July 2010
2 posts
1 tag
Rode to Work
This time it was 19:40 in to work. I haven’t been sleeping well so I haven’t been riding. I need to get back on the horse.
2 tags
Bogus Log Generator
I wonder what the legal implications might be of a framework that makes it easy to create generators for bogus but convincing log data.
Prosecution: “Your honor, I present to the court computer logs that show that the defendant participated in online activities for which he is charged.”
Defense: “Your honor, I present to the court computer logs that are completely...
June 2010
4 posts
1 tag
Rode to Work
Actually, I’ve ridden to work about five times since I last posted about it. Totally different route now.
Distance: 4.4 miles
Moving Time: 18:09
Riding Music: Bassnectar - Mesmerizing the Ultra
I think the time is a personal best but I’ve only tracked it with the GPS twice now. Good riding music, but a little bland for my taste. Would be appropriate to play in a gym where they...
4 tags
Anonymizer Universal on Anroid →
While at Anonymizer I got to use Anonymizer Universal and I thought it was pretty sweet. It doesn’t take long with a packet sniffer on a popular public wireless access point to see that you have little protection if any without some sort of VPN. Anonymizer Universal is a commercial VPN service that protects your traffic on the local network and allows it to exit through Anonymizer. I got it...
3 tags
I'll Be Here All Week
Raffy: I'm quite surprised BP's networks aren't getting a "Free of charge" penetration test right about now
crunge: maybe they are
crunge: Raffy: however, if there are any security holes....
crunge: anyone?
crunge: not
crunge: getting
crunge: successfully
crunge: plugged.
3 tags
No Longer With Anonymizer
I guess this is a bit late but it shouldn’t be Earth-shattering news to anyone. April 30th was my last day at Anonymizer. I had never before been in the position of leaving a job I liked but an opportunity fell into my lap that was too good to pass up. I’ve taken up a position as a security engineer at a Fortune 500 company in the Silicon Valley area that’s doing a lot of...
May 2010
9 posts
5 tags
wepwn →
Some months ago I wrote a couple scripts to capture the workflow of cracking WEP. Essentially you could use the scripts to scan for targets and then specify the target to attack by ESSID or BSSID.
I came into a situation where I needed to learn python so I consolidated those scripts into a single python script and that is wepwn. It was developed on Backtrack 4 but may work on other Linux distros...
1 tag
UK to Kill off National ID Card Program →
Way to go UK!
2 tags
Todo Sushi
Todo Sushi off of Carroll Canyon Rd. Tuna roll: good. Baby lobster dynamite roll: very good. Volcano roll: incredible.
2 tags
Verizon Service for Android Purchase
When I went to buy my Droid Incredible the Verizon sales rep was very friendly and helpful. One thing that was lame was that he offered to sell me an 8GB or 16GB microSD card for my phone. I refused figuring I’m better off just picking one up at Fry’s or wherever. A few minutes later he pulls out a 2GB microSD card and says that it’s free. This seems like a totally shady upsell,...
1 tag
Walls Get Bombed →
I like graffiti so I’ve started a semi-public blog for graffiti. Check it out.
1 tag
From "The Privacy Blog" Intelligence collection... →
The short version: you use an open proxy someone set up and the logs of what you’ve visited are stored there. Possibly those logs are poorly protected. It’s also possible that the proxy was set up with the specific purpose of surveillance.
Drinks at Hamilton's
Had some drinks at Hamilton’s in South Park. Seemed like a pretty nice place. Even if it weren’t, I had a few beers and a lot of friends there and those things alone would have made it a good time.
April 2010
6 posts
2 tags
Droid Incredible - Not Seeing MP3s
Dropped a bunch of MP3s in the exiting Music folder in an organization structure similar to the existing one. It’s seeing none of the files that I added. If I figure out the issue I’ll post the solution. Sending the sound output playing the songs that were there to my care stereo via bluetooth went seemlessly.
Oh, it was me be stupid. I was using Amarok to copy media to it and...
2 tags
Droid Incredible
Got a Droid Incredible this morning, upgrading from a first grn iPhone. This thing is sweet. Hopefully it will still be after the honeymoon is over.
