I have a handful of twitter accounts associated with specific events or websites. They’re often updated automatically with no regular intervention by me—I usually don’t even know their passwords. Everything works pretty smoothly until I need to do a manual update. Take the @hackerdrinkup account: It updates automatically with the week’s location, but if something unexpected comes up, I need to update it with the new venue. Many pro mobile twitter clients support multiple accounts and Brizzly supports up to five. I do these updates so rarely that it doesn’t feel worth the expense or setup time… and even if they were setup it still relies on my phone’s sometimes flakey data connection. I set out to build a simple solution that would work with a bare minimum connection. (more…)
Archive for the ‘Hacks’ Category
Managing multiple Twitter accounts via SMS
Saturday, April 24th, 2010Police know what your cellphone jammer looks like
Monday, April 12th, 2010
A couple interesting documents have recently appeared on Public Intelligence related to electronics hobbyists. Pictured right is a doc circulated by the Northern California Regional Intelligence Center “Radio Frequency Jammers Used to Disrupt Communication Devices“. It features one of the most widely available cellphone jammers on the market (here it is on Deal Extreme). SFPD recovered this one—it was on at the time—from a car during a drug bust. These particular units are sold with a cigarette adapter, but as the article notes, the range is only ~15 feet. With such a short range, I’m not sure what the point of using a jammer is outside of say, an elevator. (more…)
ShmooBall turret
Sunday, February 7th, 2010
I’m back in Los Angeles but I thought I’d leave you with one last image from ShmooCon. Larry Pesce from PaulDotCom has been been bringing new ShmooBall guns to the conference for the past few years. ShmooBalls are foam balls given to the conference attendees so they can throw them at speakers they disagree with.
This year Larry brought a turret mounted to a Power Wheels. You can see the 2008 and 2009 versions on Hack a Day.
Bluetooth keyboard attacks
Saturday, February 6th, 2010
Michael Ossmann gave a really interesting talk on bluetooth keyboard security at ShmooCon. He specifically covered the bluetooth HID profile from 2003 and the bluetooth 1.2 spec from the same time, which all current keyboards on the market implement. He covered many attacks on the system that take advantage of bluetooth not authenticating its devices.
Pico’s FPGA based DES cracking cluster
Saturday, February 6th, 2010
As was bound to happen, I put the finishing touches on my GPU post and immediately ran into David Hulton (h1kari) at Pico Computing‘s ShmooCon booth. As the organizer of ToorCon, he was the person that originally introduced me to the power of the FPGA.
Airpwn TCP hijack, we’re serious this time
Friday, February 5th, 2010
For having to fill a last minute ShmooCon opening, dragorn delivered a very provoking talk. You may know him for his indispensable wifi tool, Kismet. He blew through 100 slides in 20 minutes and I’m sure I’ll miss the finer points but it really turned out to be something potentially incredible (and destructive). He laid the ground work by discussing how open public wifi hotspots are so heavily used. Many of us understand the risk but he set out to show even more unexplored territory.
GPU vs. CPU supercomputing
Friday, February 5th, 2010
I’m at the ShmooCon hacker conference in D.C. this weekend and will be posting about some of the more interesting talks. The Friday round of talks are limited to 20 minutes and cover a wide variety of topics. Collin Brack opened with a subject I’m thoroughly interested in: GPU based cracking.
Nook filesystem found on microSD card
Sunday, December 13th, 2009
Hackers working on the Barnes & Noble Nook have gotten a huge gimmee. nookDevs member poutine took the back off of his and discovered that the device’s filesystem is stored on a 2GB microSD card instead of onboard flash. Mounting the card revealed three ext3 partitions. You can find a listing of the files here. It’s mostly a stock Cupcake build with a few additions like ./system/app/instorewifi-release.apk. The debug interface, adb, is included so its a matter of adding it to the startup script to begin talking to the device over USB.
When the nook was announced, I was interested because it’s an Android device but worried that it would be too locked down to be fun. This is an amazing discovery and being able to modify the filesystem directly will surely make hack development much easier. The back is just screwed on so it isn’t that difficult to remove and since it’s under an external cover I can imagine people keyholing it to get easy access to the card. Veteran Android hackers like JesusFreke have already jumped in to help out. You can find them actively working in #nookdevs on Freenode.
AT&T 3G MicroCell hacking?
Wednesday, December 2nd, 2009
US wireless carriers have started selling femtocells to their customers. A femtocell is a device that essentially acts as a mini cellphone tower. It connects to the user’s broadband connection and their cellphone connects wirelessly just like it would to a regular tower. The call is trunked over the broadband connection and the customer gets a much better signal than they normally would. If the caller leaves range of the femtocell, it will be handed off seamlessly to a normal tower.
I was reading about AT&T’s MicroCell, which they’re testing in a couple markets, and saw this interesting note:
Foursquare badge spoofing
Monday, September 21st, 2009
When an application sends an update to Twitter it can specify the ‘source’. The screenshot above shows an update where I used ‘foursquare’ as the source even though it wasn’t sent by Foursquare. No, I don’t think this is a security issue; it can be funny though. (more…)
