what am I looking at? Just like the rest of the internet, I am curiously looking at what is going on, but unlike the drama around the M1, I personally think the blame is on macOS and not the M1.But.. I also believe there are factors involving the M1 making this worse. Let’s go! So […]Read more "SSD Wear and Apple M1 – The Truth!"
This is just a short one, because everything else is everywhere else. So here is the story, I do a lot of travelling, not a huge amount, but enough. About once a week I do 650km in a day, and I have a work day in the middle of it. Fatigue from driving is real, […]Read more "Self Driving Kia"
This is a continuation of my X6 Project Reversing the X6 Key Cutting Machine Making my first keys with the X6 (Silca LF37) In order to better understand the file structure, I will break it into blocks. Because I have no idea what many values are, I will group the unknowns together, for now. File […]Read more "Explaining the File Structure Understanding for the X6"
Let’s try to make my first key, from what we know. Silca LF37 – Lock Focus – S0001-S1000 Series AND T0001-T1000 Series This is a followup to Reversing the X6 Key Cutting Machine And we will guess the missing gaps! First up, here’s the profile The start, !SB0 was the start of the 2 […]Read more "Making my first keys with the X6 (Silca LF37)"
So this lovely little machine, made in China, without any real documentation, is pack full of Key Profiles for all sorts of cars…. Cars… Nothing else. Except I want to cut keys for almost everything BUT cars. Cabinets mainly. What do we do? Well, we contact the manufacturer to ask them to support the blanks […]Read more "Reversing the X6 Key Cutting Machine"
Mr Robot Find the machine here on Vulnhub https://www.vulnhub.com/entry/mr-robot-1,151/ Warning If you haven’t finished getting all three Flags, don’t go any further. Do not ruin it for youself!! BUT, I have written this for the person who has no idea how to do it, or wants new ideas. So if you have downloaded this machine, […]Read more "Vulnhub – Mr Robot Walkthrough"
Introduction Thermofisher dataTaker DT8x devices offer little security, and clear text configuration visible to users without any log in process. The products website: http://www.datataker.com/ Vulnerable Versions While only DT8x devices have been inspected, it would be unlikely that other models are not also affected by this design issue. Only Firmware 1.72.007 was observed in the […]Read more "Thermofisher dataTaker – Insecure by Design – CVE-2017-11349"
Introduction After discovering the Exposures identified here I decided to try to inject a new user into the system by modifying packets in the TCP Stream Disclosure Timeline 2017-02-24: Vulnerability Discovered 2017-03-02: Proof of Concept Written 2017-03-02: Dahua Contacted with plan to disclose on March 9th unless they wished otherwise. 2017-03-07: Dahua Responded with timeline […]Read more "Dahua NVR – Auth Bypass – CVE-2017-6432"
Introduction Responsible Disclosure Timeline. 2016-10-10: Sent to both the Australian Importer and Dahua, everything mentioned here plus more. The Importer was also called to discuss the issues. 2016-10-17 (approx): Followed up verbally with the importer a couple weeks later (phone). 2016-11-14: Contacted both the Importer and Dahua for an update. Apart from when I rang […]Read more "Dahua NVR – Multiple Exposures (CVE-2017-6341 CVE-2017-6342 CVE-2017-6343)"