Oh yeah, except that the mail app silently errors how when connecting to my mail systems which have certs signed by my private CA. and it won’t let me click through. People on the tubez say it won’t do self-signed either. I’ve...
1 tag
Studio Diner in Kearny Mesa. Friday night special was Sea Bass. It was excellent.
1 tag
Peace Out, Guru →
1 tag
AssRace: Possible Advantage For A Rogue DHCP...
One method for MITM attacks is to set up a rogue DHCP server. In this situation you’re in a race with the real DHCP server and you may not always (if ever) win.
I’ve been sitting on an idea for a couple weeks where under certain circumstances you could have a distinct advantage in the race. Specifically when the DHCP client is on WiFi. Before WiFi clients pull DHCP they usually have...
2 tags
Gentoo is Dead, Long Live Debian!
I had decommed my old gentoo home server that hadn’t been patched in around three years a few weeks ago. A week or so ago I wiped the drives as best I could since they were malfunctioning. I installed my new drives this evening: 2 80GB and 2 500GB SATA drives. They’re RAID1 together in pairs. The 80s will hold the OS and home directories, the 500s are all for media. Right now...
March 2010
6 posts
3 tags
From Stored XSS to DDoS, almost
The backbone of science is sharing your failed experiments so here goes.
I was a little frightened when directed to RFC 2397. Basically it says that included objects that you would reference by a URL can be provided inline in one or more forms. It looks like this:
<img src=”data:image/png;base64,alkj2K09…..” />
Try it. It’s kind of neat-o. The idea I had was...
Ohh...: Does anyone ever talk about what sort of... →
Does anyone ever talk about what sort of psychological relief Walmart brought to the individual in the small town, in terms of alleviating the burden of over-judgmental townies who ran the local Rx, hardware, grocery, etc., by offering purchasing anonymity (I mean socially; not in terms of…
Everything lost is something else gained, and vice versa. Walmart has a lot of detractors and a...
4 tags
DoSassination Market
From Wikipedia:
An assassination market is a prediction market where any party can place a bet (using anonymous electronic money, and pseudonymous remailers) on the date of death of a given individual, and collect a payoff if they “guess” the date accurately. This would incentivise assassination of individuals because the assassin, knowing when the action would take place, could...
1 tag
So Long, And No Thanks for the Externalities: The... →
If you have to deal with security in any kind of professional capacity it is worth your time to read the the 10.5 pages of text in tihs paper.
1 tag
elitehackercontest.meh
Brilliant idea of the day.
I register the domain, “elitehackingcontest.org” or somesuch nonesense. I make sure the website says that the target sites are “realistically simulated Internet sites”. I then just pick random sites on the internet and point target1.elitehackingcontest.org.
I then advertise the crap out of it and let hilarity ensue.
1 tag
Alice In Wonderland
Saw “Alice In Wonderland”. Meh. Glad I didn’t pay to see it in sphincter-puckering IMAX 3D. The casting was good, the acting was good… I just felt that it wasn’t engaging.
February 2010
14 posts
2 tags
Properly Deploying a Private CA Cert in Ubuntu
I think the true strength of the certificate PKI is the ability to set up a CA for your organization and mint your own certs. You get the advantage of proper certificate validation without the cost of paying a third party to validate your identity (snicker).
There are copious sets of instructions on how to create your own CA but I had a very difficult time finding proper instructions on...
The Secret Life of Chaos →
If you’re even remotely interested in science or mathematics, set aside an hour to watch this.
2 tags
Mitre's 25 Most Dangerous Programming Errors →
I look at those things and I fear that people will look at it as “Oh, as long as I do these n items I’m fine.” Those people convince themselves they’re safe when they’re not. If your application has error #26, or #52, or #375, it’s still broken, it’s still insecure. The attackers don’t care if your application has RFI, SQL injection, or has a...
2 tags
Microwave + RFID = Plasma
It would appear that RFID chips in a microwave make plasma, and plasma melts glass microwave turntables. While I understand the latter, I was not expecting the former. The impressive thing was it kicked off at about 2.5 seconds. I wonder if it would have been “safely” destroyed in a glass jar submerged in water, this being a bank card.
