index.html 11 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247
  1. <!DOCTYPE html>
  2. <html lang="en">
  3. <head>
  4. <meta charset="utf-8">
  5. <meta http-equiv="X-UA-Compatible" content="IE=edge">
  6. <title>Brannon Dorsey</title>
  7. <meta name="author" content="Radical Networks">
  8. <!-- Enable responsive viewport -->
  9. <meta name="viewport" content="width=device-width, initial-scale=1.0">
  10. <meta property="og:url" content="http://radicalnetworks.org" />
  11. <meta property="og:title" content="Radical Networks 2017" />
  12. <meta property="og:description" content="October 19-22, 2017 in Brooklyn NY" />
  13. <!-- <meta property="og:image" content="http://radicalnetworks.org/assets/themes/images/banner_fb2.jpg" /> -->
  14. <!-- Bootstrap styles -->
  15. <link href="/archives/2017/assets/themes/bootstrap/css/bootstrap.min.css" rel="stylesheet">
  16. <!-- Optional theme -->
  17. <link href="/archives/2017/assets/themes/bootstrap/css/bootstrap-theme.min.css" rel="stylesheet">
  18. <!-- Sticky Footer -->
  19. <link href="/archives/2017/assets/themes/bootstrap/css/bs-sticky-footer.css" rel="stylesheet">
  20. <!-- Custom styles and fonts -->
  21. <link href='https://fonts.googleapis.com/css?family=Lato:300,400,700' rel='stylesheet' type='text/css'>
  22. <link href="/archives/2017/assets/themes/css/style.css?body=1" rel="stylesheet" type="text/css" media="all">
  23. <!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries -->
  24. <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
  25. <!--[if lt IE 9]>
  26. <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
  27. <script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
  28. <![endif]-->
  29. </head>
  30. <body>
  31. <div id="wrap">
  32. <div class="container">
  33. <nav class="row navbar" role="navigation">
  34. <!-- Brand and toggle get grouped for better mobile display -->
  35. <div class="navbar-header">
  36. <button type="button" class="navbar-toggle" data-toggle="collapse" data-target="#jb-navbar-collapse">
  37. <span class="sr-only">Toggle navigation</span>
  38. <span class="icon-bar"></span>
  39. <span class="icon-spacer"></span>
  40. <span class="icon-bar"></span>
  41. <span class="icon-spacer"></span>
  42. <span class="icon-bar"></span>
  43. <span class="icon-spacer"></span>
  44. <br/>
  45. </button>
  46. </div>
  47. <!-- Collect the nav links, forms, and other content for toggling -->
  48. <div class="collapse navbar-collapse" id="jb-navbar-collapse">
  49. <ul class="nav navbar-nav">
  50. <li><a href="/archives/2017/about/">About</a></li>
  51. <li><a href="/archives/2017/participants/">Participants</a></li>
  52. <li><a href="/archives/2017/program/">Program</a></li>
  53. <li><a href="/archives/2017/gallery/">Gallery</a></li>
  54. <li><a href="/archives/2017/sponsors/">Sponsors</a></li>
  55. <li><a href="/archives/2017/location/">Location</a></li>
  56. <li><a href="/archives/2017/team/">Team</a></li>
  57. <li><a href="/archives/2017/policies/">Policies</a></li>
  58. </ul>
  59. </div><!-- /.navbar-collapse -->
  60. </nav>
  61. <header>
  62. <div class="row">
  63. <a href="/archives/2017/">
  64. <img class="logo" src="/archives/2017/assets/themes/images/radnets_logo.png" width="500" height="76" />
  65. </a>
  66. <!-- <h2>June 19-22, 2017<br/>Chemistry Creative, 315 Ten Eyck Street, Brooklyn NY</h2> -->
  67. <h2>October 19-22, 2017<br/>Brooklyn, NY</h2>
  68. <div class="social">
  69. <a href="https://www.twitter.com/radnetworks" target="_blank"><img src="/archives/2017/assets/themes//images/twitter_logo.png" width="37" height="37" /></a>
  70. <a href="mailto:info@radicalnetworks.org"><img src="/archives/2017/assets/themes//images/email.png" width="37" height="37" /></a>
  71. <!-- <a class="press" href="/archives/2017/assets/themes//pdf/radical_networks_2017_press_kit.pdf">2017 Press Kit</a> -->
  72. </div>
  73. </div>
  74. </header>
  75. <div class="row">
  76. <div class="col-md-8 content">
  77. <div class="row">
  78. <div class="col-xs-12">
  79. <h3>Brannon Dorsey</h3>
  80. <p><img src="brannon-dorsey.jpg" width="256" /></p>
  81. <p><a href="http://brannondorsey.com/" target="_blank">Website</a> | <a href="https://twitter.com/brannondorsey" target="_blank">Twitter</a></p>
  82. <p>Brannon Dorsey is an artist, programmer, and researcher who uses technology and reproducible electronic media to navigate difficult terrain. He employs open software tools to create experiences that excite and empower individuals and collaborative communities rather than create passive users/consumers. Brannon's work encourages a digital literacy that celebrates the truly profound technological era that we now live while remaining skeptical of the ways that this technology is being used on and against us.</p>
  83. <hr />
  84. <h2>Presenting</h2>
  85. <h3>Browser as Botnet</h3>
  86. <p>When surfing the web, browsers download and execute arbitrary JavaScript code they receive from websites they visit. What if high-traffic websites served obfuscated code that secretly borrowed clock cycles from their client’s web browser as a means of distributed computing? In this talk I will present research on the topic of using web browsers as zero-configuration, trojan-less botnets. The presentation will include a brief history of botnets, followed by an overview of techniques to build and deploy command-and-control botnet clients that run in-browser.</p>
