Cognitive and Scientific Brainology
Face - detect,track,recognize,extract features,learn emotions,character animation.
Archives for: November 2011
Hacking MFPs Part1/Part2 - Videos
So here we are, summing up 1.5 years of research of “Hacking MFPs Part1″ and opening dawns of “Hacking MFPs Part2″.
This post will present the videos that accompanied the presentations. Source code to follow in the upcoming days.
NOTE: the videos are subtitled - use CC button in the players window to turn them on 
Hacking MPFs/printers Part1 - Printer map, geolocation, public-exposure, data-harvesting
Hacking MFPs Part1 - Locally-Initiated PPE (Printing Payload Exploit)
Hacking MPFs Part1 - Remote-Initiated PPE (Printing Payload Exploit)
Hacking MFPs Part2 (soon to come) - Printer code execution - Shell, Memory dumper, Printer connections
Thanks to the great organisers of the conferences where these were presented, as well as big thank for the nice and patient audiences !
Hacking printers MFPs part1 for fun and profit andrei costin #days EuSecWest hack.lu HackCon phNeutral SEC-T SyScan T2
Harvesting Boarding Passes
Harvesting Boarding Passes
It’s clear that personal and sensitive data should be protected by all means.
However it’s trully sad to see that people deliberately or unconsciously reveal very sensitive details about them, despite the fact that society is very concerned with “big brother” actions of 3rd-parties in the first place.
Following are just few (ab)use scenarios which I quickly came up with - the sky is the limit (in all it’s meanings !) when playing with someone’s flight…
I am not saying that every everage Joe kind of person will be tracked by these means in “a la” agent 007 style, but imagine an important science person/professor (dealing with sensitive issues, like for example nuclear R & D) being a target of such attack. And yes, I have seen interesting university&academia related boarding passes exposed…
Person identification
- learn sensitive details
- learn (airline) preferences and Frequent Traveller (FT) (to put the importance of this kind of information, let me remind you about WhiteHouse directive leaked thru WikiLeaks suggesting FT data harvesting by US embassies worldwide)
- learn susceptability to “Frequent Traveller Customer Service” impersonation/social engineering attacks
- learn travelling habits (departure hours, taken routes, etc.)
Person (location) tracking
zveriu_biz 
686769 
Ads
Cognitive and Scientific Brainology
A deep dive into brain's curiosities
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| << < | Current | > >> | ||||
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | 30 | |||
Friends
Categories
- All
- ACSA (3)
- AskAmit (12)
- Conference (7)
- DailySpammer (11)
- Fun (8)
- In real life (8)
- On the web (22)
- GSM (2)
- Hardware (12)
- RFID (1)
- Security (5)
- Software (27)
Archives
- April 2012 (1)
- March 2012 (5)
- February 2012 (2)
- January 2012 (3)
- November 2011 (2)
- June 2011 (1)
- February 2011 (3)
- October 2010 (1)
- June 2010 (1)
- May 2010 (1)
- April 2010 (2)
- February 2010 (2)
- More...
Misc
XML Feeds
What is RSS?
