Download HD Download MP4 Download XviD Download WMV

Airport WiFi Challenge – Jasager and Deauths

Once again my travels take me to a wonderful and target rich environment — the airport.

And while I typically don’t take on challenges, this one tickled my technolust. I was asked how many clients I could harness with a WiFi Pineapple during a typical hour long layover at the airport. I figured this was a great opportunity to test out Airdrop-ng.

Your Ultra Software Picks

In a follow-up from episode 703, Shannon counts down your Ultra software picks, including:

• Total Commander
• JkDefrag
• Ultimate Boot CD
• Super Anti-Spyware
• Process Explorer

Download HD Download MP4 Download XviD Download WMV

Malware Analysis Sandbox

CWSandbox is an automated malware analysis sandbox. It works by running suspected malware samples in a simulated Windows OS. So as opposed to trying to break into the malware code to see what it does, we simply run it in a live environment. That way we can monitor all the network traffic that the malware generates. All of the processes that are created, the DLLs that are loaded, any changes to the Windows registry and even what it’s doing to the file system.

This is achieved by using a technique called API hooking. That basically means that when the malware calls the Windows application programmers’ interface to say something like “connect to this IP address” or “modify this file” it’s actually going to CWSandbox’s monitoring software, which logs the action and goes ahead and makes the change.

It’s kind of like an operating system man-in-the-middle. For malware.
So once a suspected malware sample is run through the tool you get a computer generated report of what the executable is actually doing. And this can be fed into anti-virus and intrusion detection systems to monitor for similar behavior.

PC Remote Control over Twitter

While there is no denying the power of running your own SSH, VNC server at home for remote access, wouldn’t it be nice if you could simply text message your computer something simple like “Hey, what’s your external IP address” or “Send me a screenshot” or “Go download this file”

And if Robin Wood has taught us anything with KreiosC2 – commanding your computer, or even a large botnet for that matter, over social networks is quite possible.

But now it’s time for something a lot more user friendly. This week Snubs investigates TweetMyPC

Download HD Download MP4 Download XviD Download WMV

Rogue DHCP Server Detection

Following up with last week’s discussion on Rogue DHCP Servers I found it fitting to mention Tim Ashley’s Rogue DHCP Server Detector as found on the Hak5 forums.

Free Application Sandbox Challenge

In an effort to discover whether free application sandboxing solutions from Comodo and Sandboxie can save a (L)user from themselves, Darren takes three Internet Explorer 6 Virtual Machines around the Internets famous red light district in a set of challenges put forth by the fine folks at irc.hak5.org.

The Top “Ultra” Windows Warez

Perplexed by software titles claiming to be the most elite thing since ascii art Shannon set off to round up the top “Ultra” software for Windows and see there is any merit fo their titles. The round up includes:

• #5 Ultra Screensaver Maker
• #4 Pong Ultra
• #3 Ultra Network Analyzer
• #2 UltraVNC
• #1 Ultra Defrag

Download HD Download MP4 Download XviD Download WMV

DHCP Exhaustion and DNS Man-in-the-Middle Attacks

Rather than your typical ARP based Man-In-The-Middle attack, Robin wood brings us two metasploit modules for both denial of service attacking a DHCP server and deploying a rogue DHCP server of your own with a DNS MiTM to boot. Check out the Metasploit DNS and DHCP Exhaustion – BETA at Digininja.org.

The JasagerInterceptor – a Pineapple Monkey mashup

This week we take a look within the community and highlight some of the awesome work done by Beakmyn. In an answer to Deathray’s thread on a Jasager with a network tap like the Interceptor, he brings you just such project. Behold the JasagerInterceptor. I’ve seen it with my own eyes at Shmoocon and I must say it’s a nifty bit of kit.

Download HD Download MP4 Download XviD Download WMV

Botnet Command and Control with Kreios C2

Using social networks as its communications channel, Robin Wood’s Kreios C2 is far more sophisticated than the traditional IRC based approach for controlling hordes of zombie computers. Version 3 was recently released and demoed at the Shmoocon 2010 Social Zombies talk (32MB AVI).

