Information Security

Getting system privs on Windows 10?

Your hacking tutorial - Tue, 12/19/2017 - 17:55

I am having trouble getting system privs on a computer that I own. I created the payload using veil and msfvenom, the target is windows 10 home running Windows Defender. The persistant exploit is hidden somewhere in an administrator account with the -x flag (-s triggered AV detection). "getsystem" fails to achieve system. I have full access to the admin account along with physical access to the computer. Any tips? Preferably ones that bypass AV?

submitted by /u/Hauteknits
[link] [comments]
Categories: Information Security

Autsch! Germany slaps Facebook in its abusive little face for 'limitlessly amassing data'

The Register - Tue, 12/19/2017 - 17:49
Monopoly watchdog nicht glücklich about Zuck's info suck

Germany's competition authority has accused Facebook of abusing its market dominance to "limitlessly amass every kind of data" on people.…

[Help] Pushing sites on Join

Tasker: Total Automation for Android - Tue, 12/19/2017 - 17:25

Join pushes chrome sites from laptop to phone just fine but when pushing from Phone to laptop it opens a new tab and says 'your file was not found, it may have been moved or deleted'. I ran diagnostics on the join app and Chrome extension and everything is green.

submitted by /u/___________-_____-
[link] [comments]

US senators rail against effort to sneak through creepy mass spying bill

The Register - Tue, 12/19/2017 - 17:18
We must have public debate on warrantless snooping, demands bipartisan gang

A bipartisan group of US senators have lambasted an effort to force permanent authorization of a controversial warrantless American spying program through Congress by attaching it to an end-of-year spending bill, calling the effort "an end-run around the Constitution."…

How to build a zippy port scanner with a PowerShell one-liner

Your hacking tutorial - Tue, 12/19/2017 - 17:15

1..1024 | % {echo ((new-object Net.Sockets.TcpClient).Connect("<IPADDR>", $)) "Port $ is open!"} 2>$null

This does the trick. We are looping through ports 1 through 1,024 and then we are attempt to establish a 3-way TCP handshake to determine if the port is open. Great for post exploitation.

submitted by /u/vonnieeee
[link] [comments]
Categories: Information Security

Task priority?

Tasker: Total Automation for Android - Tue, 12/19/2017 - 17:05

I know it's possible to prioritize a profile, but is there a way to do something similar for a task? I have some tasks that get activated via widgets on my home screen, thus they aren't part of any profile. I'm looking for a way to ensure that these tasks run above all else that Tasker is doing at that time. Is there any way of doing this short of making a profile for them, which I don't want to do?

submitted by /u/ETW11
[link] [comments]

Facebook flashes ramped-up face recog tech. World freaks out

The Register - Tue, 12/19/2017 - 16:47
Luckily, there's an off switch... to placate lawmakers

Analysis In an effort to make facial recognition technology more appealing to members of its clicky commerce club, social ad network Facebook on Tuesday said it will begin notifying people when they appear in the pictures posted by other people, sometimes.…

Latinum 6.0.9 - Trading and technical analysis software.

MacUpdate - Mac OS X - Tue, 12/19/2017 - 16:33

Latinum supports over a dozen regular time based chart types; Candlestick, HLC (High-Low-Close), Heiken-Ashi, OHLC (Open-High-Low-Close), Step, Dot, Line, Histogram, Area, Candlestick Trend, Invisible, Hollow Candlestick, HL (High-Low), and Colored Line.

Latinum Features
  • Includes over 200 indicators such as ADX, MACD, RSI, Stochastic, Bollinger Bands. Also, contains over 60 candlestick pattern recognition studies such as Engulfing Pattern, Hammer, and Three Black Crows.
  • Supports intraday data intervals from 5 second to 8 hours, along with daily, weekly, monthly, quarterly, and yearly intervals.
  • Select your desired price field to plot, Bid price, Ask price, or Mid price.
  • Customize how you want your candles built, choose from Open-Equals-Previous-Close or Open-Equals-First-Tick.
  • Draw rectangles, circles, triangles. Draw trend lines, horizontal lines, vertical lines, fib lines, quadrant lines, cycle lines, or channel lines. Draw ABCD, XABCD, Elliot Impulse and Corrective wave patterns. Draw custom patterns with the polyline or polygon tools.

