Information Security

HandBrake 1.1.1 - Versatile video encoder; convert any source to MPEG-4 and more.

MacUpdate - Mac OS X - Tue, 06/19/2018 - 23:59

HandBrake is a tool for converting video from nearly any format to a selection of modern, widely supported codecs.

  • Supported Sources
    • VIDEO_TS folder, DVD image or real DVD (unencrypted -- CSS is not supported internally and must be handled externally with third-party software and libraries), BDMV folder (unencrypted), and some .VOB and .TS files
    • Any multimedia file it can get libavformat to read and libavcodec to decode.
  • Outputs
    • File format: MP4 and MKV
    • Video: MPEG-2, MPEG-4, H.264 or Theora (1 or 2 passes or constant quantizer/rate encoding)
    • Audio: AAC, HE-AAC, AC3, MP3, Vorbis, FLAC (16-bit, 24-bit) or AAC, MP3, AC3, DTS and DTS-HD pass-through (supports encoding of several audio tracks)
  • Miscellaneous features
    • Chapter selection
    • Soft subtitle support (DVD/VobSub in DVD/MKV/MP4, Blu-ray/PGS in BD/MKV, SRT files, SRT/UTF-8 in MKV, ASS/SSA in MKV, TX3G/3GPP in MP4 - DVD/VobSub, Blu-ray/PGS and ASS/SSA subtitles can also be burned-in the picture)
    • Picture deinterlacing, cropping and scaling
    • Grayscale encoding

Version 1.1.1: General
  • Fixed a potential crash in the comb detection filter
  • Fixed a potential crash in the padding filter
  • Fixed corrupted output with VP8 and VP9 encoders
  • Fixed building x264 using Clang and -march=native/-mavx (thanks H. Gramner for the upstream patch)
  • Fixed decoding certain very high bit rate ultra-high definition sources with extra large packets
  • Fixed last frame in source video missing in output
  • Fixed crash when decoding an empty audio track
Build system
  • Updated mac-toolchain-build script Nasm url and improved curl parameters for robustness
Third-party libraries
  • Updated libraries (necessary to pull in needed bug fixes)
  • libvpx 1.7.0 (VP8/VP9 video encoding)
  • x264 155 r2901 (H.264/AVC video encoding)

  • OS X 10.7 or later

Download Now]]>

Default Folder X 5.2.5 - Enhances Open and Save dialogs.

MacUpdate - Mac OS X - Tue, 06/19/2018 - 23:59

Default Folder X attaches a toolbar to the right side of the Open and Save dialogs in any OS X-native application. The toolbar gives you fast access to various folders and commands. You just click on the buttons to go to your favorite and recently used folders, manage the folders and files shown in the list, and make changes to your settings. It also fixes a number of problems in Open and Save dialogs, "rebounding" to the last selected file, putting the path listing back in the top menu, and correcting bugs in scrolling column views.

  • Directory assistant: You can access the contents of your recent, favorite, and open folders right from Default Folder X's toolbar.
  • Real time saving: If you're constantly saving things inside the same folder, Default Folder X can remember that folder for you.
  • Finder management: Default Folder X lets you open up or save to any Finder window with a single click.
  • Instant Recall: To help you quickly return to folders you've recently used, Default Folder X remembers them for you.
  • Spotlight on the spot: Default Folder X lets you add Spotlight keywords, OpenMeta tags, and Finder labels on the spot, while you're still in the Save dialog.
  • Information central: With Default Folder X you get previews below every Open dialog, expanded to fill the available space. Need to see more detail? Click on the image and it zooms up to full size.
  • Workflow without work: Rather than make you learn and set up a new application, Default Folder X blends into OS X.