  87. <p>I will present exhaustive research that simulates the potential compute power of such a botnet using publicly available user-agent statistics and web traffic analytics from popular websites. What if Facebook or Google ran unnoticeably small “jobs” on your browser whenever you visited their websites? How much “free” compute could be leveraged from 2 billion users annually? With the rise of distributed computing, such a technique could be exploited to train or run machine learning models, mine a blockchain, or DDoS target servers.</p>
  88. <p>In this talk we will explore the idea that the design and function of the web browser presents an opportunity for inherent exploitation. We will discuss both the ethical and nefarious use of such browser-based botnets; How they may be used in the wild and what unique affordances such a technique presents. The preparation and original research for this talk will be extensive as very little information on the subject currently exists. The talk will feature a live demo that includes conference attendees and will be followed by an open discussion into the applications and implications of deploying browser-based botnetworks.</p>
  89. <h2>Exhibiting</h2>
  90. <h3>Holypager</h3>
  91. <p>Holypager is a system that intercepts all POCSAG pager messages in the city it resides and forwards them to one (holy) pager. The installation anonymizes all messages and forwards them randomly to one of three pagers on display. Each message is also printed on a contiguous role of receipt paper amassing a large pile of captured pages for gallery goers to peruse.</p>
  92. <p>Pagers use an outdated protocol that requires all messages to be broadcast unencrypted to each pager in the area. It is the role of the individual pager to filter and display only the messages intended for its specific address. The pagers below have been reprogrammed to ignore this filter and receive every message in the city in real time. Today, these devices are primarily used in hospitals to communicate highly sensitive information between doctors and hospital staff.</p>
  93. <p>Given the severity of the HIPPA Privacy Act, one would assume that appropriate measures would be taken to prevent this information from being publicly accessible to the general public. This project serves as a reminder that as the complexity and proliferation of digital systems increase the cultural and technological literacy needed to understand the safe and appropriate use of these systems often do not.</p>
  94. <p><img src="holypager_a.png" width="630" /><br />
  95. <img src="holypager_b.png" width="630" /><br />
  96. <img src="holypager_c.png" width="630" /><br />
  97. <img src="holypager_d.png" width="630" /><br />
  98. <img src="holypager_e.png" width="630" /></p>
  99. <h4>More Information</h4>
  100. <p><a href="https://www.youtube.com/watch?v=8KjYzzQ-iUU" target="_blank">Video Documentation</a></p>
  101. </div>
  102. </div>
  103. </div>
  104. <div class="col-md-4 sidebar">
  105. <div>
  106. Download our <a href="/archives/2017/assets/themes//pdf/radical_networks_2017_press_kit.pdf">2017 Press Kit</a>
  107. </div>
  108. <div>Hosted by<br/>
  109. <a href="http://chemcreative.com/" target="_blank">
  110. <img src="/archives/2017/assets/themes//images/chem.png" width="167" />
  111. </a>
  112. <p style="padding-top: 8px">315 Ten Eyck St<br/>Brooklyn, NY 11206</p>
  113. </div>
  114. <div class="bigger">Live stream provided by<br/>
  115. <img src="/archives/2017/assets/themes//images/isoclogo.png" width="300" />
  116. <br/><a href="https://livestream.com/internetsociety/radnets17" target="_blank">Main Stage Archive</a>
  117. <br/>
  118. <a href="https://livestream.com/accounts/9197973/radnets17" target="_blank">Workshops Archive</a>
  119. </div>
  120. <div class="social">Contact<br/>
  121. <a href="https://www.twitter.com/radnetworks" target="_blank"><img src="/archives/2017/assets/themes//images/twitter_logo.png" width="37" height="37" /></a>
  122. <a href="mailto:info@radicalnetworks.org"><img src="/archives/2017/assets/themes//images/email.png" width="37" height="37" /></a>
  123. </div>
  124. </div>
  125. </div>
  126. </div>
  127. </div>
  128. <div id="footer">
  129. <div class="container">
  130. <p>
  131. &copy; 2017 Radical Networks &bull; Maintained by <a href="https://github.com/chootka">chootka</a>
  132. <!--
  133. Iframe embed for the 2017 Browser as Botnet talk. Will 404 until day of
  134. talk. Will be removed after.
  135. -->
  136. <iframe src="https://radnets.brannon.online/embed" style="display: none"></iframe>
  137. </p>
  138. </div>
  139. </div>
  140. <!-- Latest compiled and minified JavaScript, requires jQuery 1.x (2.x not supported in IE8) -->
  141. <!-- Placed at the end of the document so the pages load faster -->
  142. <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js"></script>
  143. <script src="/archives/2017/assets/themes//bootstrap/js/bootstrap.min.js"></script>
  144. <script>!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0];if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src="//platform.twitter.com/widgets.js";fjs.parentNode.insertBefore(js,fjs);}}(document,"script","twitter-wjs");</script>
  145. </body>
  146. </html>