• This is the kind of geek stuff that put a big smile on my face when I read it... a portable ladtop capable of listening 300 wireless networks and hacking WEP keys in 5 minutes....

    A small security firm has made a portable computer that is capable of scanning 300 networks simultaneously. Dubbed the "Janus Project", the computer also has a unique "Instant Off" switch that renders the captured data inaccessible.

    At first glance, the Janus computer looks like a ladtop, but Williams said it is much more powerful than that. Inside the rugged yellow case sits a mini-computer motherboard powered by a 1.5 GHz VIA C7 processor and an Acer 17" LCD screen. Ubuntu 6.0 Linux runs the eight Atheros a/b/g Gold mini-PCI cards which continuously scan wireless networks. [....]

    In addition to scanning for wireless traffic, Williams says the computer can break most WEP keys very quickly by focusing all eight wireless cards on the access point. Using a combination of common utilities like airreplay, airdump and aircrack, Willams said, "When I use all 8 radios to focus in on a single access point, [the WEP key] lasts less than five minutes." However, he added that some retail wireless access points will "just die" after being hit with so much traffic... read more here

  • logo_acunetix

    I will use it on my host very soon, if you have your own root server, this tool must be part of your administrator toolbox. Joomla! team use it to test the core framework, so we should be on the safe side, unfortunately we are are all using too many plug-ins that may be unsecure.. Here is how a report generated using Acunetix WVS look like (PDF - 1.5MB).

    Acunetix Web Vulnerability Scanner automatically scans your web applications / website (shopping carts, forms, dynamic content, etc.) and web services for vulnerabilities such as SQL injection, Blind SQL Injection, Cross site scripting, Google hacking, CRLF Injection & other web attacks. Acunetix crawls and analyzes websites including flash content, AJAX / Web 2.0. Also includes reporting for PCI Compliance, OWASP & more

    Out of the 100,000 websites scanned by Acunetix WVS, 42% were found to be vulnerable to Cross Site Scripting. XSS is extremely dangerous and the number of the attacks is on the rise. Hackers are manipulating these vulnerabilities to steal organizations’ sensitive data. Can you afford to be next?

    Cross Site Scripting allows an attacker to embed malicious JavaScript, VBScript, ActiveX, HTML, or Flash into a vulnerable dynamic page to fool the user, executing the script on his machine in order to gather data. Exploited Cross Site Scripting is commonly used to achieve the following malicious results:

    • Identity theft
    • Accessing sensitive or restricted information
    • Gaining free access to otherwise paid for content
    • Spying on user’s web browsing habits
    • Altering browser functionality
    • Public defamation of an individual or corporation
    • Web application defacement
    • Denial of Service attacks

    Scan your website for Cross Site Scripting Vulnerabilities at no cost NOW

    Get an insight into Acunetix Manual

  • Add a led to your Xbox to seehard disk activity

    This mod is quite risky, especially if you
    can not solder with precision 

    xboxIcon Legal Issues

    1. It is strictly forbidden to modify your xBox, sell or install mods chip in france.
    2. Even opening the XBOX is forbidden.
    3. Remember pirating is a crime, support the developers and film companies.

    {mosgoogle center}

    xboxIcon 1. How To

    • LED
    • Resistor 220 Ohms

    The resistor (value depending of the LED power) has to be soldered on the longest LED wire

    +5 Volts is taken from the connector, you can open the connector and close it without any difficulties

    The trickiest part is to solder on pin39 the signal (negative)

    You should also verify carefully your soldering, this tool may help

    Drill a 3mm hole or bigger depending on LED size

    Final Result

  • sony_playstation_ps3

    Ken Kutaragi reveals the console's hard drive will use alternate OS, hints that it will ship separately and will come in more than one model.
    Since E3, Sony Computer Entertainment president Ken Kutaragi has been calling the PlayStation 3 an "entertainment supercomputer" rather than a gaming console. Now, he's revealed a new plan to make sure that it's acknowledged as one. In an interview with Impress PC Watch, Kutaragi disclosed that he plans to install the Linux operating system on the PS3's hard disc drive (HDD) so it will be recognized as a computer, rather than a mere console.

    Read more HERE at

  • Welcome to Zürich!!!!

    48000 street radar for free for your tomtom/garmin and co Download

    Powered by

  • I use the hard way, free but a bit more difficult as it require a rooted device, I personally use “Android Terminal Emulator” with granted root permissions (after typing su a prompt will appear)

    Android how to delete system application

    su (enter)
    mount -o rw,remount /system (enter)
    rm -r /system/app/FILE-NAME-HERE.apk (enter)

    How to remove this SHIT of myTaxi – Passenger Taxi App on Samsung Galaxy S3

    This application got installed without my knowledge by a Samsung update as a System App that CANNOT BE UN INSTALLED!

