Showing all posts by admin
Bash based hastebin client for Pineapple Nano

I have been a fan of the haste-server by @seejohnrun for a while, basically its a pastie server, maybe a bit more prettier. I use it to move code around.

Recently I was fortunate enough to receive a Wifi Pineapple Nano from the @hak5 crew.

So I wanted to be able to use my haste-server via the Pineapple  too. Now for regular environments there are multiple cli clients for the haste-server. But most of them require either python or ruby etc etc. Now thats fine if you have a large filesystem but the filesystem on the Pineapple is somewhat limited. So I wrote a pure-bash version of the client to use on the Pineapple.


#!/bin/bash
#config server detailsx
server_ip=<SERVER ADDRESS>
port=<SERVER PORT>
# end of server config
#-------read output per line---
while read OUT
do
finalOUT="$finalOUT
$OUT"
done
#the above weird formating is to force a new line in the variable holding the data posted to the server.
#--post it to the haste server--
getkey=$(wget -qO- --post-data "$finalOUT" http://$server_ip:$port/documents)
#--parse the returned json to get the key
uri=`echo $getkey | grep -m 1 "key" | sed -E 's/^ *//;s/.*: *"//;s/",?//;s/}//'`
#--echo out the full url
echo "http://$server_ip:$port/$uri"

 

So , replace the <SERVER ADDRESS> and <SERVER PORT> with whatever server you use and you can now post any command output to the haste-server. Save the file and call it whatever.  And add it to your /etc/profile.

alias pinehaste=’/sd/customs/Pinehaste.sh’

( I saved it to the sd card so I won’t loose it everytime I flashed the Pineapple.)

Using Pinehaste:

So to take a command output just pipe it to the pinehaste (or whatever alias you set it to )

example:
[email protected]:~# cat pwettykitten.txt | pinehaste
which will return:
http://<SERVER ADDRESS>:<SERVERPORT>/<SOMEKEY>

all you have to to is now to send the url or copy it or do whatever with it.

I’m sure there are better ways to do it but it works, so no need to fix it.

Cheerios!

 

 

Posted on 2016年10月1日, 10:18 PM By
Categories: stuff
Rubber Ducky against Non-English Environments

So thanks to Mr.Robot , Rubber Ducky and PwnPhone have now become a wet dream for some.

Great! I haz a Rubberducky all your base are belong to us!!!!

Not quite…Rubber Ducky uses Duckyscript to pass on the commands to the targeted environment. Yes! I own your BOX!!
True, if the environment was a en-US environment with a en-US layout keyboard……You say , “Whatu no Soysosu?”

Indeed, if the targeted environment uses a non-en-US keyboard, like a Japanese keyboard….the commands will not work..
Why not? Well cause as the ducky is emulating a keyboard the keystrokes it sends are different than what
the target environment is setup for. See below to compare the differences in layouts.

Credits:Wikipedia.

Credits:Wikipedia.

Screen Shot 2016-09-07 at 19.29.04

credits:Wikipedia

 

So yea, having soy sauce with your rubber ducky could be a problem when passing on commands with special characters
such as:

STRING mode con:cols=18 lines=1

Because the ducky will pass on the keystroke for “=” but the that keystroke on a Japanese layout is “^” .

The way to get around it is to use powershell and add an en-US keyboard to the target and then set it to it .

1.First just get an administrator command prompt

in DuckyScript:

REM Open an admin command prompt
GUI r
DELAY 500
STRING powershell Start-Process cmd -Verb runAs
ENTER
DELAY 2000
ALT y
DELAY 1000

(thank you @hak5Darren) via : 15 Second Password Hack,Mr.Robot Style

2.Then use powershell to add an en-us keyboard layout if the user doesn’t have any. (it will only add it once and not multiple times if it already exists.)

Powershell command: powershell New-WinUserLanguageList en-US

In DuckyScript : STRING powershell New-WinUserLanguageList en-US

3.Then we need to set the default input to the layout

Powershell command : powershell Set-WinUserLanguageList -LanguageList en-US

In Duckyscript: STRING powershell Set-WinUserLanguageList -LanguageList en-US

So now the keyboard layout is set to an en-us (American) keyboard layout so the Ducky can chow down on some nice burgers and hotdogs.
To set the environment back to the original layout just issue the same Set-WinUserLanguageList to the original settings. i.e.:ja-JP etc etc.

