REGISTER
Cart

3-day hands-on technical Workshop in HITB SecConf 2024 Bangkok

Practical Drone Hacking – Zero to Hero

$3,899.00

Categories , ,

Duration

3-day

Delivery Method

In-Person

Level

beginner / intermediate

Current Capacity
0%

ATTEND IN-PERSON: Onsite in Bangkok, Thailand

DATE: 26-28 August 2024

TIME: 09:00 to 17:00 ICT/GMT+7

Date Day Time Duration
26 Aug Monday 0900-17:00 ICT/GMT+7 8 Hours
27 Aug Tuesday 0900-17:00 ICT/GMT+7 8 Hours
28 Aug Wednesday 0900-17:00 ICT/GMT+7 8 Hours
Equipment take away (worth USD300)
– A programable quadcopter drone
– A programable remote controller
– A portable signal generator
– A USB wireless dongle
Advancements in UAV technology is opening new opportunities and applications in various fields of life. However, these advancements are also causing new challenges in terms of security, adaptability, and consistency. Especially the small drones are even suffering from architectural issues and the definition of security and safety issues.

In this couse, we will introduce security risk and design considerations in designing and implementing drone systems as well as operating drones in a safe and secure way. It covers technical details from hardware to software, from attack to defense related to drone security.  Participants will get first-hand experience in attacking drones via hardware disassembly, signaling, software programming, forensics.  At the same time, participants will attempt to design their own secure drone control system architecture, implement their own drone control protocols via embedded and client programming supported by open programming platform with commodity hardware.

 

Topics Covered
Introduction
  • Background
  • Regulatory warning
  • Safety
  • Ethical
  • Risks Caveat/Disclaimer Requirements

 

Attack Vectors
  • Introduce the common methods for drone hacking from internal to external: Firmware, Application and Communication
  • Reverse engineering of software components and protocol analysis
  • WiFi attack and BLE sniffing / testing
  • Race condition with application command protocol and low level BLE / UDP protocol
  • Man-in-the-Middle threat associated with architecture design of software framework to orchestrate operator control

 

Software Implementation
  • Introduce the application and software involved in drone hacking
  • Drone client control programming
  • Drone embedded programming with MicroPython on ESP32
  • Custom application control protocol implementation over BLE / UDP

 

Drone Forensics
  • Data and Log Analysis
  • BetaFlight Configurator
  • Blackbox Log Viewer/Explorer
  • CLI/Blackbox Analysis
  • In-depth Chip-Off Analysis

 

Drone Architecture
  • Learn basic drone operation
  • Build a programable small drone
  • Program the drone and remote controller

 

Drone Signal
  • Radio Frequency
  • Wireless Connection
  • Video Transimission
  • Protocol

 

Signal Spoofing and Generation
  • Software: Use application to identify the drone signal.
  • Hardware: Use SDR devices with the application to generate the signal and understand the concept
  • Illustrate how to build the device step-by-step

 

Shoot the Drone

It is an unique and never launches in the market. The course focus on the whole architecture of drone with its attack potential from internal to external, including kernel, application and signal communication.

 

TRAINER

Janet Tsang

Ag. Lecturer

Hong Kong Institute of Vocational Education (Chai Wan)

Janet is an Ag. Lecturer of Hong Kong Institute of Vocational Education (Chai Wan), mainstream Cybersecurity to deliver networking, system administration, and cybersecurity knowledge, supervise the Final Year Projects of Higher Diploma in Cybersecurity, including developing a cybersecurity lab by using GNS3 for building the network and IDS Security Onion for analysing malicious traffics, developing the web interfaces for integrated penetration tools, and experienced in Cyberbit platform, a renowned cybersecurity training and simulation solution, with hands-on training scenarios simulating a variety of cyber-attacks, gaining practical knowledge of threat detection, incident response, and vulnerability management.

Alan Chung

Digital Forensics and Incident Response Expert

9Hack Labs

Alan has ample experience handling complex dispute and litigation cases, having served as forensic examiner, e-discovery specialist, and expert witness testified before courts of laws, at multiple top-tier multinational forensic firms.

As an digital forensics and incident response expert Alan is well respected for his deep understanding of technologies, acquired through years of diverse background in network & infrastructure security, IT audit & penetration testing, and security solution architecture & design, across nearly two decades of deeply technical engagements.

He has presented at PacSec Tokyo (2013), DEFCON (2012), and HTCIA Asia-Pacific Conference (2012). Alan is a holder of CFE, OSCE3 (OSEP, OSWE, OSED), OSCP, OSDA, OSWA, EnCE, CISA, and GREM.

Sky Yeung aka DNTSky

Chairman

DNT FPV Drone Association Hong Kong, China.

Sky Yeung aka DNTSky is the chairman of DNT FPV Drone Association Hong Kong, China.  He is also:- Speaker of Black Hat MEA 2023 – ⁠Specialist on drone education and tech development with both defensive and offensive security – ⁠Delivered speeches in over 150+ primary, secondary and ngo education system in Hong Kong – ⁠STEM consultant of 16+ countries under organization from in South Korea IDSC. – ⁠Drone Pilot Trainer and Accessor in Hong Kong and China ASFC Jude – ⁠Organizer of Tier 1 Chapter in Asia of MultiGP International Race

Cato Yuen

Founder

Flysmart Digi

Cato Yuen is a drone pilot with over 10 years of experience, he has been building his own multirotor drones and providing unmanned aerial services to local government and corporations.He founded Flysmart Digi in **2015**, bringing multirotor components to individuals, works with various manufacturers in product development and testing for upcoming multirotor technologies. In recent years Cato also organizes events with local schools and organizations to provide training and experience opportunities for interested parties.

Why You Should Take This Course

In this unique UAV training, partcipants will focus on the whole architecture of the drone with its various attack potential from internal to external, including kernel, application and signal communication.
This 3-day course then lets participants design their own drone control system and helps them implement these protocols in a secure way. Participants get to take home US$300 worth of gear including their own programmable quadcopter drone, controller, signal generator, and wireless dongle.

Who Should Attend

Cyber Security Professionals (e.g. Pentesters, Red Teamers)
  • Wireless Radio & RF/SDR enthusiast
  • Drone pilots & hobbyists
  • Physical security staff
  • Electronic Warfare (EW) and Signal Security

Prerequisite Knowledge

Basic Knowledge of (but not limited to)
  • Small Drone Opera0on
  • Embedded System
  • RF and Wireless technology
  • Programming experience preferably in Python and/or C/C++/C#
  • Knowledge in TCP/IP, UDP, and BLE protocols

Hardware / Software Requirements

  • A programable quadcopter drone
  • A programable remote controller
  • A portable signal generator
  • A USB wireless dongle
  • SDR devices
  • UAS flight control board

See you in Bangkok!

Intercontinental Hotel
973 Phloen Chit Rd, Lumphini, Pathum Wan, Bangkok 10330, Thailand
 

SUPPORTING ORGANIZATION

HITB COMMSEC TRACK SPONSOR

HITB ARMORY SPONSOR

SILVER SPONSOR

fortra-logo-forest-green

CTF ORGANIZERS

logo-hackrocks3x
Flagyard

CTF PRIZE SPONSOR

Flagyard

TCP/IP RECEPTION SPONSOR

ADDITIONAL SUPPORT BY

VantagePoint

FRIENDS OF HITB

HACK IN THE BOX PTE LTD

Level 36, Menara Maxis,

Kuala Lumpur City Center,

50088 Kuala Lumpur,

Malaysia

Facebook Twitter Youtube