Aerospace Village
The Aerospace Village is a diverse community of hackers, engineers, pilots, policy leaders and more from across both the public and private sectors. We believe the flying public deserves safe, reliable, and trustworthy air travel, which is highly dependent on secure aviation and space operations.
Located in “Lindsay Room B” Saturday 11:00-17:30, Sunday 11:00-16:00
AI Village
AI Village is focused on teaching you what you need to know to both defend and break AI. Come learn how ChatGPT, StableDiffusion, malware detectors, ML firewalls, and other AI based products work and how to break them. We’ll have demos that show you technical aspects of AI that you need to know as security professionals. We’ll also have a CTF that will help train you in ML Security.
Located in “Grayson Room” Saturday 11:00-17:30, Sunday 11:00-16:00
Black Cybersecurity Association Village
NOTE: Due to unforeseen circumstances, the BCA Village will not be available during BSidesCharm.
The BCA Village is designed to be a dynamic hub for Black cybersecurity professionals to explore the latest in cybersecurity technologies, practices, and career opportunities. We are dedicated toward increasing the number of Black cybersecurity professionals and creating a space for Black people to call home.
At the heart of the BCA Village, attendees will find a series of interactive workshops, engaging talks, and hands-on challenges tailored to empower cybersecurity professionals and enthusiasts at all levels. Whether you’re a seasoned expert looking to share your knowledge, or a newcomer eager to dive into the world of cyber defense, the BCA Village offers a unique space to connect with like-minded individuals, learn from industry leaders, and contribute to a more inclusive cybersecurity community.
Key Features of the BCA Village:
- Interactive Workshops and Panels: Covering a wide range of topics from ethical hacking and cyber defense strategies to career development and leadership in cybersecurity.
- Networking Opportunities: Connect with professionals, mentors, and companies dedicated to supporting diversity and inclusion in cybersecurity.
- Live Demonstrations and Challenges: Experience real-world cybersecurity scenarios through CTF (Capture The Flag) competitions, live hacking demonstrations, and more.
- Resource Sharing and Collaboration: Access valuable resources, share knowledge, and collaborate on projects aimed at solving pressing cybersecurity challenges.
Join us at the BCA Village to celebrate the strength of diversity in cybersecurity, forge new connections, and advance your skills in an inclusive and supportive environment. Together, we’re building a stronger, more resilient cybersecurity future for everyone.
Located in “Duncan Room” Saturday 11:00-17:30, Sunday 11:00-16:00
IoT Village
IoT Village advocates for advancing security in the Internet of Things (IoT) industry through bringing researchers and industry together. IoT Village hosts talks by expert security researchers, interactive hacking labs, live bug hunting in the latest IoT tech, and competitive IoT hacking contests. Over the years IoT Village has served as a platform to showcase and uncover hundreds of new vulnerabilities, giving attendees the opportunity to learn about the most innovative techniques to both hack and secure IoT. IoT Village is organized by security consulting and research firm, Independent Security Evaluators (ISE).
Follow both ISE (@ISEsecurity) and IoT Village (@IoTvillage) on Twitter for updates on talks, contests, and giveaways.
Located in “Lindsay Room A” Saturday 11:00-17:30, Sunday 11:00-16:00
Mental Health Hackers
The Mental Health Hacker’s (MHH) mission is to educate tech professionals about the unique mental health risks faced by those in our field – and often by the people who we share our lives with – and provide guidance on reducing their effects and better manage the triggering causes. This will be done through numerous talks and speakers conducted within the village during the conference. There will also be fun activities, crafts, coloring, and more to help you reduce stress and take a mental break from the conference activities and attendees.
The Health and Wellness Village will be ran by Mental Health Hackers, a 501(c)(3) organization.
Located in “Burke Room” Saturday 11:00-17:30, Sunday 11:00-16:00
Lockpick Village
The mission of The Open Organisation of Lockpickers (TOOOL) is to advance the general public knowledge about locks and lockpicking. By examining locks, safes and other such hardware and by publicly discussing our findings, we hope to strip away the mystery with which so many of these products are imbued.
The more that people know about lock technology, the better they are capable of understanding how and where certain weaknesses are present. This makes them well-equipped to participate in sportpicking endeavors and also helps them simply be better consumers in the marketplace, making decisions based upon sound fact and research.
Visit TOOOL and learn how to pick a lock or work on refining your current skills!