Here is a quick demo of the concept:

 

Posted on 2016年9月7日, 7:44 PM By
Categories: Hacklish
TNG LCARS NASA HDEV live stream viewer.

So I enjoy watching the NASA’s High Definition Earth-Viewing System (HDEV) live stream on ustream and NASA’s page.

however I don’t like to have to keep a window on my browser dedicated to viewing this. So I decided to build a viewer box with a raspberry pi. So I can put it on my already cluttered desktop but have a constant view of the stream. The stream will drop out/black out depending on the position of the International Space Station (ISS). I also am a trekkie , so I decided to combine the two together. So I feel like I’m on the Enterprise of TNG watching earth , much like the movie “First Contact.”

Here is the final result:

File 4-18-16, 20 21 57

 

 

 

 

 

 

 

 

 

 

 

 

 

So what did I use?

Hardware:

  1.  Raspberry Pi B+ (cause I had some lying around from a previous project)
  2.   7 Inch HDMI Screen.  (any screen would do but I wanted a small screen factor so I could position it on my desk among the other things )

Software:

  1. Jessie Lite ( I wanted to run the Raspberry in a minimal configuration and not use the X-windows, so I went no X windows , Jessie Lite)
  2. OMX Player (this is the actual core player playing the video feed and the background. -I’ll explain more later)
  3. libav-tools (mainly avconv to create a looping video of the LCARS background)
  4. livestreamer (the grab the stream of the ustream.tv NASA channel and feed it to omxplayer)

Once it ran , it seemed simple but the process wasn’t.

Initially I thought of just building a raspberry pi with a TFT shield , running the Iceweasel browser in full screen. This was a long road into the abyss, the TFT shield I have did not like the frame buffer output , Iceweasel can’t play the ustream etc etc…Now there might be a way but I also felt it was a bit of overkill for a simple stream viewer to have a full X-windows+browser setup. So omxplayer to the rescue.  With omxplayer I can still view the stream via live streamer without having to boot fully into a x-windows environment.

So based on the Miguel Grinberg’s blog post about building a raspberry pi NASA live stream viewer , the first step it to set up  livestreamer to capture the NASA’s stream and hand it over to omxplayer.

#!/bin/bash
while true 
do
livestreamer http://www.ustream.tv/embed/17074538?html5ui mobile_478p –player omxplayer –fifo –player-args “–win \”75 110 710 564\” {filename} –layer 20″
done

So , livestreamer grabs the mobile_478p stream and passes it to the omxplayer and creates a window(size 710 x 564, at the position x=75,y=110)

Now to make the video play inside the LCARS container , its actually 2 layered videos. The lower video  is a loop video (mkv) of the LCARS interface generated by using avconv.

sudo avconv -loop 1 -i lcars.png -tune stillimage -t 10 -y -r 5 lcars.mkv

So the idea is that the lcars.mkv is playing at a lower layer and the NASA feed is on top of that video. (thanks to Brad’s Blah Blog for the idea)

lcars2

basic LCARS image. (lcars.png)

This is were the omxplayer “–layer” option comes in, the higher the number , the closer to the screen the video play is. So the LCARS video plays on layer 10 and the NASA video plays on layer 20. Now since the LCARS interface is just there as a container this video does not have to loop indefinitely , so I decided to pause it after it loads. So using FIFO file , I send a “p” to the player causing to the stream to pause. (updated: I realised I could use the fbi image viewer to layout the background  instead of using 2 instances of omxplayer, the background generating one tended to crap out randomly anyway . )

so the final script to launch the viewer is:

#!/bin/bash

while true
do

livestreamer http://www.ustream.tv/embed/17074538?html5ui mobile_478p –player omxplayer –fifo –player-args “–win \”75 110 710 564\” {filename} –layer 20″

done &

sudo fbi -T 1 –noverbose –fitwidth –autozoom /home/pi/lcars.png

#mkfifo t

#cat t | omxplayer –loop lcars.mkv –layer 10 &

#sleep 1s

#echo p >t

#rm t

 

