Abraxas3d Profile picture
Aug 14 84 tweets 13 min read
Closing ceremonies at #DEFCON30

"Don't be an ass" - @1o57 winner of one of two unique Uber Contributor awards.
@1o57 Thank you @ktjgeekmom and @compukidmike for the conference badge this year.
Transparency Report:

12 calls for medical assistance (most were alcohol related).

Masking was the most challenging thing to deal with this year. People are tired of masking. This lead to a lot of friction and goons had to keep reminding people to do it.
3 badges revoked. 1 individual banned. Many requests to put masks on. 9 people left rather than wear a mask.

Members of the press: 3 press badges revoked this year. 1 member of the press was banned. 1 news outlet was banned.

It was OAN.

NBC was the first outlet banned.
OAN is the second.

Hotline took 34 calls and 14 texts. 4 COC violations. 5 accessibility concerns.

Many many calls about hotel registration.
CoC violations:

1 verbal harassment, 1 threatening behavior. 2 goons removed for violating CoC, 1 person removed by venue for threatening.

Sexual misconduct: we have a zero tolerance policy.
"We will find you and we will delete you"

5 Unwanted touching. 2 people tracked down - cctv used - permanent bans.

A former attendee that had assaulted a previous attendee was banned in advance.
Reach out to the goons and DEFCON with issues. Send them reports. Reports give us the power to track people down *and remove them* from the community. We were more effective this year because of reports and communications from the community, than in any previous year. Keep it up.
Unofficial check on Covid? If you test positive, please reach out to the goons. We want to know how well things are working.
Press: 70+ credentialed individuals, nearly 50% nontraditional media. 15 journalists from the Norwegian institute of journalism. 3 revoked badges, 1 outlet wide ban, 1 individual ban.
It's been more than a decade since we deliberately invited reporters to defcon. Reporters come regardless of invitations. In the early days, media were actively invited to make sure we were addressing inaccuracies about hacking and the community.
It's shifted away from proactive efforts to issues management. The transparency report (5 years running) is important.

Secrets are expensive to keep.
We only have one rule for the media that attend here. They must respect the privacy of the attendees. Photos, videos? Must be by consent.

Most reporters follow this rule and adapt the way that they work to demonstrate respect for the community.
*It is hard to enforce this policy when we do not respect consent from each other.*

We did have a couple badges revoked.

NBC ban was because they were filming in the Casino. "Don't fuck with the hotel or the casino".

There's nothing anyone can do if the casino kicks you out.
Thank you to everyone educating people outside the community about what we do and what we are. Village sponsors are supporting instead of exploiting. This is a huge step forward.
Next up: Riverside, Number One at Devops (discord community)

Lots of stats! They grew out of necessity, and it turned into something amazing.
"No downtime" = awesome!

Lots of activity.

Bottom line? 15,000 lines of code. 40% of this codebase changed this year. Not a weekend warrior team. They work around the year to make things happen.
3 new bots created, 500 channels, they still break records and have insane amounts of stuff going on. They tax the hell out of Discord. Discord has been a good partner.

77% of the members are more than a year on the discord. They are real people.
33% are from outside the US.

This is how people can participate. The international contestants in the competitions were able to participate through Discord.

No bans, 3 warnings.

Devops team recognized.
Brand new facility, brand new infrastructure: what happened with our packets?

"Where did the packets go?"

NOC report: we like this new place. Timeline shown (how we got everything working).

Lots of teams work throughout the year to get things going.
They start on Monday and run hard from the get go.

The goal? Do nothing the days of the event. It all is set up and working.

This year? That was pretty much what happened. They tear down and train and then leave on Wednesday.

They enjoyed the con.
It's a large star network, distributed to sites, and lots of edge switches and access points. It's a huge scope. 4 Prius cargo loads of edge switches. Lots of managed switches. 318 Access Points in Caesar's Forum. They support everything that they can.
If the answer is "no" it's usually because of some sort of physical limit.

The victory report: 14.2 TB of internet traffic. Inbound 8.6 outbound 5.6.

5.255 users registered on wifireg. 8,346 devices.
Challenges?

none.

It worked. They nailed it. QED.
The hardest part was logistics in getting the gear to the site.

Ticketing system, continuous synthetic user monitoring, nzyme WiFI monitoring, and all the services backed up with stiff support.

This is a master class implementation for network deployment.
Thank you to the NOC team. And families of NOC volunteers!
Caesar's IT and SOC = helpful.

DEFCON TV: the people that bring all this streaming are lead by Videoman. Report!

"We get up so you don't have to"

Morgan is the Number Two, and reports:

There's twitch content too.
Infrastructure is extensive. 28 different channels to 20,000 hotel rooms.

See DCTV.defcon.org
Most popular program was Hacker Jeopardy Finals.
Supply chain issues getting the gear? Huge challenge. People had to just keep trying and trying and trying. Good work team!

