GNUCITIZEN Comments

ginjon: @gool home hubs are thompson speed touch, they are just re branded...[...]

Tue, 15 Dec 2009 07:29:24 -0800

@gool

home hubs are thompson speed touch, they are just re branded…

Puffyandre: Edward P responds: http://www.voidrage.com/BTHHkeybf.rar The file is corrupt? Anyone else getting this? I've tried downloading multiple times and using different apps to open, but still get the same result.[...]

Tue, 15 Dec 2009 04:08:09 -0800

Edward P responds:

http://www.voidrage.com/BTHHkeybf.rar

The file is corrupt? Anyone else getting this? I’ve tried downloading multiple times and using different apps to open, but still get the same result.

The Iphone Spot» Blog Archive » Update: iWep PRO 1.0.8 Cracked: Links: http://www.gnucitizen.org/blog/defau…e-hub-routers/ [...]

Mon, 14 Dec 2009 14:55:00 -0800

[...] Links: http://www.gnucitizen.org/blog.....b-routers/ [...]

The Iphone Spot» Blog Archive » iWep PRO 1.0.7 Cracked: Links: http://www.gnucitizen.org/blog/defau…e-hub-routers/ [...]

Thu, 10 Dec 2009 12:09:02 -0800

[...] Links: http://www.gnucitizen.org/blog.....b-routers/ [...]

Reverse Shell | Computerglitch Research Project: discussion on the subject can be seen here: http://www.gnucitizen.org/blog/reverse-shell-with-bash/. As you can see many interesting ways of achieving this goal have been [...]

Tue, 08 Dec 2009 10:04:07 -0800

[...] discussion on the subject can be seen here: http://www.gnucitizen.org/blog.....with-bash/. As you can see many interesting ways of achieving this goal have been [...]

pranky0607: been playing with the Home Hub 2.0, and the WPA key appears pretty secure. However it appears as if the default ESSID and the default WPA key comes from the Mac Code of the router. There are 4 mac codes available but they are all in order. The new hu[...]

Thu, 03 Dec 2009 13:31:26 -0800

been playing with the Home Hub 2.0, and the WPA key appears pretty secure. However it appears as if the default ESSID and the default WPA key comes from the Mac Code of the router. There are 4 mac codes available but they are all in order.

The new hubs also have an interesting levels of dgst available, which could go some way towards not being able to work it out up to now. Anyone else had more luck on this than me?

nick: Ricardo, Unlikely. The device only has 32MB of onboard RAM and a not very powerful processor. To be able to "record" 10 minutes worth of video at any useable resolution and then send that by ftp (forget email due to the size of the video file) would [...]

Tue, 17 Nov 2009 14:13:12 -0800

Ricardo,

Unlikely. The device only has 32MB of onboard RAM and a not very powerful processor. To be able to “record” 10 minutes worth of video at any useable resolution and then send that by ftp (forget email due to the size of the video file) would require processing power and RAM that the device just does not have. Best scenario is to use the video stream produced by the device and feed that into a PC running security software that would detect motion and record the event. Such software is available.

Maurice: I am still running john to get the password still nothing found. I want the same as what Nick wants reducing the motion sensibility. There should be a firmware around that is dealing with this issue. Version 1.1.0.0 build 2 look at this forum thread.[...]

Sat, 14 Nov 2009 01:19:56 -0800

I am still running john to get the password still nothing found.
I want the same as what Nick wants reducing the motion sensibility. There should be a firmware around that is dealing with this issue. Version 1.1.0.0 build 2 look at this forum thread. http://forums.linksysbycisco.c.....d.id=10525

If I have some luck I will post the password.

gool: you complied stkeys2 only for thomson router what about bthomehub? your stkeys2 dosent work with bthomehub...[...]

Fri, 13 Nov 2009 06:22:20 -0800

you complied stkeys2 only for thomson router what about bthomehub? your stkeys2 dosent work with bthomehub…

Mike: So all we know is that there is some add-on, somewhere, that does...something, and that add-on contains malware? Yikes. This is like when I watch my local news and they say something like, "Is an everyday product you use in your house SLOWLY KILLING [...]

Wed, 11 Nov 2009 07:59:20 -0800

So all we know is that there is some add-on, somewhere, that does…something, and that add-on contains malware? Yikes. This is like when I watch my local news and they say something like, “Is an everyday product you use in your house SLOWLY KILLING YOU?…FIND OUT AT 11!” I need more details!!

pdp: GenericProdigy, this code has long been outdated. I doubt I will ever get back to this. :)[...]

Mon, 09 Nov 2009 14:19:55 -0800

GenericProdigy, this code has long been outdated. I doubt I will ever get back to this. :)

pdp: meandmine, we use google code because it is simple and it does the job.[...]