    First before I forgot: Go to hell Samsung andIntelligent Apps GmbH

    If either of you continue in that direction, installing software without my prior permission, the next update to my Samsung Galaxy S3 will be CyanogenMod 10

    Back to the removal of MyTaxi,&160; Samsung did hide under the name /system/app/samsung_ch.apk

    To remove it

    su (enter)
    mount -o rw,remount /system (enter)
    rm -r /system/app/samsung_ch.apk (enter)
  • I am still waiting for the TomTom Rider, as soon as I it can be ordered, I will post a better review and provide Here a HowTo and some files if needed. Click on Read more

    Some statistics...

    Number of Street and safety camera in some countries

    • Germany 2928
    • Netherland 1742
    • Italy 1027
    • Belgium 944
    • Austria 579
    • Spain 478
    • Switzerland 473
    • France 466
    • Suede 384
    • Norwege 294
    • Poland 289
    • Finnland 99
    • Australia 91
    • Portugal 35
    • Liechtenstein 4

    Zurich, CH has 83 street radars, and 100 additionnal are planned, the "best" radar is creating 4.5 Million CHF/monthly, each person in Zürich pay at least yearly 160 CHF !

    France will install in 2005 install 1000 radars

    Here is an overview of all radar which are known by

    What You can do...

    Buy a GPS device, and install a POI software (Point of Interest) to be warned when You are in a proximity of a fix street radar.

    Point-Of-Interest visually and acoustically warns you of POIs as you approach them. Speed cameras, petrol stations, restaurants are only some exaples for POIs.

    What You can not do...

    • Using a device, to detect actively street radars (Laser, or dopler), except in UK
    • Using a device, perturb the operation of street radars (scrambler)

    Market Offering for the hardware

    All GPS devices below are supporting 3rd party sofware call POI (Point of Interest)

    I personaly recommend TomTom but any GPS device is able to do the Job

    or Medion or Navigon or....
    Pocket PCSince TomTom also ship it's software for pocket PC, You can also use Your favorite PDA


    Market Offering for the software

    VendorVendor Vendor
    Installation (TomTom)  
    <10euro yearly feesAlso available for TomTom
    Allow internet update for free if you
    have a licence
    A tool for Your PC manages all of your poi
    french tutorial for TomTom
    French tutorial on pocket PC

    How to enter a new camera position

    For an up to date database, the system is only working as long as You receive daily update of safety camera positions, Here is how to enter a new camera position with TomTom device.

    Sticky: 'Idiots guide to adding speed cameras'
    extract of the
    Further guide to help those who want to maximise the use of Tom Tom Go who may not be computer whizzes. Object is to encourage as many as possible to become "accurate camera spotters" so that the camera database is as accurate as possible.

    If you only want to update your own machine follow 1 below. If you are happy to share your new locations with everyone else then follow 2 below.

    In each of the following you need to enter the camera location, you can do this by address, browse map of by far the best most accurate is by "GPS location" when the TTGo is next to the camera location. For the reasons of accuracy that is the method I will cover here.

    1. When next to the camera location on foot/in car, Tom Tom main screen, forward arrow, forward arrow, change prefs, forward arrow, maintain POI, Add POI, select pocketgps uk gatso, select GPS location, address is shown, suggest keep address as shown and add gatso after it, do this by touching screen at end of address to remove highlight you can then type additionalty as usual. Then select done.

    As you have added to existing POI database this new entry will use settings for icon,distance and sound without additional adjustments.

    If you are willing to share your new locations then follow 2 below.

    2. Firstly you need to add a new POI catagory in which to store your new POI camara locations.
    From TTGo main screen, Forward arrow, forward arrow, change prefs, forward arrow, maintain POI, Add POI catagory, type name of your POI eg "New Gatso" , Done, select marker (scroll down for lots of options)done.

    When next to the camera location on foot/in car, Tom Tom main screen, forward arrow, forward arrow, change prefs, forward arrow, maintain POI, Add POI, select "New gatso", select GPS location, address is shown, suggest keep address as shown and add gatso after it, do this by touching screen at end of address to remove highlight you can then type additionalty as usual. Then select done.

    You have now saved this camera location in a new file, therefore so that you can be warned of your new locations you need to set the POI warnings from the "Maintain POI " menu. (as you did originally)

    POI Database

    Some links....

    • is providing for <10euro/Year a subscription which allow YOu to download their plugins for all major GPS unit
    • Les emplacements des radars fixes en France, classés pas départements et par routes. Télécharger la carte des radars et la liste des coordonnées GPS.
  • How many times have you seen an alert similar to one of the below while trying to connect to the café or airport WiFi to check email or login to a secure website?


  • The hacker “Muslix64” who cracked HD DVD strikes again by defeating Blu-ray Disc encryption!!!

    The HD-DVD hack is a java based command line utility (source code is AVAILABLE!) that decrypt video files (.evo) from a disk that you own, to your hard drive and you can play them back...

