10goto10

SWEET!! I just submitted this to Digg (why wasn't it already on there?!). If you have a Digg-acount, please help spread the word: http://digg.com/design/A_hacker_s_graphic_...released_images

Hak5 is not your personal army?

It's not even a GUI by definition -- but nevertheless. The closest I came across are Errata's Ferret and WifiZoo. Combine this with wesside-ng/easside-ng and some automated bluesnarfing and you're coming close to having your own "SILICA" on a $0 budget (if you already have the hardware, ofcourse).

If you don't mind your stuff being stored on somebody else's server, try Dropbox ( http://www.getdropbox.com/ )

I came across a blog post discussing a $3600 handheld device that will automatically scan, exploit and snarf (look for interesting data like passwords) wireless networks. (This is not new, the device was released in 2006) The vendor site: http://www.immunitysec.com/products-silica.shtml A review: http://www.informit.com/guides/content.asp...&seqNum=247 Another review with pics: http://blogs.zdnet.com/security/?p=19 The actual system behind it is Immunity's CANVAS, which seems to be a Python script you can buy for $1450. I'm guessing this is a front-end, and the actual work is done by the usual suspects (nmap, tcpdump, etc.). I would love to have a look at CANVAS, but I'm not coughing up that $1450 for it. I remember reading more about this when I was reading stuff about turning a Zaurus PDA into a homebrew SILICA device. I think some projects were set up to have similar "autopwn" capabilities but I lost sight of them. Any Hak5ers interested in building one of these together?

I'm using an Eee 701 so I'll have to dig into Karma/Karmasploit. I kinda figured there would be a more basic approach to this, sort of like a nmap-like scan of the client to see what kind of adapter/system/OS is behind it.

In my daily communting from work to home, I do some random wardriving with airodump-ng to see what's in the airwaves. Lately I noticed some unassociated clients with interesting names under the "probes" tab. They're there all during the train ride home, and never associate with an AP. How can I find out more about these machines, see what runs on them, etc.?

I read this when the Slashdot came through my RSS tube. One of the first commenters hits the nail on the head when he/she says: This sums up why I like Hak5 so much. You guys cater to the old school hackers and coders, instead of the geek-hipsters that think they're hackers because they had someone walk them through a point'n'click iPhone jailbreak. I don't mind these "dumbed down" shows though, and I love to just get the easy version of a story when it's about something I don't really need to know all the details of. But when it comes to the subjects Hak5 talks about, I don't wanna be treated like a n00b. That's why I love the new season so much. Keep up the good work. (I'm not on /. otherwise I would've kissed you guyses asses over there as well ;) )

10 PRINT "George Carlin!" 20 GOTO 10 But also: Lee Evans Mitch Hedberg Eddie Izzard

You got a car in your bag?

This article might interest you, if I may plug my own writing: http://hak5.org/forums/index.php?showtopic=9458 This would fit in your pocket and sniff wireless traffic with any Linux tool you're comfortable with. Wireshark, Wellenreiter, Kismet, Dsniff, nmap, tcpdump, etc. You could use a Compact Flash ethernet card and plug it in, and scan for as much info as you need.

Didn't Darren say in the 2nd Jasager segment that they were gonna show how to run it on the Eee?

Web developers using a Mac have even more reason to be happy: http://macrabbit.com/espresso/ Looks like a TextMate on steroids!

I think for a plain-text text editor, not having usefull features built in because of performance or stability issues should not be an argument. I can't see a text editor doing anything that a modern computer can't handle with ease. That said, plugins are ofcourse a god-sent gift for anybody who likes to customize his/her software. I have never used Notepad++, I just saw this big list of plugins which all had the functionality I needed, and I didn't feel like installing 8 plugins. Maybe on a lazy sunday afternoon...

