vdub

I was siting back watching Star Trek Voyager with my netbook by my side. I was running airodump-ng just grabbing a random capture. I noticed a mac address on my network that I didn't recognize and it was moving a ton of packets. I looked it up and the manufacturer was Texas Instrument. I didn't think I had any devices with a TI wifi card so I opened up DDWRT to see who had the lease. I noticed the host name was Android. I know for a fact that I only have 3 powered up Android devices, 2 are HTC and the other is my Note and I know its MAC by heart. Then it dawned on me my daughter has a Kindle Fire. She is 11 and has been asleep for an hour and a half. I went in to her room and guess what I found. My daughter under the covers watching YouTube videos. Busted red handed. Needless to say she has lost her Fire. Doesn't it suck having a hacker for a dad, LMAO.

One of the main reasons I did mine was because I already have a USB Alfa and the performance sucked, the range was great but hacking aside range is about all its good for. I decided that adding an external antenna would be the best of both worlds. Also I didn't really think about the chance of hurting the netbook. I repair notebooks for a living so opening them up isn't really that scary for me. The idea of damaging it never even crossed my mind. The only real tedious part was dremling out the monitor support and getting it to fit back in with the antenna adapter on it. Its just made out of pot metal and the flexing it took to put it back in to the case made me sweat a little but other then that it was buisness as usual.

I had it in a VM but I deleted it. I think Windows 8 is going to be the best thing for Linux since Windows Vista.

I'm am pretty sure that aircrack can crack 2 parts of a 4 way handshake. Last time I did it, it took 20 hours piping john though aircrack with "password" as my paraphrase. However, I had a full 4 way handshake using a deauthed client. Great find, I will have to play with it. If you process the cap file let us know if it works.

I don't have that problem but then again I also have an extended battery that changes the angle a little.

I tried loading 98 last night. I could not get it to load, lol. So far with 2 XP machines and 1 2K machine its running good. I understand the hard drive bit but these systems are not meant to be used. This is nothing but en exploitation playground. My next idea is building a virtual router that will put each system on a separate sub-net. Kind of mimic an ISP and somehow randomize it. Each system will get a dynamic IP each time they log on from an entirely different sub-net.

That actually looks really cool. Isn't it funny how we have these tiny computers with these huge antennas. Its kind of like computers Borgs would use.

Well the VM is working great now. I extracted the .bin from the executable and flashed the BIOS with HP's built in flashing program. However, as always proxmox crashes whatever browser I try and use when I close a console window. Both Chrome and Firefox crash. I haven’t been able to find a way to fix it.

I was just cleaning my shop and found an older Dell XPS with a bad motherboard that needed to be torn down for recycling. It had a Core2 E6700 which supports vitalization and 4Gb of DDR2. I have the CPU in one of the systems now but the BIOS does not support vitalization and the only BIOS update HP has is an exe file. I also upgraded the ram in both systems to 3.5Gb. Once I get the BIOS updated we will see what happens.

Unfortunately the case is ultra small form factor. Adding another drive would be difficult but I guess could replace the DVD drive. However, I have not bothered with it because the system can't even support 1 VM the way it is.

AOL desktop uses a proxy called "top speed". If you kill the topspeed service AOL will revert to regular data. I noticed a while back on a customers system that AOL top speed was filtering Google. AOL use to use top speed as an accelerator for there dial up users but now I think its just a proxy to filter out sites that AOL does not want you to visit. You can delete the service and AOL desktop actually runs faster. Note: I am not an AOL noob, lol. I only know about this stuff because I have customers that still use it.

The idea in the beginning was to built a virtual network with tons of machines in proxmox. The systems are on a rack headless, for proxmox this would have been perfect. I have pentesting VM's on my main system though virtualbox. So it would almost be a hassle running virtualbox on these systems. Just based on the fact that I can already do that conveniently on a 4Ghz Quad core with 8gb of ram. I wish the software vitalization was better but unfortunately its not. I have ran VM's on older systems before though virtualbox and had great success, I am not sure why the performance on this box is so bad with proxmox. The whole idea was to run these systems headless and clustered as a victim platform. Kind of like a virtual internet. I was going to have a 2k server, a few Windows XP systems on different SP's, Maybe even a webserver or a corporate network with a domain controller. Could have been a fun little playground. The entire setup has its own isolated subnet to so attacks would be more realistic. The problem is when you click the start menu in the only XP VM currently installed it takes like 2 minutes for the start menu to appear. I looked on line to see if I could find some CPU's that where socket 775 and would use the VT-x but the best I could do was $100 per CPU and I am not even sure if they would work on these systems anyway. The FSB of the CPU's currently in use is 800Mhz and the once that support VT-x are 1333Mhz. These systems both had 4Gb of ram last week but since proxmox didn't work out I stole 2Gb out of each system to upgrade the memory in my dads computer. These systems are easily capable of 16Gb of DDR2 each. The memory isn't the real problem at this point. If I could get the vitalization to work better I would upgrade the ram. That's super cheap. I just don't want to drop $200 on CPU's. Its kind of irritating that Intel CPU's are so expensive. I can buy an AMD that supports vitalization for half that price brand new.