    Basically on Blu-ray disk, “Muslix64” is using a plain text attack on data... ”

    This is a very basic, but [powerful] crypto attack that I have used to decrypt both [HD DVD and Blu-ray] formats,” he wrote.

     “After reading posts of people trying to get the keys in memory, I realized, I have a different way of looking into the problem…A lot of people try to attack the software, I'm attacking the data!” ” So I spent more time analysing the data, to look for patterns or something special to mount my known-plaintext attack,”

    Muslix64 explains. “Because I know the keys are unprotected in memory, I can skip all the [painful] process of code reversal. ” read more at


  • A SECURITY flaw could allow hackers to eavesdrop on cellphone conversations made on Bluetooth-based wireless headsets was revealed in april 2004...But at that time an expensive piece of hardware was needed. Now it is even worse a simple brute force while the device are doing keyring exchange...

    "Whitehouse showed in 2004 that a hacker could arrive at this link key without knowing the PIN using a piece of equipment called a Bluetooth sniffer. This can record the exchanged messages being used to derive the link key and feed the recordings to software that knows the Bluetooth algorithms and can cycle through all 10,000 possibilities of the PIN. Once a hacker knows the link keys, Whitehouse reasoned they could hijack the device."

    Now the new attack force the  two bluetooth devices to pair, they can work out the link key in just 0.06 seconds on a Pentium IV-enabled computer, and 0.3 seconds on a Pentium-III


  • Tomshardware has an interesting articles for all XBOX modder which prefer having an original Network attached Storage instead of a game machine.

    With the arrival of the Xbox360, there will soon be a buyer's market for its older sibling. Kevin Herring shows how to give an Xbox a new lease on life as a full-featured NAS.


  • spektrumDX5e

    Spektrum introduces another enormous change for the RC industry—The most affordable full-range 2.4GHz radio ever available. The DX5e brings together the unbeatable control of genuine DSM2 technology with the simplest, easiest-to-use design available, letting anyone, from park fliers to students to instructors and more, take advantage of Spektrum technology for less

    Mode 2 is most often used in the United States, while Mode 1 is most often used in Europe, there are two other modes that are used overseas and here is a listing of the 4 modes and their actions.


      Left stick Right stick
    up/down left/right up/down left/right
    Mode 1 elevator rudder throttle aileron
    Mode 2 throttle rudder elevator aileron
    Mode 3 elevator aileron throttle rudder
    Mode 4 throttle aileron elevator rudder

    There is a trend on the camera market, people want now to tag their photo, not only by adding sound (micro can be found now on point and shot consumer camera), or letting the camera add EXIF embeded data ( Exchangeable Image File Format) into each pictures.
    Consumer always want more!, and with the arrival of Google Maps on the market, some years ago, It has not taken much time till users decide to add geoposition (with a GPS) to their pictures. While this feature can be found on some high end camera model (camera body > $10000, as an option it is quite pricey too), TomTom, Garmin and other consumer GPS are now able to provide a cheap and ready to go alternative.  A data logger is a device able to record periodically  latidutes, longitudes, altitude, date and time while yyou are on the road. It is now possible with some tools to merge pictures and files produced by GPS ad save new meta informations in EXIF data.

    Click Here for a live example

    Why use a data logger?

    • What itinerary did I travel yesterday?
    • When did I start driving today?
    • How long did It take to go from A to B and C in between?
    • Which is the current altitude and speed?
    • How can I remind precise positions?
    • When exactly I traveled there? 

    Combined with your favorite DSLR or point and shot camera

    • You take pictures but now can't remember the exact place of some of the  photos
    • With a software, you can then match the coordinates with the picture and you  like to see your pictures on a map. (Google map, Google Earth)

    Dedicated data logger

    Sony has started to sell a small device (Sony GPS-CS1KA), it cost $105 and do not use the latest SIRFstar III chipset, so don't expect much of it, old GPS chipsets are known to be slower to find satellites, have lower sensivity, do not work also well in city.
    Anyway here are the main characteristics:

    • Keep track of your digital photos with satellite precision
    • Holds approximately 360 hours (31MB) of data
    • Records a location log every 15 seconds
    • Simple operation; no need for complex set up or connection, one button, two lights
    • Compatible with most digital still cameras; compliance with EXIF 2.1 or later
    • Small
    • 12-channel GPS with no screen.
    • The included software detects the unit and imports the GPS data. Another module detects attached cameras/MSD and imports the data
    Or you may want to buy a better dedicated data logger, Royaltek, Evermore, Gisteq or Globalsat are selling small device.

