DEFCON 16: Toying with Barcodes

Defcon 16: Clear audio quality, slides and video at the same time, with good proportions.
Defcon 27: Shit audio quality, switching between slides and video (if slides even work) and constant other audio and video issues.

I want that little book of evil barcodes he’s carrying around...

Was he talking to an empty room? He made some damn fine jokes and the room made no noise.

"why WOULDN'T you want to be able to encode control characters in your barcodes?" - someone, somewhere, creating Code 128

the url was a rick roll....

This guy has a funny subtle sense of humor xD great talk

The airport thing could get you through security, but you would never get on a plane. At the gate they have a list over all the booked passengers and when you scan the ticket barcode the system simply marks your name as boarded. If your name is not on the list, it would tell the gate staff that the scanned name is not on the list. The gate staff will probably check your booking number, but you do not have a valid one, so you will be denied on the plane. Barcodes in this case is mostly used for making the boarding process quicker, in the way that the gate staff don't have to write your boarding number every time. A barcode is useless if the printed information does not match the information in the system.

Wait i thought this was a new video because all the comments are from few hours ago or 1 day old. Then he showed the “Nokia phone which can read 2D barcodes” and looked at the upload date... wtf youtube? :D

This sounds like loads of fun tbh
Especially that "it loops to the keyboard" part

Wish I'd gone to Defcon 16, not 26... 10 years, and all the good stuff's been sanitised from the con. Nothing but a money grab now.

In my local shops the barcodes on the bottle-recycling printouts are session tokens and the actual amount is stored in the memory of the machine (for about 1 year), it Is connected to the register, and it's really hard to mess with it

Actually the parking garage at a local mall doesn't even bother with the tickets anymore. When you roll in it snaps a picture of your registration plate, and same when you roll out. It's pretty interesting.

For $200 or the modification of two bytes. lol

Big Lots uses a proprietary compressed barcode format which is encoded using Code 39. There is a lot which can be extracted from those barcodes for someone who manages to crack the string format...which is why they are so protective of it (to this day barcode scanning can get you thrown out of their stores).

I helped build one of those DOS based POS systems he’s talking about when I was in high school... I’m actually quite proud it’s still in use.

The 3DS could be hacked with barcodes, search "NinjHax".
A game used QR for something and hackers exploited.

"20$ will be like 3,50€ next year"
Good times back then, now... not so much.

Interesting fact: One of the earliest forms of barcodes were in the shape of a bull's eye. Also the barcode was actually inspired by someone overhearing a conversation of a retail company wanting to find a way to speed up the checkout process , but it would take years for it to be used in retail.

Australia…no Austria…no wait, I know that cross, it's Swiss. >__>
Still a great talk!!

Funny statement about the can recycling... we have deposits for cans here but no machines. The return process is much worse than simply feeding them into a machine. You have to show up when the grocery store is taking returns, place your bottles and cans into a cardboard flat at the grocery store, then an employee counts them, then dumps them into a bin and you get your five cents :/

I already had a lot of fun with that. Back in the day, I was once tasked with selecting a handheld scanner for packaging stations. This is how I got my hands on a bunch of configuration cards for scanners from various manufacturers. It turns out the gas station I often went to had one of these scanners, so I went and prepared four barcodes: 1. Enter Config 2. Disable 3. UPC 4. Exit Config.
So, I went to the gas station and tried to get the guy to scan those codes. First I put them as stickers on 4 items but he just grabbed them from me and started scanning them out of sequence. I told to go back and rescan them. He asks me why, and I have no good answer. Then he looks at the bag of chips and goes "Hey wait a minute, what are you putting stickers on my stuff for?". And that's when I lost all patience and just grabbed the scanner from him. He looks at me and then suddenly came running around the counter and ripped the scanner out of my hands. Are you nuts he asked me and that's when I suckerpunched him in the hopes of knocking him out so I can get the scanner. Got him good too, right on the chin, but it wasn't good enough. In fact it just really pissed him off and so he started beating me with the cable of the scanner which had pulled off. There's a 9 pin serial connector on that cable, hit me straight in the face with it. And then it was on! First he was beating the crap out of me, then I was begging the crap out of him to please stop! And then the police came and pulled him off me. First I got medical attention, then I got legal attention. I was put before a bond judge and my mother bailed me out for $23,000. That was a big deal and a lot in my family don't want me to come around anymore. Anyway they had just passed new computer crime laws and I was sitting home on my mother's couch anxiously playing games on my PS/1 and drinking gallons of Dr. Pepper, waiting to hear from the lawyers what the prosecutor is going to charge me with. They were trying to figure out if the hand scanner qualified as a computer system because it has a microprocessor. In that case they could give me more time because with the assault and battery charges I already had, they can substantially increase the punishment if there are aggravating factors. Like assaulting someone to commit a crime. Turns out the DA thought they could and I wound up with 1 year in county jail and 5 years parole. Jail sucked. The ankle monitor sucked too. I was barred from going to any establishment that operates a barcode scanner in its premises. I was lucky, the judge contemplated not letting me come within 50 yards of any barcode. I pointed out that some of the court papers I have, have barcodes. He gave me ten days extra for contempt and told me to go right ahead and be a smart-alec. In the end they also took my computer and everything else that was vaguely connected with the crime I was preparing, because I never got it back.
Just kidding. This is the end of the story, you've been entertained, now go away. The only true in it is about me having had a bunch of these configuration cards through my work but I never saw the point in unconfiguring somebody's scanner so they can't check customers.

