[Full-disclosure] Rooted CON 2014 - Call For Papers

[Omar Benbouazza]

__ _   _   ___  _   _
   / /  _ \ ___   ___ | |_ ___  __| |/ ___/ _ \| \ | |
  / /| |_) / _ \ / _ \| __/ _ \/ _` | |  | | | |  \| |
 / / |  _ < (_) | (_) | ||  __/ (_| | |__| |_| | |\  |
/_/  |_| \_\___/ \___/ \__\___|\__,_|\\___/|_| \_|


   __   __
   \ \ / /
\ \   / /
 \ \ / /
  \ V /
   \_/


Rooted CON 2014 - 'Call for Papers'

PLEASE READ CAREFULLY ALL THE DETAILS IN THIS DOCUMENT.

-=] About RootedCON 2014

RootedCON 2014 is a Security Congress that will be held in Madrid
(Spain) on 6-8 March 2014.

With an estimated capacity of about 1000 people, is one of the
largest specialized conferences that take place in the country and
one of the largest in Europe, with attendees profiles ranging from
students, state forces, to professionals within Security market in IT
or simply technology enthusiasts.

-=] Types of talks

There will be two types of talks:

- Quick talks:20 minutes.
- Regular talks:  50 minutes.

A limited number of each of the types can even adjust the schedule if
an interesting quick talk extends beyond 20 minutes or, for specific
needs, reducing one of the regular talks.

For this fifth anniversary, we are searching for groundbreaking and
disruptive talks both  from national and international speakers,
including discussions of topics not directly related with security,
but keeping in mind the technology, lifestyle, culture ...

-=] International speakers

This year we will invest a lot of effort to bring international
speakers, incorporating both Spanish-English, English-Spanish
simultaneous translation. Consequently, we also call attendees from
around the world.

-=] Topics we seek

Any relevant issue associated with the concept of Hacking. The
following ones are not the only issues that interest us, but take
them as examples:

- Hacking, cracking, phreaking, virii, WiFi, VoIP, GSM...
- Security at Critical Infrastructures, SCADA...
- Hardware Hacking, Jtag, SWJ, Dap, ...
- Console and video gaming hacking.
- Mobile: android, iOS, Windows mobile, Firefox OS...
- Reverse Engineering, debugging, hooking, fuzzing, exploiting,...
- Innovative tools and techniques both for defense and attack.
- APT, botnets and malware.
- (In)security "in the cloud", virtualization,...
- Cryptography, steganography, covert channels,...
- Forensics and anti forensics.
- Communications and networking, level 2 & 3,...
- Original talks for our attendees...
- VERY ORIGINAL TALKS, like shows, monologues, etc...


In our last edition, talks related to "Hardware Hacking" were very
popular, as well as behaviour modification ideas of robots,
specialized hardware, or even creating new devices. Related Keywords:
Drones, Arduino, *copters, Roomba, alarms, Jtag, cameras...

For this edition, we are very interested in vulnerabilities,
specially 0days, or every kind of security problems on critical
infrastructures or their platforms.

-=] Procedure for papers submission


We will only accept talks which are submitted through our CFP
submission form located at:
https://www.rootedcon.es/cfp2014-es/
(spanish)https://www.rootedcon.es/cfp2014-en/(english)

Any other submission method will not be considered as "official" and
will not be evaluated by our selection team.

-=] Schedule and deadlines


1 Oct 2013  -   Call-For-Papers process starts
2 Dic 2013  -   Call-For-Papers finishes
Dic 2013-   Contacting and interviews with Speakers for
final confirmation.

Jan 2014-   Publication of the final schedule of speakers and
talks.

*4 Feb 2014 -   Delivery of all material from the speaker*

5 Mar 2014  -   Speakers dinner
6-8 Mar 2014-   /RootedCON2014

** Unjustified delays in speakers material delivery can impact on the
coverage for Travel Expenses and accommodation assumed by the
organization, as well as other benefits that may be acquired as a
speaker.


-=] Benefits and privileges as speaker

Each speaker will receive the following benefits and privileges:

- A dinner with the rest of the speakers, as well as whole RootedLabs
and RootedCON crew
- Accommodation and travel.
- Full-access pass for the three days of the congress
- Some free drinks for the party ;)
- Potential job opportunities management.
- A present (surprise) for taking part of RootedCON 2014.

-=] Duties and responsibilities of speaker

All selected speakers presenting a talk to RootedCON 2014 must:

a) Confirm that the paper presented is TECHNICAL and is accompanied
by a Proof of Concept

b) Send the talk material before the deadline established for the
materials delivery dates of the Congress. Is important to include
include details about the demos that could be performed.

c) Develop material according to official RootedCON 2014 templates

d) Accept explicitly that the materials presented, as well as video
and audio recordings made shall b

Re: [Full-disclosure] How many .gov sites did the usa government ddosed/nearly defaced?

