1
00:00:02,750 --> 00:00:07,250
Some trouble with our slides, they're not working at the moment, but they're working on it.

2
00:00:07,250 --> 00:00:12,430
We're talking to tech support in alt space about it.

3
00:00:14,230 --> 00:00:16,350
Okay, no problem about the slides.

4
00:00:16,970 --> 00:00:18,730
Can you hear me well everyone?

5
00:00:19,130 --> 00:00:28,170
Oh yeah, so you want me to go ahead and I can... we're a little early yet, we got about six minutes, but I can go ahead and introduce you whenever you're ready.

6
00:00:29,330 --> 00:00:30,350
Yeah, please do.

7
00:00:30,350 --> 00:00:31,170
Thank you.

8
00:00:31,290 --> 00:00:33,870
Okay, welcome everybody.

9
00:00:33,870 --> 00:00:39,250
This is Defcon 30, alt space VR, Defcon Group's presentation.

10
00:00:39,650 --> 00:00:46,250
We're having a little technical difficulty with our slides, but they're working on that and they're talking to alt space VR tech support for it.

11
00:00:46,250 --> 00:00:48,610
In the meantime, our speakers can go through the slides.

12
00:00:48,750 --> 00:00:54,490
We can make these slides, depending on the talk, we'll talk to the presenters.

13
00:00:54,490 --> 00:01:02,930
Not all of them may embargo their slides, for instance, but if they are willing to release them, we'll make them available so people can download them.

14
00:01:02,930 --> 00:01:05,990
Also, we're available on Discord.

15
00:01:05,990 --> 00:01:12,970
You can always talk to us on the Defcon Group's VR Discord, dcgvr.org.

16
00:01:12,970 --> 00:01:15,470
There's links there to all that information.

17
00:01:15,690 --> 00:01:21,850
So our next speakers are Mauro Eldridge and Adan.

18
00:01:21,850 --> 00:01:24,350
They're both from Argentina.

19
00:01:24,850 --> 00:01:39,330
Mauro is an Argentinian hacker, founder of DC5411 in Argentina and Uruguay, specializing in hardware hacking and crafting madness of Ruby.

20
00:01:39,330 --> 00:01:44,130
He's a speaker at over 35 events, so he's a very seasoned speaker.

21
00:01:44,350 --> 00:01:47,930
Adan is also from Argentina Hacker Group.

22
00:01:48,370 --> 00:01:50,630
Member of DC5411.

23
00:01:51,290 --> 00:02:01,630
He's a junior hacker and developer learning my way by playing with different languages and boxes, or I hope I got all that right.

24
00:02:01,630 --> 00:02:05,250
So thank you for being here and feel free to take it away.

25
00:02:05,250 --> 00:02:07,410
Just you'll have to run your slides locally.

26
00:02:07,870 --> 00:02:10,390
If you pick up a mic here, I'll drop this one.

27
00:02:10,390 --> 00:02:11,410
You can pick up these mics.

28
00:02:11,410 --> 00:02:13,190
You'll be able to talk to everybody in the room.

29
00:02:13,190 --> 00:02:21,250
I'll also make sure I give you megaphone status, which means that no matter where you are on the stage, you'll be able to hear you throughout the entire space.

30
00:02:21,250 --> 00:02:22,810
So let me set that up real quick.

31
00:02:28,540 --> 00:02:31,120
Okay, thank you for inviting us today.

32
00:02:31,180 --> 00:02:32,760
We're really happy to be here.

33
00:02:34,240 --> 00:02:46,980
Okay, since the slides are not working, we provided on our Twitter and the channel GitHub where we're posting in source code what we're presenting today and also the thoughts.

34
00:02:46,980 --> 00:02:49,320
So feel free to follow from there.

35
00:02:49,460 --> 00:02:57,500
There's also a recorded demo around the other day by playing with this.

36
00:02:57,920 --> 00:03:00,800
So feel free to watch it there too.