>2D scanners are still expensive
Oh, how times have changed... I have an app on my phone, a FOSS Android app, that can decode all of these 1D and 2D barcodes and more.

At work, at least until a few years ago, the barcode on the back of the badges was encoded to our social security number. Thankfully they have moved to an arbitrary numerical number as a form of identification.

3:48 UPS uses Maxicode, not Aztec. Worked there since 2011.

there is an error in the slides at 28:10, FNC2 is "append this to the next message", FNC4 is "use extended character set for next character"

odd, i don't quite recall the avarage power of phones (and their camera resolution) around 2010, but couldn't you have made an app?

Fortunately, my local airport JUST got a new system that links your luggage to your ticket through a network, and not through tthe barcode. In fact, if you don't check a bag, and someone tries to check a bag for you, they will see an error. Vice versa, if you check a bag, then decide you do not want to check after all, they will stop you at the security checkpoint saying you need go either check a bag, or remove the checked bag from your ticket. none of this uses the barcode (finally)

"...they can make luggage illegal ..." (2011). Now in 2017, you can't bring your laptop ... :P

Wonder if you could make the walmart registers download and display images

God damn that was an impossibly tough crowd! Or impossibly aggressive isolation, which would be dumb because it makes it seem like it's an impossibly tough crowd

i actually tried scanning the code on my DB bahn ticket and it was completely unintelligible
i guess they have to get points somehow

thank you. Very educative!

I like the way this guy thinks! I love barcode systems, after all, I am THE scannerman! When people use them for authentication with no other system in place, you're asking for trouble!

"Abdul bin Scheusal"
"Wheelie of Fortune"
9/11 bester mann

now I wonder if I can make a x1000 payback points coupon
edit: after a cursory look, it appears the codes are just sequential numbers checked against a database

Pretty sure that is exactly how the recycling facilities in the US function. The turn in area is in a train container out back of the store. If I remember correctly it is printed on regular printer paper too.

Another possible scam is bottle returns in adjacent jurisdictions: grab non-refund bottles or cans from random garbage bins in the jurisdiction with no bottle return laws, stick on a barcode with a UPC number that does qualify for a refund, then cross the bridge and stick the bottles/cans into the recycling machine.
It doesn't matter if the receipt is digitally signed, because the crusher ate a piece of metal shaped like a can with a UPC code for a refundable deposit matching the weight of the empty can, so it will sign off on your cash register slip.
This may or may not be fraud, because you took something that was in someone's garbage bin (legal: abandoned property) and sold it to a recycler who will get paid per kilogram on returned cans, so they don't lose money. Also, what may have ended up in a landfill is now being recycled instead. Depending on your jurisdiction, the deposit may be worth more than the metal content (this is the case in Quebec), so they charge you 20¢ extra at the cash register when you buy a full beer can, and then refund the 20¢ when you return an empty beer can. If the metal value is less than 20¢, you are defrauding the government and it would be illegal.

The wiki link at the end of the video is dead now. :(

Hi, I’m from 2020 and I wonder whether at least California is still catching up on the beer bottle recycling

That medical one. I've used a few instruments that use those racks. The tech infrastructure for medical systems is really... not great... but these are made by other companies and leased/contracted/sold with service plans from really large and profitable companies, and could be something labs and hospitals could demand a change on..

how do you make a upc barcode with an sql injection?

You can also put the bottle recycling label bar codes on non-recycling bottles.

we actually hacked the 3ds using buffer overflows on QR code reader in a badly written game.