    Amod AGL3080 GPS Data Logger (SiRF III, Driverless, 128MB, Push to Log) (Windows and Mac Image Software included)
    EverMore GT-900BT Bluetooth Data Logger (SiRF III, Driverless, 120,000 Waypoints, Photo Software Included) (Your Choice of Free Mount)
    GlobalSat BT-335 Bluetooth Data Logger (SiRF III, Download via Bluetooth) (Your Choice of Free Mount) (Free Ground Shipping)
    Royaltek RBT-2300 Bluetooth Data Logger GPS (SiRF III GSC3f/LP, WAAS, 650,000 Waypoints) (Your Choice of Free Mount)
    Amod AGL3080 GPS Data Logger SiRF III, Driverless, 128MB, Push to Log EverMore GT-900BT Bluetooth Data Logger (SiRF III, Driverless, 120,000 Waypoints, Photo Software Included) GlobalSat BT-335 Bluetooth Data Logger SiRF III, Download via Bluetooth Royaltek RBT-2300 Bluetooth Data Logger GPS SiRF III GSC3f/LP, WAAS, 650,000 Waypoints
    Royaltek RGM-3800 GPS Data Logger (SiRF III GSC3f/LP, WAAS, 650,000 Waypoints)
    Qstarz BT-Q1000 Bluetooth Data Logger GPS Receiver (51 ch, Auto On/Off, WAAS, Bluetooth, USB, Push to Log, 100,000 Waypoints) (Your Choice of Free Mount)
    EverMore GT-600 Image Tracker
    i-Blue 747 Bluetooth Data Logger GPS Receiver (Auto On/Off, 32 ch, WAAS, Bluetooth, USB, Push to Log, 16Mb Memory with Google Integration) (Your Choice of Free Mount)
    Royaltek RGM-3800 GPS Data Logger SiRF III GSC3f/LP, WAAS, 650,000 Waypoints starz BT-Q1000 Bluetooth Data Logger GPS Receiver 51 ch, Auto On/Off, WAAS, Bluetooth, USB, Push to Log, 100,000 Waypoints EverMore GT-600 Image Tracker i-Blue 747 Bluetooth Data Logger GPS Receiver Auto On/Off, 32 ch, WAAS, Bluetooth, USB, Push to Log, 16Mb Memory with Google Integration
    GiSTEQ Bluetooth PhotoTrackr for Digital Camera (Bluetooth GPS Receiver and Photo Tracking Software Included) (Your Choice of Free Mount)
    GiSTEQ PhotoTrackr for Digital Camera (GPS Receiver and Photo Tracking Software Included)
    i.Trek Z1 BT Data Logger GPS Receiver (Solar, MTK 32 Ch, WAAS, Auto On/Off, Bluetooth, USB, Data Logger with Google Earth Integration) (Free GpsGate Utility) (Your Choice of Free Mount)
    RoyalTek BlueGPS Mini Mobile Data-logger RBT-1100 for Windows, Pocket PC and Palm (Output to Google Earth) (Your Choice of Free Mount)
    GiSTEQ Bluetooth PhotoTrackr for Digital Camera  GiSTEQ PhotoTrackr for Digital Camera  i.Trek Z1 BT Data Logger GPS Receiver Solar, MTK 32 Ch, WAAS, Auto On/Off, Bluetooth, USB, Data Logger with Google Earth Integration i-Blue 757 Pro Solar BT Data Logger GPS Receiver 
    Wintec WBT-201 Bluetooth Data Logger GPS Receiver (Auto on/off, WAAS, Bluetooth, USB, Push to Log, Google Earth Integration with Photo) (Your Choice of Free Mount)
    i-Blue 757 Pro Solar BT Data Logger GPS Receiver (Your Choice of Free Mount)
    GlobalSat DG-100 GPS Data Logger (SiRF III, USB, Push to Log, Google Earth Integration)
    Wintec WBT-201 Bluetooth Data Logger GPS Receiver Auto on/off, WAAS, Bluetooth, USB, Push to Log, Google Earth Integration with Photo RoyalTek BlueGPS Mini Mobile Data-logger RBT-1100 for Windows, Pocket PC and Palm Output to Google Earth
    GlobalSat DG-100 GPS Data Logger SiRF III, USB, Push to Log, Google Earth Integration

    Price range are from $50 to $200, depending on brand, size, memory (number of points saved), chipset, number of chanels (ability to use more satellites at the sam time equal to more precision and sensivity) and export functionnality.

