Please drop in a comment, email, IM if whether you like the new design or not, the site will also be showing up a donation button later-on, so as to keep up with the hosting and other recurring costs.
The Apple Iphone is all set for launch in India. Steve Jobs’ Apple has been quite successful in retaining the hype about its flagship gadget.
Personally I’ve been a part of it, and a victim of the hype. Been using the Apple iPhone for the last 4 months, has quite disgruntled me for depending on the device.
1. 8 GBs is useless- You can’t save anything while browsing the internet on the iPhone. the WiFi works cool, surfing is great . But since we don’t have internet all around in India, iPhone users won’t be happy . There is no provision for downloading mp3s, or the cool jpeg you might have stumbled upon the web.
2. Worst speaker sound- iPhone will disappoint anyone except those who don’t mind earphones plugged into their ears all the time . Even the ringtones are not audible properly. It seems Apple wanted users to keep it all the time in pockets with Vibration on, or you’ll miss the call. Don’t know what vested interest did Apple Co. had in this.
The net sound output from Iphone speakers is less than that of any phone I’ve ever used. I admit, the sound quality is great while using the Apple earphones, but you won’t even notice the song playing if you’re sitting in a room with fan on, or a local bus. Even the basic Nokia/Erricson models have 10x times better sound.
3. Itunes, you make me cry- You can’t download a song on iPhone if you don’t have iTunes installed, nice blackmail Jobs. I remember how easy it was to download songs on the Nokia phones, Plug it, detects as a PenDrive, and copy anything you won’t. Well sad to say the cute Apple Iphone doesn’t get detected by the computer that way. Install the bloatware Itunes, Sync it. Moreover, the previous library of songs will vanish if you’re syncing from a new machine
4. Camera Struggles- Just plain 2 megapixel camera. added features: NO ZOOM IN, NO video, POOR motion IMAGE QUALITY
5. Unstable OS: Well this one is controversial. I have upgraded from jailbroken 1.0.2 to 1.1.4 . Some days back i woke up to see my whole good 500 contacts phonebook disappeared. The only number stored was my own. Why doesn’t the Apple remove its propietry owenership from the Mac OSX phone ver like Android. There are developers around the world who can solve problems, that Apple can’t.
We all know Apple Iphone has Multi-touch, Sensors, and a solid appeal and market hype. Before shelling out the hard earned money, consider what the iPhone can’t do: no video shooting, no zoom in/out in camera, no 3gp, no call recording, no built-in MMS, hardly anything without Itunes. If you’re using GPRS, the iPhone won’t let you save your KBs, no feature to turn off images or disable plugins while surfing. So a gamle uncumber for those who using high cost prepaid data plans.
More coming up. hacking the iphone, adding Network Scanners to it
Its unclear: to do what you “can do” , or do what you you “want to do”. Most of us will choose the second one for the fret of the reason.
Its been to days since my landing in Delhi. The GIS course has started at the IIT campus. Bhat sir was teaching well, i wanted to continue. But something confusing me still. There’s a nokia user research internship going of which i was assigned a web-dev cum photographer position.
The multitouch project really excites me… I want to add networking capabilities to the same, and make something I have thought of The Image Processing lectures by Bhat sir would have added a lot of knowledge base required to accomplish it. On the contrary, The internship would give me the extra buck required to get me the royal enfield i am looking for . and the confusion comes when I find myself unable to prioritize between the two .
adios
zwanderer
phpbb is one of the most commonly used bullentin board CMSs around. With a large community and support they’ve build a very scalable and nice installation that can get a board running in 10 minutes ( you should have done the homework though ).
Though even the securest servers are cracked, and SVNs are poisoned with injections. i happed to find overflow that can send a phpbb board run in tizzy.
We take a lot for granted. A post coming from “xyz” id is meant to be posted by the maker of that id. Imagine if someone takes on another preexisting identity and starts posting. The Board will lose all integrity and faith that its users have. It will become a complete havoc, a mayhem.
Recently, I was surfing my board as a guest user and I happened to discover a nice cross-site bug. On trying it several times, i discovered it was working for my board. Just then I popped in another popular Delhi college’s forum URL and alas it worked there too.
I am writing a full disclosure report on that
Till i am in Delhi,
Anirudh
Its my last day today before hols here in Rajasthan before holidays. I have a vivid set of tasks to be completed.
