “GPS software attacks“
• Mike will be joining the other hardware security trainers in San Francisco. They have all been guests on The Amp Hour! There is now a CFP for training participants to get free admission and present during lunch one of the days.
• Mike will be at DefCon (so will Chris). There was a recent review of the andnotxor badge on Hackaday.
• DC Darknet is a challenge for learning new skills, including building up a badge.
• There are a bunch of “villages” targeted at different subjects.
  • Hardware hacking village
  • Wireless village
  • ICS village
• DefconTV is the talks being streamed to hotel rooms throughout the conference.
• Nate from Sparkfun will be giving a talk.
• Two of the hackers mentioned were Marina Krotofil and Alexander Bolshev
• The HackRF had a hit piece done against it in the DailyMail!
• Daisho is still being (slowly) considered. The device core ported from Altera to Xilinx with project Tim Videos mythro Numato Opsis. They also have an Open FPGA standard.
• They’re developing a new “neighbor” for the GreatFET with level shifting capabilities. It uses Silego’s GreenPak chips.
• GreenPak published their bitstream and Andrew Zonenberg has been developing an open source tool for hdl synthesis.
• Method for reprogramming – in datasheets look development section (“on chip emulation”)
• GSG is now working on SDR for infrared.
• The OHS schedule was recently published. That will be held in Denver in October.

Links from Mike!

• Black Hat USA talks mentionned:
  • https://www.blackhat.com/us-17/briefings.html#sonic-gun-to-smart-devices-your-devices-lose-control-under-ultrasound-sound
  • https://www.blackhat.com/us-17/briefings.html#evil-bubbles-or-how-to-deliver-attack-payload-via-the-physics-of-the-process
  • https://www.blackhat.com/us-17/briefings.html#go-nuclear-breaking-radiation-monitoring-devices
  • https://www.blackhat.com/us-17/briefings.html#breaking-electronic-door-locks-like-youre-on-csi-cyber
• DEF CON talks mentioned:
  • https://defcon.org/html/defcon-25/dc-25-speakers.html#Shkatov
  • https://defcon.org/html/defcon-25/dc-25-speakers.html#FitzPatrick
  • https://defcon.org/html/defcon-25/dc-25-speakers.html#Seidle
• Dominic Spill’s and my previous infrared talks:
  • https://archive.org/details/shmoocon2017_Exploring_the_Infrared_World
  • https://www.troopers.de/troopers17/talks/775-exploring-the-infrared-world-part-2/
  • (video: https://www.youtube.com/watch?v=DnqMrS_JDVI)
• Andrew Zonenberg’s tools for GreenPAK and more:
  • https://github.com/azonenberg/openfpga