ax0n

And part three, complete with sidejacking.

Thanks for the linkage :) I also had to do some updates to the article because I was working with TWO different versions of jasager while writing it. What's up there now should do the trick. I am working on showing how to integrate it with some other evil tools as well. I've been having a lot of fun playing with Jasager on and off over the past few months. I still love that video explaining how Jasager (and Karma in general) works. Part two will be even more evil. Part three, if it works out the way I want it to, will be even worse. But it's all in fun. Right?

It looks like a 3DES hash like what older versions of UNIX-Like operating systems use.

Acoustic Coupler. A decade ago (plus three weeks), I wrote how to build one for under $20. http://stuff.h-i-r.net/articles/hir9/hir9-5.txt Basically, with a 9V battery, you can take any two phones and make them "talk" to each other, or you can make a phone and modem talk to each other. Seriously, grab a phone cord and cut the red or green wire. Then hook a 9 Volt up to each cut end of that red or green wire. Hook it between two phones and you and your friend can talk to one another. Now, to make a normal phone into an acoustic coupler, you have to use something to isolate outside noise a bit. I used cheapo suction cups. Old-school acoustic modems (and those classic payphone TDD terminals) used thick rubber cups. Either way, moving the microphone and the speaker to the outside of the phone's housing and getting some sound insulation around them to make a good acoustic connection is all you need to do. The acoustic coupler shown strapped to my cordless phone is a professional-grade one from the mid-90s. It's a "Telecoupler II" by Road Warrior. Another one popular at about the same time was the the KONEXX Koupler. You could probably find either one on eBay cheap, but it's more fun to build it yourself. Maybe I should go through and re-do my article with photos and better grammar. As has been mentioned in this thread a few times already, the usefulness of dial-up (much less crappy acoustic modem dial-up) is very limited these days with ubiquitous open WiFi and affordable broadband wireless (WiMax, EV-DO, EDGE). But hey, us retro-geeks have to hold on to something, don't we?

http://www.apachefriends.org/en/xampp-macosx.html

The only thing that can be proven here is INSECURITY. If a bunch of forum-dwellers break it, then you might need to consider using a stronger key. If we can't, however, it really doesn't mean anything. 1. I don't think that any of us are skilled cryptanalysts. That means that we could just lack the skill to pull it off. 2. None of us here are irresistibly motivated to crack your file. I mean, some people who are bored or really, really want to prove themselves might take a crack at it, but see #1. They might not be the most skilled of the people here, and they aren't nearly as motivated nor have the resources that a dedicated attacker (research team, corporate spy, or government agency) might have. 3. You can't hide secrets from the future with math.

http://freshmeat.net/redir/unrm/10963/url_...nrm-0.92.tar.gz The shellscript needs some tweaking for ext3 but I've used this several times before and it usually does an okay job. Not perfect but it might get some (or all) of it back.

I know, but I do have good antennae and the good cards with >100mW tx are usually quite sensitive. And the high power comes in handy when doing other stuff that I still might do that's... well, NOT war-driving. ;) *coughaircrackngcough* sorry, I must have bronchitis ;)

You need something more than Ettercap to do this. The easiest way I know of is using something that can man-in-the-middle the encryption, such as Jay Beale's Middler. Ettercap just sniffs (and arp poisons to get traffic from switched networks). MiTM attacks try to trick users into using encryption that you have the key for, so then you can decrypt the session.

Here's something funny. When my wife and I drove down to Springfield MO to kick it with Darren and Snubs, I didn't yet have my Alfa, so I just drove the trip with Rig #1. I found more than 6,000 networks on that trip, and more than half of them, I was the first to report to WiGLE. You can see my usual turf in this map, and the bizarre trail down to Springfield from that one trip.

As far as what I do with the wardriving data? I have EV-DO so I don't need to steal anyone's wifi. I have full coverage almost everywhere. I just upload my stats to http://wigle.net for fun. I also look at the WiGLE maps to see how many noobtards are still running wide-open nearby. Rig #1 (bicycle rig a.k.a. The WarCycle): HP Jornada 720 jLime Linux Kismet Garmin GPS12 SMC EliteConnect (high-power PCMCIA with two mmcx) Two omni-directional mag-mount antennae The bicycle is good because the slow rate of speed and ability to tool through dense neighborhoods really does give you a really complete picture. It might take longer, but it's a lot of fun, and I get my cardio while still nerding out. Rig #2 (usually in my car): MacBook OS X Leopard KisMac Alfa AWUS036H (outfitted with a 12dBi antenna) Garmin GPS12 Rig #3 (usually used for stealthy indoor site surveys): La Fonera running on a battery pack OpenWrt unlocked Kismet no GPS

Basically, a darknet is any network that is private and invite-only. Usually, it's for file sharing. Some buddies and I ran a Waste network for a while. If people leave their stuff online, it works. At the time, Waste was windows-only. I'm too lazy and uninterested to figure out if that's still the case. Many serious darknets are using a VPN and are really more flexible than Waste. You can implement whatever you want on the VPN.

Or some of us just might not like his policies? Imagine that. Not that I liked Bush's much, either. I like the freshness Obama brought. A lot of the "transparency" stuff, while it sounds honorable, is just a big PR stunt, though. And he is still saying "I will" (issue a stimulus, shut down Gitmo as examples) instead of "effective now, this shit is gettin' DONE." - This isn't the campaign trail anymore, but he's still writing checks that may not be able to be cashed. I've got plenty a good reason to be cautiously optimistic about our new Prez without being some wack-job that thinks B.O. is a terrorist, but it's another discussion for another thread (or best yet, another FORUM in general!) For what it's worth, I laughed my ass off at the joke.

Mountain biker? I need to dig out my collection of bizarre keys. They've got a collection of their own: dust. :(

The internet and all of the universe as we know it are just part of a simulation made out of a bunch of rocks in a desert.