[00:02.750 --> 00:07.310]  Some trouble with our slides, they're not working at the moment, but they're working on it. We're
[00:07.310 --> 00:17.650]  talking to tech support in alt space about it. Okay, no problem about the slides. Can you hear
[00:17.650 --> 00:23.370]  me well everyone? Oh yeah, so you want me to go ahead and I can... we're a little early yet,
[00:23.370 --> 00:28.170]  we got about six minutes, but I can go ahead and introduce you whenever you're ready.
[00:29.330 --> 00:36.250]  Yeah, please do. Thank you. Okay, welcome everybody. This is Defcon 30, alt space VR,
[00:36.250 --> 00:42.950]  Defcon Group's presentation. We're having a little technical difficulty with our slides,
[00:42.950 --> 00:46.710]  but they're working on that and they're talking to alt space VR tech support for it. In the meantime,
[00:46.710 --> 00:51.990]  our speakers can go through the slides. We can make these slides, depending on the talk, we'll
[00:51.990 --> 00:58.870]  talk to the presenters. Not all of them may embargo their slides, for instance, but if they
[00:58.870 --> 01:03.630]  are willing to release them, we'll make them available so people can download them. Also,
[01:03.630 --> 01:09.330]  we're available on Discord. You can always talk to us on the Defcon Group's VR Discord,
[01:11.530 --> 01:17.950]  dcgvr.org. There's links there to all that information. So our next speakers are Mauro
[01:17.950 --> 01:29.690]  Eldridge and Adan. They're both from Argentina. Mauro is an Argentinian hacker, founder of DC5411
[01:29.690 --> 01:40.090]  in Argentina and Uruguay, specializing in hardware hacking and crafting madness of Ruby. He's a
[01:40.090 --> 01:47.930]  speaker at over 35 events, so he's a very seasoned speaker. Adan is also from Argentina Hacker Group.
[01:48.370 --> 01:53.750]  Member of DC5411. He's a junior hacker and developer learning
[01:55.250 --> 02:01.630]  my way by playing with different languages and boxes, or I hope I got all that right.
[02:01.630 --> 02:06.570]  So thank you for being here and feel free to take it away. Just you'll have to run your slides
[02:06.570 --> 02:11.610]  locally. If you pick up a mic here, I'll drop this one. You can pick up these mics. You'll be
[02:11.610 --> 02:16.470]  able to talk to everybody in the room. I'll also make sure I give you megaphone status,
[02:16.470 --> 02:20.190]  which means that no matter where you are on the stage, you'll be able to hear you
[02:20.190 --> 02:22.810]  throughout the entire space. So let me set that up real quick.
[02:28.540 --> 02:32.760]  Okay, thank you for inviting us today. We're really happy to be here.
[02:34.240 --> 02:39.760]  Okay, since the slides are not working, we provided on our Twitter and the channel
[02:41.460 --> 02:46.980]  GitHub where we're posting in source code what we're presenting today and also the thoughts.
[02:46.980 --> 02:51.440]  So feel free to follow from there. There's also a recorded demo
[02:53.540 --> 03:00.800]  around the other day by playing with this. So feel free to watch it there too.
[03:02.860 --> 03:12.200]  So okay, I will say this. Welcome to the talk. I'm Martin Valdez from today and me from PC54.
[03:13.160 --> 03:24.740]  Our talk today presents this old tool called Gene. Think of it like a box or an acme,
[03:24.740 --> 03:34.200]  but where the machine is sold. It's not only a mouse, it's a face. Think of it as a game
[03:34.200 --> 03:41.460]  where you have a box that has a name, has a face, it has some quotes, phrases.
[03:42.200 --> 03:49.300]  We can show you in this code, so it won't fall back. Think about it like a box.
[03:50.380 --> 04:09.460]  It won't fall back without putting a thought. So I'm going to play this and I'm going to pass
[04:09.460 --> 04:21.790]  the microphone to Adam to present. Hello there, my name is Adam DiBattista and I am a junior
[04:21.790 --> 04:28.810]  hacker from Argentina. I spoke in the past for Argentina, India and Bolivia and this is my first
[04:28.810 --> 04:36.090]  time taking for the USA. I am really happy to be here in the interest of showing the demo of
[04:36.090 --> 04:50.190]  Exploit and Drown in some minutes. Okay, this will be an open-source tool, so we are happy to
[04:50.190 --> 04:56.810]  share with you and to receive any kind of contributions that you make. It doesn't matter
[07:38.770 --> 07:47.830]  if you are new to the channel or if you are new to the platform, we are here to help you.
[07:49.370 --> 07:52.330]  If you are new to the channel or if you are new to the platform, we are here to help you.
[07:57.810 --> 08:03.730]  Yeah, we're having some technical difficulties. Ability to present slides has gone down.
[11:58.560 --> 12:15.240]  So, we are having some technical difficulties. Ability to present slides has gone down.