[Omar Benbouazza]

Russian "Pirates" Offer To Host NASA's Website While US Government Is
Shutdown

http://en.ria.ru/russia/20131004/183931414/Russian-Pirates-Offer-NASA-Help-in-Times-of-Crisis.html

---
RootedCON V (2014) - www.rootedcon.es
@omarbv


2013/10/9 Luther Blissett 

> On Tue, 2013-10-08 at 14:13 -0700, coderman wrote:
> > On Tue, Oct 8, 2013 at 1:57 PM, Jeffrey Walton 
> wrote:
> > > On Tue, Oct 8, 2013 at 9:29 AM, Georgi Guninski 
> wrote:
> > >> Just noticed http://www.nist.gov/ is not alive due to the
> > >> usa government.
> > >>
> > >> Approximately how many .gov websites are in such a condition?
> > > Department of Commerce is also down. (I need to file for an export
> > > license, and the SNAP-R system is not available).
> > >
> > > Probably Department of State, Department of Interior, and the rest of
> them.
> >
> >
> > the shutdown broke our builds! devs used NASA images as part of
> > automated tests in continuous integration.
> >
> > "Due to the lapse in federal government funding, this website is not
> available.
> > We sincerely regret this inconvenience."
> >
> > ... and the jobs fail.
> >
> >
> > (-_-;)
> >
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>
> define "our". Am I missing something?
>
> --
> Do not forget that we are cattle on an animal farm which is managed and
> handled mostly by machines. Machines do what they are/were told to. What
> lies in between stdin and stdout and is not shown in stderr?
>
> GPG: 0x48BE63E6
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] D-Link Security Contact?

[Omar Benbouazza]

Hello,

Here you have:
http://dlinkweb.com/us/en/support/security-advisories/report-vulnerabilities

Regards,

---
RootedCON V (2014) - www.rootedcon.es
@omarbv


2013/10/23 infosec4breakfast 

> I've been working on auditing my home D-Link router (yes, yes I know
> everyone's been picking on them lately),
> but I'd like to get into contact with their security personnel to
> discuss some vulnerabilities that affect one of their
> Canadian routers.
>
> Does anyone have a way to reach out to security personnel directly that
> will actually care about what I have to say?
> I haven't heard back from any of their public addresses, and their
> available contact form.
>
> Cheers,
>
> JM
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Mavericks...less then a bargin?

[Omar Benbouazza]

Jeff, trust in The Guardian :P

Regards,

---
RootedCON V (2014) - www.rootedcon.es
@omarbv


2013/10/28 Jeffrey Walton 

> On Mon, Oct 28, 2013 at 4:49 PM, Joel Esler  wrote:
> > Obviously they expect you to surrender the info in the sake of simplicity
> > and usefulness.
> >
> > They swear the can't read your stuff:
> > http://www.apple.com/apples-commitment-to-customer-privacy/
> :)
>
> Their own legal department tells us they are not trustworthy. Who do
> we believe: their legal department, or their press release?
>
> Jeff
>
>
> > On Oct 28, 2013, at 03:30 PM, PuNkErX w  wrote:
> >
> > I usually lurk the list but here's my take on it.  Using iCloud to sync
> > everything is stupid if you care about privacy.  Unless you don't mind
> all
> > your info (especially now that you can sync the keychain) being out
> > there.
> >
> > As an old Apple "fanboy" Im disgusted but not surprised with the
> direction
> > they went.  Thats why i got out of the Apple work when 10.7 dropped.
> >
> > I host an old macbook with 10.6 server that has iCal and address book
> > services to sync stuff between 10.9 laptop, 10.6 laptop, iphone and ipad.
> > It works for what i need but obviously it isnt for everyone.
> >
> > Im looking at other alternatives for all in one type deals but it seems
> > every "cloud" service pretty much sells your info in one shape way or
> form.
> >
> > So you dont need to use icloud at all but it appears you will need a
> third
> > party server to sync stuff.  Yet another step back asswards for the
> > industry.
> >
> >
> >
> >
> >
> > On Oct 28, 2013, at 10:43, silence_is_b...@hushmail.com wrote:
> >
> > The functionality of syncing contacts/calendar is MISSING in
> > iTunes...gone...poof...Casper...out of luckplug in your iDevice on
> the
> > latest, then check it out...you can sync photos and music, but nothing
> > else...it's a bad scene.
> >
> > On Monday, October 28, 2013 at 8:34 AM, "Joel Esler" 
> > wrote:
> >
> > What happens when you refuse to sign up for iCloud?
> >
> > 
> >
> > --
> > Joel Esler
> >
> >
> > On Oct 28, 2013, at 08:09 AM, silence_is_b...@hushmail.com wrote:
> >
> > A warning (disclosure) to you Apple peopleif you're planning to sync
> > your shiny iDevice with Mavericks, you will be FORCED to use iCloud
> (syncing
> > from your iDevice to your iPuter is now gone).  I suspect this is one of
> the
> > reasons why Mavericks was a "free" upgrade.  Apple probably figured the
> $40
> > they'd get from the sale of the OS is less then when they'd get with have
> > your calendar and your contacts within easy reach.  Per their policy:
> >
> > What personal information we collect
> >
> > When you create an Apple ID, register your products, apply for commercial
> > credit, purchase a product, download a software update, register for a
> class
> > at an Apple Retail Store, or participate in an online survey, we may
> collect
> > a variety of information, including your name, mailing address, phone
> > number, email address, contact preferences, and credit card information.
> >
> > When you share your content with family and friends using Apple products,
> > send gift certificates and products, or invite others to join you on
> Apple
> > forums, Apple may collect the information you provide about those people
> > such as name, mailing address, email address, and phone number.
> >
> >
> > How we use your personal information
> >
> > The personal information we collect allows us to keep you posted on
> Apple’s
> > latest product announcements, software updates, and upcoming events. It
> also
> > helps us to improve our services, content, and advertising.
> >
> >
> > Nice not to have choices ;)
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
> >
> > ___
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.c

