«
Expand/Collapse
329 items tagged "android"
Related tags:
htc [+],
bluetooth [+],
hacks [+],
phone [+],
directory traversal vulnerability [+],
whitepaper [+],
trojan [+],
iphone [+],
file [+],
expert [+],
app [+],
use [+],
root [+],
read [+],
project [+],
leaks [+],
controller [+],
control [+],
ARM [+],
usb [+],
service directory [+],
security advisory [+],
secunia [+],
python [+],
obex [+],
nexus [+],
hack [+],
guard [+],
garage [+],
ftpserver [+],
exploits [+],
door [+],
content [+],
binary xml [+],
androguard [+],
advisory [+],
abu dhabi [+],
x wi [+],
x htc [+],
wipe [+],
wildfire [+],
vopium [+],
voice control [+],
user names [+],
user [+],
uri [+],
update [+],
text [+],
sqlite [+],
service vulnerability [+],
reverse engineering [+],
remote server [+],
protocol [+],
platform [+],
photo [+],
phones [+],
path parameter [+],
party application [+],
open [+],
normalize [+],
nook [+],
mobile [+],
linux kernel [+],
ioio [+],
information disclosure [+],
information [+],
host mode [+],
hacking [+],
focus [+],
file deletion [+],
failure [+],
factory data [+],
droid [+],
domain issues [+],
domain [+],
disclosure [+],
denial of service [+],
denial [+],
darknet [+],
cross application [+],
cross [+],
credential [+],
clear [+],
camera [+],
bugtraq [+],
browser [+],
bit [+],
attackers [+],
application [+],
access permissions [+],
ytai [+],
year [+],
wristwatch [+],
whys [+],
warns [+],
twitter [+],
the way [+],
testing [+],
tablet [+],
systematic [+],
system [+],
super nintendo [+],
super [+],
station [+],
speech control [+],
source [+],
sony [+],
smart phone [+],
servo [+],
selinux [+],
security mechanisms [+],
security enforcement [+],
scratch [+],
scanners [+],
scale [+],
sandbox [+],
rootkit [+],
root privileges [+],
robots [+],
robotic arm [+],
rich [+],
response [+],
radio [+],
proxying [+],
privilege levels [+],
privilege [+],
private data [+],
prevention techniques [+],
port [+],
phone conversations [+],
perfect candidate [+],
old school [+],
old radio [+],
nintendo controller [+],
mobile applications [+],
mitigation steps [+],
mike [+],
marketplace [+],
maldroid [+],
makes [+],
magazine [+],
lkm [+],
linux [+],
linus [+],
led [+],
lcd [+],
kinect [+],
kernel mode [+],
joris [+],
jesse burns [+],
jesse [+],
japanese android [+],
james [+],
itzhak [+],
issue [+],
interaction [+],
implementation [+],
host [+],
holy grail [+],
hits [+],
hero android [+],
hacker [+],
hackaday [+],
gyroscopes [+],
gps [+],
fm radio [+],
fire [+],
dslr [+],
dissecting [+],
display [+],
detection [+],
demystifying [+],
databases [+],
custom application [+],
critical gaps [+],
compatible board [+],
color [+],
clubhack [+],
clock [+],
cheat [+],
bug [+],
botnets [+],
bluetooth communications [+],
better security [+],
apps [+],
andy [+],
android project [+],
andro [+],
accelerometer [+],
Skype [+],
Programming [+],
Pentesting [+],
Hardware [+],
ExploitsVulnerabilities [+],
malware [+],
zeus banking [+],
zeus [+],
zach rattner [+],
yu liang [+],
yo yo [+],
xda developers forum [+],
wpa psk [+],
world portal [+],
world [+],
woot [+],
wiring [+],
wirelessly [+],
windows phone [+],
will [+],
white balance [+],
whistle [+],
whisper [+],
weight [+],
webos [+],
web sessions [+],
washington [+],
warning [+],
walking canes [+],
vulnerable [+],
voltage regulator [+],
voice commands [+],
voice [+],
visual input [+],
visible [+],
viscera [+],
virtual [+],
virginia [+],
vintage telephones [+],
vintage [+],
viewsonic [+],
video feed [+],
victor [+],
valley [+],
usb port [+],
usb otg [+],
usb keyboard [+],
usb joystick [+],
usb host [+],
usb devices [+],
unspecified [+],
ungodly reason [+],
uncanny valley [+],
trusted [+],
trick [+],
travis goodspeed [+],
translator james [+],
tracker [+],
track [+],
toy [+],
touchpads [+],
touchpad [+],
touch screen displays [+],
touch screen [+],
touch [+],
time commitment [+],
threat [+],
thomas polasek [+],
thomas [+],
thermocouple [+],
than [+],
terminal emulator [+],
terminal [+],
technology [+],
targeting [+],
taplogger [+],
tactile feedback [+],
tablet controlled [+],
synesthesia [+],
syneseizure [+],
symantec [+],
suspicious [+],
stock appearance [+],
stereo amp [+],
stability testing [+],
stability [+],
spot [+],
sparkfun [+],
space labs [+],
south africa [+],
sound sensitive [+],
sophos [+],
sony ericsson [+],
software pieces [+],
software features [+],
snes [+],
smartphone [+],
smart phones [+],
slurper [+],
sluper [+],
sl4a [+],
skpr [+],
sketch [+],
single board computer [+],
simple e [+],
simonelli [+],
sim [+],
shutter speed [+],
shrews [+],
shocker [+],
shirley [+],
session profiles [+],
serious time [+],
sensory inputs [+],
sensitive files [+],
segment lcds [+],
sees [+],
seeing eye dogs [+],
security vulnerability [+],
security researchers [+],
security reasons [+],
security model [+],
security flaw [+],
security firms [+],
security firm [+],
security circles [+],
secret photo [+],
secret [+],
sean [+],
sd card [+],
screen [+],
scott [+],
scoff [+],
sci fi [+],
satellite tracker [+],
satellite [+],
sandwich [+],
