• IVRE

    So I recently needed/wanted to have a closer look at a few thousand hosts. After identifying and listing all addresses I started doing my homework by running NMAP. I then ended up with far to many results to work with by hand. Having already read about Ivre I decided to give it a quick spin. I then made the mistake to post a Tweet about having used it and promising a quick write-up. Well, here it is!

  • Exposed Sonos Webinterface

    After recently having stated in a Tweet that Sonos speakers expose a web interface, I just wanted to add some information here. I first found this interface about 4..5 years ago, when a good friend bought himself a Sonos system and I decided to just run a quick scan. Back then there wasn’t a lot of information on this interface online, which has changed over the past few years. Today, if you search for “sonos web interface” or “sonos hidden interface” you’ll finde various information, just as published here.

  • Logistics of a Hardware Implant

    During the recent SaciCon I gave a short insight into to the magic Chinese hardware implant covered by Bloomberg from a hardware hacker’ s perspective. In summary I described it as a hardware hacker’s wet dream, simply due to size, effort and the feature set described by Bloomberg. Obviously I didn’t want to discuss any conspiracies, so I just stuck to the technical aspects. As an addition, I decided to cover the practical logistics of a hardware implant in a short post here. Thus, here an introduction into backdooring an Arduino Uno.

  • Challenges When Setting up a PoC||GTFO Mirror

    Being stuck at home for a few days, I decided to distract myself a bit and extend this page with a PoC||GTFO Mirror. For senseless reasons I wanted one of these viewers where you can actually flip pages while reading, just as they use for ads / catalogs from shops. I quickly found a piece of software that would do the job, but had to perform a few changes on the resulting content…

  • The Friendly Keyboard Mouse

    Although being an old approach, injecting HID keystrokes is still a very effective way of attacking a host system. When doing so, a microcontroller is used to emulate a USB keyboard which will then simply type commands. From the perspective of the host system, there is no chance of distinguishing between a real and an emulated keyboard. This post gives an overview on how to create an injector which is placed in a normal USB mouse and how to program it for a little bit of fun.

  • Desoldering and Cleaning PCBs Before Adding Headers

    Very often when working with embedded and IoT devices one will have the luck to find the footprint of a simple pin header. Soldering on pins and connecting jumper wires is quickly done. Sometimes though the vias / holes in the PCB will be plugged by solder and need to be cleaned before continuing. This post gives a short overview on how to clean up a header prior adding the pins. It will also cover the classical case of “the solder just won’t melt”. For the interesting part, scroll down to “Challenges”.

  • Two Old Cisco WiFi Routers With Broken Resets and Too Good Memory

    I recently wanted to do a few changes on my home network and needed some simple and cheap devices supporting VLAN and preferably having a bit of WiFi and some VPN. After a short look on eBay I decided to go for a Cisco Small Business WiFi Routers. Random clicking and bidding resulted in buying one RV110W, one RV120W and a RV215W. As they didn’t quite perform as I wanted, I needed a few alternate approaches….

  • The Black Cart Experience, Part II: Location, Location, Location

    As previously mentioned, the EasyShopper is able to navigate customers towards the product they’re looking for. To be able to do so there is a store wide positioning system in place. This post covers the basics of the used solution.

  • The Black Cart Experience, Part I

    Having been grounded for a while now and mainly going out to do some shopping, the electronic shopping carts in our local grocery store offered a very welcome change. Although, only having access to the carts while being out shopping and being permanently “supported” by the staff doesn’t make the “physical part of looking at things” any easier, they’re new, interesting and fun devices to have a look at…

  • Cellular Lab Setup

    Although written end of 2016, I’ve finally managed to actually place some notes on my cellular lab setup here. Hope they’re helpul. - Cellular Lab Setup

  • Dissecting Locking RJ-45 Jacks

    During a recent search for new networking equipment I stumbled upon “locking” RJ-45 jacks. Due to a round of lost in translation the word “locking” as in fixating or fastening was translated to “abschließbar” - “lockable” as you’d do with a door. The description also stated enhanced security for areas with higher security requirements such as banks, airports and schools. Costing only 4€ and an extra 4€ for the “key” I just couldn’t resist to give the security benefits a test drive.

  • Receiving NOAA Satellite Images

    I’ve recently had a short look at receiving satellite images from the NOAA weather satellites. A short HowTo and some results can be found on the Receiving NOAA Satellite Images page.

  • The First One

    Just the very first post in the system.

subscribe via RSS