The last step was to adjust the positioning of the NASA video feed so it would play inside the black container area of the LCAR’s video. After some tweaking I settled on on

–win (omxplayer window positioning option) \”75 110 710 564\”   = Postion the video at x=75 from the left of the screen, y=110 from the top of the screen, size 710 x 564.

added the the script to the profile of the user “pi”and enabled autologon so the viewer would automatically boot overtime I reboot the pi. And now I have a ISS HDEV LCARS viewer.

References:

File 4-18-16, 20 22 19

 

Whaz in da bag?

So I recently uploaded a picture of the stuff I carry on a daily basis, which led to some interesting conversations with others. I figure I would do a write-up on why and what it is that I carry.

Prologue:
It all started back on March.11th 2011, when I was in Tokyo in my workspace about 8 miles (11km) away from where my home is. As you already might know a large earthquake shook the northern part of Japan. The tremors I felt in Tokyo were unlike anything I had experienced before, I remember holding on stuff just hoping it would stop. The aftershocks were even worse, for a whole year Japan felt like a rocking boat. Thats when I started to think, if the next big one hits am I going to be ok? Will I be able to get back to where my family is safely? This is where my journey started as a “get-home-bagger.”

posts

Some post from 3.11 2001

Some background information:
There are numerous websites and youtube channels and videos talking about “the ultimate get-home bag” or “bug out bag” etc etc. Now, what I am about to explain is how my bag is, I don’t think its the “ultimate” bag, I don’t think such a thing even exists. Having gone through multiple iterations of my bag and its contents the current configuration/contents I feel are “good enough” for my situation. So here is an outline of my situations:

1. I live in Tokyo, a highly urbanised metropolitan city with a very advanced public transportation network. Hence I don’t drive, I don’t own a driver’s license. I never was really good at it but thats another long story.

2.Japan is an natural disaster prone area. Everything from earthquakes to massive typhoons to, guerrilla rain storms, heavy snow fall.

3.An active shooter scenario is highly, almost inconceivably unlikely.

4.There is no 4th amendment right equivalent for citizens in Japan. Police routinely can and do question people walking around the city or riding their bike. Why is this important? See item 5.

5.Japan in general but specially in Tokyo where I live has extremely strict restrictions on the transporting of tools and knives. It used to be that you could carry a blade under 6 cm (2.3 inches.) However currently due to a significant increase in burglaries back in the late 90s, Japan has implemented a “Anti-picking” law. (Technically called “Banning the procession of specialised lock opening tools” law ) Under this law, one cannot have any tools that can be used to open or break a lock. Tools include pliers, screw drivers and small knives,scissors,nail clippers,lock picking tools etc, without being able to prove “justifiable” reasons. However there is an caveat here, “justifiable” is often left to the officer questioning you. Metro Police state as an example of a “justifiable” reason as having purchased the item and you are transporting it to another destination, basically anything beyond this and you could be in trouble. There are numerous reports of people having their small blade confiscated, or being detained for long hours or even worse being arrested. So a regular “multitool” is a violations magnet.

6. I am freelancer. I do have a regular workspace where I usually work but my job takes me all over the corners of the Kanto-region (a geographical boundary around Tokyo). So my worst case scenario based on experiences by my friends who had to walk home on 3.11, I am assuming I would have to walk home for up to 18 hours to get home. One of my friends had to walk for 10 hours to get home, so I think planning for 18 hours gives me enough of a safety buffer for planning.

7.I am a certified first responder. As a first responder we were taught,to change our attitude from “don’t get involved” to “get involved” in cases of emergency. So as much I would like to being able to provide everybody I meet during my walk home with support realistically this is impossible. However I could easily imagine providing support to somebody who is heading the same way as I am or a colleague or friend. So I tend to carry enough for 2 people. Myself and my plus one.