salvaged [+],
running linux [+],
rootsmart [+],
rooting [+],
rolf dieter klein [+],
rolf dieter [+],
robot [+],
robertson [+],
rise [+],
revulsion [+],
resistors [+],
renders [+],
recon [+],
real time clock [+],
razr [+],
raymond [+],
rattner [+],
raspberry [+],
qualcomm [+],
pwn [+],
pulls [+],
psy ops [+],
psy [+],
prs t [+],
prs [+],
prototyping [+],
propeller [+],
projector [+],
productivity apps [+],
processing power [+],
processing [+],
printing [+],
pretoria south africa [+],
pretoria [+],
practice [+],
powerful computer [+],
ports [+],
popularity [+],
polasek [+],
poc [+],
plug [+],
pirates [+],
pid [+],
photo booth [+],
phone controlled [+],
phil [+],
peter [+],
persistent storage [+],
perfect thing [+],
penetration [+],
paul swirhun [+],
pat on the back [+],
passwords [+],
password [+],
pace clocks [+],
pace clock [+],
pace [+],
p.s. i [+],
ownage [+],
own [+],
oscar [+],
optimus maximus [+],
optimus [+],
open target [+],
open source application [+],
open source [+],
open markets [+],
one of those guys [+],
oleg [+],
notcompatible [+],
notch [+],
nintendo [+],
night [+],
nick [+],
nfc [+],
news [+],
new [+],
netbooks [+],
netbook [+],
neat project [+],
musical hardware [+],
music service [+],
music player [+],
mull rooted [+],
msp [+],
morse code [+],
morse [+],
module [+],
mode [+],
modders [+],
mobile phone [+],
mobe [+],
mitchel [+],
misc [+],
miniature robot [+],
mike nathan [+],
mike mitchel [+],
midi notes [+],
microsoft surface [+],
microcontroller [+],
michigan [+],
michael [+],
mental stability [+],
mcu [+],
mcafee [+],
maximus [+],
matrix [+],
markoez [+],
market [+],
mark simonelli [+],
mark [+],
manuel [+],
malware threats [+],
malicious [+],
make [+],
mac [+],
lyi [+],
lucas fragomeni [+],
lucas [+],
low cost [+],
low bandwidth [+],
love [+],
lord vetinari [+],
loophole [+],
logs [+],
lock [+],
location [+],
linux os [+],
linux environment [+],
linux distro [+],
links [+],
lighting market [+],
lighting [+],
libation [+],
lian cai [+],
levels [+],
lets [+],
lego pieces [+],
leaves [+],
leak [+],
lcds [+],
launchpad [+],
large scale [+],
language [+],
labyrinth game [+],
labyrinth [+],
kitchen [+],
kit [+],
kinds of angles [+],
kindle [+],
kids in mind [+],
keyboard [+],
kevin osborn [+],
kernel [+],
joystick [+],
john [+],
joe [+],
job [+],
jeff [+],
jbremnant [+],
japanese market [+],
japan [+],
izac [+],
itzhak avraham tags [+],
ipod [+],
iphone 4 [+],
ipad [+],
ip camera [+],
ip cam [+],
ios security [+],
ios [+],
interfacing [+],
interface [+],
interested parties [+],
instructable [+],
information disclosure vulnerability [+],
infiltrate [+],
indirect route [+],
ikea [+],
htc phone [+],
house [+],
honeycomb [+],
home lighting [+],
home electronics [+],
home automation [+],
home [+],
holiday project [+],
heavy lifting [+],
heart rate [+],
headphone jack [+],
hardware modification [+],
hardware kit [+],
haptic [+],
hao chen [+],
handsets [+],
hackers [+],
hackable [+],
hack on [+],
gyroscope based [+],
grows [+],
graduation paper [+],
gps module [+],
goodspeed [+],
goodies [+],
good starting point [+],
geiger counter [+],
garage door openers [+],
garage door opener [+],
gap [+],
gaming interface [+],
gaming [+],
gamepad [+],
fxi [+],
fun project [+],
full disk encryption [+],
full disclosure [+],
friend victor [+],
fresh out of the box [+],
freebie [+],
florida [+],
flack [+],
firesheep [+],
finishing touches [+],
finished product [+],
figure [+],
field mice [+],
farebot [+],
fare cards [+],
fake [+],
faceniff [+],
extra power [+],
explosive growth [+],
exhibit space [+],
exercise [+],
example [+],
evalbot [+],
ericsson [+],
eric butler [+],
encryption [+],
emulator system [+],
emulator games [+],
emulator [+],
electronic reference [+],
electromagnets [+],
electrodroid [+],
eeepc [+],
ebook reader [+],
ebay [+],
earth orbit [+],
early 1900s [+],
ear buds [+],
e reader [+],
dynamic light [+],
dual core processor [+],
dslr camera [+],
doug decarme [+],
door lock [+],
dongle [+],
don [+],
dollar price [+],
discworld series [+],
discworld books [+],
discworld [+],
disco [+],
dirty fingers [+],
digital model [+],
dick tracy [+],
device [+],
development hardware [+],
development [+],
developer world [+],
developer kit [+],
dev kit [+],
deputize [+],
demo board [+],
defcon [+],
deeper blue [+],
debug [+],
davis [+],
customizable messages [+],
curve [+],
credentials [+],
creation 3d [+],
cracks [+],
coversion [+],
cotton candy [+],
cornell students [+],
cookers [+],
control midi [+],
control interface [+],
contraptions [+],
configurable keyboard [+],
con [+],
computer [+],
college of engineering [+],
colin [+],
code [+],
cnectd [+],
chris [+],
china [+],
chest straps [+],
charliex [+],
charlie miller [+],
character lcd [+],
character [+],
cat [+],
casainho [+],
card [+],
cannon [+],
candy [+],
c.o.r.e [+],
buys [+],
buckle [+],
breathalyzer [+],
bounty [+],
bot [+],
bootloader [+],
bonus [+],
body scanners [+],
board [+],
bluetooth devices [+],
bluescripts [+],
bipeds [+],
biophilla [+],
benjamin [+],
ben tsvi [+],