1. Go IISc Bangalore and wrap up the incomplete work at Intel IRIS antispam project. Hoping to create something like Akismet which’s guarding the blog right now
2. Multitouch is something that excites me, Iphone was good but the 3 touch limit leaves a lot to crave. Grabbing a Philips SP900n camera will solve the problem. My 6 year old cousin can then make the MT shoebox table for me then damn its so easy.
3. Nmap and OSSIM brushup for Google SoC.
4. A lot of beer with Bhasma and Physicsmonk in Delhi
Bon voyage me!
“zwanderer”
aka Anirudh Sharma
The post is non-technical one and full of myself ! comes a long time after a month long Google SoC sessions.
My dreams are changing. naa! Earlier they used to be about unfulfilled wishes of a dead mind. Somethings I used to find myself wandering inside trysts of Silcon Valley, or breaking into the securest Unix servers, other times modding my computer monitor to receive transmits from the extra terrestrial and displaying them as we see in the movies . Pretty puerile . eh!
Today I finished up with my semester exams. On a general note , almost all were bad and I am expecting about 2 supplementaries this time too. Anyway I am not talking my exam experience here.
The last time, I remember I saw myself juxtaposed to life’s serious worries . Getting an employment, being able to achieve the personal nirvana. All the fears came oozing out slowly and steadily through my dreams. Which makes me a somnambulist (kidding !).. I saw my mother die, myself drowning in a sea of tarcoal and still reaching out for my Ipod so that nothing bad enters it.
This is fear, I interpret. Fear of failure.
I fail a lot, in exams, in something the system demands and ego doesn’t. This part of failure had began the day I failed to respond back to my dear dad’s emototrauma, I came here- purposeless. Just for the sake of it.
Either I could have been a fish in the open waters, devouring or getting devoured. Nothing in between. Now it is more like a dog who might be wishing to rumshack and bite his master, but cannot since if he does so he will not be given his bread. My first year was full of scorch ridden agony due to random thoughts overpowering me.
Around 650 days have passed I am carrying this tag. And I don’t think I will lose it before my secret goal is reached
I am going to Kote gate now, I think some roadside walk and random photography with beer will be a great idea.
A tutorial I wrote a long time back for neworder group The fundamentals of Bluetooth Security still remain same. Read on
This manual aims at enabling all people know the Pandora’s box in their very own pocket and know how it works! Mobile Phone Bluetooth enabled
Bluetooth, as we all know is a method for wirelessly transmitting the data over networks. Nowadays, it’s more seen in mobile phones. In India after the Cell phone revolution almost all people are now switching over to Bluetooth enabled cell phones to make their lives easier by allowing free transmission of data in a comfortable range and gaming etc. to the owner.
It is relatively better than Infrared (the one in your TV remote), operates on low power, and is a low cost technology with no usage charges. So no reason that it won’T be popular!
However in the mind of a hacker the ways to intrude keep germinating. As I said nothing is unbreakable! Bluetooth too. So before this cranky lecture gets over your nerves, I start the real thing.
It has been found that the complete memory contents of some mobile phones can be accessed by a previously trusted (”paired”) device that has since been removed from the trusted list. This data includes not only the phonebook and calendar, but media files such as pictures and text messages. In essence, the entire device can be “backed up” to an attacker’s own system.
A good attacker generally creates a serial profile connection to the device, for obtaining full access to the AT command set( the same commands that connect your modem the internet although different for BT phones), which can then be exploited using tools freely available online, such as PPP for networking and messaging, contact management(deletion and addition), diverts and initiating calls, connect to data services such as the Internet through GPRS, and even monitor conversations in the vicinity of the phone. This latter is done via a voice call over the GSM network, so the attacker can be anywhere in the world. Bluetooth access is only required for a few seconds in order to set up the call. Call forwarding diverts can be set up, making the innocent owner’s incoming calls to be intercepted, either to provide a channel for calls to more expensive destinations, or for identity theft by impersonation of the victim. Hackers are getting smart. So should be you
************************
The Indian context
************************
He can even use that for transferring the balance on his cash card by transferring it from yours! (This is the exploit I discovered recently in the biggest GSM company in India while I was playing around with Bluetooth)
Sounds scary!
It is!
Bluetooth devices are classified among three classes
Class 1 – Range=high, up to 100 meters
Class 2 – Range=Medium, up to 10 meters
Class 3 – Range =low, very much within 10
We are dealing with Class 2 and 3 devices.
Every Bluetooth-enabled device has some characteristics that are either unique (Bluetooth device address), manufacturer specific (the first part of the Bluetooth device address) or model-specific (service description records).
Bluetooth Device Address
Bluetooth device address is something like IP address, unique for each device set. This address consists out of 6 bytes (looks like MAC addresses MM:MM:MM:XX:XX:XX). This address can also be understood as hardware address that is written in the ROM in the chipset of the device. The first three bytes of this address (the M-bytes in the above notation sample) tell us about the manufacturer of the Device. This is the first step to know about the device’s properties . @stake’s redfang tool does this. Unfortunately, it is not possible to tell upon the number range of the address part of the device address (the X-bytes in the above notation sample) which model it is.
Service Discovery Protocol Records
Each Bluetooth device that accepts communication from other Bluetooth devices announces its offered services through a service discovery protocol (SDP) Its like a profile of the device. So, remote devices can query devices upon the offered capabilities. SDP records are returned to the querying device and hold information on how to access the respective service. My method now hashes certain values from the SDPs and generates a unqiue fingerprint value that is then used to refer to a certain phone model.
Take a look at this SDP
Service Name: OBEX Object Push
Service Handle: 000×10c
Service Class ID list:
“OBEX Object Push (0001cx)
Protocol Descriptor list:
(0×0100)
Channel:9
Version:0×100
/ from Nokia 6310i
Now the attacker will run “Blueprint software and obtain the following result:
00:60:57@2621543
Device: Nokia 6310i
Version: V 5.22 15-11-200x NP
Type: Mobile phone
Note: Vulnerable to Bluebug attack /* A type of attack
How the attack begins!
First step is to scan all the devices in the range of the phone (here I will limit my manual to mobile phones only) after know whom to bluejack/attack the hacker sends him a message using his Bluejack software on the phone.
This is normally only possible if the device is in “discoverable” or “visible” mode, but there are tools available on the Internet that allow even this safety to be bypassed easily.
I have written a program in Perl language for such intrusions. Use it to check your phone’s vulnerability to attacks. I will give you the source later in NH group.
How to send SMS from a hacked phone!
This technique can be used by the attacker to know your mobile phone number by sending SMS to himself. ( now you can think of the consequences, blackmailing etc) .
SMS messages can be sent by using SMS PDUs which are different for each company of the phone.
For Nokia PDU visit the German site www.nobbi.com . The sending of the SMS is not generally visible by the user of the attacked phone. Settings can be made for not generating the delivery reports on the phone. So it makes the sending completely hidden for the hacker
AT commands:
AT+CMGF=0 //Set PDU mode AT+CSMS=0 //Check if modem supports SMS commands AT+CMGS=23 //Send message, 23 octets (excluding the two initial zeros) >0011000B916407281553F80000AA0A
E8329BFD4697D9EC37There are 23 octets in this message (46 ‘characters’). The first octet (”00″) doesn’t count, it is only an indicator of the length of the SMSC information supplied (0). The PDU string consists of the following
In the same way a call can be initiated on the hacked phone using AT commands that are freely available on net.
This is how one can start from the scratch and easily attack anyone in the range having a BT enabled phone.
For newbies and script kiddies I have few assorted tools in .SIS format that will do the needful for them. You can have the full package in the NH files section!
But its’ always advisable to try out the real programming as it turns on the real hacking spirit in you.
That is all for now, hope you liked this manual. Till the next update,I bid a bye!
Anirudh Sharma
anirudhsharma.crypto [at] gmail dot com
Doubts and queries via email or Youth India Forum Hacking Section ( www.youthindiaforum.com)
note: I have used redfang as the reference
A day back i was looking for a tool that could help me login from public computers without the fear of getting keylogged by keyloggers. I was quite paranoid about logging into my account from public computers. Passwords once keylogged can easily be misused- all cryptographic algorithms rendered useless at once .
While googling i got a link to this free tool called KL-Detector.It uses a smarter algorithms than most antivirus softwares to catch hold of the running trojans/keyloggers.
1. A keylogger will record anything and everything typed from the keyboard to a file on the local harddisk.
2. The size of data typed from computer keyboard= size data being added to the log file
3. This tool looks for this “increment” in log file’s size. The size is compared to what is typed in realtime from the keyboard.
4. If the increment matches for a definite period of time then the probability is high that you’re being snooped by a keylogger 
The process can then be ended and keylogging can be stopped.
Now this is much smarter than a usual antivirus which relies on the updated signatures from the antivirus definition database , and you’ll like it when you find it works with every keylogger. I did.
You may download your copy here
-anirudh
Finally I am ready to submit my ~NUI Google SOC application.
Plan to go out for a beer and ride today to reboot myself to get back to the coding groove
GSoC application for NUI group
Anirudh Sharma