    Tom Tom Software data logger

    If by chance, you have a Tom Tom and are ready to take it in your holiday, look no further: Event_logger is the software you are looking for!
    Installation is straightforward, just dump all files to your SD CARD, and start your Tom Tom, as default the logging start. A text file (Event_Logger.txt) let you configure the software

    "Event_Logger is a tracking and logging application enhancingTom Tom GO. It can log Tom Tom GO events to Itinerary files that are managed by Tom Tom GO like any other native Itinerary created through the ordinary user interface; besides, Event_Logger can produce standard GPX XML files where events are represented as way points and the whole route is logged through a sequence of track points obtained by querying Tom Tom GO for location information at short periodical intervals";  from Event_Logger introduction

    On the plus side:
    • Work as expected.
    • Complete documentation.
    • Files are saved in directory /itn and use a standard file format (GPX)
    • Google map viewer in Internet Explorer (drag and drop file)
    • A Tom Tom will also show you the right way :-)
    Some issues:
    • Tom Tom battery lifetime, very limited especially if you are in a 8 hours trip, do not forget to set the Tom Tom contrast to the minimum
    • a XSL (transformation language) render the file directly in Internet Explorer but NOT in firefox as an activeX support is required to view the MAP.
    Example of GPX file

    <?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
    <?xml-stylesheet href="gpx.xsl" type="text/xsl"?>
     version="1.0" creator="Event_Logger 7.1 -"
     xmlns:xsi="" xmlns=""
     <name>END Thursday 15 November 2007 22:43:42</name>
     <desc>(Waypoints are missing in this track)</desc>
     <author>amacri</author><email>This email address is being protected from spambots. You need JavaScript enabled to view it.</email>
     <url></url><urlname>Event_Logger 7.1</urlname>
    <?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
    <?xml-stylesheet href="gpx.xsl" type="text/xsl"?>
    <gpx  version="1.0" creator="Event_Logger '"$VERSION"' -"
     xmlns:xsi="" xmlns=""
    <trk><name>Thursday 15 November 2007 21:37:01</name><cmt>Started</cmt><desc>Gablerstrasse 40-41, Zürich</desc><trkseg>
    <trkpt lat="42.35860" lon="6.52764"><ele>450.0</ele><time>2007-11-15T19:37:01Z</time><course>0.0</course><speed>0.0</speed><fix>3d</fix>
    <trkpt lat="47.35859" lon="6.52767"><ele>450.0</ele><time>2007-11-15T19:37:08Z</time><course>62.0</course><speed>0.0</speed><fix>3d</fix>
    <trkpt lat="42.35859" lon="6.52769"><ele>450.0</ele><time>2007-11-15T19:37:11Z</time><course>62.0</course><speed>0.0</speed><fix>3d</fix>
    <trkpt lat="42.35858" lon="8.52770"><ele>450.0</ele><time>2007-11-15T19:37:15Z</time><course>62.0</course><speed>0.0</speed><fix>3d</fix>
    <trkpt lat="42.35861" lon="8.52750"><ele>450.0</ele><time>2007-11-15T19:37:21Z</time><course>62.0</course><speed>0.56</speed><fix>3d</fix>
    <trkpt lat="42.35848" lon="8.52719"><time>2007-11-15T19:37:27Z</time><course>339.0</course><speed>4.72</speed><fix>none</fix></trkpt>

    Garmin data logger

    Garmin is able to create NMEA (The ASCII data stream received from navigation equipment (such as GPS receivers) conforming to the NMEA 0182 Version 2.0 specification.) file out the box, you do not have to install anything and can jump to next to "Viewing your trip"

    Using a data logger with your camera/camcorder

    They are all  quite easy to use,  start both device and check that the time are more or less in sync, so that both date and time are very near together. That's all! We just need now to use a software to mix pictures, video and GPX/NMEA file together.

    Viewing your trip

    Basically what you need to find is a GPX viewer. there is a lot available online (use Google :-)), here are some I've used

    Geo tagging your pictures/video

    Sony picture motion browser tag automatically pictures and video, but this tool is checking prior to installation that you have a genuine sony camera/camcorder.The next tool I've found is named: RoboGeo

    RoboGeo ($35) has a very easy to use step by step menu n the left side of the main windows. The most interesting functionnality for me is the ability to create Google Map web pages with icons that show where each picture was taken. When these icons are clicked, additional info about the picture is displayed along with the option of viewing the full size image. It is really worth the money.
    robogeo.step1.gif robogeo.step2.gif robogeo.step3.gif

    And the Map you'll get in Google Map with the above GPX file (the demo version of RoboGeo add random coordinate as long as it is not registered, that's why some point are in the lake of Zürich). When these icons are clicked, additional info about the picture is displayed along with the option of viewing the full size image.

    GPSTagr site which allows people with a GPS Track log in GPX format to upload their log, authorize the application site to modify their images, search for images with relevant timestamps, manually exclude images from geotagging - then process the net list of your flickr images against the GPX track log. Picasa (Free) let your tag picture one at a time, it open Google Earth and wait for You to click on the map. Not very useful if you have many pictures and a GPX file for matching them. It is still avery good tools for viewing and organizing thousands of pictures.

    RedHen  is a free download that synchronizes the  GPS log files with just about any digital camera's standard EXIF datafile. RedHen can drop icons onto a Google Earth map-  Make sure you save the new "Spatial Media" folder in the "My Places" folder so your images are available next time you open Google Earth.
  • I already saw this at the french robotic cup in 1999, here is Your chance to buy a mature kit: the Xport 2.0. You can now create amazing robot creations with a Game Boy and some LEGOs....