belt buckle [+],
belt [+],
bathroom scale [+],
bartender [+],
aural perception [+],
attack [+],
assembly programming [+],
assembly [+],
arm processors [+],
apc [+],
anti malware [+],
anti [+],
ant [+],
androids [+],
andrew [+],
andrei [+],
amazon [+],
amarino [+],
al linke [+],
adsdroid [+],
actv [+],
accessory kit [+],
accessory [+],
aaron [+],
Tools [+],
Countermeasures [+],
1080p [+],
google [+],
arduino [+],
security [+],
webkit [+],
vulnerability [+],
proof of concept [+],
exploit [+],
adk [+],
workshop authors,
wii remote,
wii,
waveform,
warszawa,
video,
vanessa brunet,
unofficial records,
ubuntu,
txt,
tutorial series,
tutorial,
trend micro,
toolkit,
toddler,
thijs,
telecom,
surgery,
study,
storage options,
stock installation,
ss7 sigtran,
software versions,
sms,
smartphones,
slot cars,
slides,
simple hello,
silicon valley,
shell cat,
shell,
sharkey,
serial connection,
serial communications,
serial communication,
serial,
sensor inputs,
sega emulator,
security risks,
sdk package,
sdk,
script events,
schematics,
scam,
san jose,
runs,
robotseverywhere,
robert stephenson,
risk,
rich kappmeier,
resource table,
researchers,
report,
regulatre,
recovery,
record,
ram,
python code,
promising project,
programming environment,
processsing,
poses,
poor battery life,
poor,
polaris,
physical infrastructure,
phone side,
philippe langlois,
permanent,
patching,
parallax inc,
paper,
oscilloscope,
operating system,
onstar system,
onstar,
oled display,
oled,
ogg,
occifer,
nxt,
number,
noblenook,
niki,
newest software,
newest phones,
network proxy,
network,
nes,
natural choice,
name,
music control,
music,
multitouch,
monome,
modem interface,
modem,
mindstorms,
mid,
merkz,
mcenery convention center,
max msp,
max lee,
max,
mac os x,
mac os,
lucid dreaming,
lucid,
location commands,
linux system,
lessard,
lego mindstorms robot,
legal,
layout manager,
laser cut,
lands,
krakow,
kernel image,
juice,
josh,
joelapenna,
jer,
jeff sharkey,
jeff lessard,
java virtual machine,
java cpu,
ipod docks,
introduction to databases,
interesting things,
initial attempts,
impossible action,
htc kaiser,
hexapod,
hero,
heavy hitters,
heady aroma,
headlights,
hardware events,
graphical elements,
grant skinner,
gm cars,
gizmo,
gas,
gary c. kessler,
gary c kessler,
games,
froyo,
free,
forensics,
flaw,
first,
firmware,
fifth,
facing,
eye movement,
external hardware,
exploratory,
existence thanks,
execution,
exact measurements,
evo,
event,
esc,
ereader,
engineering workshop,
engineering,
elrik,
edge,
eclipse,
easy language,
dspic,
droidx,
droiddraw,
download,
doors,
dock,
desk clock,
derek,
demo rootkit,
demo,
dell streak,
dell,
deep roots,
daniel,
dallas,
dac,
custom kernel,
custom,
cpu,
couple suggestions,
couple,
cool stuff,
controversy,
connection,
com,
collin meyer,
codenamed,
code execution,
cloud,
clocks,
chris palmer,
cheap hardware,
chaos communication congress,
ces,
cellphones,
cell phones,
carnivore,
careful,
cardboard,
car,
burns,
browser engine,
blurry image,
bluetooth module,
blood,
bleeding edge,
blatant example,
birdman,
best friend,
belle of the ball,
battery life,
barnes,
ball,
average person,
augmenting,
audio,
aroma,
apple timer,
apple,
apk,
apad,
antivirus,
androidome,
alex ereader,
alchohol,
adding ram,
adb devices,
adb,
adapter,
acquisition model,
Software,
Issues
-
-
15:01
»
Hack a Day
VIA Technologies, ostensibly in an attempt to compete with the Raspberry Pi (if you can believe all those bloggers out there), is releasing a tiny single board computer called the APC Android PC. The VIA website for the APC is down, so just search Google News for all the details. The specs are somewhat similar to the Raspberry Pi [...]
-
-
12:01
»
Hack a Day
Here’s a very easy way to trigger your DSLR camera using an Android device. It’s a similar method used with IR triggered cameras, in that all you need to do is assemble some simple hardware to plug into the headphone jack. The app that triggers the camera simply plays back a well crafted audio file [...]
-
-
4:01
»
Hack a Day
[Buddhra] wanted to use a set of ear buds that also had a controller built into the wire. The headset he chose to go with is meant for use with iPod, but he figured it should be possible to make it work with Android too. He was right, and managed to alter the controller for [...]
-
-
16:01
»
Hack a Day
[Kevin Osborn] is making it a bit easier for young programmers to write programs that interact with the physical world. The device he’s holding in the picture is an Arduino based accelerometer and distance sensor meant for the Scratch language. Scratch is a programming language developed at MIT. It has kids in mind, and focuses on [...]
-
-
5:01
»
Hack a Day
[ften] was having plenty of fun running Android on his HP Touchpad, but he soon discovered that the tablet’s micro USB port didn’t provide enough juice to his peripherals when running in host mode. He started digging around and found the perfect means of providing the extra power while maintaining the device’s stock appearance. He [...]