[12:31.700 --> 12:58.540]  So, we are having some technical difficulties. Ability to present slides has gone down.
[12:58.560 --> 13:13.460]  Ability to present slides has gone down.
[13:37.560 --> 13:54.540]  Ability to present slides has gone down.
[14:04.240 --> 14:25.360]  Ability to present slides has gone down.
[15:02.260 --> 15:03.660]  ...
[15:04.560 --> 15:05.840]  ...
[15:09.360 --> 15:10.060]  ...
[15:10.060 --> 15:11.760]  ...
[15:15.400 --> 15:16.800]  ...
[15:16.800 --> 15:17.800]  ...
[15:23.080 --> 15:24.480]  ...
[15:26.480 --> 15:27.180]  ...
[15:28.740 --> 15:30.140]  ...
[15:33.600 --> 15:35.000]  ...
[16:06.300 --> 16:11.300]  Now, I'd like to share with you a little bit of history.
[16:11.300 --> 16:15.060]  Some of the things we've done for fun,
[16:15.060 --> 16:18.220]  found a way for the community to get together,
[16:18.220 --> 16:24.140]  and we've come up with this crazy scenario of curfew changes.
[16:24.260 --> 16:28.960]  Again, everyone will contribute what they can.
[16:30.860 --> 16:36.280]  Some of the things we've done for fun,
[16:36.280 --> 16:40.580]  found a way for the community to get together,
[16:40.580 --> 16:52.200]  and we've come up with this crazy scenario of curfew changes.
[16:52.900 --> 16:56.900]  Again, everyone will contribute what they can.
[16:56.900 --> 16:58.940]  Again, everyone will contribute what they can.
[17:11.640 --> 17:30.740]  I don't know about anybody else, but I could definitely see the GitHub screen there for a good bit of the presentation.
[17:35.500 --> 17:41.120]  Yeah, we put that screen up with the GitHub link.
[17:41.120 --> 17:49.800]  The reason we did that is that people using an actual VR headset would not be able to see a URL that we posted.
[17:49.800 --> 17:53.260]  We also posted it over on the screen here on the side, but it got cut off.
[17:53.260 --> 18:00.120]  So they posted the actual GitHub page on a screen temporarily during the presentation so people could get the link.
[18:00.120 --> 18:08.020]  If you go to defcongroupsvr.org, you can connect to our Discord server.
[18:08.020 --> 18:11.560]  We can give you the links that way as well.
[18:11.640 --> 18:15.520]  And they've made their slides available on that GitHub page as well.
[18:15.520 --> 18:18.620]  So thank you to our speakers. That was an excellent presentation.
[18:18.720 --> 18:20.080]  Thank you for that.
[18:21.280 --> 18:25.600]  If anybody has questions right now they would like to ask our speakers, feel free to ask.
[18:30.890 --> 18:33.670]  Are you all avid D&D players as well?
[18:35.690 --> 18:43.950]  No, you know, to be fully honest, I just saw some campaigns of D&D on Warhammer 40k, but I never played myself.
[18:51.210 --> 18:54.690]  What was the hardest part of making all this, would you say?
[18:55.830 --> 19:07.490]  The hardest part for sure was that once you submit the form, we need to replace all the string you submitted to the Ruby template,
[19:07.490 --> 19:14.410]  where they would, you know, to fill the API keys, the strings that the boss is going to say, and we use placeholders.
[19:14.410 --> 19:26.670]  You know, we use a highly specific variable name, which needs to be replaced with GSOV, or something like Unix Set, S-A-E-D.
[19:27.710 --> 19:32.030]  And the bad part is that this messes up everything.
[19:32.030 --> 19:38.110]  Because the backend sometimes will just catch a single quote or catch anything and it won't run at all.
[19:38.750 --> 19:41.190]  Debugging that part was really hard.
[19:50.600 --> 19:56.160]  Would you say when you started this project that you knew what the end of it would look like exactly?
[19:56.160 --> 20:00.740]  Or was it just kind of an idea that just kind of grew like an initial idea?
[20:02.220 --> 20:10.600]  Well, this is a really early stage. We couldn't exactly figure out how many conditions we wanted to implement.
[20:10.600 --> 20:19.240]  Actually, we have a list of all the things we would like to see implemented, but we can't materialize lots of these ideas.
[20:20.400 --> 20:30.040]  And that's a good thing for me. Part of the project is foreseeable. We can see how it will look like.
[20:30.040 --> 20:37.140]  But another part is still quite ethereal. We can still yet figure out exactly how to make it.
[20:37.180 --> 20:43.660]  And that's fun, because you need to resort to a lot of people from different backgrounds to ask,
[20:43.660 --> 20:50.680]  Hey, can we do this? Can we get this information? Can this be done this way?
[20:50.920 --> 20:54.760]  So yeah, there are a lot of things that are still undefined, to be honest.