Mon, 09 Nov 2009 14:17:49 -0800

meandmine, we use google code because it is simple and it does the job.

pdp: sriram, I think we are onto something here :) good ideas...[...]

Mon, 09 Nov 2009 14:14:11 -0800

sriram, I think we are onto something here :) good ideas…

sriram: Nice analysis done! I am trying to follow your foot steps and trying to make a pythonic application (xploit playground). As you pointed out the exploits of metasploit are its heartbeat, i would also like to add that the shellcodes/shellcodegen etc ar[...]

Mon, 09 Nov 2009 02:50:46 -0800

Nice analysis done!

I am trying to follow your foot steps and trying to make a pythonic application (xploit playground).

As you pointed out the exploits of metasploit are its heartbeat, i would also like to add that the shellcodes/shellcodegen etc are the holy grail of hacking and it needs the most attention. As exploits come and go(when patched) the only precious thing left out is the shellcode, as it can be used again and again.
So in my view logically for an effective pythonic framework the first thing is to implement those payload stuff. There is a proverb ‘Don’t give a fish to an hungry man, just teach him fishing…’ I find at least 93 payload types ready-made into the metasploit framework. Most of the exploits are simple class extension that provides metainfo and data to the payloads/payloadgens.

Also the 3 layers can be made as pluggable as possible. Exploits can be made run with/without the framework or standalone exploits are very easy in a pythonic framework.

Using pypy/shedskin to generate c/c++ code is awesome. This can be used to make highlevel stuff by inherent python high level features. Also modules like shellforge/impacket etc are very useful for the low level stuff.

It would be even awesome if python had a disable dynamic prg switch, we can then implement stuff that pypy does.

I dont know whether I can code all those stuff..but it just came to my mind.. after all i am just a guy who want to learn python and security..!

Ricardo: I have a question. The camera has a surveilance mode that lets you record event-driven video of up to 5 (yes, five) seconds before/after the event itself. Is there any way to have the camera record something like, maybe 10 minutes worth of video inst[...]

Sun, 08 Nov 2009 06:33:01 -0800

I have a question. The camera has a surveilance mode that lets you record event-driven video of up to 5 (yes, five) seconds before/after the event itself. Is there any way to have the camera record something like, maybe 10 minutes worth of video instead of 5 seconds?

reid: okay so this is probably a bit old, but I found it amusing anyway. We use snom phones internally and also for a hosted voip solution. I was looking for a phone on our LAN and (stupid) decided to do a quick port scan for it. nmap 5.0 running service s[...]

Fri, 30 Oct 2009 20:20:07 -0700

okay so this is probably a bit old, but I found it amusing anyway. We use snom phones internally and also for a hosted voip solution. I was looking for a phone on our LAN and (stupid) decided to do a quick port scan for it.

nmap 5.0 running service scan (-sV) option against a snom phone may cause the phone to reboot. I can do this on snom v7.1.33 and 7.1.39. Foudn it out this afternoon so i’m still raising a ticket with Snom.

i’ve run earlier versions of nmap previously and it doesn’t cause this kind of error. highly amusing to know i can jump on someone’s LAN and cause all their phones to reboot.

pwn-a-cycle: the link is http://www.josephn.net/download/dl.php?file=bthh_recovery @fLaMePr0oF - seems you accidently appended a ).. to the url[...]

Fri, 30 Oct 2009 08:59:54 -0700

the link is http://www.josephn.net/downloa.....h_recovery

@fLaMePr0oF – seems you accidently appended a ).. to the url

SirArthur: A simple remake of the stKeys available on this page allowing to select the last year to calculate. Usage: stKeys2 Eg: stKeys2 188DBB 10 (Search for possible keys for 188DBB made until 2010) http://www.megaupload.com/?d=4WSPGII8[...]

Fri, 30 Oct 2009 04:42:00 -0700

A simple remake of the stKeys available on this page allowing to select the last year to calculate.

Usage: stKeys2
Eg: stKeys2 188DBB 10
(Search for possible keys for 188DBB made until 2010)

http://www.megaupload.com/?d=4WSPGII8

To hell with IPv4… - Jigeiko: But then I came upon the following: hacking with UPnP [...]

Thu, 29 Oct 2009 01:36:55 -0700

[...] But then I came upon the following: hacking with UPnP [...]

» Segurança nos router meo (thomson) tem falhas viagens: http://www.gnucitizen.org/blog/default-key-algorithm-in-thomson-and-bt-home-hub-routers/ [...]

Tue, 27 Oct 2009 11:19:27 -0700

[...] http://www.gnucitizen.org/blog.....b-routers/ [...]