-
-
10:57
»
Carnal0wnage
UPDATE - An easier way to do this can be found on our update post hereAndroid periodically updates it's SDK and
somtimes when this happens, old methods for importing a Trusted CA, necessary to proxy SSL traffic, will fail and you must find a new solution. Technically speaking, it's not necessarily the import that is the problem, it's saving those changes between restarts of the emulator. If you've worked with the emulator you'll note that after importing a Trusted CA such as BurpSuite's certificate, the changes only take effect once you've rebooted the emulator. In other words, you actually
have to restart the emulator, and without these steps, you'll lose your updated Trusted CA list.
Using Android SDK 19, the solution was to move a temporary file and rename it. Let's begin:
After creating your Android Virtual Device (AVD) named "test"....
Step 1 - Run the emulator
Step 2 - While running, pull the cacerts.bks file
Step 3 - Get the keytool
Step 4 - Import the PortSwigger SSL Certificate into the cacerts.bks file w/ keytoolNOTE: Exporting PortSwigger SSL Certificate instructions here - http://carnal0wnage.attackresearch.com/2010/11/iphone-burp.html
Step 5 - Remount the emulator /system folder with read-write permissions
Step 6 - Push the cacerts.bks file up onto the emulator
Step 7 - Move the tmp file to your local avd directory and rename it to system.img
Step 8 - Restart, rm cacerts.bks, pull down the copy from emulator, ensure certificate still exists in cacerts.bks file
The reason this data persisted was because we moved the temporary copy (emultor-<random string>) from /tmp/android-<myname>/ and renamed it to system.img. Lastly, we placed the image file in the ~/.android/avd/test.avd/ directory.
hack on,
cktricky
-
-
14:01
»
Hack a Day
[Andy] is taking the complexity of a smartphone-controlled garage door down a notch with this project. He’s not interested in checking on the state of the door (open or closed) using a video feed, or in controlling the thing from anywhere in the world. He just wants to use his Android as the remote control and [...]
-
-
14:08
»
Hack a Day
[Aaron] and his wife have a wonderful cat that likes to contribute to the household by bringing field mice, shrews, and voles into the house as a ‘present.’ Obviously, this leads blood, fur, and viscera staining the carpet, and chasing around mortally wounded rodents isn’t [Aaron]‘s idea of fun. To stop the cat from bringing small [...]
-
-
4:01
»
Hack a Day
A few months ago when I reviewed the Android electronic reference app ElectroDroid, I made the offhand remark that a front end app for alldatasheet.com would be a killer mobile electronic reference app. [András Veres-Szentkirályi] accepted my challenge and built ADSdroid, the unofficial Android app for alldatasheet.com. You can check out my complete review after the break. [...]
-
10:01
»
Hack a Day
We should have included a footnote in the title. You can say that [Thomas Polasek] installed a full version of Arch Linux on his Nook Color, but there’s one caveat. It’s running on top of the Android kernel and his proof-of-concept uses a second computer to get it up and running. But there’s potential for [...]
-
-
14:08
»
Hack a Day
What happens if you’re a prolific developer and decide to release all of the source code from your work? Well, you should get a huge pat on the back from all interested parties. And so we say thank you to [Hunter Davis] for releasing the source code for his 70+ Android apps. But just making [...]
-
-
8:01
»
Hack a Day
If you just got your hands on a shiny new Android phone and are looking for a fun project to try out, you might want to check out this simple Arduino exercise that [Mike Mitchel] put together. Everyone needs a starting off point for hacking, and [Mike] thought that combining and Arduino and Android handset [...]
-
-
14:01
»
Hack a Day
Looks like there’s a pretty easy way to install Ice Cream Sandwich, the newest version of Android, on your Netbook. Actually this is limited to a few types of hardware including netbooks like the eeePC. That’s because the ISO files used during installation have been tailored to the hardware used on those devices. As with [...]
-
-
12:01
»
Hack a Day
[Joris Laurenssen] has been hanging onto this robotic arm for about twenty years. His most recent project uses some familiar tools to add voice control for each of the arm’s joints. The arm has its own controller which connects via a DB-25 port. [Joris'] first task was to figure out what type of commands are [...]
-
12:01
»
Hack a Day
[Joris Laurenssen] has been hanging onto this robotic arm for about twenty years. His most recent project uses some familiar tools to add voice control for each of the arm’s joints. The arm has its own controller which connects via a DB-25 port. [Joris'] first task was to figure out what type of commands are [...]
-
-
6:01
»
Hack a Day
Don’t get your dirty fingers on the glass [Poke] sent in a video of him using Android devices with a wiimote and PS3 controller. The build uses the Joystick2Touch and the USB Joystick Center app. Root is required, but this will be very useful when tv-sized Android devices start showing up. Wonderful restoration work [John] sent in [...]
-
-
16:31
»
Hack a Day
The latest version of the Linux kernel was just released on Sunday, and there’s a little bonus which we think is worth considering. It seems that many changes from Android made their way into version 3.3 of the Linux kernel. This may not sound like much, but it’s a great example of the power of [...]
-
-
17:54
»
Packet Storm Security Advisories
Hatforce has discovered that the "wipe" function on Android does not reliably delete data on all devices. On a Nexus S running Android 2.3.6, they were able to recover user data after running a "wipe" both using the "factory data reset" from the menu and by wiping the device from recovery.
-
17:54
»
Packet Storm Security Recent Files
Hatforce has discovered that the "wipe" function on Android does not reliably delete data on all devices. On a Nexus S running Android 2.3.6, they were able to recover user data after running a "wipe" both using the "factory data reset" from the menu and by wiping the device from recovery.
