3D Hacking Environment Links Kinect, Blender, and Metasploit

baxpace writes with a link describing a way to test your own security systems for vulnerabilities using Kinect-interpreted natural gestures in tandem with the Metasploit Framework and the Blender game engine, writing: "The idea is to hack into your own systems while in a 3D, first person shooter style environment that interfaces with the Kinect sensor. The game engine was built using Blender and looks to be one of the most pleasing ways of uncovering your own systems' architectural/networking vulnerabilities."

The Gibson

We can finally hack it!

Re:The Gibson

This is UNIX! I know this!

Swordfish

[Ramin_HAL9001]

I hate Hollywood style hacking with all that fancy 3D graphics that flash around on the computer screen while the "programmer" sits in front of it typing randomly on the keyboard saying, things like "512 bit encryption", "almost, almost", "come on!", "don't do this to me", "got it!".

So now we have an actual hacking application with actual 3D graphics that actually mean something. Too bad it doesn't look as cool as in the movies.

Re:Swordfish

[pinkstuff]

This is what me and my friends refer to as "HOS", Hollywood Operating System

Re:Swordfish

[Fatch+Racall]

I distinctly remember seeing a c:\ prompt(DOS, usually), a Mac OS(trash can, quicktime, etc), Lex said it was Unix, and I remember them mentioning that they were 'supercomputers' which suggests CrayOS. In other words, the most retarded system ever created.

And you really need all this

[aglider]

in order to audit your own systems?
Cool, but rather complex for an audit!

Re:And you really need all this

[DarkOx]

Manager: What do you think you think you're doing you can't play video games at the office, at least not during business hours!

Jr. Network Admin: Sir I am conducting a Pen test of against our dev environment.

Manager: Yea I think my kid likes one too, its Japanese right?

Network Admin: Sir I am its not a game.

Manager: Look I know you guys take you aviators seriously, but try to do it on your own time ok.

Jr Network Admin: Sir I think you mean avatar and like I said this is actually not a game its a front end for metasploit.

Sr Network Admin: He cut the crap Jr that interface is not scriptable at all and how many times do I have to tell you if you think you're going to do it twice, script it once! It leaves more time for slashdot.

Manager: What is slashdot?

Sr Network Admin: Its a um.. hmm.. I guess you'd call it a computer based continuing education tool.

Manager: Really, that sounds great, I want the whole department spending a couple hours a day on this slashdot.

Command line for me

[king_grumpy]

Call me old school, but I'd prefer a command line. Can't see this taking off for security professionals.

Re:BFG

[olden]

Yes! That's exactly what this reminds me of: psDooM ! http://psdoom.sourceforge.net/
Why merely check for vulnerabilities when you can obliterate them, along with the rest of the system you're "auditing" :-)

All these times...

[BenevolentP]

All these times you tried to explain people that what they see in the movies is bullshit when it comes to "hacking". And now, that SOME slowly get it - bam - they will inevitably see this and think that you have no idea what you're talking about when it comes to computers.

Re:All these times...

I smell bullshit. No real-life colleague could make the linguistic jump from taxonomic to taxonomy unaided.

Re:Pleasing? WTF?

[Sinthet]

I'm pretty sure this hack was done "just because" and "for fun" rather than a serious attempt at a front-end for metasploit.