Domain: irongeek.com
Stories and comments across the archive that link to irongeek.com.
Comments · 28
-
Jack Daniel has a great keynote on this
Check out his analysis and stories of incredible alcohol consumption at security conferences: http://www.irongeek.com/i.php?...
-
Re:How to protect?
Few links from a quick Google search
How to use Windows 7 to lock down removable media and keep your computer safe
Allow only known usb devices - Gentoo WikiSee also Plug and Prey: Malicious USB Devices
-
Re:Why is this a problem?
Multiple reasons why somebody would target these servers (BTW: I was at the talk. Their video is at http://www.irongeek.com/i.php?... . )
Anyways, IMHO, reasons:
1) As a gateway into the hospital so you can pwn servers to DDOS others
2) As a gateway into medical records so you can better phish, or possibly blackmail your targets -
Homoglyph attack generator
-
Re:encryption
1) In many cases it doesn't take long to take a laptop apart and reassemble it. The Dell technician who did that to my laptop claims he could do it in the dark/blindfolded (go figure the implications - Dell quality etc
;) ).There are also alternative ways of keylogging. Most keyboard keys make a distinct sound when you type them. Typing q would sound different from typing w. For those that are too similar you could guess by heuristics. You can make calibration/ easier by pre-typing qwerty on it, but it is not necessary given enough text and correct guessing: https://freedom-to-tinker.com/blog/felten/acoustic-snooping-typed-information/
2) Alternatively plug a sneakier version of this in: http://hakshop.myshopify.com/products/usb-rubber-ducky
Or trick the person to do it.
See also: http://www.irongeek.com/i.php?page=security/plug-and-prey-malicious-usb-devicesBasically a usb device can install stuff and even "click through" the UAC/confirmation stuff, etc - because it can look like a usb keyboard and mouse. What it could do is nudge/jiggle the "mouse" by 1 pixel once a minute or so to make sure the screensaver never triggers. Then at a suitable time, launch the payload- which could be launching notepad/cmd, creating and saving a script and then running it.
If one of the usb ports was actually replaced with a malicious usb device that looks like a failed usb port you might not make a big issue about it. It might even be a working usb port - most large companies have standard issue laptops, so making a custom hardware USB shim for those laptops might be possible.
-
Teach exploits not exploiters
Don't teach how to remove viruses. That is a moving target. Teach how viruses spread though specific examples. I think cross site scripting (XSS) is easy to teach them once they've done a little html authoring and had a little javascript programming. For this socially networked generation it applies to stuff they use EVERY hour of every day. A few of there were probably hit by that mouseover twitter exploit a few weeks ago. You can run an intentionally vulnerable server such as mutillidae to practice the exploits. http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10 Read up on current exploits at http://owasp.org/ The future needs people to know how to not create exploits, and patch the ones they do. We don't need more IT "next clickers" who only know how to run third party solutions.
-
Re:Do the states have the authority?
http://www.irongeek.com/i.php?page=computerlaws/state-hacking-laws
Seems to depends on the state and local e lobby efforts.
Some would have tighter data retention and privacy laws, others would be watered down?
So scanning for and keeping data not intended for you could be seen differently based on each states reaction to hackers and their skilled lawyers in the past. -
Re:still dont see
http://www.irongeek.com/i.php?page=computerlaws/state-hacking-laws seems to show a list of some state based ideas on computer infrastructure use and access.
back from 2005 on wifi
http://news.cnet.com/FAQ-Wi-Fi-mooching-and-the-law/2100-7351_3-5778822.html "Are state laws about unauthorized access different?
Yes, but often not in an important way. Genetski says that "as a general rule, most states model their computer crime laws after (the federal law).""
So in the US they might be ok for accidentally collected the data and didn't share it.
Within in the US illegal to access computer data without authorisation could be an aspect too, secured or not? -
Re:This
Nope. It's not like printers have been hacked with less to work from.
-
Zipit Z2 - $50, similar / better specs
The Zipit Z2 is easy to flash with Linux, has a MiniSD slot for additional storage, built in Wifi, Querty backlit keyboard, 320x240 screen, 312MHz ARM chip.
