How to (almost) get a DEFCON black badge |
Abstract
The DefCon Social Engineering CTF (SECTF) competition has people queuing for hours waiting to get front row seat. Here attendees watch the competitors in a clear booth cold calling trying to get the person on the other line to say certain pieces of information in order to get a flag, or points to win. But what is it all for? Whats the point? The prestige DefCon Black Badge! The DefCon black badge is a symbol of clout and recognition for a lifetime. Imagine being able to strut into any DEF CON and have everyone look at you in awe and admiration (priceless!). Naturally, you want one. Who wouldn't? Join me as I talk about my experience at the 2019 SECTF in battle for the DefCon Black badge. This was my first entry as a newcomer shooting for the moon and landing a better-than-expected at Social Engineering Capture-the-Flag at DEF CON and coming second. The talk will go through wins, learnings, and mistakes across every single phase of the competition - from OSINT and report writing to sitting in a box and lying on stage. Speaker Bio: Jo is an offensive gremlin that lurks cyberspace and real life for fun and profit. Her day job involves consensual crimes against Atlassian. In this economy she enjoys checking the trending words on dictionary.com and looking at images of mustachioed cats. |