Version 5.2.5: Feature enhancements:
  • Preliminary Mojave compatibility. Mojave file dialogs are supported, but Dark Mode is still to come.
  • There's now a preference to sort all subfolders in Default Folder X's hierarchical menus by date. It's surprisingly handy.
  • You can specify a default folder for an application and set it so it's only used when manually selected from the Favorites menu.
  • Added a GetCurrentSelectionList AppleScript verb to return all items when multiple files and folders are selected.
  • You can no longer set a shortcut key that's just Shift+Key because that's never really what you want.
  • Support was added for the Oxygen XML Editor suite.
  • If you would prefer to have Default Folder X continue to use the Finder to open folders even when you are running Path Finder or ForkLift, you can now specify that by using this command in Terminal:
    defaults write com.stclairsoft.DefaultFolderX5 fileViewer
Bug fixes:
  • When displaying a symbolic link in its menus, Default Folder X now shows the name of the link rather than the name of the item it points to.
  • If Default Folder X is set to open an item in the frontmost Finder window and the only open Finder window is minimized to the Dock, the window will be unminimized when Default Folder X tells the Finder to show the item.
  • The popup names shown when you hover over items in the drag zone will no longer get stuck on-screen.
  • Visual feedback when dragging an item to the drag zone is now correct. The '+' and link icons are never shown.
  • Fixed a bug that could cause a file dialog to freeze with a spinning progress indicator showing.
  • Keyboard traversal of Default Folder X's menus would stop working after using its utility menu. This has been fixed.
  • Fixed a bug that made it impossible to drag a file to the drag zone if you clicked on its icon in column view while running High Sierra.
  • Corrected display problems when showing Default Folder X's controls around very short file dialogs.
  • Fixed the cause of some spurious crashes.

  • OS X 10.10 or later

Download Now]]>

Been a lot of odd goings on...

Your hacking tutorial - Tue, 06/19/2018 - 23:55

Anyone in the US noticing unusual connectivity issues across the board? My home state (Oklahoma) is having all sorts of problems involving Verizon. Anyone got any info?

submitted by /u/Paretio
[link] [comments]
Categories: Information Security

An odd confession...

Your hacking tutorial - Tue, 06/19/2018 - 23:53

Anyone else ever notice that while you are learning one part of tech, everything else blows past you? I've been grinding at phreaking lately, come back to routerwork and all my knowledge is almost inapplicable less than a month later.

submitted by /u/Paretio
[link] [comments]
Categories: Information Security

PayPal reminds users: TLS 1.2 and HTTP/1.1 are longer optional

The Register - Tue, 06/19/2018 - 23:52
Insecure connections will break after June 30th. And it's acquired Hyperwallet, too

PayPal has reminded merchants that they must support TLS 1.2 and HTTP/1.1 by June 30.…

Virtual reality meets commercial reality as headset sales plunge

The Register - Tue, 06/19/2018 - 22:58
But growth is imminent as businesses buy and build VRs, and consumer kit improves

Shipments of virtual reality kit have plunged, but growth is just around the corner.…

Telstra reveals radical restructure plan

The Register - Tue, 06/19/2018 - 22:14
Tel-colossus to shed 8,000 jobs, create new infrastructure company

Australia's dominant telco, Telstra, will cut 8,000 jobs, flatten its structure by slicing up to four layers of management, turn 1,800 consumer products into 20 (with a similar reduction in the number of enterprise products later), and put its infrastructure into a separate division that could be sold off in the future.…

ARM Reversing

Your hacking tutorial - Tue, 06/19/2018 - 22:09

I am currently trying to learn reverse engineering for the ARM ISA. Are there any recommended resources and challenges I could use to practice?

submitted by /u/shiranaize
[link] [comments]
Categories: Information Security

Calm Down: It’s Only Assembly Language

Hack a Day - Tue, 06/19/2018 - 22:00

Based on [Ben Jojo’s] title — x86 Assembly Doesn’t have to be Scary — we assume that normal programmers fear assembly. Most hackers don’t mind it, but we also don’t often have an excuse to program assembly for desktop computers.

In fact, the post is really well suited for the typical hacker because it focuses the on real mode of an x86 processor after it boots. What makes this tutorial a little more interesting than the usual lecture is that it has interactive areas, where a VM runs your code in the browser after assembling with NASM.

We really like that format of reading a bit and then playing with some code right in the browser. There is something surreal about watching a virtual PC booting up inside your browser. Yeah, we’ve seen it before, but it still makes our eyebrows shoot up a little.

We hope he’ll continue this as a series, because right now it stops after talking about a few BIOS functions. We’d love to see more about instructions, indexing, string prefixes, and even moving to code that would run under Linux or Windows. It would be nice, too, if there was some information about setting up a local environment. Now if you want to make a serious investment and you use Linux, this book is a lot to chew on but will answer your questions.

Of course, there are many tutorials, but this is a fun if brief introduction. If you want to know more about assembly outside the browser, we covered that. If you really want to write a real bootloader, there’s help for that, too.