Lmao the fake IKEA add at 31:00 with the human table sneaking in that booty into the presentation WP sir

the video is not high enough quality for me to scan the QR code.

Hi from finland. We have a extensive use of these bottle recycling machines. These days, in certain shops they call manager to check if the ticket is valid if over certain sum. I wonder why. Also for 30 years i knew a parking lot that printed 2 parking tickets for the same money if you 1st pushed the ticket button, then payd, and pressed it again. no idea if that place is still around though ;P

that was very interesting

Oh man, working at NCR was fun !

Posted in 2011. Nothing has changed since then.

Pub etiquette is interesting

Holy shit, a german guy with sence of humor! Awesome talk.

anyone tries that URL for the barcode decoding?

Cool!

top marks fella

36:08 Its 2020 and Berlin still struggles with the new, bigger airport.

so uh
How do I fuck up the bar code kiosks at like target

"the driver for technology is $ and/or porn" so true!!!

nice talk

Does this still work?

The first 2 minutes and 17 seconds of this video contain 20 "umm"s. Extrapolating from that the whole video contains ~389 instances of the speaker saying "umm". Assuming that saying "umm" takes ~1 second that means this video is ~14.6% "umm".

UPS uses only MAXICODE. Sometimes our scanners won't be synced to the terminal (terminal computer is attached to a belt we wear and log into, when we scan packages the scanner on our hand sends data to the terminal via bluetooth, the scanner is wifi I think which sends the data to the server). If it's not synced you go to a configuration menu that displays a barcode on the screen we scan to get the two working. It's pretty interesting how it all works, I've always been curious how it all works.

"Abdul bin Scheusal" xDDD
translated~: "Abdul is disgusting"

The Riviera was a great place 😁

36:44 The velvety tea?

So if you're wondering what that datamatrix code points to in the bottom right, but decoding doesn't work beceause of the low resulution, it leads to: www.phenoelit.org/
(I actually had to download the slides from the defcon website to find this XD)

Damn .....I thought it said Baracudas

Is it just me, or does he sound vaguely like yoda

Take a drink everytime he says "um"

I need groceries. time to hack

36:10 Of course our capital doesnt have a large airport. There hasnt changed a lot in the las 6 years

"ethical hacking", stealing peoples rental DVD's and other things

All of this replacing the barcodes and making fake receipts is illegal. At least in my country people pretty regularly get charged with fraud when they get caught. And it's huge legal process. Go to court and so on. Not worth the few euros.

Jan 31, 2017
1 Euro equals
1.08 US Dollar

Why in the world are they not encrypting these? Basically use a "random" number generator to generate the encryption/decryption keys that periodically change. Then just set it up to have an expiration date printed with the bar codes.

Holy shit, thus will change the game for darknet vendors

how would you just slip the forged barcode under your 6 pack to get scanned without the cashier noticing? Wouldn't the cashier notice that something was scanned? Theyre not going to just hand you money with no questions asked, when it seems like you should be paying them for the beer. Am I missing something here, obviously theyre going to look at the register and be like "oh it says that I owe you money for recycling but i didn't see any recycling barcode paper, where is it?"

31:00 - Just googled Veronica Moser.... WT-serious-F

Timer is FAT 813 9:03

Is there a good reason for a casino to host a hackers' conference or just plain stupidity?

YO! Why is his are so pixelated?

Sounds like he wasn't getting the response he was expecting. Every time he stopped and told them how he did something to screw over 'the man', he would pause expecting them to laugh and clap. Yet no one made a sound. Every time. I'm guessing he's not part of the cool kids.

History of Barcodes, Lesson 0 = Practically every barcode has 666 encoded into it, it's the 2 thin stripes on the right, left and middle.

"UMMM"
-This guy, several times

man tough crowd

first time i heard someone use the r word to refer to the pfand system

Okay you can hack with it but can you run doom on it

my work makes us scan the barcode on drivers license of every customer

em

security? what security?

Does he not know what GNU is?

I was wondering if he's German until he said 'one-dynamische barcodes' lmao

39:30 No laughter?

I kind of wonder how many watch-lists I've been registered in just by watching this one video... :S

MARK IT UP BRO lol INFLATION Value added capital

Why do most of these hackers enjoy ripping people off and fucking with planes and stuff? Like the automated house security guy was good thou!

couldn`t he just think of some other alternatives to the word bullshit?

uhmmmm no

This is the first talk i had to stop midway on solely because of the speaker. UM.

Take a shot every time he says "umm"

Ummmm..... bar..... ummm... codes....ummmm... were... ummm... invented.... ummmm.....