Dude, WTF in my car? - DefCon 21 ECU Talk - Honda CRZ Forum: Honda CR-Z Hybrid Car Forums
Honda CRZ Forum: Honda CR-Z Hybrid Car Forums

Go Back   Honda CRZ Forum: Honda CR-Z Hybrid Car Forums > Honda CR-Z: Technical > CR-Z ECU Tuning/Flashpro

Reply
 
Share LinkBack Thread Tools Display Modes
Old 07-13-2013, 02:40 PM   #1 (permalink)
Elite Member
 
Triptych's Avatar
 
Join Date: Mar 2013
Location: Pittsburgh, PA
Posts: 532
Default Dude, WTF in my car? - DefCon 21 ECU Talk

Defcon is a hacker conference held yearly in Las Vegas that gets over 15,000 attendees. I had the pleasure of attending last year because my wife (gf at the time, we got married while there ) was booked to perform the afterparty. https://www.defcon.org/html/defcon-2...ist-cy-fi.html

This year there will be a presentation on ECU hacking. Looks like those of you that are thinking about a flashpro may want to hang tight another month:

https://www.defcon.org/html/defcon-2...rs.html#Illera

Quote:
The ECU tuning market is weird. There is little help from people in it, and most of the equipment is expensive. Well, not anymore! After hacking some equipment worth thousands of dollars, a new toy was born. Seed/Key algos broken, RSA busted We will learn all about Bosch EDC15 and EDC16 car ECUs. How they communicate, what protocols they use, their security and why it is worth hacking them. There will be a demonstration of a tool that does all of these, and costs less than $25 to build.

Alberto Garcia Illera (@algillera) is a 25 year old who is passionate about hacking and social engineering. Alberto studied mathematics and computer systems in Spain and has spent the past several years working as a professional penetration tester. Alberto has presented at several seminars where he has helped teach hacking techniques to large companies such as Microsoft, the Spanish government and the cyberterrorism Spanish police department. At DEF CON 20 in Las Vegas, Alberto has presented a talk titled "How to hack all the transport networks of a country" that had a great repercussion. He has also spoken at ZeroNights in Moscow, BlackHat in Abu Dhabi and recently in Infiltrate in Miami.

Javier Vazquez Vidal AKA Bi0H4z4rD is a hardware security specialist. He has been involved in several reversing projects that go from a simple IP camera to the well known PS3. He has worked for Airbus Military among other companies.

At this time, he will be presenting his first public work, the ecu too
Triptych is online now   Reply With Quote Quick reply to this message
Old 07-17-2013, 07:00 AM   #2 (permalink)
Handy-man
 
Join Date: Apr 2013
Location: Orlando/Gainesville/Davie, FL
Posts: 1,250
Garage
Default

Hanging tight. This seems fantastic!
__________________

Join us for the 2nd annual CR-Z meet! IG : polymerled
numberoneoppa is offline   Reply With Quote Quick reply to this message
Old 07-17-2013, 12:18 PM   #3 (permalink)
Senior Member
 
leafvillage's Avatar
 
Join Date: Jan 2013
Location: Maryland
Posts: 370
Garage
Default

Good to see other hackers on this fourm I was beginning to think I was the only one. Also you going to Defcon this year? / Blackhat?
__________________
leafvillage is offline   Reply With Quote Quick reply to this message
Old 07-17-2013, 12:58 PM   #4 (permalink)
elderly lady
 
realtallshorty's Avatar
 
Join Date: Feb 2013
Location: Big ORANGE Pat Summitt Country, Tennessee
Posts: 2,514
Garage
Default

subscribed
__________________

Whither goest thou, America,
in thy shiny Compact Renaissance Zero in the night
realtallshorty is online now   Reply With Quote Quick reply to this message
Old 07-17-2013, 03:21 PM   #5 (permalink)
Capt'n Jack
 
Scotty001's Avatar
 
Join Date: Sep 2010
Location: Pacific North West (Puget Sound)
Posts: 9,407
Garage
Default

Quote:
Originally Posted by leafvillage View Post
Good to see other hackers on this fourm I was beginning to think I was the only one. Also you going to Defcon this year? / Blackhat?
Actually, your friendly recently resurrected Forum Admin is a ISC2 CISSP Govy Cyber Security Manager/Branch Head and have 8 direct CEHs and other certified employees along with 114 indirects working for me.. I normally send at least one of my directs to Defcon and/or Blackhat.
__________________