37
00:03:02,860 --> 00:03:05,340
So okay, I will say this.

38
00:03:05,340 --> 00:03:06,580
Welcome to the talk.

39
00:03:06,580 --> 00:03:12,200
I'm Martin Valdez from today and me from PC54.

40
00:03:13,160 --> 00:03:21,020
Our talk today presents this old tool called Gene.

41
00:03:21,020 --> 00:03:27,120
Think of it like a box or an acme, but where the machine is sold.

42
00:03:27,380 --> 00:03:31,900
It's not only a mouse, it's a face.

43
00:03:32,000 --> 00:03:41,460
Think of it as a game where you have a box that has a name, has a face, it has some quotes, phrases.

44
00:03:42,200 --> 00:03:47,160
We can show you in this code, so it won't fall back.

45
00:03:47,160 --> 00:03:49,300
Think about it like a box.

46
00:03:50,380 --> 00:03:53,440
It won't fall back without putting a thought.

47
00:03:54,120 --> 00:04:12,700
So I'm going to play this and I'm going to pass the microphone to Adam to present.

48
00:04:13,380 --> 00:04:23,390
Hello there, my name is Adam DiBattista and I am a junior hacker from Argentina.

49
00:04:23,390 --> 00:04:31,150
I spoke in the past for Argentina, India and Bolivia and this is my first time taking for the USA.

50
00:04:31,150 --> 00:04:39,470
I am really happy to be here in the interest of showing the demo of Exploit and Drown in some minutes.

51
00:04:40,330 --> 00:04:56,010
Okay, this will be an open-source tool, so we are happy to share with you and to receive any kind of contributions that you make.

52
00:04:56,010 --> 00:04:56,810
It doesn't matter

53
00:07:38,770 --> 00:07:47,830
if you are new to the channel or if you are new to the platform, we are here to help you.

54
00:07:49,370 --> 00:07:52,330
If you are new to the channel or if you are new to the platform, we are here to help you.

55
00:07:57,810 --> 00:08:00,730
Yeah, we're having some technical difficulties.

56
00:08:01,190 --> 00:08:03,730
Ability to present slides has gone down.

57
00:11:58,560 --> 00:12:04,800
So, we are having some technical difficulties.

58
00:12:04,800 --> 00:12:15,240
Ability to present slides has gone down.

59
00:12:31,700 --> 00:12:50,240
So, we are having some technical difficulties.

60
00:12:52,300 --> 00:12:58,540
Ability to present slides has gone down.

61
00:12:58,560 --> 00:13:13,460
Ability to present slides has gone down.

62
00:13:37,560 --> 00:13:54,540
Ability to present slides has gone down.

63
00:14:04,240 --> 00:14:25,360
Ability to present slides has gone down.

64
00:15:02,260 --> 00:15:03,660
...

65
00:15:04,560 --> 00:15:05,840
...

66
00:15:09,360 --> 00:15:10,060
...

67
00:15:10,060 --> 00:15:11,760
...

68
00:15:15,400 --> 00:15:16,800
...

69
00:15:16,800 --> 00:15:17,800
...

70
00:15:23,080 --> 00:15:24,480
...

71
00:15:26,480 --> 00:15:27,180
...

72
00:15:28,740 --> 00:15:30,140
...

73
00:15:33,600 --> 00:15:35,000
...

74
00:16:06,300 --> 00:16:11,300
Now, I'd like to share with you a little bit of history.

75
00:16:11,300 --> 00:16:24,140
Some of the things we've done for fun, found a way for the community to get together, and we've come up with this crazy scenario of curfew changes.

76
00:16:24,260 --> 00:16:28,960
Again, everyone will contribute what they can.

77
00:16:30,860 --> 00:16:52,200
Some of the things we've done for fun, found a way for the community to get together, and we've come up with this crazy scenario of curfew changes.

78
00:16:52,900 --> 00:16:56,900
Again, everyone will contribute what they can.

