http://midnightresearch.com Like a party with a CVS repository Wed, 24 Jun 2009 03:05:35 +0000 http://backend.userland.com/rss092 en (Copied from the MRLB mailing list) Howdy! I'm pleased to announce that THIS Thursday (June 25) at 6:30 PM, Midnight Research Labs Boston will have a special guest speaker: Mr. James Atkinson, who will be giving (if memory serves me correctly) his "Kill Your Cordless Phone" talk. ***This talk will be announced and open to ... http://midnightresearch.com/pages/atkinson-at-mrlb-20090625/ We talked about this before, and since it's a pretty interesting project I thought it would be good to follow up on. The remote-exploit.org guys (responsible for backtrack) released a how-to along with source-code and parts list, etc, for their wireless keyboard sniffing project. They don't have fabricated ... http://midnightresearch.com/pages/keyboard-sniffing/ It is with great excitement that we bring you the latest version of SEAT!. SEAT (Search Engine Assessment Tool) is the next generation information digging application geared toward the needs of security professionals. SEAT uses information stored in search engine databases, cache repositories, and other public resources to scan web ... http://midnightresearch.com/pages/seat-version-03-and-backtrack-4/ If you're using the tac_plus implementation of Cisco's TACACS+ server and want to do password auditing, I've written a quick script that will take the config file with all of its users and output a john the ripper compatible password file. You can run john directly against this generated ... http://midnightresearch.com/pages/tacacs-password-crackingw-auditing/ Here are a few sets of conference videos that are now online: -- Hack in the box - Malaysia videos. Day1 -- Day 2. Even though it's a pirate bay link, the videos were linked from the main HITB page, so I'm assuming it's legit, :). -- Microsoft's BlueHat 8 ... http://midnightresearch.com/pages/lots-of-new-conference-videos-online/ A theremin, for those who don't already know, is a musical instrument that varies the pitch based on your proximity to an antenna, and varies the volume based on your proximity to another antenna. It's a touch-less device, and you'd probably recognize the sound from old sci-fi movies (listen ... http://midnightresearch.com/pages/wifi-theremin/ It looks like kenshoto is stepping down as the organizer for one of the largest hacking competitions in the world. An announcement has been made on the defcon forums for new organizers. From the announcement: WANTED: An evil large multinational corporation, or... An nefarious group of genius autonomous hackers, or... A shadowy government organization ... http://midnightresearch.com/pages/kenshoto-stepping-down/ This is a pretty cool looking website/service from the Computer Security Group at UC Santa Barbara that will analyze flash and javascript for malicious content. It will actually de-obfuscate javascript and pull out the active exploits that it uses. I'm guessing that it's also doing some dynamic analysis ... http://midnightresearch.com/pages/wepawet-analyzing-web-based-malware/ You can't use it in your plot to take over the world with remote control robots yet, but there's a new 0day in the WowWee Rovio that will allow remote snooping of the audio/video data that comes from the robot. Other things you can do remotely are get configuration ... http://midnightresearch.com/pages/0day-in-wowwee-rovio-robot/ I don't want to bore anyone with arbitrary end of year statements/predictions, but I did want to acknowledge the milestone. 2008 was a pretty good year, and we've managed to get back into an regular schedule again with meetings twice a month. We're looking forward to an exciting ... http://midnightresearch.com/pages/happy-2008h9/