8.This is my everyday bag, I could have a seperate “get-home” bag at my workplace but like I mentioned before, as a freelancer I don’t know where I will be at any given moment. So my everyday bag needs to allow me to work and also get home in case shit.

So whats in the bag?

Depending on the situation I will carry my macbook air (13’ inch) or my iPad mini or a stack of notebooks(for translating) with these.

Bag: 5.11 Rush 12 backpack

bagcontents

all the stuff in the bag

1. Electronics & misc.gear pouch.
-duck tape
-radio
-sewing kit
-plug converter
-cordage
-screw drivers
-pliers
-ethernet to wifi converter
-mini keyboard
-ethernet cables.
2.Microsoft universal mobile keyboard
3. Vacuum sealed rubber gloves (4 pairs)
4.Shemag
5.Snack bars
6.CPR Mask+Tritium Glow fob
7.Small trash bag
8.Battery case (AA,AAA,AAAA,CR123)
9.Ear buds
10.Umbrella (carbon spokes)
11.Maps
12. Vargo stainless steel bot. (Coffee,tea,lighters,esbits,pot cramper,titanium mug)
13.Powerplug
14.Charging cables.
15.Mobile battery (18650 batteries based ([email protected] x4=14000mAh)
16.Sea to Summit Ultra-sil Sling bag
17.Personal Grooming kit
18.Pens (Magforce organizer)
19.Water bottle (klean kanteen)
20.Vacuum sealed toilet paper
21.S.O.L emergency bivy
22.Tarp (Grapper All Weather Tarp) + zip ties
23.550 Paracord (100 feet)
24.3-Tier Medical kit. (First Aid, Wounds, Misc)
Base weight: 7.8 kg / 17.1 pounds

Like I said the electronics+gear pouch might technically be in violation of the law, however I am willing to take that risk. I do use them quite often when I am on site working trying to fix things. But the pouch is in my backpack and none of the tools are “easily accessible” from the outside of the bag. Hopefully this is good enough. I do take this pouch out,when I am going to any government building to work in. Most of my stuff is organised in smaller containers that would allow me to switch bags or dump them based on the situation I am at or will be.

Some explaining to do:

After the 3.11 earthquake, when many started their journey home, people struggled with some basic needs.Food and water were easily accessible given that Tokyo has many convenience stores located throughout the city  (6,847 as of March 2015, only counting the major chains).So food and water, not much of an issue, and after 3.11 many vending machines have implemented an emergency mode where in case of a disaster they would automatically change into a free vending mode.

However the cellphone network was throttled by the carriers to allow emergency communications first priority. When a mobile phone has difficulty connecting to a network it would constantly probe and ping for network availability, hence your battery drain is significantly higher when this happens.So people had to stop to get their phone charged. Hence I carry a bit more reserve power in the form of mobile batteries so I can charge my phone and equipment without having to stop for an hour to charge. Remember, my goal is to get home asap. Also I don’t want to wait for somebody else to finish their charging before I can charge my phone. For me, reserve power equals the ability to stay “on-the-go.” and getting closer to my family.

Photo 12-4-15, 1 01 14 PM This mobile pack allows me to use 18650 rechargeable batteries which are also compatible with my flashlight which I carry everyday.

Navigating Home.
Also because your phone/smartphone will not be able to connect to a network many navigation applications you rely on won’t work. Hence I carry a printed map marked with some important locations for myself and a compass, one compass is inside map pouch for me to plan my route back home and I do have one on my watch too. Many people whom walked home on 3.11 took routes they knew and not necessarily the best route. This caused some massive bottlenecks in major areas where people just ended up cause they didn’t know any better. While there might be comfort in numbers there also is a highly probability of confusion or clouded judgement. You see this with a large group of hikers whom all think somebody must know the way and they all end up getting lost.

File 12-9-15, 1 46 58 PM

 

 

Weather , the silent threat you feel but do not see.

Weather conditions, March weather can be nice or cold depending on the year. In 2011 it was a dreadfully cold day, and many people whom only wore their regular work suits or attire had difficulty dealing with the harsh cold night. Many whom waited to get home ended up seeking shelter in train stations hoping that the public transportation system would recover,which in didn’t.As you would expect as a result of ” typical by the book operations”,many train stations closed their shutters based on the “regular” scheduled last train procedures and people were forced out of their shelters. This has been rectified and many stations supposedly will provide shelter in case of a natural disaster.