People making custom distros for it have already managed to cover all aspects of the machine's hardware... lid switch, backlight adjustments, etc... I bought mine on clearance at Target in October, and it's an adequate pocket Linux box for me while I wait for my Pandora. Here's a sampling of what people are doing with it:
http://zipit.rootnexus.org/
http://hunterdavis.com/archives/category/zipit-hacking
http://www.irongeek.com/i.php?page=security/zipit-z2-hacking-userland-side-track
http://www.karosium.com/2009/07/zipit2-clock-email-twitter-monitor.html
http://www.openzipit.org/
http://www.hak5.org/?s=zipit&x=0&y=0 -
Re:Though the Times They May Look Grim ...
One tin to rule them all: http://www.irongeek.com/i.php?page=security/programmable-hid-usb-keystroke-dongle
-
Not much of a "hack"
Calling this guy a hacker is a wee bit of an overstatement. Here is a video reconstruction of what he did: http://www.irongeek.com/i.php?page=videos/how-sarah-palin-email-got-hacked Not really a "Hack", just using the password recovery process.
-
Re:Bavarian police invading privacy!?!
svchost.exe is the best name for executables of do-it-yourself keyloggers such as this one.
-
Re:Only 1/3?
I'm not sure if you are making a joke, so just in case you aren't, I'll point out that MAC address filtering is no security at all. Your laptop is transmitting it's MAC as part of the regular wifi transmissions so sniffing it out of the air is trivial with Kismet or Kismac. Spoofing a MAC address is trivial on Linux and Windows machines, a bit more involved to make your OS X Leaopard system able to spoof but not rocket science, and apparently trivial with "spoofmac" on Tiger.
Here's an overview:
http://www.irongeek.com/i.php?page=security/changemac
For Linux, if you just want a random MAC to make yourself even more anonymous:
http://www.alobbs.com/macchangerSimilar software exists for windows (google "windows macchanger")
-
What, me change MAC address? I wouldn't do that...
Actually, I would and have done that.
Say you are in a situation where you can't connect your laptop to a network, but you can find the MAC address for a computer that is connected to that same network.
1) Disconnect the computer that is connected;
2) Change your laptop MAC (I assume you are all using some variant of GNU/Linux, but whichever, you can find information http://www.irongeek.com/i.php?page=security/changemac which will get you started, there is also a tool available for Ubuntu (and I guess other *nix) which can randomise your MAC, choice a MAC based on a specific company etc.)
3) Connect your laptop to the network in place of the other computer.Did I mention profit? I never did, but all I wanted to do was not be forced to use Windows and MSIE. (Of course, disconnect your laptop before reconnecting the other computer, having two machines with the same MAC could cause problems.)
So, even if you have a case of having to register your MAC before connecting to the network (which is the case in many places), because it is so easy to spoof MAC's, I don't think that you can even reliably connect MAC addresses to a computer (at least in the cases where geeks are around), let alone an IP address to a computer.
Basically, the only way that one should be trying to identify individuals is by using username/password, and even that is potentially problematic. (At my old Uni, to connect to the Wireless network you had to use your network login/password, it then didn't matter which computer you were using. Though in that case, I think the software only worked for MS Windows, the Mac and *nix software for the protocol wasn't up to scratch.)
-
Better than Guttmann Wipe
Here is what I would do: http://www.irongeek.com/i.php?page=videos/better-than-gutmann-dod-wipe
:) -
irongeek did some research into this
I dont know if it was before or after the blackhat talk.
http://www.irongeek.com/i.php?page=security/networkprinterhacking
its really interesting stuff. -
Re:Under my desk
Not if he's pretty good with a directional antenna. That's the magic of a parabola. For instance look at this, particularly the parts about Bluetooth. Hence why you never do anything important of any kind of wireless unless it has very good encryption.
-
If you are clever, you can get around it
And our IPs (we don't use NAT) are linked to a specific MAC address (we register the MAC addresses, which is a PAIN).
It's stuff like this that made me into a hacker in college. Lemme tell you kids a story...