Man-in-the-Middle Attack Detection

With Robin Wood, master of hardware based Man-in-the-Middle tools, in studio Darren decides to give the traditional ARP poisoning method some love. White-hat love that is. Your typical ARP Poisoning Man-in-the-Middle attack which can be easily performed using tools such as ettercap, arpspoof, or even Cain & Abel on Windows. Generally speaking the goal is to convince the victim, using spoofed ARP packets, that your MAC address is associated with the IP address of another machine on the network — typically the router or gateway.

Of course in the real world the MAC address of your router doesn’t happen to change very often, so if it does it’s a tell-tale sign that something weird is happening. In this segment we demo Irongeek’s ARPWatch-like tool for Windows, DecaffeinatID. On the Linux side check out arpwatch.

It seems like everyone that even remotely follows the independent computer gaming scene has heard of Daisuke Amaya’s creation, which led to the formation of a very devoted fan community developed around this freeware game. Better known by his handle, Pixel, Daisuke Amaya is known for his cute style even back in 2000 with Ikachan, a game about squid navigating through water filled caverns. There are many similarities between the health and inventory system as well as the wonderfully catchy tunes.

All of Cave Story’s attention has been well-earned and soon(-ish) console gamers will get to share in the love. The WiiWare port was first announced in October of 2008 but delays from Nintendo’s approval process have pushed the release farther and farther back. Nicalis, the developer working with Pixel to bring the console version to life, has also included new difficulty levels and character designs and also plans on several DLC packs to support the release once it is available to the public. Their blog also contains a FAQ section addressing that the new version will contain the original artwork and music as well. Then, of course, there’s the obligatory “When it’s ready” game release timeline.

Who wants to wait?

No one likes waiting when you don’t have to and we, being the homebrew enthusiasts that we are, don’t have to. The PC version, with or without the English language patch, can play right now, yesterday and tomorrow and whenever. I highly recommend using a controller with the game as platformer with the keyboard just feels awkward. The last time I played these types of game with a keyboard it was, well, back in the day with Commander Keen and Jazz Jackrabbit. People running Macs and Linux are not left out since the game can be enjoyed on just about every platform available. Minus WiiWare, XBLA, and the PlayStation Store. For now. If you are a hardcore homebrew enthusiast and math student, you can even experience Cave Story on the TI-83/84! Go on, look at those screens. I wish I hadn’t given my calculator away when I passed my last Calculus III exam so I could give that a shot, just to say that I have. The truly enthusiastic among you would also enjoy the modding tools available.

The DS and PSP versions take more effort to get up and running. Though the DS download link has been removed from cavestory.org, it can be located with some effort *cough* or your search engine of choice. Note that the DS release was just a demo, no hit points or weapons or sound effects. The touch screen contains a menu to jump between several different areas of the game. If you have not played Cave Story already and want to experience the story as it unfolds, please don’t jump in with this version. Instead grab it for your computer or just keep on waiting for the WiiWare version! You have been warned. For homebrew DS users that go through a Supercard, you may find that you’ll be stuck in the loading screen if you use the software to move the .nds package to your card. In that instance just manually copy over the file and run it on your DS just like any other piece of homebrew software. This version was created with Pixel’s knowledge (how much do I want that DS? let me count the ways…) but development, sadly, stalled and was eventually abandoned.

The PSP version is an entirely different beast. PocketGamer.co.uk’s guide mirrors my own experience attempting to run the game. My homebrew PSP runs on the 1.5 firmware and the best I’ve been able to manage brings up the title screen and the beginning of the story but it’s.. so… slow…. that.. it.. was…. unplayable. I hope that those with supported firmwares have better luck since Cave Story is a wonderful game to have available on the go.

Download HD Download MP4 Download XviD Download WMV

Tethering TOS and IP Spoofing

Brice writes “Thanks for showing how to tether Droid with Ubuntu. I use them both quite often.
I was wondering if tethering the Droid is against the TOS/Verizon contract.”