Japan also has a rain season and typhoon season which can bring massive rain fall and since there is no way of predicting when and what the next natural disaster will be I have to take weather conditions in account. Summer in Japan can be extremely humid and hot, often in the 30 ~ 35 degrees Celsius (90s in Fahrenheit ) with humidity up to 75%. Winters are dry and cold lower digits in Celsius (40s in Fahrenheit).

So every season or when I think the weather is changing I go through my bag to adjust it to the season. For winter seasons, I pack some more heat preserving or generating items like a scarf or some hand warmers etc. For the summer my first aid kit will have some counter dehydration items, like oral hydration powders.

I find it that it usually is a good thing to go over what you have in your bag every 4 months or so take things out or add things you think will be necessary.

The 4 tier medical kit.(technically a 3-Tier system + α)

Photo 12-9-15, 12 57 10 PM

wait…there are only 3 pouches…

I carry a “daddy I have a booboo” situation roll on person with me where ever I go. this includes items that I use on a regular basis as a father and some other “not-so-emergent-but-shitty-situation” mitigation items. It contains, eyeglass wipes, some basic medication , bandage , rubber gloves , safety pins etc etc. So this would be tier 1 of the 4 tier kit or technically the + α.

Hey Daddy, I have a booboo!

Hey Daddy, I have a booboo!

The second tier is my actual first aid kit. This pouch contains most likely used items for minor trauma. Basic bandage, alcohol wipes, rubber gloves, medication, pain killers etc etc. Each type is labeled and stored based on their usage. The reason why everything is organised in an almost OCD way is that, there might be a case where I won’t be able to get to my kit or I have to ask somebody to use my kit on behalf of me while I am doing something else (like administrating CPR to another victim.) This kit  is the first line and I need to be able to verbally instruct somebody else to get something out of this kit for me, hence everything is clearly labeled.

Photo 12-9-15, 12 57 46 PM

The actual 2nd Tier , first aid kit.

The 3rd tier is wounds related, among emergency situations I am most likely to encounter would be wound related. In reality I have been on numerous ambulances accompanying friends or family members with not life-threatening  but substantial wounds.

The last tier is where, “oh shit what now” stuff is organised. Anything from hand warmers to tampons and napkins, emergency blankets, N95 graded dust masks. All the stuff that I hope I won’t have to use but I can easily foresee a need for is in this pouch. You would be surprised how often people ask me for female sanitation products, since they know I carry some on me all the time.

All of the main containers, the ones I carry in my backpack have a clear front so that people can see what is in them. Once again just in case I need to tell somebody to grab one of them for me. Its easier to say “The one with the tape and bandage” than “The black one thats not the tactical one with a patch on it.” Remember, you might have to ask somebody to patch you up.

The comfort zone:
Often when you read up on “ultralight” backpacking articles or watch videos, people say “yea I’m sacrificing some comfort here but ..” , granted in a case of emergency, “comfort” is not something you should be worried about. But there is something to be said for comfort related gear. In my case its my coffee pod. This stainless steel pod by Vargo allows me to boil water and make coffee while I’m on route home. My grandfather who was an army veteran from WWII and a heavy smoker often said, “when the situation is bad, have a smoke and rethink your situation.” Having practiced walking home for long distances I often felt like, “man, I just want to sit down and have a nice hot cup of coffee.” Not like a somewhat warm canned coffee from a vending machine but a boiling hot cup of coffee. So I have a coffee kit in my bag. Is this absolutely necessary ? No. Like I said its to comfort me , also I have a vacuum sealed pack of cigarettes.(yes yes its a nasty habit but so is meth or cocaine.)
The purpose of these  is for me to calm my nerves and allowing me to reassess the situation I am in.

Photo 12-9-15, 12 59 01 PM12308302_10153312945742106_8228088862595446583_n

 

 

 

 

 

 

 

 

 

The search for the “ultimate bag”

Hi my name is Kentaro and I have a bag addiction..

