Archive for May, 2009

Project crash override

May 27th, 2009 No comments

Saw this article on Digg today (clicky for full text): U.S. Military are now looking for ways to weaponize hacking.

From the article:
U.S. Defense Department officials were so impressed with the level of coordination between ground military ops and cyberattacks against strategical targets during the recent conflicts, that they are now looking for ways to weaponize hacking. Aviation Week glanced at such a device and reports that it is being designed to be easily used even by non-techy soldiers.

Apparently, there are several devices currently being developed behind closed doors specifically for such purposes, but the one Aviation Week talks about is intriguing. It is basically a highly complex hacking tool designed for the unexperienced that is to turn soldiers into veritable script kiddies. Granted, script kiddies with a lot of firepower.

Script kiddies are widely regarded as being at the bottom of the coding barrel. Whether the government means to refer to soldiers using such devices as such, they basically are making script kiddie boxes. Just as their namesake, script kiddie soldiers would be useful against most civilian targets and most non-hardened or haphazard websites. The irony here being that the stimulus for making these hacking boxes was more sophisticated or coordinated attacks against our own government or military. Any kind of hardware “hack box” that joe blockhead soldier could finger mash would be useless for such an attack.

The device is easily able to map out all the nodes of a given wireless network and, if necessary, cause them to disconnect, then watch them getting back online in order to identify weak spots. Once the best target is determined, the soldier (slash hacker) is presented with several attack attributes and can adjust their respective level by using sliders on a touch-screen. These attributes include, but are not limited to covertness, speed, or collateral damage.

I’m no hacker, and all of those things are quickly and easily accomplished with free tools. Ther are live linux distros that fit on a keychain USB key with all those wireless tools. I don’t think Backtrack has any tools to drop wireless clients, but ARP poisoning is a technique that’ll do it on most wireless nodes. But to do that you’ll need a little talent and patience to learn why and how it works. Ethernet, wired or wireless, is a dumb and gullible protocol. It’s trivial in most cases to fool it into telling you more than you should know, or making it do what you want it to.

I really hope the government is still thinking of employing hackers to do our cyber defense and offense. You can’t weaponize an abstract talent. that’s just not how it works. I’ve always advocated this and I’ll do it again, hacking is a love based skill. A real hacker is a very highly trained and very disciplined person, even if it’s all self taught. You can’t distill that and drop it in a box for anyone to use. Deploying script kiddie soldiers against an enemy with even a couple moderately skilled personnel would be like beating a tank with a baseball bat. And about as good on defense when the tank fires back. Never mind when (not if) any enemy gets their hands on these devices and analyzes them.

Originally published at The IggBlog. You can comment here or there.

Categories: Uncategorized Tags: , , ,


May 21st, 2009 2 comments

This might be nerding out a little more than usual, but it’s also pretty awesome.

Originally published at The IggBlog. You can comment here or there.

Categories: Uncategorized Tags: , ,

DDo$, it’s genius

May 13th, 2009 1 comment

I dont normally paste whole articles, but this one is pretty short. and pretty awesome. Sourced from

Well I have to admit that this is genius. The guys from the Pirate Bay have a a 30million SEK fine which they say they won’t pay. However they have come up with a plan where all their users can join in which works like this.

Everyone sends a small amount of money in an electronic transfer to the law firm that represnted the music industry. Suggested amount is 1 SEK (equivalent to 0.13 USD. Apparently the law firm’s bank account is only allowed 1000 electronic transactions before it starts to cost them, the account holder money.

The charge per transfer at this point is, wait for it… 2 SEK. Thus after the first 1000 SEK, if people send just 1 SEK it will cost the law firm more than the money they receive to process.

Welcome to the Distributed Denial of Dollars attack (DDo$)

I’m going to stay on the fence about the legality of pirate bay and all that. But I’m firm in my contempt for how the big music and movie groups conduct themselves.

Categories: Uncategorized Tags: , ,

I can’t stop loving bacon

May 8th, 2009 3 comments

… Just sayin’

Originally published at The IggBlog. You can comment here or there.

Categories: Uncategorized Tags: , , ,

There’s no place like… Allston?

May 7th, 2009 5 comments

So I’ve finished moving. I’m right on Comm Ave in Allston now. My commute is a hair longer, but much less complicated. I can technically take a right onto comm ave and just keep going till I get to work… the pike is a little faster though. The place is tiny, but I don’t really notice too much (unless I’m cooking). We’re only here for a few months till we move again in September. We’re headed to a gorgeous place in east Boston. It reminds me a lot of the place I used to live with Dan in Marlborough. Heat and AC are included which is pretty awesome if you’re like me and you don’t want to skimp on being comfortable. It has a pool and a huge fitness center, so I can cancel my gym membership. And parking is (finally) included. Our room is huge… we have our own bathroom and walk-in closet. It’s on the 6th floor, so we get sweet views of the city. Really looking forward to this place. Normally I’d be freaking out at how small my current place is, but my head isn’t in it.

Originally published at The IggBlog. You can comment here or there.

Categories: Uncategorized Tags: ,