Well Brice, technically it may be a violation of your carriers terms of service. I know at least with Verizon’s Wireless business accounts there is an additional fee, around $30/mo I believe, for tethering with a smartphone like a blackberry.

I can also say from personal experience having tethered since 2001 on both Sprint and Verizon, that as long as you stay under the 5-gig cap you should be ok. Programs like June Fabrics PDAnet allow one to tether on most platforms and, from what I hear from my telco buddies, the carrier can’t tell the difference between the traffic originating from the phone or your laptop. I haven’t heard any horror stories of penalties for using such application however I’d be curious to hear from our audience if such a thing has happened in the past.

Kuroha write “I want to use Spotify, the new music service, but I keep getting this error:
Unfortunately, due to licensing restrictions we are not yet available in your country. We understand that you are currently in United States. How do I spoof my IP so it looks like I’m in Finland?”

Kuroha, there is a misconception about IP Spoofing that’s simply summed up by saying this. The source address of your computer is part of the IP packet header. There are plenty of programs out there that will let you spoof this source port, including our favorite tool nmap. However, like a return address on postage, unless you’re in a position to listen to the replies to your spoofed packets (such as on a local network) you aren’t going to get anything useful back from the server.

What you’re more likely referrencing isn’t IP Spoofing as much as it is simply bouncing your traffic off a server in another country — typically done to anonymize Internet traffic or for secure tunneling on untrusted networks. The SSH tunneling with dynamic SOCKS proxies we’ve been talking about recently will do the trick. It’s just a matter of finding a cheap shell, VPS or other server that allows tunneling in the country of your choosing.

Don’t forget this month’s LAN Party is Left 4 Dead 2. We’ll be playing at game.hak5.org Saturday and Sunday, January 2nd and 3rd. Hope to see you there!

World of Goo Mods

Recently I’ve been playing a lot of World of Goo. It’s an amazingly simple and fun game. I’ve been playing on the Wii but soon after arriving in Toronto Jenn Cutter picked up the title for her tablet and has been dabbling with the mods.

If you’re interested in making your own levels, or downloading fan-created levels and other mods be sure to check out GooFans.com — they also have a great forum on modding.

This week’s trivia question is: “World of Goo developers shares the same open source physics engine as what 2007 first-person shooter?” Answer at hak5.org/trivia and be entered to win Pronobozo’s album Zero=One=Everything.

Easy Linux drive encryption with Cryptsetup

When it comes to Linux, I love super user friendly and powerful utilities. This is one such tool. Since the 2.6.4 kernel drive encryption has been built in, and this tool cryptsetup makes setting it up a breeze. Follow along in this tutorial as I keep my secret thumb drive free from prying eyes.

I’ve gotta give props to Peter Savage for sending this my way. Check out his SciFi fantasy novel Emblem Divide — it’s wicked good.

Wallpaper Contest: Best 2010 “New Years” Hak5 Wallpaper! Get creative and submit your wallpaper to Hak5.org/forums under the Community Images board.

Ultralight Notebooks

Chris writes: “I was wandering if you could suggest a laptop that is lightweight, long battery life, 13.3 inch screen, with Win 7. Budget of $1000″

Chris, I recently did just this research. I was looking for a notebook to edit the show on the go — which isn’t easy considering the heaft and hunger of those AVCHD video files. If you’ve been watching the show for a while you also know I’m the netbook boy. First with the 7″ eeePC, then the 9″ Aspire One, and more recently the 10″ Nokia Booklet 3g. The next step up to get a “real CPU” is 13.3″ — a sweet spot of performance and portability.

What I found was that ultra-light, ultra-long battery life is in. These sweet new Consumer-Ultra-Low-Voltage (culv) chips from Intel and AMD are sexy. I thought I would need a 35 watt Core i7, or at least a 25 watt 2.2GHz or faster Core2Duo to edit on the go — but I lucked out with the 10 watt 1.3ghz SU7300 Core2Duo chip from Intel.