I started out with a regular TUMI-like business bag and since then, a 5.11 Rush 12, Mammut Neon Light, Hazard 4 Sling bag, ZeroPoint Nupuri 35…and now back to the Rush 12.

As I search for the “perfect bag” , I am  getting  better at organising my stuff too. Realising that the bigger the bag the more unnecessary stuff I ended up carrying. Forcing myself a smaller bag makes me think twice before I pack stuff into the bag. One side note, I used to have (and still do ) a box full of “tacti-cool heavy duty denier pouches” for everything, but during my “technical hiking” backpack phase I learned of ultralight stuff bags and containers. Its surprising how heavy only the containers can get once you start using many of them, and then you realise, “wait all of these pouches are inside my bag, why must they be so rugged?” Since this revelation I have moved on from those heavy denier pouches to lighter ultralight organising pouches.Also I ended up learning how to sew, to make smaller containers for my needs. The current bag and its contents are the 5th iteration of my every-day-get-home bag and most likely will still continue to evolve. Watch out, once I master sewing zippers!

Photo 12-9-15, 12 55 50 PM
Modding my bag.
Depending on my work engagement,I needed a way to still carry my RUSH 12 in a non-backpack configurations sometimes. So I made a 3 way bag mod. Added a side handle and some carabiners for a shoulder strap for sideways carry. I use the compression straps to cross the bottom shoulder straps on the back when using sideways, and store the upper shoulder straps in the water bladder compartment. This way when I do wear a suit for the job I can carry by bag sideways, looks a bit more “normal” in a business environment. Also I added an internal separator inside the bag with one side covered in hook velcro for easy organisation.

Photo 12-9-15, 12 54 32 PM

Photo 12-9-15, 12 55 29 PM

 

 

 

File 12-9-15, 4 34 51 PM

 

 

 

The basic idea behind the bag.

I am a strong believer in  “usage should = ease of access”. So the most likely or often used items should be the easiest to access. This is one reason why I ended up switching back to the RUSH 12, because of the ease to access smaller items. The technical backpacks where great for carrying around except it required me to ruffle through my bag each time I needed something. I organise my back from outer to inner,having the items that require constant changing like food or items I am most likely to access like my first-aid kit to be toward the outside of the bag. The  items I am less likely to use like a tarp,paracord etc  are stored toward the back of the bag(i.e.closer to my back.)

Photo 12-9-15, 12 54 48 PM

The front pouch section contains my first aid kit and some other items that I use fairly often.

 

 

Lessons learned.

1.Go through your bag regular to adjust your needs based on work,location and season.
2.Vacuum sealing is a great way to minimise space for the not-likely used items.
3.Don’t try to make the “ultimate bag” remember “good enough” is what you are aiming for.
4.Have fun exploring different options. Is there a better way to organise? How much lighter can you make your bag?
5.Practice regularly. I regularly walk home with my bag not only from my usual workplace but from locations I don’t know. I use my map to plan my route and my on-watch compass to guide me. Its amazing on what you can find out not only about your bag but also the city you live in.
6.If you can’t find the perfect match, make one that’s closer to your needs. My goal is to one day build my own bag, thats a long ways ahead but its a goal I am aiming for. Sewing isn’t a sissy hobby I have the scars to prove it.

At the end:

Like I said, this is my personal situation, yours might be similar or vastly different.But so will the emergency situations we encounter. Stay safe and stay cool.

Epilogue:
I do carry a lot of stuff on me too, in either my pants pocket or in a pocket of my jacket. As often  as I carry my bag everywhere I go, there are times I just have the stuff that’s on me. (like going to near by park with my kids, I wouldn’t carry my get home bag, but I would have some basic stuff in case one of them scrapes a knee or something).

Photo 12-8-15, 12 37 45 AM

Photo 11-23-15, 10 09 01 AM

my in-pocket-holster for one of my mobile batteries.

I suffer from a chronic condition known as “low power anxiety”

Stay safe Y’all.