Hopefully I’ve never made claims that...
2 tags
PCI
The security of a transaction-processing network varies inversely with the value the operators place in PCI.
WatchApply directly to brain.
2 tags
0(mfg)day
The term 0day has lost any significance in meaning. The original meaning was that a public vulnerability disclosure was made and the same day someone produces a working exploit.
Now 0day can mean a lot of things. It usually means something to the effect of “an exploit for which there is no patch available” but depending on who you ask it might mean “an exploit that’s leet...
1 tag
Lock Picking Observations
In a previous comment I noted that I intended to share my observations on beginning lock picking. I’ve only really been raking so far, not per-pin picking.
First, it’s very easy to apply too much pressure to the torsion wrench. Start by applying just a little bit of pressure and slowly increase the pressure. The wrenches with the half twist will absorb some of the pressure by bending...
1 tag
4chan
4chan is an Internet fever dream.
1 tag
Vint Cert on Cloud Computing: Everything Old Is... →
2 tags
Spoofing For Charity... or Not
The media is reporting a lot about SMS charities. You send a text message to a certain number and your cell phone company bills you $10 or whatever. The company keeps a percentage or flat fee and passes the rest on to a charity. It’s a very convenient way for charities to get money. Of course it’s huge for Haiti charities.
What if you set up your own SMS “charity”. Then...
1 tag
Ain't No Mountain High Enough
Some of my friends know that I have clinical depression. For the most part I have it licked; I was on medication for a couple years while I learned how to deal with it. Now I occasionally go through some bad patches but they usually don’t go on for longer than a week. I’ve learned that if I just wait them out they’ll pass. I had been stuck in one for all of January which finally...
1 tag
Locks... not so much
I started practicing lockpicking with a basic set of lock picks. So far I’ve really just been raking and I’ve found that the C rake works best for me. I’ll eventually work up to per-pin picking but for now I happy just having success raking and getting a feel for things.
I’ve been practicing on a cheap padlock I got at a grocery store. A few minutes ago I took a try at my...
January 2010
12 posts
2 tags
Colo Cage Hunting
I love colo cages because a lot of people think they alleviate the need for cabinets. Just put up four-post racks in your cage and you’re done. The cage gives you all the physical security you need.
I was told the phrase “the cage will keep malicious people from plugging things in”. Aside from the fact that cages can’t sense intent, I don’t think it can keep anyone...
1 tag
Copying Windows Binaries
Maybe this is piracy, maybe it’s not. I have a tool installed on my computer and when new programs are installed it discovers them and pops up a lovely prompt asking if I will allow the executable to be copied to some computer somewhere. I haven’t looked into it deeply but it doesn’t seem to be aware of software licenses and whether the license for that binary allows for it to be...
1 tag
GPEN Certified
I just passed my GPEN at 94%. Wewt.
1 tag
Chinese Server
I need to get a server in China. Then if I hack something or use it as a phishing site people will just assume the big, mean, Chinese government is behind it.
I Have Comments Now
Sorry about that, Richard. I’ve wanted to have a comment system for a while but tumblr doesn’t have built-in support for it and I was just lazy. I had to switch templates or hack up the HTML and I really want nothing to do with HTML.
On Being a Bastard →
I’ve probably been kicked out of #perl by mst. I also probably deserved it.
1 tag
Most technical discussions of security are in a context with no practical constraints.
In practice you have constraints you have to work around. You have a limited budget, limited man-hours, user requirements. All of these affect the security-effort and security-usability curves.
For every security policy and tool you want to implement you have to weigh the effort and usability affects against...
2 tags
It Wasn't Me, It Was the Seeder Worm
The media cartels like to hold the user of an IP address liable for any file sharing done through that IP. So if someone breaks into your WiFi and runs bittorrent it’s your fault. To some degree I believe that it’s the responsibility of the individual to secure their network that problem is basically intractable. At any rate, you could have DMCA invoked on you for whatever happens on...