I have two 1.8Ghz core2 systems with 2Gb of ram. I wanted to run proxmox on them but they don't support kvm and a single Windows XP vm is literally unusable. Is there anything else these systems can be used for or are they worthless. Also if anyone knows where I can get a pair of CPU's that will support kvm dirt cheap let me know.

Get a can of spray paint. You can make it any color you want.

I digg the WRT54G routers. With DDWRT running they work great. I have a 3 bedroom house on a half acre and can hit my wireless from anywhere on the property. In fact my galaxy note can get a signal from down the road. They actually are great routers.

That looks really cool. I want to build one now. I wonder how we could make a device to rotate it.

Just finished this. What do you guys think? http://www.thelinuxgeek.com/content/hackers-are-not-criminals

lol. Yeah you might not want to use the wireless with this netbook around. Honestly I haven’t taken it out since I did all of this. Its been used mostly for in house pentesting. Regarding personal information. As a buisness owner everyone knows where I live. lol. If anyone is in the neighborhood come on by, would love to hang out. :)

We are behind. Just look at the number of Americans that have nothing but dial up or satellite internet access. We are way behind. I read a report a while back that we are in like 8th to 10th place when it comes to technology.

That's what I was going to say. It's always a good idea to migrate anyway since your connection is relying on the user not closing the process your attached to. Once your in jump over to lsass and you should be golden unless they shut the system down. I believe lsass will even work if the user logs out. I use to use explorer but that depends on the uid of the logged on user and if they log out your screwed. Or explorer crashes. That never happens in Windows does it :-). Just don't use winlogon. For some reason half of the times I try it crashes and when you loose that process the system blue screens. Unless that’s what your going for ;-)

Is it just me or is everyone else more upset that they are not disclosing the details. Security though obscurity is like having no security at all. The whole point of security research is to disclose your findings otherwise you are wasting your time. The fact that China is spying on us is not news. Its obvious. Of course China is spying on us and I would be suppressed if we where not doing the exact same thing. I honestly hope we are. The problem is what is this chip used for? Is it a key component in our infrastructure? Or is it just a component in laser pointers that the pentagon uses? They mention in the article that its used for military and commercial purposes. Does that include routers, cable boxes, Cell phones? How badly does this effect us and can it be exploited by anyone? Its like saying that every copy of a specific server operating system has a manufacture built in back door but we are not going to tell you what OS or what the specifics are. That does not make it not exist it just takes away our ability to protect ourselves.

I am currently running 4.4. I assume that's the newest version. In order to get it to install in openSUSE I had to install 4.2 then change the permissions on a folder and database and then upgrade to 4.4. Prior to doing that I could not even get the program to run at all.

My CPU is a little slow at 1.667 but I do have 2Gb of ram. I just noticed how well it runs in BT5 so figured that it should run faster in the native OS. Once msfconsole starts it runs great. The only problem is starting.

I have metasploit running on my netbook and the msfconsole takes almost 3 in a half minutes to start. If I run it from backtrack it loads in a quarter of the time. Both are using the same version. I have tried loading msfd first and it does not have any effect. I have also tried starting msfconsole with -n to disable database support. That actually helps a little but not much. Does anyone have any tips on making this thing run faster. I don't want to run the service all of the time because this system does other things and I can't stair the resources. However, I also don't want to sit and stare at my console for almost 4 minutes.

I think it would be funner to make a honey pot. Figure out some way to exploit them when they try. Maybe make a botnet of script kiddies. Could be fun. How hard would it be to use some common exploits that install some kind of malware that we can use to follow where they go, or even use them against each other. It would only effect the people that are obviously trying to hack the site.