The Internet of ... Mainframes?! WTF?

BSidesLV 2015

Presented by: Philip Young (Soldier of Fortran)
Date: Tuesday August 04, 2015
Time: 14:00 - 14:55
Location: Tuscany
Track: Underground

In early 2013 Soldier of Fortran had an idea. What if there were mainframes on the internet? He knew, of course, there had to be, the internet is just full of all kinds of weird stuff. But what if there’s also mainframes on there, what would that mean? What would they look like? Using some google fu he started the hunt, easily finding a handful, then later moving on to SHODAN and finally masscan. Having grown up in the BBS era he was happy to find hundreds of ‘green’ screens up and running with their beautiful EBCDIC art for all the world to see. This talk will walk through the story of how he found the mainframes, first by himself and later with the help of others. He’ll go through the growth process he went through to find the mainframes and how he helped augment tools like SHODAN to make the hunting easier. He’ll detail the tools he wrote specifically to hunt internet mainframes, the troubles he’s gotten in to for looking for them (like when someone came up to me after a talk to tell me it was one of theirs) and then provide MANY examples of the the kind of (scary) things he’s encountered on the web. He’ll also delve into some of the alarming statistics of mainframe security using what he’s seen as an example. There may even be some live examples of some of those mainframes.

Philip Young

Soldier of Fortran has an unhealthy relationship with mainframes. Being a hacker from way back in the day (BBS and X.25 networks) he was always enamored by the idea of hacking mainframes. Always too expensive and mysterious he settled on hacking windows and linux machines. However, despite not having his own he conducted numerous security engagements against mainframes, slowly developing his skills, until 2010 when he finally got his very own. Not having to worry about system uptime or affecting users he dove in head first and was surprised by what he found. Ever since he has been telling anyone who will listen to him the importance of mainframe security, hacking and research. He’s spoken both domestically (DEFCON, BlackHat) and internationally(Sec-T, Hacktivity) on the topic, been a guest speaker at multiple conferences, developed tools for mainframe penetration testing and has even keynoted a large mainframe conference on the topic.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats