You are currently browsing the category archive for the 'Education' category.
A presentation and paper on Reverse engineering JTAG at the 26th Chaos Communication Congress is now available to download here:
http://events.ccc.de/congress/2009/Fahrplan/track/Hacking/3670.en.html
Other Hacking and reverse engineering papers and talks from the conference can be found here:
http://events.ccc.de/congress/2009/Fahrplan/index.en.html
The hacking track is here:
http://events.ccc.de/congress/2009/Fahrplan/track/Hacking/index.en.html
Here is an article about the security of the newly released iPhone 3.0 software for both iPhone 3G and iPhone 3G S:
http://www.net-security.org/secworld.php?id=7647
The research team, which included Edith Cowan University of Australia and BT, revealed some early results yesterday in news reports by the BBC and British television affiliates.
To read more about the research go here:
http://news.bbc.co.uk/2/hi/uk_news/wales/8036324.stm
and here:
http://www.darkreading.com/security/storage/showArticle.jhtml?articleID=217400054&cid=nl_DR_DAILY_H
Having a rooted phone means you can do tricks like setting up a 3g/wifi bridge. The process starts by using a rooting app to revert the phone to the rc29 build. then using the “android stupidly executes everything you type” exploit to launch telnetd and upgrade the bootloader. After that, the upgrade process is fairly easy. Just flash a new baseband and build. once you’ve got your new custom firmware, you can do future updates using an app from the android market.
Read More here:
You might know some of them but most of them are just an inside code and some can raise red flags.
Here are some of them:
D46 - “Do you want to have sex?”
LG6 - “Let’s have sex”
GNOC - “Get naked on camera”
TDTM - “Talk dirty to me”
LMIRL - “Let’s meet in real life”
See the link below wich includes a video:
The video talks about a couple of people who’s lives are ruled by harrasing calls and threats. They claim that their phones are tapped with special software.
Rick Mislan talks about the software and how easy it is to be placed on mobile phones.
Software such as:
- http://www.mobile-spy.com/
- http://www.world-tracker.com/
- http://www.flexispy.com/
- http://www.e-stealth.com/
- http://www.fonefunshop.co.uk/spyphone/
- http://www.thespyphone.com/allinone.html
Link to Video on YouTube:
http://www.youtube.com/watch?v=uCyKcoDaofg
A new site dedicated to the Palm Pre Mobile Phone and its WebOS operating system and Application Catalog. Visit it at:
http://www.PreMobilePhone.com
I don’t know if this is true or not yet but here it goes! There seems to be a vulnerability that affects Nokia Series 60 phones, including N95 and N73 handsets that blocks all SMS and MMS from reaching the phone, hense the name “Curse of Silence”. attacker in this case sends a specially designed SMS message to the target phone. What’s worrying is that the recipient will receive no indication that they got the message.
The only way to get the target phone to recieve messages again is to factory reset it. Even after the factory recet, the phone still remains vulnerable to future silent curses. The attack will only work on phones running version 2.6, 2.8, 3.0 or 3.1 of Symbian S60.
Watch in on Fora.tv to see the whole transcript as in the Pouge video in the previous post.
Modding Education for iPhone users AKA ModEdiPhone.com is a new website for all iPhone users who would like to jailbreak their iPhones or SIM unlock them whether they are using a first generation iPhone or the 3G iPhone. It provides guides and step-by-step videos and advice on how to do each hack or mod without any complications. It includes software, firmware, and hardware mods and hacks. It also contains the last five posts from the most popular iPhone blogs and news sites. It is a must visit and subscribe-to website so make sure you add it to your favourites 
Here is the link:
http://www.modediphone.com/
Cellphone Gun:
Pen Gun:
A new book with companion DVD by Jesse Varsalone. Expected retail price is AUD 79.00.
Key Features include:
- Companion DVD Contains Custom Materials That Can Be Used in a Real Digital Forensic Investigation
- Includes Unique Information about Mac OS X, iPod, iMac, and iPhone Forensic Analysis Unavailable Anywhere Else
- Authors Are Pioneering Researchers in the Field of Macintosh Forensics, with Combined Experience in Law Enforcement, Military, and Corporate Forensics
Sounds good? Then for more information go to:
http://www.elsevierdirect.com/product.jsp?isbn=9781597492973
Call it “on-demand computing”, “grid computing” or “software as a service”, cloud computing is the wave of the future whether people like it or not. When it comes to smartphones both iPhone and the Android platform are betting their success on cloud computing. Apple’s MobileMe and Google through its Google Apps on G1 did not get a great start but they are improving their acts with fixes and updates. Microsoft announced lately that they are getting into the cloud computing arena with cloud based servers that target both smartphones and sub-laptop devices called “netbooks”. There are too many news articles to list here to support this post and new articles on the subject seem to pop up every singe hour of the day. So, I am going to leave all the searching for cloud computing articles to you! Here is a google search for smartphone and “cloud computing” to get you started:
Get more information about this application and much more on Android’s Developer blog.
Also, visit Google Code Pages for Android.
Google Marketplace is where developers can easily publish and distribute their applications directly to users of Android-compatible phones including the T-Mobile G1.
The LayerOne 2008 talk by David Hulton titled: Intercepting Mobile Phone/GSM
Visit the GSM Hakcing WIKI at:
http://wiki.thc.org/gsm
The USRP is available at: http://www.ettus.com
Learn more about the GNU RADIO project at: http://www.gnu.org/software/gnuradio
David is the Chairman of Toorcon
An interesting news article about the work of BT (formerly British Telecom), Glamorgan University, Australia’s Edith Cowan University and Sim Lifecycle Services where researchers recovered data from handsets from mobile phone recycling companies:
Mobile phones can never be totally wiped clean of data
To get more information on the research at Edith Cowan University and its upcoming conferences please visit SECAU Security Research Centre’s website:
Here are some published refereed journal and conference papers to give you an idea of what to expect for the Edith Cowan University conferences in December:
- Valli, C. and A. Jones (2008). A study of 2nd Hand Blackberry for sale - World class security foiled by humans. Proceedings of the 2008 World Congress in Computer Science, Computer Engineering, and Applied Computing - SAM 2008 - The 2008 International Conference on Security & Management., Las Vegas, USA.
- Al-Zarouni, M. (2007, 3rd December, 2007). Introduction to Mobile Phone Flasher Devices and Considerations for their Use in Mobile Phone Forensics. Paper presented at the The 5th Australian Digital Forensics Conference, Edith Cowan University, Mount Lawley Campus, Western Australia.
- Yap, L. F., & Jones, A. (2007, 3rd December, 2007). Profiling Through a Digital Mobile Device. Paper presented at the The 5th Australian Digital Forensics Conference, Edith Cowan University, Mount Lawley Campus, Western Australia.
- Yap, L. F., & Jones, A. (2007). Deleted Mobile Device’s Evidence Recovery:. Paper presented at the Media and Information-War Conference 2007, Kaula Lumpur, Malaysia.
You can register to attend Edith Cowan University’s conferences here:
http://conferences.scis.ecu.edu.au/
Hope to see you there
Here is a link to the T-Mobile G1 website where you can play around with a basic emulator without having to download the SDK. You can also get a basic guide on features here:
http://tmobile.modeaondemand.com/htc/g1/
A more functional emulator can be downloaded with the Android SDK here:
http://code.google.com/android/reference/emulator.html
Finally here is a good video Introduction on Android OS for Developers. A must see if you have anything to do with the Android Platform(WARNING: 52 MINUTES LONG!):
More demo videos on user interface and applications can be found on the Android developer site:
http://code.google.com/android/index.html
Here is one of them to get you started:
In a previous post http://www.mysecured.com/?p=202 I showed that your data is not wiped when you do a normal restore. So in this post I will show you some of the ways you can wipe your phone with some degree of certainty that the information on it is wiped.
If you want to wipe your iPhone before you sell it on eBay or give it back to Apple because the touch screen stopped working all of a sudden! Then here are the different ways you can wipe it:
- Jonathan Zdziarski’s method:
http://www.zdziarski.com/papers/wipe.html
It involves jailbreaking and command line access. It is best suited for people with jailbroken iPhones and are really paranoid and control freaks!
- Rich Mogull’s (securosis.com) method:
http://securosis.com/2008/05/20/formatting-an-iphone-to-wipe-data/Which is an easy to do 2 restores and 3 overwrites of the iPhone device’s user data area. Look at this video from CNET on youtube:
- BigBoss Wipe App Method:
http://sleepers.net/news/?p=174
This needs the iPhone to be jailbroken as well. It does a zero out wipe on the device, so it will require a restore afterwards.
