Information Security

Help with a remote control

Your hacking tutorial - Thu, 11/15/2018 - 11:55

Hello, I have a project, and the point of my project is to "hack one pc" and control the pc in another pc with Kali Linux.
So I set up 2 physics pc's one with windows 7 (the victim) and another with kali Linux (the attacker) and they're connected with a switch, and I created a static network, so I can ping and it works. Also in the windows machine I turn off the firewall

So, the thing is, with what Metasploit or program in Linux I can easily remote the pc windows?

Any help or advice will be appreciated, thank you.

submitted by /u/xValentino
[link] [comments]
Categories: Information Security

YouTube with rounded buttons

Android - Thu, 11/15/2018 - 11:50

Recently noticed the changes in recommendations.

It is now suggestions (related videos from other channels) and other videos from the same channel.

Also nice animation while loading the feed.

https://youtu.be/zOZuzXj0Nt0

submitted by /u/sanju2cool
[link] [comments]

NetApp flashes plump figures. China trade worries? Let's manage 'variables within our control'

The Register - Thu, 11/15/2018 - 11:49
It's all about hyperconverged – no we're not breaking out those numbers

With one eye on uncertain currency movements and the developing US/ China trade war, NetApp reported a solid set of Q2 numbers, albeit figures that highlighted a slowdown in its monumental all-flash array sales growth.…

Adding Linux To A PDP-11

Hack a Day - Thu, 11/15/2018 - 11:30

The UNIBUS architecture for DEC’s PDPs and Vaxxen was a stroke of genius. If you wanted more memory in your minicomputer, just add another card. Need a drive? Plug it into the backplane. Of course, with all those weird cards, these old UNIBUS PDPs are hard to keep running. The UniBone is the solution to this problem. It puts Linux on a UNIBUS bridge, allowing this card to serve as a memory emulator, a test console, a disk emulator, or any other hardware you can think of.

The key to this build is the BeagleBone, everyone’s second-favorite single board computer that has one feature the other one doesn’t: PRUs, or a programmable real-time unit, that allows you to blink a lot of pins very, very fast. We’ve seen the BeagleBone be used as Linux in a terminal, as the rest of the computer for an old PDP-10 front panel and as the front end for a PDP-11/03.

In this build, the Beaglebone’s PRU takes care of interfacing to the UNIBUS backplane, sending everything to a device emulator running as an application. The UniBone can be configured as memory or something boring, but one of these can emulate four RL02 drives, giving a PDP-11 an amazing forty megabytes of storage. The real killer app of this implementation is giving these emulated drives a full complement of glowing buttons for load, ready, fault, and write protect, just like the front of a real RL02 drive. This panel is controlled over the I2C bus on the Beaglebone, and it’s a work of art. Of course, emulating the drive means you can’t use it as the world’s largest thumb drive, but that’s a small price to pay for saving these old computers.

Google: Our DeepMind health slurp is completely kosher

The Register - Thu, 11/15/2018 - 11:10
Now go away, we’re saving the world

Analysis Google’s DeepMind operation insists UK patients have nothing to worry about now that Google has absorbed the subsidiary - but lawyers and privacy campaigners have raised doubts.…

PSA: RMA refurbished Pixel 2's can NOT be bootloader unlocked.

Android - Thu, 11/15/2018 - 10:54

Hey guys, I'm currently dealing with this issue which Google is refusing to admit and giving me a run-around.

I rma'ed my Pixel 2 due to an unrelated issue (loose charging port, charging intermittently, yes I've cleaned it) called googled support up, and they sent me a refurbished device. All was great and dandy until I tried unlocking the bootloader. The toggle worked fine under developer settings, however when you run the fastboot flashing unlock command, it fails and after that the toggle becomes greyed out after that. A factory reset will bring the toggle back, however it will just fail in fastboot again.

The first time I did it, i had skipped through all the setup and didn't not insert my sim card. After that failed I began trouble shooting.