-
17:54
»
Packet Storm Security Misc. Files
Hatforce has discovered that the "wipe" function on Android does not reliably delete data on all devices. On a Nexus S running Android 2.3.6, they were able to recover user data after running a "wipe" both using the "factory data reset" from the menu and by wiping the device from recovery.
-
-
8:08
»
Hack a Day
[Andrew] has been pining for an Optimus Maximus – a keyboard with a small LCD screen in each key – for years. Like a lot of people, he love the idea of a completely configurable keyboard, but balked at the two thousand dollar price tag. Although it doesn’t have full color OLED screens behind each key, [...]
-
-
7:01
»
Hack a Day
Whether you’d like to do some real-time logging of data, or just want to control a project with your Android phone, [Thomas]‘s Arduino-Android Bluetooth connection instructable is sure to be useful [Thomas]‘ build uses the very inexpensive JY-MCU Bluetooth module that’s available on eBay or dealextreme. This Bluetooth module ties directly into the Tx and Rx [...]
-
-
10:01
»
Hack a Day
Sous vide cookers aren’t anything new, but [Phil] wanted to build the first sous vide using the osPID, an open source PID controller just released in the last month. The build uses the osPID Open Source PID controller we saw last week that comes with inputs for a thermocouple and pair of relays capable of switching [...]
-
-
9:01
»
Hack a Day
[skullkey] over at the House4Hack hackerspace in Pretoria, South Africa wanted a way to get kids excited about technology and desktop fabrication labs. Wanting to give kids a visceral feel for the march of technology, he created Makerdroid, an android app that allows for the creation 3D objects on an Android tablet and preparing them to be [...]
-
-
15:21
»
Hack a Day
[Bjørn] combined some aging electronics he had around the house to create this Android media center. The enclosure is an FM-radio, but since he only listens to online media it wasn’t of much use to him. After sizing it up he realized it was a perfect candidate to receive his old HTC Hero Android phone. [...]
-
15:21
»
Hack a Day
[Bjørn] combined some aging electronics he had around the house to create this Android media center. The enclosure is an FM-radio, but since he only listens to online media it wasn’t of much use to him. After sizing it up he realized it was a perfect candidate to receive his old HTC Hero Android phone. [...]
-
-
16:01
»
Hack a Day
Last year, [Mark Simonelli’s] wife asked him if he could design something that would allow her to remotely check if their garage door had been left open. [Mark] jumped at the chance to tinker with electronics and designed a system around an old TrendNet IP camera. When remotely connected to the camera using IP Cam [...]
-
-
8:01
»
Hack a Day
[Lewis] wanted to control MIDI devices with the huge touch screen that is his Android phone. After he couldn’t find a simple hardware implementation of MIDI out, he turned to an IOIO board to send MIDI notes to just about any imaginable musical hardware. It’s a clean build and fills a gap in the abilities [...]
-
-
11:01
»
Hack a Day
With the coming of Android 3.1 you finally have the option of using the device as a USB host. This may be through a USB OTG (On-the-Go) adaptor, but nonetheless it’s a feature which was sorely missed until now. [Manuel] put together a guide on using Android as a USB host. As you can see, [...]
-
-
7:01
»
Hack a Day
After getting his hands on an Android-enabled wristwatch, [Paul] wanted to test the limits of his new hardware. We’ll assume he’s happy with his purchase because his finished build sends data from a Microsoft Kinect to his wristwatch, making it a night vision spy watch. [Paul]‘s new toy is a WIMM One Android wristwatch that comes complete [...]
-
-
11:45
»
Hack a Day
[Casainho] wanted to track his body weight using an app on his Android phone. He just needed a way to get the weight readings onto the device automatically. He ended up adding Bluetooth to a bathroom scale and hacking the app to grab data from it. The scale which he hacked is a digital model, [...]
-
13:01
»
Hack a Day
Earlier this week, fellow Hack a Day-er [Mike Nathan] reviewed Adafruit’s new iPhone/iPad app Circuit Playground. The comments on [Mike]‘s review turned to suggesting ElectroDroid as an alternative to Circuit Playground. Surprisingly, Hack a Day authors actually pay attention to the comments, so I’ve decided to throw my hat into the ring and offer up my review of [...]
-
-
3:09
»
SecDocs
Authors:
Tsukasa Ooi Tags:
Android rootkit Event:
Black Hat Abu Dhabi 2011 Abstract: Android devices have been repeatedly hacked for root privileges. Sometimes by malware authors, and sometimes by users themselves. This is because if someone gains root privileges, he or she can gain control of the parts of the system which are most useful for attackers (and for users as well). But this is not the end of the story - we need a bit more knowledge to gain much privilege inside the Android application system. On the other hand, some Japanese Android smartphones have an extra Linux Security Module (LSM) to prevent these rooting issues and protect the system from being overwritten. But because of Android's security weaknesses and incomplete LSM protection, the Android application system can still be taken over by exploitation. This presentation explains what we can/cannot do if we gain root privileges on an Android device, and introduces a new kind of Android rootkit. This rootkit needs only root privileges (no kernel-mode, no ptrace) and bypasses all existing security modules. This fact implies the possibility of advanced Android malware.
-
3:09
»
SecDocs
Authors:
Tsukasa Ooi Tags:
Android rootkit Event:
Black Hat Abu Dhabi 2011 Abstract: Android devices have been repeatedly hacked for root privileges. Sometimes by malware authors, and sometimes by users themselves. This is because if someone gains root privileges, he or she can gain control of the parts of the system which are most useful for attackers (and for users as well). But this is not the end of the story - we need a bit more knowledge to gain much privilege inside the Android application system. On the other hand, some Japanese Android smartphones have an extra Linux Security Module (LSM) to prevent these rooting issues and protect the system from being overwritten. But because of Android's security weaknesses and incomplete LSM protection, the Android application system can still be taken over by exploitation. This presentation explains what we can/cannot do if we gain root privileges on an Android device, and introduces a new kind of Android rootkit. This rootkit needs only root privileges (no kernel-mode, no ptrace) and bypasses all existing security modules. This fact implies the possibility of advanced Android malware.