The basic idea of all of the methods is to overwrite the data in the user area. Be it by overwriting it with music as in Mogull’s method or by using a wipe tool as with BigBoss or by overwriting it with zeros as in Jonathan’s method. I prefer the latter two methods as overwriting with music might leave some of the data intact (call me paranoid!). But on the other hand it could be the only option for people who do not want to jailbreak their iPhone or do not have the technical expertise to do so.
UPDATE (28 August 2008):
iPhone software 2.0 and above comes with an erase all feature that was not available in previous versions of the iPhone and therefore this feature can be used to completely wipe the iPhone. This can be done on the iPhone itself without needing to connect it to iTunes.
So, on the iPhone tap Settings -> General -> Reset and then select the “Erase All Content and Settings” option from the buttons shown. Users must note that under the 1.x iPhone software, invoking this setting erased the iPhone’s obvious data, but not did NOT PERFORM A ‘bit-by-bit’ WIPE. Under the 2.0 software however, you get a much more thorough wipe (bit-by-bit). which can take an hour or two to complete depending on the storage size of the iPhone being wiped.
According to Jonathan Zdziarski:
A detective from the Oregon State Police notified me this afternoon that an out-of-the-box refurbished iPhone he purchased contained recoverable personal data including email, personal photos, and even financial information which he was able to recover using my forensic toolkit.
So, if you have to return your iPhone to an Apple or AT&T store and they offer to replace it with a new one, make sure that you wipe your data properly first. A proper bit level wipe is needed here and NOT a system restore!
When: April 17, 2008 at 17:00 GMT
Who: Jonathan A. Zdziarski.
Details: While some of a suspect’s data can be viewed using the direct GUI interfaces in the iPhone’s software, much hidden and deleted data is available as well, which may provide for more thorough evidence gathering. Existing commercial forensic tools are sadly lacking their ability to perform deep raw disk level recovery, and so Jonathan will demonstrate how to install his custom forensics toolkit on any existing model iPhone and send a raw disk image to a desktop machine. He will also show you how to recover files specific to the iPhone including deleted keyboard caches, photos, web objects, and much more. Jonathan’s custom forensics toolkit and his accompanying forensic manual will be available free to forensic investigators in law enforcement.
Read More here:
http://www.oreillynet.com/pub/e/949?CMP=ILC-orm_webinars&ATT=iphone-forensics
As requested by Haitham. The Hard drive is not actually a hard drive. It is a Samsung 65 Nanometer NAND flash part number “K9HBG08U1M” the same one used earlier in the 8GB iPod Nano.
Data sheet can be found here:
http://www.datasheet4u.com/download.php?id=604473
More information and other links can be found here:
http://www.iphonefreak.com/2007/07/iphone-componen.html
For dates, times and availability information on the workshops in UAE and Qatar visit link below:
http://www.oissg.org/certification-training-new-/index.php
http://www.oissg.org/certification-training-new-/index.php
Download the official brochure for the Dubai workshops here:
These certification workshops fund the Open Information Systems Security Group (OISSG) research and development of the ISSAF.
You can also download ISSAF for free! (9.59MB, 1264 pages)
Here are two guides to SIM unlock your iPhone for free:
Download and read it! It is not small though about 8-10MB. News, articles, intreviews, book releases, software walk-throughs, and more.
If you don’t already have this one, please download and read this Computer Security Division NIST Interagency Report (IR). It was published in March 2007:
- http://csrc.nist.gov/publications/nistir/nistir-7387.pdf
- Zipped version of the pdf: http://csrc.nist.gov/publications/nistir/nistir-7387-pdf.zip
It is an update and complement to NIST Reports:
- Guidelines on Cell Phone Forensics (Special Publication 800-101):
- Cell Phone Forensic Tools: An Overview and Analysis (NISTIR 7250):
Where: Liverpool Library, U.K.
When: 5pm on 25th June 2007.
What: read the pdf brochure.
For more information, follow the link:
http://www.criminalsolicitor.net/forum/forum_posts.asp?TID=2450
Preliminary Call for Papers
The First ACM Conference on Wireless Network Security (WiSec ‘08)
When: March 31 - April 2, 2008, Alexandria, Virginia, USA.
WiSec aims at exploring attacks on wireless networks as well as techniques to thwart them.
Topics include:
- Naming and addressing vulnerabilities
- Key management in wireless/mobile environments
- Secure neighbor discovery
- Secure PHY and MAC protocols
- Trust establishment
- Intrusion detection, detection of malicious behavior
- Revocation of malicious parties
- Denial of service
- User privacy, location privacy
- Anonymity, prevention of traffic analysis
- Identity theft and phishing in mobile networks
- Charging
- Cooperation and prevention of non-cooperative behavior
- Economics of wireless security
- Vulnerability and attacker modeling
- Incentive-aware secure protocol design
- Jamming
- Cross-layer design for security
- Monitoring and surveillance
- Computationally efficient cryptographic primitives
The considered wireless networks encompass cellular, metropolitan,
local area, vehicular, ad hoc, satellite, underwater, and sensor
networks as well as RFID.
Important dates:
Paper submissions due: September 15, 2007
Notification of acceptance: December 10, 2007
Camera-ready version due: January 15, 2008
Conference: March 31 - April 2, 2008
WiSec results from the merger of three workshops:
- ESAS (European Workshop on the Security of Ad Hoc and Sensor
Networks)
- SASN (ACM Workshop on the Security of Ad Hoc and Sensor Networks)
- WiSe (ACM Workshop on Wireless Security)
For more information, go to:
I have received many visits to this site searching for “Nokia Hidden Codes”. So, I decided to include some more Here is a list of codes and some links to get some more codes:
*#06# Gets you the Serial Number/IMEI.
*#0000# Gives you the software version (e.g. V 5.27.0 / 28-06-04 / NHL-10) The NHL-10 is important and makes your life easier when you try to use flashers!
*#2820# Gives you the Bluetooth device address
xx# - Quick contact access (xx = location number, e.g. : 17#)
*#62209526# Gives you the MAC address of the WLAN adapter, this information is only available on the new models (S60 3rd edition) which have wireless connectivity.
To get some more codes (some of which can do damage to your phone and/or data residing on it, approach the codes on these sites with caution:
- N-Gage codes: http://www.gamefaqs.com/portable/ngage/code/915353.html
- In polish (Patryk, please translate!): http://www.eplay.yoyo.pl/viewpage.php?page_id=79
- From GSM-Hacks: http://www.gsmhacks.com/forums/mobile-technologies/1429-codes-s60.html
Again, please exercise caution.
Some of the topics discussed in the site might not be legal in some places! So, you’ve been warned. It has tips and tricks for mobile phones of all makes and models with a community supported hacks and forum discussions:
On Demand Webcast “Compliance in the Mobile Enterprise” by James Wilcox CISSP. This session will include detailed information about:
- Security considerations for mobile devices, including laptops and handhelds
- An overview of key government regulations and how they apply to mobile deployments
- Strategies to achieve mobile compliance
You can watch the webcast by going here: http://viavid.net/dce.aspx?sid=00003DD7 and filling up your details.
The “Cryptography, Law Enforcement, and Mobile Communications ” article in IEEE’s Security and Privacy magazine sheds some light on the use of flashers in mobile forensics as well as the use of tools such as XRY. The article also mentions the use and importance of Faraday cages.
Here is a link to the full article:
Link.
Thanks to Mike for the following two part series of documents on working with flashers:
Part 1:
http://mobileforensics.files.wordpress.com/2007/04/hex-primer-pt-1.pdf
Part 2:
http://mobileforensics.files.wordpress.com/2007/04/hex-primer-pt-ii.pdf
Make sure that you visit his blog to learn more about advanced mobile device forensics:
http://mobileforensics.wordpress.com/
Matt’s Blog is not frequently updated but his site crypto.com is an excelent resource for all kinds of information. Make sure you check it out.
The Mobile Forensics blog by Michael Harrington has useful information on: SMS forensics, phone flashers, Faraday cages, forensics seizure procedures and much more. The site also includes posts on the forensic examination of BlackBerry devices. The blog was created in February 2007.
You can visit the blog here:
http://mobileforensics.wordpress.com/
The blog is frequently updated and links to Michael’s http://www.mobile-examiner.com/ website. This site has online training and on-location training and it also has mobile forensic tools and a forum.
News, exploits, papers, views, and releases from information security enthusiasts. Has links to major hacker related security events as well. http://www.thc.org/
The project is looking for smart people (like you) to join in the fun. They are trying to build a cheap GSM scanner/receiver by using an ettus hardware board and the gnu-radio software. The reason the project got started is because GSM scanners cost a heap of money and that the builders of the site believe that the price is exaggerated and they could build a scanner/receiver for under a $1000 USD. This project’s aim is to help researchers learn more about GSM traffic or at least we hope so!