 

CODE BLUE and AVTokyo

So CODE BLUE just announced their dates for 2015 and so did AVTokyo.  What are these  you ask, well these are two security conferences in Japan.  I know Japan might be a long way from wherever you are and you ask, which one should I attend? The purpose of this post is to help you decide.

Disclaimer: I  support both conferences from an operational point and therefore my opinions can and will be biased.

1.CODE BLUE

CODE BLUE is a very professional conference, it is well organized for a conference that just started just a  year ago( 2 conferences were held in 2014, under the banner CODE BLUE 2013 and CODE BLUE 2014). This time is their third official conference. The organizer of the conference is Kana, whom some of you might already know. The first conference titled CODE BLUE 2013 was held in Feb. 2014. The keynote was Jeff Moss. (if you have to ask who he is , you need to do your homework first.)  The second conference happened in Dec.2014 titled CODE BLUE 2014 having Keren Elazari as the keynote.

a) What Makes CODE BLUE unique?

Well, its in Japan. .No really..its in Japan.

CODE BLUE brings together speakers from around the globe with speakers from Japan whom might not be internationally known but are doing some cutting edge research.  Kana with her extensive experiences in international hacker/security conferences wanted to build an unique experience not only for the attendees but also the speakers and from the feedback we have received she has succeeded. Code Blue is a professional event with corporate sponsors without the outrages “my marketing team can one up yours” ridiculousness seen at some of the larger conferences these days. Attendance is good with over 400 people or so (the official attendance numbers aren’t disclosed, so I am just guessing from how full the rooms were and the capacity I knew these rooms would hold.)  The talks are selected by a review board and so far have consisted of not only very technical talks but conceptual and real life scenario based talks.  You can check out some of the talks on the CODE BLUE youtube channel. All talks will have simultaneous translation for Japanese and English. So as long as  you can talk shop in English you should be fine. Bilingual staff members are scattered around the venue to help you in case you need something. If you are reading this and you need some help just find me I’m the motherfucker with a beard and a clipboard.

Bearded Motherfucker with a clipboard

Bearded Motherfucker with a clipboard

If you are interested CODE BLUE has also a Flickr page with some images from the past conferences for you to see what the atmosphere is like.

b) Elkentaro’s somewhat biased yet hopefully helpful impressions:

I truly think CODE BLUE offers something unique. The conference isn’t too large to be unmanageable to meet interesting people and have an interesting conversation. The content is technical yet not too technical but the past two conferences included interesting non-tech but very valuable talks too.  The attendees come from a wide range of organizations and responsibilities but many of them are either at the forefront of cybersecurity or are decision makers in charge of deciding cybersecurity related issues within their respective organizations. Dress code wise its a business casual event , so a shirt and trousers are recommended. You could show up in an aloha shirt and flip flops but given that the conference happens in the fall you would not only stand out but also be cold.  Lunch, coffee breaks were provided (using past tense cause don’t know about the next one) thanks to the generous support of the very understanding and supportive sponsers.(totally not sucking up to them)  Having attended and helped in organizing and running ground ops for different conferences I can say despite the fact that there has only been two conferences the organization and operations are very well thought out(kudos to Kana). I would love to see more CODE BLUE swag but hey it has only happened twice so the lack of swag is understandable.

CODE BLUE 2015 details:
Date : Oct.28-29, 2015
Place : BelleSalle Shinjuku Grand
URL : http://codeblue.jp/

2.AVTokyo

AVTokyo is the DEF CON of Japan. It is truly a hacker event. AVTokyo is organized and operated by the domestic hacker community. Its held at a nightclub. A couple hundred people show up for this one day event.

Totally unnecessary sidenote: When the nightclub owners heard that it was a hacker event they thought , “Nerds don’t drink” Well last year we almost drank the bar dry. 

AVTokyo’s slogan is “No Drink, No Hack” . While somewhat grammatically awkward the idea is that lets talks shop while drinking alcohol and having a good time. You would be surprised how well drunk people can communicate with each other even tough  they think they can’t when sober.  AVTokyo started as a drinking party after Black Hat Japan. Some of the attendees would get together and exchange ideas and get wasted, this party has grown into the largest gathering of die hard hackers not only from Japan but also other countries.

a)  What makes AVTokyo unique?

