War on Scientology

The attack on Scientology, which Anonymous has dubbed Project Chanology, started in recent days, set off by the Church's most recent attempt to censor the internet by forcing sites to remove a creepy Tom Cruise Scientology video. Youtube has complied and removed the video but nonetheless, the video can be downloaded from here.

Video Message to Scientology

PortBunny

Watched the video recording of Recurity Labs presentation on PortBunny during the 24th CCC. I've been involved with Nmap for over 2 years and I have to admit that the presentation did push me to the edge of my seat initially. Their points are well constructed and the graphs did show a contrast of things. At the end of the presentation, I realized that they were emphasizing on the speed aspect whilst sidestepping the accuracy aspect which IS A BIG DEAL. Sure Nmap takes 12 minutes, 18 seconds whilst PortBunny took 15 seconds to scan. That is an average of 4,369 probes per second. Nmap can scan that fast too if you remove congestion control and toss out the idea of accuracy. Though i do agree that Nmap's timing-code algorithm which is still based on TCP-RENO is from the 80's needs a long deserved overhaul.

Fyodor's response
PortBunny Project Page

"PortBunny is a Linux-kernel-based port-scanner created by Recurity Labs. Its aim is to provide a reliable and fast TCP-SYN-port-scanner which performs sophisticated timing based on the use of so called "trigger"-packets. The port-scan is performed in 2 steps: First the scanner tries to find packets, to which the target responds ("triggers"). Second, the actual port-scan is performed. During the scan, the triggers, which were found in the first scanning-phase, are used to determine the optimal speed at which the target may be scanned."

Wardriving )(

Went out Wardriving earlier with my girl. It was a Saturday night and we needed to get out. It was either this or smacking my head with either a stone or a chisel (kinda symbolic with respect to where we are). Got the car hooked up for the drive. The 9db antenna was mounted at the back. There's one thing I have to point out is that with a 500mW Alfa(RTL8187) wireless adapter, being in close proximity with the antenna can seriously mess you up(ex: headaches,nausea). Which is why the antenna is mounted outside. Got my power inverter powered on in case the battery gives up. Took a few snaps with my Nikon for shits and giggles. We didn't expect this municipality to have that many access points powered up on a Saturday night. We drove up to a few spots before ending the session. All in all, more than 60 access points were found which I found pretty darn impressive for an area where Google dosen't give a crap about to map out in Google Maps. What makes it scary besides the open access points found is that more than 40 of the access points detected are on 64-bit WEP keys.

Setting up the wireless adapter

Where the laptop would reside. Power Inverter located below the seat.

Backseat Layout (Didn't really use the Pringles Bluetooth Directional Cantenna)

My girl helping me out to monitor the results

Airodump-NG in action

Trimester break

So yea. I was excited about the holidays for numerous reasons. Firstly, my uni's trimester break around this time of the year falls right after Christmas and New Year's which sucks. Secondly, I wanted a break from computers. Heck, even the Playstation 3 which i initially bought as a stress buster is now a webserver(running Apache). Not to mention that my sleeping cycle is messed up. Working on the laptop for over 12 hours a day does put a strain on you. The excitement fizzled off when I got an email from Brent of the Gentoo Cell Overlay team where he needed the GCC 4.3 bootstrap fix for the PPC arch ASAP. With that, a week of holidays was burnt and I only have 2 more left to spare.

Here am I after almost a week of holidays gone. Made it a point yesterday to put take a breather from everything. I went out to the local mall to purchase COD 4 for the Playstation 3. My younger brother bought a few games a few weeks back(Assassins Creed, SKATE and Motorstorm) and it's my turn to purchase em. Spent the whole day just chilling with the games and later hanging out at the skate park. Wasn't going Gung-ho on plans since I'd be traveling out with my girl and a few friends during the last week of holidays. Looking forward to that.

Intel Wireless Adapter MAC Addresses Changer

A while back when i was serious about WarDriving, I was constantly using both my built-in IPW2200 and the Alfa wireless adapter. On *nix env, ifconfig $INTERFACE hw ether $ADDRESS would be sufficient enough. I was having issues with the RTL8187 driver on Gentoo at that time and resorted to WarDriving on Windows. The only alternative for the Windows platform available was a tool called SMAC from the guys at klcconsulting. Unfortunately, to seriously use this software you'd have to pay for it. As any random disgruntled individual would do, I whipped up my own tool.

Macchanger is a Windows based command line tool to change the MAC address of Intel based wireless adapters. It was coded in C++ and the program can be downloaded from here. Development for it stopped with it's basic features. It also has been patched for use in Windows Vista(thanks to Hazwan for informing me about the bug). If there is a substantial demand or interest in this tool, I may implement a MAC address randomization feature(notice option 5?). Do take note that the wireless adapter has to be switched on for it to function.

Windows PowerShell

By being labeled as a staunch proponent of the Open Source initiative, it's hard for some of my friends to grasp the idea of me being a Microsoft Student Partner. Well lets just say I keep an open mind. The fanboy sects of Apple, Google and Microsoft are just marketing strategies formulated to increases sales. I had a great conversation with Jennifer Perret over dinner a while ago regarding Microsoft's stance on the media's hate for Microsoft and the media darling (as quoted from her) status of Apple and Google. Yes, Microsoft have made mistakes in the past and there is a new atmosphere which is reflets to a more agile and dynamic Microsoft. The new Zune and Xbox 360 stands to this testament.

I am going to discuss about Windows Power Shell which is a command line interface shell which is available for Windows XP SP2, Windows Server 2003 and Windows Vista. It is also an optional feature in Windows Server 2008. It is based on the .NET Framework. I am familiar with bash scripting on *nix and it's interesting to see that PowerShell does have some nifty features which is a far cry from the current command line interface shell. The screenshot shows a few commands like finding processes which uses > 20 GMB of memory, listing processes which start with v and watching the firefox process and waiting for it to terminate. Do check out the blog of Windows PowerShell team here. There's even a post about creating your very own commands which can be found here.

PowerShell in action

Umit Light is recruiting!

Umit Light is recruiting developers!These are aspects where work needs to be done.

1. The website is now running on Enano CMS. It has to be edited and configured for Umit Light.
   
2. As for Umit Light, work needs to be done on PyCairo and WDK fiddling of MSBT to include RSSI scanning.
3. Assistance in the DCE-RPC and Neural Network OS Signature work which is integrated into Umit Light as a plugin.

Languages used: Python, PyGTK, PyCairo


drop me an email at devtar <-at-> gmail.com

24th Chaos Communication Congress Videos

Got an email from my mates of 2600 Sydney about the 24th Chaos Communication Congress. The videos are up and can be downloaded from this torrent. It's over 6GB so do make sure there is sufficient space and bandwidth. Better yet, just burn em out and pass em around.

Nokia Ngage Schematics

A few years ago when i got my Nokia Ngage, it was no doubt a fun device. As it turned out, I wasn't really much of a gamer and ended up scripting on the phone. With that, i started cultivating interest in Bluetooning and even messing about the EEPROM. The s60 crusade died down after switching phones. It would be great to hear something refreshing about the scene. I've uploaded the schematics of the Nokia Ngage for your reference.

My first blog entry.. It's basically gonna be a blog on my random rants and the Umit Light project which is still in it's infancy (do check it out guys).