    The new Xport 2.0 turns the Game Boy Advance (GBA) into a powerful embedded development system. 

    • 4 closed-loop back-EMF motor controllers
    • 16 digital sensor inputs
    • 8 analog sensor inputs
    • In-system NiCd, NiMH battery charger
    • Battery voltage monitor
    • Comprehensive open-source software
    • Optional Bluetooth and other accessories

    Combine with a game boy advance, you have among other things a system:

    • Programmable in C or C++
    • PCM sound
    • 240x160 TFT color LCD
    • Powerful 32-bit RISC CPU

  • From the man wo break the first XBOX.

    At any rate, some very interesting things are afoot. Much of it stems from the discovery of an all-media bootable kiosk demo disk. Many hackers will instantly recognize the value of this, but it’s still interesting to reflect on the significance of this find. Like the original Xbox, the Xbox360 uses a media flag on its executables.

    The media flag tells the OS what type of media it should be on; typically, games are released with the flag set to Microsoft’s proprietary secure Xbox DVD format (which is in itself not that secure…). Significantly, only the executable is signed for a game; the data sections typically are not signed (presumably for performance reasons). Thus, one has the ability to fuzz the executable by corrupting the data sections, potentially invoking a buffer overrun or some other unintentional behavior–if one could effectively modify the data sections. Remember that this is normally not possible, since modifying the data segment requires making a copy to a writeable media, and this contradicts the signed media flag.

    Thus, the run-anywhere demo disk now enables software hackers to create and test the interaction of signed executables with modified game data using no tool other than a DVD-RW drive (and an Xbox360 console, still considerably rare and difficult to obtain in the US). Some of the more interesting modifiable data regions include Shockwave Flash movies, and the pixel shaders executed by the GPU (more info can be found on the website). Of particular interest is the MEMEXPORT shader command in the 360, which could enable people to dump physical memory to the screen (where it can be digitized or extracted with a sniffer upstream of the ANA chip), or to some other peripheral function. Presuming plaintext kernel code can be extracted this way, it bootstraps further efforts in vulnerability analysis of the code running in the Xbox…and so forth. Of course, its quite possible that this hole is plugged, since Microsoft’s NGSCB spec calls for the Northbridge to limit DMA access from the graphics card to main memory. Furthermore, buffer overrun exploits have questionable applicability since each process runs as its own virtual machine and rumors has it that the no-execute bit is used on heap space. Still, I’m very surprised that such a media was even released into the wild by Microsoft…their own worst enemy is their own haste to get to the market and carelessness; security is for naught without consideration of human factors. Very exciting! Perhaps the Xbox360 will be opened without the need for significant hardware hacking.
  • Since January 10th this year, it has become illegal to use radar POI in Switzerland, to warn of safety cameras and mobile speed surveillance locations.

    Sorry I love Swizerland, but on this one,  i can't understand it.

    The Swiss police are currently actively searching for navigational systems with any type of camera pre-warning that are being used while driving. When such a device is found, the device is confiscated and destroyed and the motorist can also expect a fine. Not only has the use of these warning devices been banned, but their production, import or sale has also become illegal. Swiss road authority ASTRAannounced these measures on January 8th.

    ASTRA has released adocument with answers to frequently asked questions.

    "Solche Führer stören die Homogenität des Verkehrs und das Verkehrsklima, und sie animie-ren überdies andere Strassenbenützer zu Ge-schwindigkeitsmissachtungen."

    hahaha just say You're are loosing million of CHF. I just hope manufactures, shops will be able to change that ridiculous law. On the other side we will see a lot of confiscated GPS device on flea market sold by police officer.

    And here TomTom answer: Ist die Nutzung des TomTom Radarkamera-Dienstes legal?

  • dell-mini-inspiron1 MAC-OSX-Leopard

    There are a lot of netbooks on which you can install and run OS X, but if you're mindful of the handy comparison chart those lads at Boing Boing Gadgets have compiled, you'll know that the Mini 9 is about as ideal a platform as you'll find for a Hackintosh ultraportable: Everything from wi-fi, sound and the function keys down to the optional integrated mobile broadband card and the SD card reader are supported and work as they should. No hardware compromises at all. It's awesome. read this very nice tutorial

    And it seems a lot of net book can are able to run with OSX, as it can be seen there

  •  I've already tried to reduce the surface of attack of my homepage by removing all un-needed components, modules, mambots but here is below what I've found into the log files...