Went through all the OTA updates, still didn't work

Factory reset, inserted my sim card (T-Mobile), skipped through setup and still didn't work.

Factory reset, inserted my sim card logged into my Google account, still didn't work.

Called up Google and now they're blaming it on my carrier because under the toggle is says "contact carrier or connect to WiFi. "

Fastboot get flashing ability command shows that it should be able to be unlocked. Ro.boot.cid shows the device is "00000000" and not a VZW device.

This is NOT an isolated issue.

https://forum.xda-developers.com/pixel-2/help/oem-unlocking-grayed-vzw-pixel-2-t3776763

https://productforums.google.com/forum/?nomobile=true#!topic/phone-by-google/bzPmmwCmspI;context-place=topicsearchin/phone-by-google/Bootloader%7Csort:date

submitted by /u/eneka
[link] [comments]

Pixel 3 Ambient display breaks when Tasker is running

Tasker: Total Automation for Android - Thu, 11/15/2018 - 10:39

When tasker is enabled, ambient display goes blank after a while. The screen goes blank and it just shows the home pill and the back arrow.

Anyone having the same problem? any suggestions on how to fix it?

submitted by /u/ummchicken
[link] [comments]

Brexit: UK will be disconnected from EU databases after 2020

The Register - Thu, 11/15/2018 - 10:38
Commission will 'endeavour' to make an adequacy decision during transition period

The UK will be locked out of European Union databases once the Brexit transition period ends – but the UK is hoping a data adequacy decision will be adopted by the end of 2020.…

Auto-answer phone call and dial 9; will pay for solution

Tasker: Total Automation for Android - Thu, 11/15/2018 - 10:08

When a certain number calls, I'd like to be able to have my Android phone answer automatically and dial 9 from the keypad. I have Tasker and MacroDroid, but I haven't been able to figure out how to do it using either. My phone is not rooted.

I'm willing to pay $75 for a solution and can send payment via PayPal.

Thank you in advance.

submitted by /u/sopranofan11
[link] [comments]

Yb channel About hacking

Your hacking tutorial - Thu, 11/15/2018 - 10:05

Hi guys do you know any good channel on YOutube about hacking from basic things to expert ? Sorry for English ... i hope you understand what i m looking for... Thx

submitted by /u/YoungLocal
[link] [comments]
Categories: Information Security

Choosing Cell Modems: The Drama Queen of Hardware Design

Hack a Day - Thu, 11/15/2018 - 10:01

So you went to a tradeshow and heard about this cool new idea called the Internet Of Things; now it’s time to build an IoT product of your own. You know that to be IoT, your Widget D’lux® has to have a network connection but which to choose?

You could use WiFi or Bluetooth but that would be gauche. Maybe LoRaWAN? All the cool kids are using LoRa for medium or long range wireless these days, but that still requires a base station and Widget D’lux® will be a worldwide phenomenon. Or at least a phenomenon past your bedroom walls. And you know how much user’s hate setting things up. So a cell modem it is! But what do you have to do to legally include one in your product? Well that’s a little complicated.

We’ve talked about government certification testing before (seriously, go read that article. Bob did a great job!) and it’s entirely relevant here but cell modems add a couple layers to that onion. There are a bunch of entry points to this discussion so let’s pick one and dive in.

Certification: Intentional, Unintentional, Multiple

So what kind of government certification will you need before you can ship your product? There are a few. If you plan to turn your cell radio on the entire device will need to be certified for intentional radiation to make sure that the radios you intend to use are well-behaved (don’t emit too much energy for given frequency bands). If you plan to turn on Widget D’lux® at all than it will also need to be checked for unintentional emissions to make sure there isn’t too much electromagnetic energy you didn’t mean to transmit. If you want to add another radio like Bluetooth or WiFi there’s also multi-radiator certification to look for problems caused by multiple radios operating at once.