-
-
18:00
»
Packet Storm Security Advisories
There is an issue in certain HTC builds of Android that can expose the user's 802.1X Wi-Fi credentials to any program with basic WI-FI permissions. When this is paired with the Internet access permissions, which most applications have, an application could easily send all stored Wi-Fi network credentials (user names, passwords, and SSID information) to a remote server. This exploit exposes enterprise-privileged credentials in a manner that allows targeted exploitation.
-
18:00
»
Packet Storm Security Recent Files
There is an issue in certain HTC builds of Android that can expose the user's 802.1X Wi-Fi credentials to any program with basic WI-FI permissions. When this is paired with the Internet access permissions, which most applications have, an application could easily send all stored Wi-Fi network credentials (user names, passwords, and SSID information) to a remote server. This exploit exposes enterprise-privileged credentials in a manner that allows targeted exploitation.
-
18:00
»
Packet Storm Security Misc. Files
There is an issue in certain HTC builds of Android that can expose the user's 802.1X Wi-Fi credentials to any program with basic WI-FI permissions. When this is paired with the Internet access permissions, which most applications have, an application could easily send all stored Wi-Fi network credentials (user names, passwords, and SSID information) to a remote server. This exploit exposes enterprise-privileged credentials in a manner that allows targeted exploitation.
-
-
9:01
»
Hack a Day
If you’re going to build a giant touch screen, why not use an OS that is designed for touch interfaces, like Android? [Colin] had the same idea, so he connected his phone to a projector and a Kinect. Video is carried from [Colin]‘s Galaxy Nexus to the projector via an MHL connection. Getting the Kinect to [...]
-
-
8:01
»
Hack a Day
[MarkoeZ] had an issue with keys breaking off in his door lock, and while normal people might try to simply replace the lock all together, [MarkoeZ] decided to do it the “Hackaday” way by adding a bluetooth lock to his door. His door is already setup where someone can walk up to it, page an [...]
-
-
9:01
»
Hack a Day
Even though everyone with a smart phone has a small, powerful computer in their pocket, we haven’t seen many applications of this portable processing power that use the built-in camera. [Michael] decided to change this and built an LED matrix that displays the data coming from the phone’s camera. For the build, [Michael] used two [...]
-
-
8:01
»
Hack a Day
When [trandi]‘s wife saw a cute night light at Ikea, she had to have it. She actually bought several of these for when her husband would inevitably crack one open and start tinkering with the microcontroller inside. The inevitable hack is pretty cool, and also gives us some ideas for interfacing with Android on the cheap. [...]
-
-
8:06
»
Packet Storm Security Recent Files
Security Enhanced (SE) Android is a project to identify and address critical gaps in the security of Android. Initially, the SE Android project is enabling the use of SELinux in Android in order to limit the damage that can be done by flawed or malicious apps and in order to enforce separation guarantees between apps. However, the scope of the SE Android project is not limited to SELinux.
-
8:06
»
Packet Storm Security Misc. Files
Security Enhanced (SE) Android is a project to identify and address critical gaps in the security of Android. Initially, the SE Android project is enabling the use of SELinux in Android in order to limit the damage that can be done by flawed or malicious apps and in order to enforce separation guarantees between apps. However, the scope of the SE Android project is not limited to SELinux.
-
-
14:25
»
Hack a Day
Next time you’re waiting in the security line in an airport, why don’t you pull out your smartphone and count all the radiation being emitted by those body scanners and x-rays? There’s an app for that, courtesy of Mr. [Rolf-Dieter Klein]. The app works by blocking all the light coming into a phone’s camera sensor with [...]
-
-
8:14
»
Hack a Day
[Ytai Ben-Tsvi] wrote in to share a little holiday project that he and friend [Al Linke] put together, a dynamic light display that takes its cues from his Android-powered smartphone. The display fits in a vase that sits in [Ytai’s] family room, and while it wasn’t exactly cheap to build, it sure looks nice. The [...]
-
-
8:01
»
Hack a Day
[Chris'] family made the mistake of giving him a hackable Christmas gift. We’d bet they didn’t see much of him for the rest of the day as he set about rooting this Android wristwatch. This thing has some pretty powerful hardware under the hood. It’s sporting an OMAP3 processor running at 600 MHz along with [...]
-
-
2:41
»
Packet Storm Security Advisories
Secunia Security Advisory - MustLive has discovered a vulnerability in Android, which can be exploited by malicious people to conduct spoofing attacks.
-
-
14:01
»
Hack a Day
This is [James'] latest android build, a set of legs that use gyroscopes for balance. He started off by planning the build with some LEGO pieces to get an idea of how each foot and leg joint would fit together. This let him achieve one of his goals. From the start he wanted to create [...]
-
-
11:13
»
Hack a Day
[Travis Goodspeed] wrote in to tell us about his work reverse engineering the Bluetooth communications on this SPOT module. He’s targeted the post as a general guide to sniffing Bluetooth transmissions, but was inspired to use the SPOT as an example after seeing this other SPOT hack. We know he’s a fan of getting things [...]
-
-
13:58
»
Packet Storm Security Recent Files
Whitepaper called Systematic Detection of Capability Leaks in Stock Android Smartphones. It discusses a weakness in the Android operating system that allows attackers to secretly record phone conversations.
-
13:58
»
Packet Storm Security Misc. Files
Whitepaper called Systematic Detection of Capability Leaks in Stock Android Smartphones. It discusses a weakness in the Android operating system that allows attackers to secretly record phone conversations.