Thank you to DC NOC, because outbound traffic *must work*. Thank you to Caesar's IT.
Trying to coordinate all of this is like herding cats. There's tons of ways to get information out that is created by the community. How can we aggregate all the data? And then make this findable?

Is there a single point of contact? Yes there is.

INFO BOOTH
"Information as a service" delivered with style, sass, and grace.

This was the first year that "where is the restroom" wasn't the #1 request. It was instead, "where is registration?"

InfoGoons were run thin this year. They need more on the team.
Do you use HackerTracker app? Team lead Lock shares some stats.

There is a team and they work hard.

It's the app for the event. Huge event, includes all the many villages. Major changes before and during the conference. 17,000 peak users. IOS overtook Android this year.
450,000,000 data reads out of the app.

Feedback welcome!
Core content is speakers.

We spend serious time reviewing CFPs.

If you are rejected as a speaker and you want feedback *the you get it*.

Unlike many other conferences and organizations.

This takes a lot of time. But it's worth it. It's immensely valuable.

Give feedback.
Head of CFP speaker control is up next:

Pasties:
94% score 4/5
71% delivered by first time people *yes!*

New space for speakers at the Caesar's Forum? It went very well. No issues. This is a first.
CFP board did a fantastic job.

If you have a talk idea? Submit it. At the very least, you'll get the feedback. #WINWIN

Shout out to SOC for the support, and Encore the conference AV team.
Workshops: one entire hotel property was dedicated to workshops. You can go to one place and not split up your time.

3 days of workshops - 2330 seats in 24 hours sold. 28 workshops total.

Had to deal with social distancing.
Huge interest in workshops - they usually sell out fast. Many of the instructors were new. 4 hours in length.

No issues this year. Attendees happy. Workshops full.

If you want to give one? Do it! Support and feedback is given.
No "trend" data is available yet, but attendees received surveys and there should be something soon on the defcon.org site.

Email workshops@defcon.org with feedback.
Technical director for arts and entertainment reports next:

"We went through a lot this year"

Sounds like it was hard. But, having been to a lot of the entertainment, including the Taiko group, I have to say that it worked.
Taiko: when they were booked, we were trying to figure out a way to test the structural integrity of the building. We did have Miss Jackalope destroy the ceiling last year.

With all the drum and bass, would it damage the building in the same way?

No - and it was amazing.
We have the soundtrack for DC30 and it's pretty good!

media@defcon.org for comments

defconmusic.org <== check it out
Cleanup for the party at the top of the escalators, and he found a laptop. It was next to some plants, plugged in. Oh no!

He took it in, locked it up, and the next morning in the chillout finds the person that lost the laptop.

"Reunited and it feels so good"

Laptop returned!
No one stole the laptop. No one cracked it. Respecting others' property? Good work. It sat there for hours.
Thanks to everyone in the crew! Good work on the entertainment. It was great.
Ninja swords! We have three. We went to the party.

But wow. The sound. They are loud. And annoying. Unwrapping them? Handing them out? Was a huge PITA.

*entertainment team needs volunteers*

Please consider joining their team!
Depressants ==> stimulants switchover by The Dark Tangent.

Stats: $4,535 raised for EFF at a party for the EFF.
Documentary plans ran into covid. boo. The group we were going to do in order to do the recording exploded - so we decided to go to the community, and the result is a lot of videos contributed by motivated volunteers.

"video team" really nailed it! Thank you!
Number One head of villages speaks next:

1) Villages need more space.
2) Thank you to everyone helping with villages!
Data Duplication Village report:
We give away free data to attendees and hope to continue doing this in the future. Bring your hard drive, get all the content from all DEFCONs. For free.
There's a lot of orgs that could take a big lesson from this.

Sharing what we know? Makes the community more powerful.
Demo Labs:

The walls were LED blackout walls. It's a cool space. Demo labs showcase projects that want to get some visibility.

I was hoping @m17_project would apply this year. I'm sorry they didn't - I think it would have fit in.
It's an opportunity for very focused presentation and Q&A. Almost every demo lab this year raved about the feedback.

30/47 Demo Labs approved/submitted.

If you have a cool project? Please consider demo labs.
Contest and Events: Grifter speaks about what happened.

He missed us and is so happy to be back in person. It was clear from this year that people were tired from being isolated. Contests were hugely popular and massively attended. The enthusiasm was pent up and then deployed.
Villages that had contests and events were very well attended too. We saw this firsthand in @rfhackers Sanctuary.
The Badge Challenge:

There were things you could unlock. Lots of telephones set up in the conference area. They "brought back Jenny".

12,000 phone calls made! 312 voicemails left for Jenny.

Quite the journey. Badge makes music and is a lot of fun.
Group effort - big shoutout to the discord. Almost everything is documented.

It's a neat badge with an achilles heel - you can easily short out the audio amp with the lanyard clip.
Capture the Packet contest (Black Badge contest)

Constantly changing based on threats in the real world.

And extra special bullshit added on top.