The video editing performance of the ASUS UL-series notebook I ended up with is aided by hardware accellerated video processing in the GMA 4500 M HD. AVC, VC1 and h.264 decoding are offloaded to the graphics chip. In Windows 7 Home Premium I’m able to playback 17mbps AVCHD in WMP using only 20% CPU. Not bad at all.

So if you’re willing to live without an optical drive an ultralight notebook may be the best choice for you. The performance seems enough and the battery life is steller. I’ve seen prices in the $650 – 900 range so take a look at the ASUS UL, Acer Timeline, Dell Inspiron Z, Samsing X and Lenovo U series notebooks. Just be sure to get a Core 2 Duo — I’m not reading great things about the Core 2 Solo part. SU7xxx and SU9xxx seem to be where it’s at. For now. We’ll likely see a lot more of these slim buggers at CES.

I want to give a special thanks to our crew for being so supportive while I was in hospital. Shannon did a wonderful job of taking care of the hakshop and mailing out all the orders while I was away. Thanks Revision3 for understanding about the late episode, Sentara for their open wifi and hot nurses, and a big thanks to our loyal fans. All of well wishes on twitter, facebook and youtube, the forums and IRC brightened my day every day. And DigiPirate, thanks for the awesome USB Dalek Webcam. Exterminate!! Exterminate!!

Download HD Download MP4 Download XviD Download WMV

A Great Week for Hacking

• Our pal Mubix, while sad about the demise of MDD, is excited about Fastdump Community Edition
• Decaf defeats Microsoft’s Cofee
• People, this is why encryption is important. Predator drones hacked.
• Darren is excited about Wordpress 2.9’s oEmbed Feature
• It was only a matter of time^H^H^H^Hseconds before the Nook was rooted
• Shannon is eager for some free in-flight WiFi.

Build wordpress, joomla, droopal themes without code

While it’s no Geocities page creator, Shannon reviews (and mostly likes) last week’s CMS theme generator recommendation Artisteer. Shannon reviews it’s basic operation and gripes about the trial limitations. Worth $50? Maybe if you’re looking to build a dozen Wordpress themes. Just looking for a one-off? You’re probably better off with a free, or even paid theme.

Droid tethering without root access

While we’re likely mere moments away from WiFi Droid Tethering [Edit: Well would you look at that], Darren has just the trick for tethering the Droid with Ubuntu without root access. Ok, actually root on Ubuntu is required but not on the droid. Easy enough Eh?

Mad props to Shannon VanWagner for putting together a simple 15-step process for tethering via USB with Ubuntu and the Droid.

And mad props again to bigmack83 for turning these 15 steps into a basic shell script. Actually a wizard would be more apt, as this script guides you through the process of installing packages, creating rules, setting up your droid and finally connecting.

You’ll need a debian based Linux like Ubuntu (but I’m fairly certain you’ll be able to adapt for the apt-less), the tether script and the Android SDK.

Read on for details from the author

If you’re familiar with dd it’s simply a matter of downloading the torrent, unzipping and imaging the included chrome_os.img to your media. For example, dd if=’chrome_os.img’ of=/dev/sdb where /dev/sdb is the path of your removable media.

If you’re in Windows you’ll be delighted to find that the linked zip contains a copy of WinDD, as well as writing instructions. More information can be found at this makeuseof.com article. Important tidbits include the fact that the default user and password are chronos / password and that a terminal can be accessed by CTRL+ALT+T. Oh, and the xrandr command is available if your desired resolution isn’t detected automatically. The syntax is typically xrandr -s 1024×768 or similar.

It is also worth noting that PrBoom comes with it’s own tcp game server for deathmatch. If anyone wants to try a little Zipit Z2 deathmatching hit us up. Or if you’re looking for some Doom goodness on the PC check out my favorite port, Skulltag.

At time of writing the process is to download this zip, rename it to update.zip and copy it to the root of your Droid’s SD card. Shutdown the Droid and start it by holding Power and X. Once greeted by an exclamation point on your screen hold the camera and volume+ buttons. From the menu choose the update.zip with the D-Pad, and once updated choose reboot.

Keep in mind that when it comes to unlocking moving targets like this it’s best to check with droid forums beforehand.