Click on the Capt'n Jack's Place signature link for a video. WARNING .. Rated PG-NSFW..
CVT Fully Loaded EX//NAVI//Eibach Pro Springs//H&R
20mm Rear Spacers//
Honda 17" OEM//
P2R
Down Pipe//K&N Typhoon SRI//32 Diamond Quartz Tint//Clazzio Black-Red Insert & Stitching//
iJDMToy interal&External LEDs//T1R Side Mirrors//Remus USDM Catback Center Exhaust//
Scotty001 is online now   Reply With Quote Quick reply to this message
Old 07-17-2013, 11:36 PM   #6 (permalink)
Elite Member
 
Triptych's Avatar
 
Join Date: Mar 2013
Location: Pittsburgh, PA
Posts: 532
Default

Quote:
Originally Posted by numberoneoppa View Post
Hanging tight. This seems fantastic!
I expect the white paper to be released shortly after or during the con. I'll post it here for sure, and the video should be ~1 month or sooner if I can get an attendee to DVR it from the cctv broadcast.


Quote:
Originally Posted by leafvillage View Post
Good to see other hackers on this fourm I was beginning to think I was the only one. Also you going to Defcon this year? / Blackhat?
Sadly i can't make defcon this year, which is a shame because it was so much fun! VPN is your beat friend there... (Damn femtocells rigged up in hotel rooms!) I'll be @ Derbycon again this year though!


Quote:
Originally Posted by Scotty001 View Post
Actually, your friendly recently resurrected Forum Admin is a ISC2 CISSP Govy Cyber Security Manager/Branch Head and have 8 direct CEHs and other certified employees along with 114 indirects working for me.. I normally send at least one of my directs to Defcon and/or Blackhat.
This is so good to hear! CRZ is definitely a hacker dream car! Any chance of a derbycon meet?

Grayish hat non-pro hacker / security enthusiast here, and most my friends are career pen-testers. I read and almost memorized the cissp study materials, but I don't have experience/degree/sponsor for the exam. I think I'd make an awesome red teamer since I'm pretty good at breaking stuff |

We should co-0p on some serious CRZ mods - just think, sport mode on startup, or AI implementation! I have a raspberry pi, giant ideas, and mediocre python skills. I'll start a new thread once I can refine my thoughts if I won't be the only one posting in it.
Triptych is online now   Reply With Quote Quick reply to this message
Old 07-22-2013, 01:13 PM   #7 (permalink)
Handy-man
 
Join Date: Apr 2013
Location: Orlando/Gainesville/Davie, FL
Posts: 1,250
Garage
Default

I'll chime in, though I'm not a hacker by any means.
__________________

Join us for the 2nd annual CR-Z meet! IG : polymerled
numberoneoppa is offline   Reply With Quote Quick reply to this message
Old 07-23-2013, 01:20 PM   #8 (permalink)
Senior Member
 
leafvillage's Avatar
 
Join Date: Jan 2013
Location: Maryland
Posts: 370
Garage
Default

Quote:
Originally Posted by Scotty001 View Post
Actually, your friendly recently resurrected Forum Admin is a ISC2 CISSP Govy Cyber Security Manager/Branch Head and have 8 direct CEHs and other certified employees along with 114 indirects working for me.. I normally send at least one of my directs to Defcon and/or Blackhat.
I did not know that. I will eventually be getting my CEH, I am currently a Senior Network Lab Manager. But that's awesome to know We should make an IRC server for this forum and watch as us three are in it
__________________
leafvillage is offline   Reply With Quote Quick reply to this message
Old 07-26-2013, 09:31 AM   #9 (permalink)
Member
 
Join Date: Jul 2013
Location: Ohio
Posts: 123
Garage
Default

Definitely subscribing to this as I do enjoy tweaking every bit of electronic hardware/software that I can get my hands on. I am currently studying for my Unix certification, and plan on moving onto CEH after that.

I do recall seeing various sites/page that showed the possibilities of hacking a car via its bluetooth and gaining some pretty hefty access. I'll dig around in my browser history and see if I can locate those links.
Hakugin is online now   Reply With Quote Quick reply to this message
Old 07-26-2013, 01:42 PM   #10 (permalink)
Newbie
 
Join Date: Jul 2013
Posts: 13
Default

Im glad you guys like my tool

If you come to Blackhat, i will be at the Arsenal showing it, or if you just see me around Defcon, so just let me know that you are from this forum and i will give you more specific details about how it works!
Bi0H4z4rD is offline   Reply With Quote Quick reply to this message
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Honda CRZ Forum: Honda CR-Z Hybrid Car Forums forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in

Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.




Thread Tools
Display Modes

Posting Rules
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
SEO by vBSEO 3.5.1 PL1

Garage Plus vBulletin Plugins by Drive Thru Online, Inc.