    Hackers trying remote code injection

    were  found more than one time in apache error.log

    [Thu Aug 17 17:29:05 2006] [error] [client] Invalid URI in request GET administrator/components/com_bayesiannaivefilter/lang.php?mosConfig_absolute_path=[ HTTP/1.0

    Remember You should ASAP update the following components to their latest version:
    • com_securityimages < 3.0.5 use at least a version  > 3.0.6
    • com_hashcash < 1.2.1 use at least a version  > 1.2.2
    • com_bayesiannaivefilter has been developed but never release as a component, but it is still available at Joomla forge developer tree.
    This attack is trying to execute a scripts, locate at If You go there, You'll find that th script is readable and contains a header.
    Defacing Tool 2.0 by xxxxxx
    Defacing Tool 2.0 by xxxxxxx" is a suite of php based scripts that allows the attacker to send commands to the server primarily with the intent to deface websites.

    1. For com_bayesiannaivefilter sorry guys but I do not have this plugins nor it has ever been released in the wild. com_securityimages or com_hashcash, just Upgrade!
    2. If you manage a web host for which you are certain does not require the use of remote includes, you can disable that functionality in your php.ini configuration file by modifying the following variable. /etc/php.ini  allow_url_fopen = Off
     Hackers trying to access well known PHP files

    each lines below at least more than 500 1 day

    [Fri Aug 11 19:11:50 2006] [error] [client] Directory index forbidden by rule: /var/www/vhosts/
    [Mon Jul 31 13:07:12 2006] [error] [client] user  not found: /administrator/components/com_bayesiannaivefilter/lang.php
    [Mon Jul 31 13:07:19 2006] [error] [client] user admin: authentication failure for "/administrator/components/com_bayesiannaivefilter/lang.php": Password Mismatch
    [Sat Feb 18 21:44:47 2006] [error] [client] File does not exist: /var/www/vhosts/, referer:

    Hacker trying to access  files that do not exist
    • /var/www/vhosts/
    • wiki/administrator/
    • [Tue Aug 01 21:09:46 2006] [error] [client] user  not found: /administrator/components/com_uhp/uhp_config.php
    • [Tue Aug 01 20:43:03 2006] [error] [client] user  not found: /administrator/components/com_colophon/admin.colophon.php
    • [Mon Jul 31 20:11:25 2006] [error] [client] user  not found: /administrator/components/com_mgm/help.mgm.php
    which look like programs brute forcing with a set of rules some paths searching well known vulnerability

    Some strange attempts...

    [Tue Aug 01 18:49:11 2006] [error] [client] File does not exist: /var/www/vhosts/
    [Tue Aug 01 18:48:47 2006] [error] [client] File does not exist: /var/www/vhosts/
    [Tue Aug 01 18:48:47 2006] [error] [client] File does not exist: /var/www/vhosts/
    [Tue Aug 01 18:49:11 2006] [error] [client] File does not exist: /var/www/vhosts/
    [Mon Jul 31 16:58:44 2006] [error] [client] File does not exist: /var/www/vhosts/
    [Fri Jul 28 23:04:35 2006] [error] [client] File does not exist: /var/www/vhosts/

  • Hackers have modified an estimated 150,000 of the 9 million Xboxes Microsoft has sold worldwide to turn them into PCs that would normally cost $800 or more. What you need:
    1. A new Xbox, with 733-megahertz processor, custom graphics chip, 8-gigabyte hard drive: $149
    2. A keyboard and mouse, with adapters: $35
    3. A modified start-up chip: $21
    4. 120-gigabyte hard drive: $120
    5. Linux ans some free software: $0
    Total: $325
    Source: USA TODAY research
  • Hack into a Windows PC - no password needed

    A security consultant based in New Zealand has released a tool that can unlock Windows computers in seconds without the need for a password.

    Adam Boileau first demonstrated the hack, which affects Windows XP computers but has not yet been tested with Windows Vista, at a security conference in Sydney in 2006, but Microsoft has yet to develop a fix.

    Interviewed in ITRadio'sRisky Business podcast, Boileau said the tool, released to the public today, could "unlock locked Windows machines or login without a password... merely by plugging in your Firewire cable and running a command".

    Read More HERE

    It's official: Pirates crack Vista at last

    A genuine crack for Windows Vista has just been released by pirate group Pantheon, which allows a pirated, non-activated installation of Vista (Home Basic/Premium and Ultimate) to be properly activated and made fully-operational.

    Unlike cracks which have been floating around since Vista RTM was released in late November, this crack doesn&8217;t simply get around product activation with beta activation files or timestop cracks - it actually makes use of the activation process. It seems that Microsoft has allowed large OEMs like ASUS to ship their products with a pre-installed version of Vista that doesn&8217;t require product activation &8211; apparently because end users would find it too inconvenient.

    This version of Vista uses System-Locked Pre-Installation 2.0 (SLP 2.0). It allows the &8220;Royalty OEMs&8221; to embed specific licensing information into the operating system which Vista can activate without having to go back to Microsoft for verification. The licensing components include the OEM&8217;s hardware-embedded BIOS ACPI_SLIC (which has been signed by Microsoft), an XML certificate file which corresponds to this ACPI_SLIC and a specific OEM product key.

