Presentations and Publications

CODEBLUE 2017.11.7 Tokyo, Japan

Man in the NFC

IEEE CNS 2017.10.9 Las Vegas, USA

Ghost Telephonist Impersonates You: Vulnerability in 4G LTE CS Fallback

DEFCON25 2017.7.27 USA

1. Man in the NFC
2. 'Ghost Telephonist' Impersonates You Through LTE CSFB
3. Panel: DEF CON Groups
4. Vendor: 360 Security Innovation Alliance

BlackHat USA 2017.7.26

1. 'Ghost Telephonist' Link Hijack Exploitations in 4G LTE CS Fallback
2. Arsenal: Attack Passive Keyless Entry System Using HackKey

Defcon24 2016.8.4 USA

1. Forcing a Targeted LTE Cellphone into Unsafe Network
2. Deep Learning on CAN BUS Security Flaws in Automotive Immobilizer
3. Security Flaws in Automotive Immobilizer

BlackHat USA 2016.8.3

The Risk from Power Lines:How to Sniff the G3 and Prime Data and Detect the Interfere Attack

HITB AMS 2016.5.23 Netherlands

1. Forging a wireless time signal to ttack NTP servers
2. Forcing a targeted LTE cellphone into an eavesdropping network
3. Cansee: an automobile intrusion detection system

CanSetWest 2016.3.18 Canada

Attack and defense toolkits in High/Low frequency

Defcon23 2015.8.6 USA

1. Low-cost GPS simulator – GPS spoofing by SDR
2. Build a free cellular traffic capture tool with a vxworks based femoto
3. I'm A Newbie Yet I Can Hack ZigBee – Take Unauthorized Control Over ZigBee Devices

Technology Transfer:SkyScan

SkyScan has already been chosen to be deployed in DongGuan, the most advanced IT city in South China. There will be up to 10 thousand SkyScan equipments settled down in this big project named "Smart City". SkyScan will protect all public wireless hotspots in this city.

Unicorn Arsenal

Hack and Make,Just for Fun