Fortunately there are some tricks which might make that process easier. Testing and certification for multiple radiators is only relevant when more than one is on at once. Maybe the application can be adjusted so that you don’t actually need, say, Bluetooth at the same time as the cell connection? Or only turn the WiFi radio on when the cell signal falls below a certain strength and the radio is subsequently disabled? As long as there’s only ever one transmitter on at a time then you shouldn’t need to pursue additional certification. Though if there is ever a case where they can both be on at once it needs to be appropriately certified.

An even more specific exception is using WiFi to gather access ESSID’s and MACs to help with geolocation. Actively scanning for APs might be faster but if you stick to a passive scan the WiFi radio never transmits. No extra certification required.

Alternatively some modular certifications (we’ll get to that in a moment) allow you to avoid dual radiator certification if antennas of different radiators are placed far enough apart (here’s an example with a 20cm separation). Specific information about this may be in a given device’s FCC grant like that one.

There is also an entire list of device types which are exempt from certain types of emissions tests. For instance certain kinds of appliances and automotive devices don’t require testing. Though if they have intentional radiators they must still comply with those the relevant laws. So devices like underglow for your very classy body kit probably don’t need to be tested so long as there isn’t a Bluetooth app for configuration.

We won’t go into more detail about how these tests are performed. Again, refer to Bob’s article on FCC testing for more detailed information.

Cell Specific Certification: PTRCB

Ok! If that’s not enough for you there are a couple more cellular-specific certifications you’ll need too: PTRCB and/or carrier certification. The FCCs job is to make sure that your device plays nicely with everyone else’s and the airwaves are generally available to be shared. They do not care whether or not your device actually works (though they do care if it breaks due to ESD sensitivity!). The cell carriers on the other hand need to make sure that your device obeys their network specifications so that you don’t cause a general degradation of service.

Thanks Cetecom

The end goal here is really carrier certification, which means that the certified device has been tested to work with the specific blend of herbs and spices that, say, Verizon requires. A carrier certification is specific to that network though for many carriers (in the US, AT&T, T-Mobile, and Sprint) getting this certification is actually a superset of the testing done to specifications from a body called the PTRCB. Surprise! The PTRCB was founded by a consortium of carriers to help test and regulate cell devices.

Whew! Still excited to bring Widget D’lux® to the hungry masses? No? But we haven’t even talked about cost and time (tens of thousands of dollars and up to tens of weeks)! Do I hear you begging for an easier answer? That doesn’t sound like much fun, but I guess we can explore other options.

The magic words are “modular certification.” Cell modems come in all shapes and sizes, from raw modems and RF components through development kits designed to plug into a breadboard. In the middle there is a sweet spot where cell modems are available as modules which are designed to be permanently installed in an end device. In their most complete form such modules include all RF related hardware.

For all the certification content above except unintentional radiation modules can be variously approved for modular end device use. Sorry, that’s still a messy description. Electrically, components can be FCC tested and certified for use as intentional and unintentional radiators inside other products AKA “for modular use”. As long as you obey the conditions of the FCC certification grant, like not placing another intentional radiator too close, the certification carries through to the end device. Modules can be similarly carrier tested for end device use. So sticking to very certified modules get you most of the way to a shippable device.

Integrating a Cell Modem into a Product

There are a few ways to integrate a cell modem and fortunately they don’t all have the same regulatory burden.

The board is called “bird brain” Devkits and Bailing Wire

For prototyping and very low volume products gluing a development kit to the rest of a system might be enough to get a system out the door. There are a few options in this space, with Particle’s Electron being probably the best known. This is probably a fine option when starting out but often more consumer/prototype oriented development kits won’t be available in quantity from suppliers, may not be as robust for long term installation, and may not be certified appropriately for use in a commercial device. But that doesn’t mean they’re impossible to use.

As Make noticed the first generation scooters retrofitted by Bird (currently valued at over $2 billion) contain, amazingly, a Particle Electron on their mainboard at the top of the scooter! From the photo it looks like it’s USB and JST battery connector have been removed and the entire daughterboard may be soldered down into the scooter. But hey, I guess a shipping product is the most important thing!