I see a lot of people using Notepad++ on Windows. Unfortunately I'd need to install a lot of plugins before I'd get PSPad's functionality (Function list, encoding conversion, hex editor, compare files, FTP synchronise, HTML tag matching, etc...). I'm surprised to see no UltraEdit fanatics here :)

What's the source code editor that you use? I'm a webdeveloper (XHTML/PHP/JS/CSS), so I work on Windows to have constant access to IE. I used to work with Editpad Pro which worked like a charm. Unfortunately I had to ditch it because it wasn't free and had some annoying bugs. Functions I liked were fast-scrolling by using CTRL + mouse scrollwheel, highlighting search terms throughout the document, and the extensive search&replace. I tried using Vim for Windows (as that's what I use on Linux) but I just work faster in a more Windows-like environement. I also tried the E Text Editor about a year ago (a Windows clone of the praised TextMate for OSX) but it was too basic had none of the really nice advanced features I'm after. I'm now using PSPad which is freeware and has it's own nice features (for instance CTRL+SHIFT+UP selects the word at your cursor). Also most of the other advanced features I love are there: source reformatting, split windows, etc. Unfortunatly it also has some annoying bugs (hanging on FTP, for instance) and updates are slow. So, I'd like to hear what else is out there. What's your favorite editor, and why?

So basically the added layer of "security" is that because you'll use the administration password less frequently, the chance of it being sniffed is also less. But in the end, both passwords are still equally easy to steal. Even if the administrator passwords would be seldomly used, if the attacker is able to sniff your traffic and has your normal password, they would be able to log in and make use of a "Forgot your administrator password?"-link, and sniff the resulting traffic for the new password. The fact that SSL increases system load shouldn't be a concern -- if that alone slows down your server that much, you should be investing in a new server. Besides, opting for a client-side solution (one that requires the user to remember TWO passwords while most have problems enough with just ONE) isn't a pretty solution, especially when it's not even that effective.

Why wouldn't they be able to get the "master password" the same way as they'd get the other password?

Really? It looks like it's currently the best price/value deal for UMPC's. Except for the various Eee models, there's only really expensive models out there.

I read this review on your blog yesterday, and I really liked it. As an Eee owner I was especially interested in how the Aspire One compared to the Eee, and you answered all my questions. I was just a little sad that your love for the Eee melted away so fast by the first serious Eee competitior ;) A collegue of mine coincidentally got his Aspire One in the mail today, so I was able to look at it IRL. And indeed, the bigger screen and resolution, the faster CPU, and the keyboard are improvements you just HAVE to like, that's a no-brainer. I gotta admit I'm keeping and eye on the Aspire One now... Not so much because I think the Eee "sucks" all of a sudden, but for two reasons: 1. buying "another one of these little laptops" isn't a huge impact on my wallet anymore 2. I have had many times that I thought "this little Eee would do this task so well". Serving as mini-server, home security, building one into a car, taking care of music in bedrooms and/or bathrooms, etc. Thanks for the review, and I hope you find good use for your trusty "old" Eee!

Jeez, chill the fuck out man. You're coming off as a total elitist douche again. We all know you do everything better and know so much more than the rest of us clueless lamers, you point that out in these forums with great regularity. Why bash something that integrates hacking, hardware, creativity and a possible new tool for an artist, just because YOU'd rather just buy something off the shelf?

Thanks for the lead on Ubuntustudio, I didn't know about that. I've been keeping an eye on proper video editing tools on Linux, as this is the last hurdle for me before I really can have Linux on my desktop. Professional tools like Adobe Premiere Pro or Sony Vegas for Windows have no competition from the Linux front at all. For video editing it seems like you're stuck with Windows for now. There's free tools for Windows though, they're a bit basic and probably on the same level als the Linux tools (VirtualDub and it's cousins for instance). If you have the patience and the motivation, you'll get stuff done.

Sounds like your audio codecs fudge up. Deinstall whatever codecs you can find, and install something stable like LAME MP3.

@Digip: I kinda assumed something would go wrong with the file command (reads lines of a file into an array). I guess the problem was that it didn't return a proper array because of how the log file was written? (Changing "\n" to "\r\n" could fix that)

Be quick though, the welcome message says they will be deleting files somewhere in July... Hopefully they've been lazy!