Well its in Japan…oh wait …already used this.. hm…Its in a nightclub in TOKYO!

AVTokyo truly has grown to be the DEF CON equivalent here in Japan. Not only are there talks but last year they added sections dedicated to hardware hacking, hardware making (thanks to the support of Tokyo Hackerspace members), a black box penetration challenge and a secret back room for VIP members.  AVTokyo has an unique sponsorship program called “The individual Sponsor Program” , the way this program works is like crowdfunding, if you pledge more than their basic price then you not only get admission to the conference but also you get to be invited to  the secret VIP afterparty and your name(or whatever you want) will be shown on the screen throughout the conference plus you get swag.  They also have regular attendee tickets available.  The organizers are headed up by Tessy from Sutegoma 2 fame and all of them are all well known players within the security industry.  To borrow a quote from a famous  president,” AVTokyo is by the hackers for the hackers”

Bearded Motherfucker and Tessy @AVTokyo 2014

Bearded Motherfucker and Tessy @AVTokyo 2014

b) Elkentaro’s somewhat biased yet hopefully helpful impressions:

AVTokyo is the event I look forward to every year. Its unique in the talk selections and just to be able to see friends and hang out with them truly is an enjoyable experience. AVTokyo does not have simultaneous translation but usually some of the speakers speak in English and most of the presentation material will have English and Japanese versions of their slides shown and thanks to the ever flowing copious amount of alcohol usually language just doesn’t matter. There are usually enough bilingual people to facilitate the discussion. Once again if you want you can just grab me and I’ll translate for you.  Dress code wise its casual, very casual, if you show up in a suit you will stand out although it is up to your preference. If you are the every-day-suit type a person by all means wear a suit. Before you show up grab something to eat cause there usually isn’t any food available but the event is held in the center of Tokyo and you should have no trouble finding anything from Starfucks coffee to something uniquely Japanese. I think you can leave the venue and come back later but you might miss some insanely cool talk about something life altering.

So there you have it a quick write up on CODE BLUE and AVTokyo. Both conferences have a Call for Papers so pick and choose , hell come to both and you will have a good time in Tokyo. You need to convince the corporate brass that you think you need to present in Japan , my suggestion would be pick CODE BLUE, you want to hang out with hackers and exchange ideas or just experience something unique ? Go with AVTokyo.

AVTokyo 2015 details:
Date: November 14 (SAT), 2015
Open 14:00 Start 15:00 End 20:00
Venue: T2-SHIBUYA
Chitose-Kaikan B1F, 13-8 Udagaw-cho, Shibuya-ku, Tokyo, Japan.DATE: November 14 (SAT), 2015
Open 14:00 Start 15:00 End 20:00
URL:http://avtokyo.org

Honorable Mentions:

This post would not be complete without mentioning PacSec.

Organized by Dragos , PacSec 2015 will the 13th time that the PacSec conference is held in Japan, making it the longest running international security conference in Japan. (there might be some academic conferences but I don’t know any so they don’t count)Kudos to Dragos and the organization for never giving up on running the conference in Japan, trust me this is a feat in itself.  PacSec always brings some of the leading researchers from across the globe to Tokyo and also has some leading talks by domestic researches. Also last year’s Mobile Pwn2Own Contest had a prize pool of $425,000. PacSec has always stayed around the same size a couple hundred in attendance making it unique that you can actually talk to everybody there,not only the speakers but attendees and organizers.  I have been lucky enough to be asked to help PacSec by translating their media briefing sessions and every time I go , “hmm? what? What’s that ? I have never heard a talk about that” and am pleasantly surprised.

PacSec 2015 details:
Date: November 11, 12th 2015.
Venue:Aoyama Diamond Hall , Tokyo.
URL:http://pacsec.jp

Related Posts:

同時通訳機詳細/Translation Receiver.
Quick Intro to Tokyo

 

@elkentaro

 

 

 

Posted on 2015年7月9日, 6:30 PM By
Categories: 未分類

Next Page