Located in “Warfields” Saturday 11:00-17:30, Sunday 11:00-16:00
CTFs
Graylog
You don’t want to miss Graylog’s CTF event, where players will engage in thrilling challenges of wit and skill. Through a series of captivating puzzles, you’ll navigate through intricate scenarios designed to both educate and evaluate your expertise in data analytics and cybersecurity. From beginners to seasoned professionals, our inclusive format accommodates all skill levels, fostering an environment of learning and friendly competition. Don’t miss out on the opportunity to showcase your talents and win exciting prizes!
Located in “Duncan Room” Saturday afternoon and Sunday 11:00-16:00
NOTE: This is a last minute location change.
Radio Frequency Capture the Flag
In this game capture the flag you will be presented with real configurations of real wireless and radio technologies to attack. Practice your skill and learn new ones from Radio Frequency IDentification (RFID) through Software Defined Radio (SDR) and up to Bluetooth and WiFi. There may even be Infrared, if you have the eye for it.
RF Hackers Sanctuary is once again holding the Radio Frequency Capture the Flag (RFCTF) at BSidesCharm. RFHS runs this game to teach security concepts and to give people a safe and legal way to practice attacks against new and old wireless technologies.
We cater to both those who are new to radio communications as well as to those who have been playing for a long time. We are looking for inexperienced players on up to the SIGINT secret squirrels to play our games. The RFCTF can be played with a little knowledge, a pen tester’s determination, and $0 to $$$$$ worth of special equipment. Our virtual RFCTF can be played completely remotely without needing any specialized equipment at all, just using your web browser! The key is to read the clues, determine the goal of each challenge, and have fun learning.
This game doesn’t let you sit still either, as there are numerous fox hunts, testing your skill in tracking various signals. If running around the conference looking for WiFi, Bluetooth, or even a Tire Pressure Monitoring System (TPMS) device sounds like fun, we are your source of a higher step count.
There will be clues everywhere, and we will provide periodic updates via discord and twitter. Make sure you pay attention to what’s happening at the RFCTF desk, #rfctf on our discord, on Twitter @rf_ctf, @rfhackers, and the interwebz, etc. If you have a question – ASK! We may or may not answer, at our discretion.
FOR THE NEW FOLKS
This contest is free and open to anyone and everyone. You can sign up and start playing any time during the conference. If you didn’t bring your wireless gear don’t worry, our virtual RFCTF environment is played over ssh or through a web browser. It may help to have additional tools installed on your local machine, but it is not required.
Read the presentations at: https://rfhackers.com/resources
Hybrid Fun
For BSidesCharm we will be running in “Hybrid” mode. That means we will have both a physical presence AND the virtual game running simultaneously. All of the challenges we have perfected in the last 2 years in our virtual game will be up and running, available to anyone all over the world (including at the conference), entirely free. In addition to the virtual challenges, we will also have a large number of “in person” only challenges, which do require valid conference admission. These “in-person” only challenges will include our traditional fox hunts, hide and seeks, and king of the hill challenges. Additionally, we will have many challenges which we simply haven’t had time or ability to virtualize. Playing only the virtual game will severely limit the maximum available points which you can score, therefore don’t expect to place. If you play virtual only, consider the game an opportunity to learn, practice, hone your skills, and still get on the scoreboard for bragging rights. The virtual challenges which are available will have the same flags as the in-person challenges, allowing physical attendees the choice of hacking those challenges using either (or both) methods of access.
THE GAME
To score you will need to submit flags which will range from decoding transmissions in the spectrum, passphrases used to gain access to wireless access points, or even files located on servers. Once you capture the flag, submit it to the scoreboard right away, if you are confident it is correct. Flags worth more points for the early solves, so don’t sit on those flags. Offense and defense are fully in play by the participants, the RFCTF organizers, and the Conference itself.
Play nice, and we might also play nice.
Who runs this thing?
RF Hackers Sanctuary is a group of all volunteers with expertise in radio security and various other related fields. We are the original creators of the WiFi Capture the Flag, Wireless Capture the Flag, and RF Capture the Flag. We are the original founders of the WiFi Village, Wireless Village, and RF Village. Often imitated, never duplicated.
TL;DR
Getting started guide: https://github.com/rfhs/rfhs-wiki/wiki
Helpful files (in-brief, wordlist, resources) can be found at https://github.com/rfhs/rfctf-files
Support tickets may be opened at https://github.com/rfhs/rfctf-support/issues
Our whole game is also open source and available at: https://github.com/rfhs/rfctf-container
Twitter: @rf_ctf and @rfhackers
Discord: https://discordapp.com/invite/JjPQhKy
Website: http://rfhackers.com – play with us
Github: https://github.com/rfhs
Official Support Ticketing System: https://github.com/rfhs/rfctf-support/issues
Located in “Warfields” Saturday 11:00-17:30, Sunday 11:00-16:00