Version 6.0.9: General:
  • Fixed potential crash subscribing to crypto symbols
  • Added more options to the Chart Properties dialog, the options
  • added were previously only accessible from the charts context menu
  • Added Reload Stream Built Bars command to the Chart menu, this
  • replaces all the bars built from a real-time feed with bars
  • provided by the history feed
  • Added a button to the chart toolbar that contains actions
  • previously only accessible from the charts context menu
  • Removed the Candle Open Price and Data Range options from the
  • chart context menu, the options are now available in the Chart
  • Properties dialog
  • Added Arrange (stacking order) commands to the drawings format
  • bar, this contains the Bring to Front, Bring Forward,
  • Send Backward and Send to Back commands to control the stacking
  • order of drawing objects
  • Fixed a crash that occurred when using the Arrange commands
  • Changed Remove All Drawings action to affect all plots in a chart
  • GDAX
  • Added volume for bars created from real-time feed
  • Fixed some reconnection issues
  • Added Gemini charts and last trade data
  • Added Bitstamp charts and last trade data
  • Added Bitfinex charts and level 1 quotes data
Quotes Sidebar:
  • Added a button next to the symbol filter that contains actions
  • previously only accessible from the tables context menu

  • OS X 10.8.5 or later

Download Now

Some S8 Models receiving Wifi Certificate for Oreo

Android - Tue, 12/19/2017 - 16:30

So, it looks like some Oreo models are already recieving the Certificate for Oreo. The models are SM-G950U/ SM-G955U and SM-G950W/ SM-G955W. Expect more models to be certified.

submitted by /u/clouded_flower
[link] [comments]

Final Draft 10.0.5 - Industry-leading screenwriting software.

MacUpdate - Mac OS X - Tue, 12/19/2017 - 16:18

Final Draft allows you to use your creative energy to focus on the content; let Final Draft take care of the style. Final Draft is the number-one selling application specifically designed for writing movie scripts, television episodics, and stage plays. It combines powerful word processing with professional script formatting in one self-contained, easy-to-use package. There is no need to learn about script formatting rules - Final Draft automatically paginates and formats your script to industry standards as you write.

Version 10.0.5:
  • Bug fixes

  • OS X 10.9 or later

Download Now]]>

[Help] Trying to make a task that rings phone despite volume settings when certain people call

Tasker: Total Automation for Android - Tue, 12/19/2017 - 16:04

I have a profile that when someone from a certain group of contacts calls me, it starts a task that sets ringer volume and notification volume to 15(max).

but when a person from this group calls me, I can hear the ding my phone makes when the notification volume gets set to loud, but the ringer still doesn't play loudly, just vibrates. i'm assuming this is because the phone starts to "ring" from a call but vibrates, and it can't go from vibrating to ringing loudly once it starts vibrating.

submitted by /u/Grphx
[link] [comments]

A Watch Only A Ham Can Use

Hack a Day - Tue, 12/19/2017 - 16:00

We’re not sure what to make of this one. With the variety of smartwatches and fitness trackers out there, we can’t be surprised by what sort of hardware ends up strapped to wrists these days. So a watch with an RPN calculator isn’t too much of a stretch. But adding a hex editor? And a disassembler? Oh, and while you’re at it, a transceiver for the 70cm ham band? Now that’s something you don’t see every day.

The mind boggles at not only the technical prowess needed to pull off what [Travis Goodspeed (KK4VCZ)] calls the GoodWatch, but at the thought process that led to all these features being packed into the case of a Casio calculator watch. But a lot of hacking is more about the “Why not?” than the “Why?”, and when you start looking at the feature set of the CC430F6137 microcontroller [Travis] chose, things start to make sense. The chip has a built-in RF subsystem, intended no doubt to enable wireless sensor designs. The GoodWatch20 puts the transceiver to work in the 430-MHz band, implementing a simple low-power (QRP) beacon. But the real story here is in the hacks [Travis] used to pull this off, like using flecks of Post-It notes to probe the LCD connections, and that he managed to stay within the confines of the original case.

There’s some real skill here, and it makes for an interesting read. And since the GoodWatch is powered by a coin cell, we think it’d be a great entry for our Coin Cell Challenge contest.

[via r/AmateurRadio]

Filed under: Radio Hacks, Wearable Hacks