[Full-disclosure] CFP RootedCON 2014

[Omar Benbouazza]

Hello dudes,

The due date has been postponed until 16th December. As we told previously,
this year the conference allows English and Spanish talks.

If you want good weather, great food and nice people... come to Spain! ;-)

http://www.rootedcon.es/index.php/rooted-con-2014-cfp-deadline-postponed-until-december-16/?lang=en

Regards,
---
RootedCON V (2014) - www.rootedcon.es
@omarbv
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] Dates for the opening of registration for Rooted CON 2014

[Omar Benbouazza]

Hello dudes,

We announce that on *Monday January 13*, the registration form will be open
to purchase your tickets for the next edition of Rooted CON, the fifth,
which will be celebrated in *March, from 6th to 8th*.

Here are the sections of tickets by type (*Student, Professional,
Professional with Discount*):
  Date rangeStudentsProfessionalProfessional with discount  *January 13
2014* → *January 31 2014*40€90€80€  *February 1 2014* → *February 13 2014*
60€120€110€  *February 14 2014* → *February 28 2014*80€160€140€  *March 1
2014* → *March 5 2014*140€320€280€  *Sale in congress*180€400€340€

We recommend you to *carefully read the general conditions* since the past
year a number of restrictions on the purchase of tickets with student
discount was added. Specifically, as student we will only accept people who
are NOT active in some form and prove their student status with the
*registration
for the current course* (we won’t accept student ID cards). And above all,
we will not issue invoices to people who have registered as a student.

New this year, after many requests from you, *the payment of the ticket
will be possible during the process of registration and by credit card*.

Link:
http://www.rootedcon.es/index.php/dates-for-the-opening-of-registration-for-rooted-con-2014/?lang=en

Best Regards,

---
RootedCON V (2014) - www.rootedcon.es
@omarbv
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] Rooted CON 2014 attendee registration is open!

[Omar Benbouazza]

Hello,

As we previously announced, today *we officially open the attendee
registration process for Rooted CON 2014*, which will be held in *March,
from 6th to 8th.*

Remember that this CON is the most important in Spain, and one of the mod
"Pr0" in Europe.

You are welcome! :)

http://www.rootedcon.es/index.php/rooted-con-2014-attendee-registration-is-open/?lang=en

Br,
---
RootedCON V (2014) - www.rootedcon.es
@omarbv
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[Full-disclosure] RootedArena 2014: Information

[Omar Benbouazza]

Hello everyone,

 After thinking a lot in how to approach the RootedArena we promised, this
year we decided to *give a chance to all those people who are getting
started in the world of security* by creating a "*Riddle*" quite fun and
where you can learn how to solve different types of challenges.

According to our policy of bringing security to young people and the
university environment, we think that this is a great opportunity to "hook"
people and to be bitten with the desire of hacking.

*The challenges will begin on Friday February 21st at 17h*, and will be
open until Sunday 23rd at 23:59 h, stay tuned to
@RootedArena
 and #RootedArena  on
Twitter :)

http://www.rootedcon.es/index.php/information-about-rootedarena/?lang=en

Regards,
---
RootedCON V (2014) - www.rootedcon.es
@omarbv
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/