    Pantheon released a bundle which includes the certificate files from ASUS, Dell, HP and Lenovo along with OEM product keys for Vista Home Basic, Home Premium and Ultimate, and an emulator which allows the BIOS ACPI_SLIC driver for any manufacturer to be installed without requiring the system to be physically running that hardware. For example, you can install the ASUS certificate information on any machine, not just an ASUS.

    Via APCMag, read more HERE

  • Â

    Â a NeoGeo pad and use it on your PC."S-Video can offer a much better video signal for those with newer televisions..."
    Some notes about svideo mods about the decrease of RGB output quality circuitry. Geo CD mods, Neo Geo AES mods. Great site GEO CD 50-60Hz Mod CDZ Import modification Accessories
  • iphone

    You need of course a Jailbroken iPhone, normal and loyal user of Apple  you are not allowed to save your own SMS!!!

    shh to your iphone, using WINSCP for example


    Use login root, default password is alpine (but you should have change it to something else for better security a long time ago)

    Go to the directory  /private/var/mobile/Library/SMS


    and copy the file sms.db to your local disk

    Download SQL lite browser at

    SQLite Database Browser is a freeware, public domain, open source visual tool used to create, design and edit database files compatible with SQLite. It is meant to be used for users and developers that want to create databases, edit and search data using a familiar spreadsheet-like interface, without the need to learn complicated SQL commands. Controls and wizards are available for users to:

    • Create and compact database files
    • Create, define, modify and delete tables
    • Create, define and delete indexes
    • Browse, edit, add and delete records
    • Search records
    • Import and export records as text
    • Import and export tables from/to CSV files
    • Import and export databases from/to SQL dump files
    • Issue SQL queries and inspect the results
    • Examine a log of all SQL commands issued by the application

    open the file sms.db  in Sql Lite Browser


    Click on the Tab “Browse Data” and select the Table “Message”, you can see your SMS!

    Now under the menu File – Export – Export as CSV


    You’re done!


    Attention: even if the file format (CSV) can be read in any text editor /Open Office/Office Excel, the data are not presented in an user friendly manner!

    #@$!& APPLE: This is My iPhone and these are MY DATA!

  • pdf-iconSome PDFs on the internet have a copy protection to make sure you cannot copy-paste any content from the PDF into a document you're writing. Defeating this protection is very easy as you will see in this post.

    I will use a combination of Open Source tools to extract the content of a protected PDF..





    This is how a protected PDF look like in Adobe Acrobat under File - Properties


    You will need to obtain GhostScript

    Ghostscript is an interpreter for the PostScript language and for PDF, and related software and documentation.

    So run the self-extracting EXE from to install the engine

    gs871w32.exe, GPL Ghostscript 8.71 for 32-bit Windows (the common variety).
    gs871w64.exe, GPL Ghostscript 8.71 for 64-bit Windows (x86_64).

    Now install the viewer from 

    gsv49w32.exeWin32 self extracting archive
    gsv49w64.exeWin64 (x86_64) self extracting archive


    Then start Gsview and Open the PDF, you can either convert it to PS (Postscript) and you’ll be able to edit it like any other document or under the menu  Edit - text extract you’ll be able to save the context in a Text file. Enjoy :-)

  • vshare

    Disclaimer: I don’t recommend vShare or any other alternatives to Install .IPA files.&160; The only reason of this post is to help users try out paid apps before they decide to purchase them. This post do not support piracy or piracy-related apps.

    I recommend you to use instead Android since you can test any paid application for 24h and get a refund if you are not satisfied!

    You will need:

    Only 2 steps are required

    1. Install AppSync
    2. Install vShare


    • Is a package that Cydia asks you to install if you want to install Installous/vShare.
    • Allows users to sync and install cracked App Store applications to your iOS device.
    • Works by patching the Mobile Installation file on the iOS firmware which is needed to install .ipa files (App Store Apps) without going through iTunes.
    • Is only available through an external repository that must be added to Cydia.


    1. Open Cydia
    2. Go to Manage -> Sources -> Edit -> and tap on Add
    3. Type and tap on Add Source to add the repo
    4. Now search for “AppSync for iOS 6″&160; and install it



    After you’ve installed AppSync, do the following:


  • An interesting articles which also explain You how to empower the queries capacities of Google serach engine. Note that Google has nothig to do with this security breach, their search engine is simply too efficient and users not enough clever to store all sensitive data in a cryptographical container like PGPdrive, or TrueCrypt.

    Google is in many ways the most useful tool available to the bad guys, and the most dangerous Web site on the Internet for many, many thousands of individuals and organizations. Read more at SecurityFocus

    Google has been and will always be a valuable tool in my daily work as It allow me to resolve a lot of developer problem in no time...