In college I spent a good amount of time on the mainframe. A Vax. Learned about *nix a bit, did my C programming classes, did my time there. It went well. Then I found out this thing was on something called the Internet. No, really! It was connected to a bunch of other computers all around the world!
So I got heavy into that. Mostly for downloading Amiga games, I must admit.
But then I discovered something called MUD. Multi-user dungeon. The great-great-grandfather of WoW. And played that a lot. But the sysadmins got grouchy and closed my account. "The mainframe is not for gaming." After a while and a few promises, I got my account back. But you know what? That really pissed me off! I'm paying to be a student there. It's *my* money. I have to pay a general course fee that goes to paper, lab supplies...and the internet. And they're telling me how I can use my portion? Sorry, that doesn't fly with me. That's when I got into hacking.
Because we live in a world where you can do more time for hacking than running over a dozen people at a farmer's market, I'm not going to say too much more. But I will tell you this - two things happened.
- I got good at hacking.
- I got to play my MUD anytime I wanted.
- Eventually, figuring out the system became more interesting and I gave up the silly game.
And what you've got going here. Same thing. I'll give you a pointer on how to proceed. I'm not suggesting you actually do anything, just read the following. How to change your mac address. I'll leave it up to you to figure out what you could do with that info.
Have fun, be safe, and remember that knowledge is the key to the universe and all that. =)
-
MAC addresses?
How is that going to help them find anyone?
Hey RIAA - read this first.
And everyone else too. Never hurts to know stuff like this, y'know. Just in case. Yeah. That's it.
-
iGigle for Mapping
I like to use the WiGle database and
http://www.irongeek.com/i.php?page=security/igigle -wigle-wifi-to-google-earth-client-for-wardrive-ma pping
to do my mapping in Google Earth. -
The cost is too high, get a Zaurus
For $3,600, I think it's way over priced. Use a laptop, or home brew a similar device with a mcuh cheaper Zaurus:
http://www.irongeek.com/i.php?submenu=zaurus/zauru sheader&page=zaurus/zaurusmain -
Jetdriect Hacking
Anyone seen this site?
http://www.irongeek.com/i.php?page=security/networ kprinterhacking
It's a great resource for info on network printer hacking and vulnerabilities. -
Re:So... it's a Zaurus running a pen-testing toolk
I've not put Metasploit on mine, but I can't see why it's not possible. Here are some of the things I ave installed:
Nmap
Zethereal
Ettercap
Ngrep
TCPDump
Kismet
Nmap
THC-Hydra
Nemessis
http://www.irongeek.com/i.php?submenu=zaurus/zauru sheader&page=zaurus/zaurusmain
All on a Zaurus 5500 and for a lot cheaper than the asking price of this new toy. -
Con Funk Awareness Ribbon
I was talking to a lady named Erica working the Visionary Entertainment Studios booth while at Gencon. The topic was "Con Funk" , I thought there should be an awareness ribbon for it so I made one. I present to you the first prototype of Ribbonthulhu: http://www.irongeek.com/i.php?page=humor/confunk
-
Re:EVERY access point?This is already happening. In fact, it seems to be a hobby for wifi enthusiasts to cruise around their neighborhoods mapping the access points. There are already several scripts to put the GPS data onto satellite images and a company called SkyHook is currently gathering information about wireless APs for an E-911 system.
http://www.wardriving.com/ Wardriving news
http://www.irongeek.com/i.php?page=security/wiglet ogoogleearth Script for mapping wireless APs
http://www.skyhookwireless.com/news/press_rel_8.pd f Skyhook E-911 press release.
http://www.skyhookwireless.com/scanning/upload.php Want to be a professional wardriver? Sign up here! -
Cain and VoIP Sniffing
There is a program called Cain that can sniff VoIP traffic (as well as other things) and turn it into a wav file if it understands the codec. There is a video on how it works at: http://www.irongeek.com/i.php?page=videos/cainvoi
p 1 -
Re:A Simple Security Precaution
How the hell does this offer any security? Just look at the MAC address of the computer that is connected (any number of ways to do it) and then just change your NIC to use the same MAC.