Need more info? Go here:
The project is looking for smart people (like you) to join in the fun. They are trying to build a cheap GSM scanner/receiver by using an ettus hardware board and the gnu-radio software. The reason the project got started is because GSM scanners cost a heap of money and that the builders of the site believe that the price is exaggerated and they could build a scanner/receiver for under a $1000 USD. This project’s aim is to help researchers learn more about GSM traffic or at least we hope so!
Need more info? Go here:
http://scratchpad.wikia.com/wiki/Gsm
What: ACM Conference on Computer and Communications Security
Dates: October 29 - November 2, 2007
Place: Hilton Alexandria Mark Center, Alexandria, VA, USA
More information: www.acm.org/sigs/sigsac/ccs/CCS2007/
Important dates:
- Submissions deadline: February 10, 2007 (early submissions are
welcome)
- Decisions communicated: March 1, 2007
Important dates:
- Submissions deadline: February 10, 2007 (early submissions are
welcome)
- Decisions communicated: March 1, 2007
It takes place from August 13 to 15, 2007 in Pittsburgh, USA. Call for Papers is open untill April 6, 2007. For more information, please go to:
http://computer.forensikblog.de/en/2006/10/dfrws_2007.html
In August, the IEEE released IEEE.tv, its Internet broadcasting network, which features coverage of IEEE conferences, interviews with IEEE book authors, primers on technology-related careers, and overviews of IEEE products and services.
IEEE.tv comes in two formats: the Member/Basic format, available only to members, can be accessed through the myIEEE members-only portal (www.ieee.org/myieee), while the freely available Public Access format (www.ieee.org/ieeetv) offers information about careers in technology and engineering and offers demonstrations of new technology used in everyday applications. The presence of a padlock-shaped icon in the margin of a program indicates that it’s only for member access.
Link:
http://www.ieee.tv
|
Master’s information technology $71,000 |
|
|
PhD information technology $84,000 |
|
|
CCNA $66,000 |
|
|
CCSA $71,000 |
|
|
CCSE $71,000 |
|
|
CCSP $73,000 |
|
|
GIAC $74,000 |
|
|
CISSP $76,000 |
|
|
CEH $77,000 |
|
|
CCIE $82,000 |
Also look at:
CertMag’s 2005 Salary Survey
Or maybe you should consider a career change, perhaps mining related:
http://mycareer.com.au/advice-research/revenge-nerds.html
Foundstone Hacme Casino™ is a learning platform for secure software development and is targeted at software developers, application penetration testers, software architects, and anyone with an interest in application security. This extensible online casino platform is written using Ruby on Rails and demonstrates the security problems that can potentially arise in these applications.
Link:
foundstone.com
The article below talks about the things you can do to advance your career in infosec. It includes certifications, books to read, and many other things you can do to further your career. Read it, don’t skim through it!
http://www.microsoft.com/technet/community/columns/secmvp/sv0706.mspx
I haven’t been to Defcon for a while now (2001) and I miss all the show and tell part of it. I was browsing thesecure.net today and I found a link to this article:
http://www.tgdaily.com/2006/08/30/defcon2006_janus_project/
It has 8 cards and it can sniff data from up to 300 networks at one time. It can also crack WEP, WPA, and WPA2 keys quickly. Best of all, the off switch stops everything instantly, and the hard disk is AES 256 bit encrypted! To start the computer back up again a USB key with a 2000-bit passkey and a password must be entered…. Respect!
This kind of stuff you just don’t see in the corner of your friend’s apartment (at least not my friends)… You need to go all the way to Las Vegas to see it.
I stumbled on this while reading NIST’s draft on mobile forensics. So, here are some interesting links in regards to mobile forensics at Purdue University.Main page:
http://www.cyberforensics.purdue.edu/index.htm
Small Scale Digital Device Forensics Course:
http://www2.tech.purdue.edu/cpt/courses/CPT499D/
look at the readings section.
Events:
http://www.cyberforensics.purdue.edu/events.html
Richard Mislan’s Page:
Link
Marcus K. Rogers’ page:
Link
The University of Abertay in Dundee will offer students an Ethical Hacking and Countermeasures Course at the BSc (Hons) undergraduate level from the start of the next academic year in October. Read more from CNET’s Silicon Site:
http://software.silicon.com/security/0,39024655,39159714,00.htm
News release from the Uni:
http://www.abertay.ac.uk/News/NewsPopup.cfm?NewsID=1038
course details:
http://www.abertay.ac.uk/Courses/CDetails.cfm?CID=363&Key=002
Thanks Salama
