Active Members
  • Content count

  • Joined

  • Last visited

  • Days Won



About cooper

  • Rank
    Re-born-again Hak5er
  • Birthday 09/11/1976

Profile Information

  • Gender
  • Location
    Veenendaal, The Netherlands
  • Interests
    Pretty much anything with an electicity plug.

Recent Profile Visitors

26,296 profile views
  1. Since you're currently completely in the dark either find *any* SBC to see how close you get to where you want. Once you know the performance you need you can assess which board would be (more) sufficient for this task. For ease of development I would start with a Pi. (Arduino would be better-suited for ease of low-level development, but if you're worried about performance the Pi is a more potent device).
  2. The words you're looking for are XSS and CSRF. It's a seemingly eternal problem that's not going anywhere. Also, check out how ad platforms are being leveraged as a delivery vector for malware. That stuff gets embedded into the website and is hosted elsewhere.
  3. Sorry about skylu being a bit of a dick. Most people here tend to be a bit more willing to help. The problem with your question is that "getting into hacking" is a very broad thing. It's like saying "I want to become a surgeon", but that can be anything from a vet to a brain surgeon. So maybe you could elaborate a bit on what, specifically you want to do? Something that might be able to get you started is this very lengthy thread in our security section. It's mostly about how hacking programs, coming to grips with the underlying technology and working out why things act the way they do, but there's a couple of outliers there. Just browse through that, see if there's anything that tickles your fancy and go from there. One thing I will say is that questions, while very welcome, tend to get a better response when you show that you've already done some of the basic work in researching the subject (google, wikipedia...) yourself and your questions is about something somewhat specific.
  4. I'm puzzled why you have 2 separate but almost equal IRC classes.
  5. I'm going to slightly hijack this thread, sorry. What's the maximum acceptable weight (by which I mean the bag and its contents combined) for an EDC? As you see here, people generally say bag X can carry everything I put in, but once you cross, say, 10 pounds your EDC becomes a millstone to drag around as opposed to the nimble toolbox people often claim it to be. Also, with a given weight you need a certain quality bag for it to last a while. This is why any good quality bag tends to have a significant price tag. My regular laptop is too huge (and, at 6 pounds, *WAY* too heavy) to get involved in any EDC discussion. My Chromebook interestingly enough tends to be too small for most bags. These days I rely on a mostly cheap shoulder bag I got for being a HitB crew member. It's great because by the time the thing would become too heavy to hang over your shoulder, it's just full. I can fit my Chromebook, an A4-sized writing pad, some pens, MP3 player and 2 books. The things I do are such that all my kit goes into a trolley case (Pelican 1510 - it's *great*!). If my Chromebook won't cut it, I'll bring my beast of a laptop in its backpack which means I try as much as I can to limit everything else since it weighs me down so much.
  6. The other option is to use the monitor port. Just plug in a coax cable, run it up to your home and attach it to a CCTV monitor. That monitor can be the gameboy the guy had, but it can just as easily be a standard monitor. I'm sure ebay or craigslist or whatever has a few on offer for a normal price. I suspect the coax cable can be a longer run than the VGA one but in either case you need a more-than-low-grade cable to bridge the gap. I have plenty of experience with recording problems resulting from using shoddy coax. Shielding really is key.
  7. You can go up to 250ft away from the source with this if the resolution is low-ish (like, 1280x1024 or 1024x768). Cat6 cable is a bit more rigid and better shielded, so you might get more distance with that.
  8. I made a script to output a sequence. The lines with ' echo "$CURRENT" produce the output so that can be trivially adapted to become "usr${CURRENT}pass${CURRENT}" on a sequence going from 1 to 99.
  9. For advice on what are good cards, look at this post.
  10. Unless your 'devices' include a phone, I'd say have a look at qtpass. It's a Qt front-end over the 'pass' program, which uses gpg for encryption and git for syncing (optional - you can just put the files on a usb stick or whatever). It uses the pinentry command for receiving your passphrase, which can be made to (also) do 2FA with, say, a YubiKey. All open source, all free.
  11. If your firewall has 445 open and https isn't working, it's because https doesn't run across port 445. Same with the FTP thing. I'm not saying you should open additional ports, I'm saying either your firewall or your attack program is likely misconfigured which would explain why you're not getting the expected results.
  12. Yes, that's exactly it.
  13. I recently got an introduction to the concept of a zone director. It's a device to manage a (large) group of APs within a venue. Think conference centre, multi-story disco or camp site where you want people to be able to roam without any interruption. The goal is that when someone starts to play a youtube movie and decides to walk around the device automagically switches between APs and the movie never skips a beat. Your zone director can manage this. One feature of at least one of these zone directors, no doubt restricted to the expensive models, is that you can load it with a 3D model of the site and enter into it the location of the various APs. Once you do that you can see the devices travel through this 3D space based on where which AP sees it. Flashy stuff. To do it yourself, do what haze1434 says. There's a topic in Hacks & Mods where someone tried to do something similar but for reasons I can't remember also wanted to drop the signal frequency from 2.4 to something a lot lower... Probably to be able to do the tracking using an SDR which has a limited signal frequency range that it can pick up. This might not be something you need but the discussion there was generic enough to at least give you a decent head start.
  14. https is 443 and one form of FTP relies on port 20 I think for data transfers so if those stall, either switch from passive to active (or vice versa - I *always* get those mixed up) or open the extra port.