Last year? Too hard. This year? Dial it back a bit and pivot. This worked.
Winning team? 700 points. Prior black badge winners? Got 0! People say keep it super hard. Thanks all around to CTP contributors and supporters.
Expansion:

When we say "people say keep it super hard" the contest lead is trying to say that they solicited feedback, and people told them to keep it hard. Don't make the contest easier. Keep it very difficult.
IoT Village CTF:

Great growth. The current management put on 50 challenges! More? People want more? It seems like it.

Bridging the gap between new players and experienced players is "a thing" that they are paying attention to. This is Good.
This used to be SoHopelessly Broken CTF but has grown and developed over time.

Hardware now included too. Competition was close, only separated by a few challenges. Very competitive.
Darknet-NG:

HELLO YOU BEAUTIFUL PARTY PEOPLE AT DEFCON <== Gator yells to us, LOL. In person RPG! Most prolific badge produces (I have most of them!)

Great job this year. Paper circuit boards! We saw several at @OpenResearchIns booth.

You designed the badge, yourself.
A remote player placed second. Right on! Very accessible contest.
BIC (Blacks in Cyber) CTF:

Black badge awards! What a great team.

"Love does not lose its way home"

Daddy Cocoa Man reports on the CTF.

20 challenges, total points 480. Within one challenge, the top three teams are announced.

Very competitive CTF!
174 points won "Collateral Damage" was the winning team.

RF CTF is next!

Our home Village ❤️
15 years of this stuff, wow.

Used to be WiFi Village. It's DC to Daylight now! And it rocks.

40 players virtual in addition to the MANY on site.

Shout out to Wigle.

This week, we did something different. Indoor warwalk. 27 properties, lots of foxes. "AC? ok. Heat? Wrong"
Thank you @rfhackers Sanctuary for a fantastic CTF, a "sold-out" speaking track, and space for the community to share with each other.
Social Engineering village announces winners of their CTF. Lots of hard work!

Follow @sec_defcon
"There was a lot of illegal stuff on the scavenger hunt"

OK, well, yes. Penguino started it and it has been built up to the thing it is today. This year? It was at a level that is going to be hard to beat.

What did they put these folks through?

Well...
"We are always watching and always judging"

Yes. Yes they are. 25 years of the hunt, wow.

It was great! Abraxas161 participated and worked hard on it, so I had some insight into the way it went down this year. 5 points separated 2nd and 3rd.
Come play next year! It's a wonderful adventure.
"The" CTF is next:

Nautilus Institute put on this year's competition, and they take the stage.

Goal: "Weird and shenanigans"

"Shenanigans were had, and our infrastructure greatly suffered"

Goal: Spectators to be able to understand what the competitors were doing.
"Live CTF" as an event? Explained, but I'm not following.

1v1? What is up with that?
OK results announced.

1) Maple Mallard Magistrates
2) Katzebin
3) StarBugs
Very challenging and requires a lot of sacrifice throughout the year to pull off this sort of event. Thanks to everyone that put this on.
There was an accidental omission from the slide deck.

If you notice - all the different teams have a different badge type. This falls to a team called Inhuman Registration.

Thank you to this team!

25,000 badges distributed this year.
Black Badge raffle? A troll no more? It was a troll. But, for DC30 maybe it's not a troll?

Unclear.

Gosh. He thanks his wife for doing lots of "typing". Surprise surprise.

Code stolen from DC26 bender badges.

Yes. It's still a troll.
Tickets from 26, 27, all colors from this year, a specific receipt, a single page single spaced report on the topic of their choice:

And...

He's rolling a d20 to choose from the contestants that qualified.
Thank you for putting up with this trolly asshole. An additional black badge is in the universe.
Goons acknowledged. If you have gooned for 10 years or more? You get a gold badge. Attend for life for free.

It's a long list. Thank you to everyone that has volunteered to keep us safe and sane.
DC HQ: Fulltime year round employees. DT, Nikita, Janet, Neil, Will, Darington, Jeff, and TCMBC.

Due to covid? They had to step up their game.

Thank you special to Nikita.
DC 31
August 10-13, 2023

Caesar's Forum
Linq, Harrah's, Flamingo

Afterparty in the Chillout! Until 11pm!

Join us there.

Happy Birthday Elkantaro!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Abraxas3d

Abraxas3d Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @abraxas3d

Jun 1
I saw the Top Gun movie at an actual theater yesterday on a lark (lots and lots going on at various jobs) and well, I loved it.

A completely fitting sequel to the first Top Gun, which I saw in the iconic Cinema 150 in Little Rock, AR.
A bit about the Cinema 150 is here:
cinematreasures.org/theaters/1060

I "worked" there (unpaid), and I have a lot of stories.

Here's one.
We had one screen. One enormous, awesome, dome-theater screen. Better than IMAX - this was how movies should be seen. It's how movies are shown *in sci fi movies*. The parking lot alone could have handled a small SCCA event.
Read 32 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(