Clik here to view.
pasteLert *facepalm*
Sorry guys, I noticed that I haven’t been getting any pasteLert updates, and i just realised why (see above picture for my reaction). Change line 4 in truncPastes.php from: mysql_query(“truncate...
View ArticleClik here to view.
zacon badges
zacon – http://www.zacon.org.za/ – is just around the corner now, so badge submission went out. Wasn’t particularly inspired but i hacked together 3 diff ones, now we just wait and see. UPDATE Decided...
View ArticlePastebin DoS + PasteLert
Hey guys, I saw the pastebin guys put out a list of the IP addresses that have been attacking them for people to check if they were, I wrote a quick little script to test this at:...
View ArticleClik here to view.
FireBridges, proxies that burn!
Overview I’ve always been semi interested in botnets/trojans and targetted attacks and the way they get their data in and out and how the command and control centres work. One of the things i’d usually...
View ArticleClik here to view.
Joomla 2.51 Blind SQL Attack
<responsible_disclosure> Before i discuss this, let me just say that the bug has been patched (was in 2.5.1) and at the time of writing this Joomla is already 2 increments away - 2.5.3 is...
View ArticleClik here to view.
Alternate DNS Names in Certificates
I know, its been forever since I posted, but I do have two things i’m working on (there are drafts, but they need to be finished) – Its just the effort to actually finishing. Its on Magstripe spoofing...
View ArticleClik here to view.
Magnetic stripes Part 1
Intro So its been nearly a month since I last put a blog post up and I have been working on some stuff in my free time between work (been traveling to the US and took a weekend off to visit some...
View ArticleClik here to view.
RTLSDR: My First SDR!
A few weeks ago (I’ve been meaning to do this post for ages, few weeks ago is give or take 2 months) there was a post on reddit regarding a new software defined radio that cost around $20. After...
View ArticleClik here to view.
Hacking fixed key remotes
Previously I discussed using my RTL-SDR to merely listen for analog audio signals. In this entry I’ll discuss using it to decode digital signals (this example on fixed remote signals often used for...
View ArticleClik here to view.
Bypassing LF Entry Systems
Its taken a lot of motivation to start writing this, and I hope its okay, I have a mental block that I need to write this and the second post about magstripes before moving on to some new things with...
View ArticleClik here to view.
Magnetic Stripes: Part 2 (Attacking)
I really should have written this after ZaCon (november last year), but I’m lazy. However I have been asked to give a brief overview of the same talk at ITWeb this year so I figure I may as well finish...
View ArticlePasteLert v2!
The Quick and dirty: New PasteLert lives at http://andrewmohawk.com/pasteLertV2/ Downloads: » Interface -> http://andrewmohawk.com/pasteLertV2/src/pastelertv2_Interface.zip » Cron Tasks ->...
View ArticleClik here to view.
Kingphisher: Semi-automated phishing
It has been absolutely ages since I have written a blog post – genuinely I really havent simply been slacking off, i’ve just been busy! Anyway, figured it was time to do a writeup on some stuff I have...
View ArticleClik here to view.
Hacking fixed key remotes with (only) RFCat
Introduction Its been absolutely ages since I’ve posted anything on the blog, not that I havent been doing things, just really not many things I felt good enough to write an entry about. I got a lot of...
View ArticleClik here to view.
Bypassing Rolling Code Systems
This blog post will discuss the implementation of Codegrabbing / RollJam, just one method of attacking AM/OOK systems that implement rolling codes (such as keeloq) — these systems are commonly found on...
View ArticleClik here to view.
HackFu 2016 Writeup
First off let me just say a big thank you to the MWR guys who put this CTF together, usually I don’t partake in CTFs because the skillset required is usually out of my grasp (IANAP). To have developed...
View ArticleClik here to view.
Remote jamming “detector” on the cheap
Recently, I’ve seen a number of posts on Facebook groups for South African communities about people having their car remotes jammed and the contents of their cars cleaned out while they are at petrol...
View Article