Module Down

There’s a lot of other text in this article but the one liner explanation of the easiest way to integrate a cell modem into a product is “use a module.” As mentioned above modems are sold packaged with many/most of their RF bits as modules. Whether they use through holes, castellations, or a nasty land grid array, these are designed to be permanently installed in an end product. If you choose one that has the correct certifications (AKA all of the certifications), dropping in a module is the fastest practical way to go to market, though prices will probably be higher than sourcing a bare modem.

What’s inside the module? It depends. Some are just a modem with support circuitry and a standardized mounting pattern. Others include another microcontroller and might be capable enough to be the main application processor for your system. There are a few other handy benefits for going the modular route:

  • If a vendor has a standardized pin arrangement, using a module may offer an upgrade pathway in the future as cell technologies change. This is a headline feature of MultiTech and Digi modules.
  • If a module adds another micro they may also add a nice wrapper around the raw AT commands that the modem probably speaks. This might make it easier to open TLS wrapped sockets, send text messages, etc. Modules from Particle and Digi both offer this.
  • Carriers will require that modems be kept up to date or they’ll kick you off their network. Modules with onboard microcontrollers may be able to update themselves with little to no intervention on the developer’s part.
  • Some vendors (Particle being a prime example) offer varying levels of cloud infrastructure which may make it easy to quickly get an application setup.

A selection of common module vendors are Particle (they have non devkit options too), Digi, MultiTech, NimbeLink, and Link Labs.

Modem Down

The companies which make and sell cell modems will happily sell them for use in end devices (what do you think is inside the modules?). But by buying a Telit or a u-blox or a Sierra module and dropping it on a board you’ll need to go through most of the arduous certification process. These vendors know how rough that process is and will help you figure out what tests to perform and who to talk to, but it will still be a costly and time consuming process. This complexity is why modular products exist in the first place; it’s is so difficult it’s a complete business.

All that aside using a modem directly will be cheaper than a module and the size can be minimized/customized to your application.

Chip Down

If you were building a very high volume product and really needed unusual features or the lowest possible cost, you could piece together the cell modem yourself. This is by far the most expensive, time consuming, and complex option. All certification would be required.

To Learn More

If you’re doing this for real it should be obvious by now that you’ll need to ask for some help. Expert help. One option is to hire a consultant. But another is to talk to a test lab. Not all labs will be amenable to being a living/breathing FAQ but some will. I’ve found that it’s a good sign when a lab is willing to be helpful, perhaps a useful trait to consider when choosing who to do business with. In the Bay Area there are lots of options. In no particular order I’ve known people to work with TÜV Rheinland, NTS (they had pizza and soda for customers, a big plus), Bay Area Compliance Labs, MET labs, and Cetecom. Ideally the lab you work with will also be the one you certify with.

Ready to bring Widget D’lux® to life? No? You want to go back to ESP8266’s and breadboards in a shoebox? That’s ok, maybe the world doesn’t need another IoT thermometer with targeted advertising.

Note: If it’s not obvious, this should be taken as advice of the casual kind. This is a trail of breadcrumbs leading to larger knowledge… but don’t launch a product based solely on what you read here.

Oz lad 'fell in love with' baby meerkat, nicked it from zoo, took it out for a romantic Big Mac

The Register - Thu, 11/15/2018 - 09:59
23-year-old fined $4,000, volunteers services for Perth Zoo, zoo says thanks but nah

Ever found yourself overcome by cuteness while gawping at sad, caged animals that you just had to take one home with you? Us neither, but that's exactly what 23-year-old Jesse Hooker did on a trip to Perth Zoo in Australia.…

OpenStack: We've seen the future, and it's metal (and infrastructure, natch)

The Register - Thu, 11/15/2018 - 09:20
No need to learn Mandarin, we collaborate in English

OpenStack Summit The OpenStack Foundation took to the stage in Berlin this week to talk infrastructure because, heck, everyone loves infrastructure, right? Especially open infrastructure.…

Pages