-
13:01
»
Hack a Day
[Jbremnant] wanted to try his hand with ANT+ wireless networks. This protocol is designed for light-weight and low-power consumer electronics, like heart rate chest straps and bicycle computers (Garmin brand devices for example). There are already libraries out there for Arduino, but [Jbremnant] found that most of them were written as slave-only code. He set [...]
-
-
9:36
»
Hack a Day
Want that 70″ LCD television in your living room to be an Android device? This little guy can make it happen. With an HDMI port on one end, and a USB plug on the other for power, just plug in FXI Technologies’ Cotton Candy dongle to create a 1080p Android television. The price isn’t set [...]
-
-
13:01
»
Hack a Day
The guys over at brainwagon just finished up ANGST, the Arduino n’ Gameduinio Satellite Tracker, a build that displays 160 different satellites in Earth orbit on any SVGA monitor. The build is of course based off an Arduino and Gameduino shield. A real-time clock is always needed for a satellite tracker, so a DS1307 RTC [...]
-
-
12:30
»
Hack a Day
[Shazin] had some free time on his hands, so he settled in to do something he had been meaning to for a while – learn Android programming. He went an indirect route, and ended up using the Scripting Layer for Android (SL4A), which gave him a head start on the process. Sitting in between the [...]
-
-
15:24
»
Hack a Day
Synesthesia is a mix-up in the wiring of the brain where sensory inputs are perceived differently than what ‘normal people’ usually experience. People with synesthesia can have visual input mapped to aural perception in the mind, or driving along a highway where there’s a recent skunk roadkill can smell ‘loud.’ It’s an interesting way of [...]
-
7:37
»
Wirevolution
First impression is very good. The industrial design on this makes the iPhone look clunky. The screen is much bigger, the overall feel reeks of quality, just like the iPhone. The haptic feedback felt slightly odd at first, but I think I will like it when I get used to it.
I was disappointed when the phone failed to detect my 5GHz Wi-Fi network. This is like the iPhone, but the Samsung Galaxy S2 and Galaxy Nexus support 5 Ghz, and I had assumed parity for the Razr.
Oddly, bearing in mind its dual core processor, the Droid Razr sometimes seems sluggish compared to the iPhone 4. But the Android user interface is polished and usable, and it has a significant user interface feature that the iPhone sorely lacks: a universal ‘back’ button. The ‘back’ button, like the ‘undo’ feature in productivity apps, fits with the way people work and learn: try something, and if that doesn’t work, try something else.
The Razr camera is currently unusable for me. The first photo I took had a 4 second shutter lag. On investigation, I found that if you hold the phone still, pointed at a static scene, it takes a couple of seconds to auto-focus. If you wait patiently for this to happen, watching the screen and waiting for the focus to sharpen, then press the shutter button, there is almost no shutter lag. But if you try to ‘point and shoot’ the shutter lag can be agonizingly long – certainly long enough for a kid to dodge out of the frame. This may be fixable in software, and if so, I hope Motorola gets the fix out fast.
While playing with the phone, I found it got warm. Not uncomfortably hot, but warm enough to worry about the battery draining too fast. Investigating this, I found a wonderful power analysis display, showing which parts of the phone are consuming the most power. The display, not surprisingly, was consuming the most – 35%. But the second most, 24%, was being used by ‘Android OS’ and ‘Android System.’ As the battery expired, the phone kindly suggested that it could automatically shut things off for me when the power got low, like social network updates and GPS. It told me that this could double my battery life. Even so, battery life does not seem to be a strength of the Droid Razr. Over a few days, I observed that even when the phone was completely unused, the battery got down to 20% in 14 hours, and the vast majority of the power was spent on ‘Android OS.’
So nice as the Droid Razr is, on balance I still prefer the iPhone.
P.S. I had a nightmare activation experience – I bought the phone at Best Buy and supposedly due to a failure to communicate between the servers at Best Buy and Verizon, the phone didn’t activate on the Verizon network. After 8 hours of non-activation including an hour on the phone with Verizon customer support (30 minutes of which was the two of us waiting for Best Buy to answer their phone), I went to a local Verizon store which speedily activated the phone with a new SIM.
Deciding on the contract, I was re-stunned to rediscover that Verizon charges $20 per month for SMS. I gave this a miss since I can just use Google Voice, which costs $480 less over the life of the contract.
-
-
5:01
»
Hack a Day
[Nick] just finished up bis barbot build that is named after our favorite bartender. It’s an impressively capable even if it was done on the cheap. The user chooses a libation for iZac to make via an Android tablet. This drink is interpreted by an Android ADK to have the mechanics of the robot swing [...]
-
-
9:01
»
Hack a Day
Amazon’s new tablet reader, the Kindle Fire has been rooted. Early this morning [Death2All110] posted the steps he took to gain root access to his device (which is so fresh out of the box it still smells new). The heavy lifting is done by a package called SuperOneClick which aims to root all manner of phones [...]
-
5:01
»
Hack a Day
[Al] at Open Gadgets just put the finishing touches on his Android breathalyzer. It’s the perfect thing to install on ex-girlfriends’ phones to prevent 2 a.m. drunk dialing. The project started off as a talking breathalyzer connected to a computer that tweeted your BAC, gave weather and stock readouts, and functioned as a photo booth. [...]
-
-
9:01
»
Hack a Day
For some ungodly reason, [Scott] has a friend that wanted a ‘sexting themed’ Halloween costume. We won’t try to make any presumptions of the creativity or mental stability of [Scott]‘s friend, but the SMS scrolling LED belt buckle he came up with is pretty cool. The belt is based around a $13 scrolling LED belt [...]
-
-
11:01
»
Hack a Day
[Ytai], the lead developer for the IOIO breakout board for the Android Open Accessory kit, figured out how to control just about anything from an Android phone wirelessly over Bluetooth. When [Ytai] first announced the IOIO breakout board for Android devices, one of the commentors on his post said a standard Bluetooth dongle could stand [...]