HPE CEO pledges $4 billion Edge R&D splurge

The Register - Tue, 06/19/2018 - 21:45
Want a world with 'millions of clouds distributed everywhere'. Running HPE kit, natch

Hewlett Packard Enterprise will make a US$4bn bet on edge computing, CEO Antonio Neri confirmed at the Discover CIO conference in Las Vegas today.…

Oracle: Think our DB sales are great now? Wait until we actually get the new product out!

The Register - Tue, 06/19/2018 - 20:08
'Autonomous' database cash haul just ramping up – Larry

Oracle has capped off a solid fiscal year and is predicting big things to come for its database line in the coming 12 months.…

AT&T sends in startup shill to shake up Cali's net neutrality safeguards

The Register - Tue, 06/19/2018 - 19:53
Oh look it's 'tech startup advocacy group' CALinnovates again

Analysis A group claiming to represent the interests of California's tech startups has argued that the US state should allow so-called zero rating services, despite the negative impact it would have on tech startups.…

Reminders on Android are a painful, slow, and frustrating experience, and Google needs to do something about it

Android - Tue, 06/19/2018 - 19:48

Google Assistant's reminder capability is handy... right up to the point that you tap on a reminder notification on Android. At that point, you get stuck waiting 5-10 seconds (Pixel XL) for it to load the list of upcoming and active reminders.

It's pretty bad, yet years of updates have seen no improvements.

I'm almost at the point of seeking alternatives.

Reminder usage isn't that uncommon, so... what's up, Google?

The reminders have other annoyances too. For example, when I say "remind me tonight" in a voice command, I always mean 8 PM, not 6 PM! Yet if editing one from the time selection drop-down, "Night" does mean 8 PM.

I think it's past time that Google overhaul and rethink reminders via Google Assistant on Android. A better, faster UI, with more convenient options.

submitted by /u/DarkKerrigor
[link] [comments]

CEO of struggling storage biz Tintri quits

The Register - Tue, 06/19/2018 - 19:07
SEC filing shows company up the creek and sans paddle

Thomas Barton - CEO of struggling storage array supplier Tintri - has resigned, leaving the company leaderless as it heads towards running out of cash by the end of the month.…

Refurbishing A DEC 340 Monitor

Hack a Day - Tue, 06/19/2018 - 19:00

Back in the “good old days” movie theaters ran serials. Every week you’d pay some pocket change and see what happened to Buck Rogers, Superman, or Tex Granger that week. Each episode would, of course, end in a cliffhanger. [Keith Hayes] has started his own serial about restoring a DEC 340 monitor found in a scrap yard in Australia. The 340 — not a VT340 — looks like it could appear in one of those serials, with its huge cabinets and round radar-like display. [Keith] describes the restoration as “his big project of the year” and we are anxious to see how the cliffhangers resolve.

He’s been lucky, and he’s been unlucky. The lucky part is that he has the cabinet with the CRT and the deflection yoke. Those would be very difficult to replace. The unlucky part is that one entire cabinet of electronics is missing.

Keep in mind, this monitor dates from the 1960s when transistors were fairly new. The device is full of germanium transistors and oddball silicon transistors that are unobtainable. A great deal of the circuitry is on “system building block” cards. This was a common approach in those days, to create little PC boards with a few different functions and build your circuit by wiring them together. Almost like a macro-scale FPGA with wire backplanes as the programming.

Even if some of the boards were not missing, there would be some redesign work ahead. The old DEC machine used a logic scheme that shifted between ground and a negative voltage. [Keith] wants to have a more modern interface into the machine so the boards that interface with the outside world will have to change, at least. It sounds like he’s on his way to doing a modern remake of the building block cards for that reason, and to preserve the originals which are likely to be difficult to repair.

The cliffhanger to this first installment is a brief description of what one of the system building block cards looks like. The 1575 holds 8 transistors and 11 diodes. It’s apparently an analog building block made to gate signals from the monitor’s digital to analog converters to other parts of the circuit. You’ll have to tune into the next episode to hear more of his explanation.

If you want to read about how such a thing was actually used, DECUS had a programming manual that you can read online. Seeing the round monitor made us think of the old PDP-1 that lives at the Computer History Museum. We are sure it had lots of practical uses, but we think of it as a display for Spacewar.

Facebook floats BOLT to jolt code out of bit bloat

The Register - Tue, 06/19/2018 - 18:50
Network open sources Linux command-line tool for optimizing large binaries

Facebook has open sourced a binary optimization and layout tool, itself optimized into the acronym BOLT, in the hope it can make large applications faster.…