79
00:16:56,900 --> 00:16:58,940
Again, everyone will contribute what they can.

80
00:17:11,640 --> 00:17:30,740
I don't know about anybody else, but I could definitely see the GitHub screen there for a good bit of the presentation.

81
00:17:35,500 --> 00:17:41,120
Yeah, we put that screen up with the GitHub link.

82
00:17:41,120 --> 00:17:49,800
The reason we did that is that people using an actual VR headset would not be able to see a URL that we posted.

83
00:17:49,800 --> 00:17:53,260
We also posted it over on the screen here on the side, but it got cut off.

84
00:17:53,260 --> 00:18:00,120
So they posted the actual GitHub page on a screen temporarily during the presentation so people could get the link.

85
00:18:00,120 --> 00:18:08,020
If you go to defcongroupsvr.org, you can connect to our Discord server.

86
00:18:08,020 --> 00:18:11,560
We can give you the links that way as well.

87
00:18:11,640 --> 00:18:15,520
And they've made their slides available on that GitHub page as well.

88
00:18:15,520 --> 00:18:16,780
So thank you to our speakers.

89
00:18:16,780 --> 00:18:18,620
That was an excellent presentation.

90
00:18:18,720 --> 00:18:20,080
Thank you for that.

91
00:18:21,280 --> 00:18:25,600
If anybody has questions right now they would like to ask our speakers, feel free to ask.

92
00:18:30,890 --> 00:18:33,670
Are you all avid D&D players as well?

93
00:18:35,690 --> 00:18:43,950
No, you know, to be fully honest, I just saw some campaigns of D&D on Warhammer 40k, but I never played myself.

94
00:18:51,210 --> 00:18:54,690
What was the hardest part of making all this, would you say?

95
00:18:55,830 --> 00:19:14,410
The hardest part for sure was that once you submit the form, we need to replace all the string you submitted to the Ruby template, where they would, you know, to fill the API keys, the strings that the boss is going to say, and we use placeholders.

96
00:19:14,410 --> 00:19:26,670
You know, we use a highly specific variable name, which needs to be replaced with GSOV, or something like Unix Set, S-A-E-D.

97
00:19:27,710 --> 00:19:32,030
And the bad part is that this messes up everything.

98
00:19:32,030 --> 00:19:38,110
Because the backend sometimes will just catch a single quote or catch anything and it won't run at all.

99
00:19:38,750 --> 00:19:41,190
Debugging that part was really hard.

100
00:19:50,600 --> 00:19:56,160
Would you say when you started this project that you knew what the end of it would look like exactly?

101
00:19:56,160 --> 00:20:00,740
Or was it just kind of an idea that just kind of grew like an initial idea?

102
00:20:02,220 --> 00:20:05,980
Well, this is a really early stage.

103
00:20:05,980 --> 00:20:10,600
We couldn't exactly figure out how many conditions we wanted to implement.

104
00:20:10,600 --> 00:20:19,240
Actually, we have a list of all the things we would like to see implemented, but we can't materialize lots of these ideas.

105
00:20:20,400 --> 00:20:22,700
And that's a good thing for me.

106
00:20:23,300 --> 00:20:28,260
Part of the project is foreseeable.

107
00:20:28,260 --> 00:20:30,040
We can see how it will look like.

108
00:20:30,040 --> 00:20:33,640
But another part is still quite ethereal.

109
00:20:33,640 --> 00:20:37,140
We can still yet figure out exactly how to make it.

110
00:20:37,180 --> 00:20:45,860
And that's fun, because you need to resort to a lot of people from different backgrounds to ask, Hey, can we do this?

111
00:20:45,940 --> 00:20:48,260
Can we get this information?

112
00:20:48,360 --> 00:20:50,680
Can this be done this way?

113
00:20:50,920 --> 00:20:54,760
So yeah, there are a lot of things that are still undefined, to be honest.