-
-
14:30
»
Hack a Day
Cries of “I am root!” abound once again with the rooting of Sony’s PRS-T1 eBook reader. The eBook Reader Blog took the original rooting directions and then looked at some of the things you can do with root access. This hardware is based around an ePaper display, but we must say that the performance seems to [...]
-
-
7:01
»
Hack a Day
Desperately in need of a graduation paper, [Andrei] decided to build a few computer controlled recon vehicles (PDF warning), and we’re really impressed with the minimalist approach [Andrei] took. The Computer Operated Recon Entity (C.O.R.E.) mk. I is based around a laptop. Instead of an Arduino, [Andrei] used a car stereo amp to control the [...]
-
15:01
»
Hack a Day
[Sean] happened to have an extra Android phone sitting around and wanted to see what type of home automation he could use it for. One simple hardware modification, and some apps from the Android Market let him monitor and control his garage door remotely. The hardware modification is a hack we’ve already looked at. The [...]
-
12:01
»
Hack a Day
If you’re looking to build a really big Android tablet the trick is not to start from scratch. [Peter] pulled off a 23″ Android Tablet hack using a collection of easily acquired parts, leaving the hard work up to hardware that was designed to do it. He didn’t really build a tablet, as much as [...]
-
-
15:01
»
Hack a Day
Sometimes we need more psy ops in our life. Being an eminent fan of the Discworld series, Reddit user [rdmiller3] decided he needed to build Lord Vetinari’s clock. This fictional clock was placed in the waiting room for Lord Vetinari in several of the Discworld books. Although the clock keeps accurate time overall, it sometimes [...]
-
-
12:04
»
Hack a Day
[James] is one of those guys on a quest to control everything with one device. His tool of choice is an Android phone, which can do quite a lot right out of the box. But he was never satisfied with its lack of IR remote control abilities. He fixed that feature-gap by building a Bluetooth [...]
-
-
15:02
»
Packet Storm Security Recent Files
Androguard (Android Guard) is a tool written in python to play with .class, .dex, APK, JAR, and Android's binary XML files. It allows you to perform diffing of Android applications, measure similarities, check if it is malware, and more.
-
15:02
»
Packet Storm Security Tools
Androguard (Android Guard) is a tool written in python to play with .class, .dex, APK, JAR, and Android's binary XML files. It allows you to perform diffing of Android applications, measure similarities, check if it is malware, and more.
-
15:02
»
Packet Storm Security Tools
Androguard (Android Guard) is a tool written in python to play with .class, .dex, APK, JAR, and Android's binary XML files. It allows you to perform diffing of Android applications, measure similarities, check if it is malware, and more.
-
15:02
»
Packet Storm Security Misc. Files
Androguard (Android Guard) is a tool written in python to play with .class, .dex, APK, JAR, and Android's binary XML files. It allows you to perform diffing of Android applications, measure similarities, check if it is malware, and more.
-
14:01
»
Hack a Day
[Oscar] shows us how to use a Processing sketch for Android to communicate with Bluetooth devices (translated). It turns out this is easier than you might think. Processing and Android are both closely related to Java, and you can just import the Android libraries that deal with Bluetooth within the Processing sketch. That makes it easy to enable [...]
-
12:01
»
Hack a Day
[Kekszumquadrat] wanted to use a classic controller to play emulator games on his Android tablet so he set out to convert an SNES gamepad to connect via USB. He found an old USB keyboard at a yard sale for about 3 Euros. He knew that the emulator he prefers has the option of remapping all [...]
-
-
13:01
»
Hack a Day
Do you have a rooted Android device and a computer running Linux? If so, you’re already on your way to coding for Android in Assembly. Android devices use ARM processors, and [Vikram] makes the argument that ARM provides the least-complicated Assembly platform, making it a great choice for those new to Assembly programming. We think [...]
-
-
13:01
»
Hack a Day
Looking to use his Arduino when on-the-go, [Oleg] has been working on a way to use the Android ADK terminal emulator with the Arduino. The Android side uses ADK features along with a custom application. [Oleg] received help from his friend [Victor] when developing the program for Android (you can check out our own Android [...]
-
-
13:05
»
Hack a Day
[Rich's] newest version of a Bluetooth connected Super Nintendo controller takes what was already good and makes it better. We looked at the original version back in May, which is built into a knockoff controller – [Rich] mentions that he got a lot of flack for defacing retro equipment and wants to set the record [...]
-
-
19:23
»
Packet Storm Security Recent Files
This white paper aims to understand the operation of an Android malware named "*DroidKungFu 2 - A*" and investigate the parameters, code and structure which is created or modified by this malware. It also highlights the mitigation steps which requires the user and the developer to be proactive.
-
19:23
»
Packet Storm Security Misc. Files
This white paper aims to understand the operation of an Android malware named "*DroidKungFu 2 - A*" and investigate the parameters, code and structure which is created or modified by this malware. It also highlights the mitigation steps which requires the user and the developer to be proactive.
-
-
8:01
»
Hack a Day
[Manishi] wrote in to share his latest project, a Bluetooth DSLR controller that works with Android. More than a mere Bluetooth shutter trigger, his device lets you control a wide array of other settings such as aperture, shutter speed, ISO, white balance, focus position and live view. His “YaNis” control system was built using an [...]
-
-
16:01
»
Hack a Day
After learning that Google’s ADK relied on using an Arduino-compatible board, [Benjamin] was disappointed that other microcontroller platforms weren’t invited to the party. Rather than switch camps, he took it upon himself to get the ADK working with his EvalBot. In fact, his modifications should allow the ADK to work with nearly any Stellaris ARM [...]
-
-
16:04
»
Packet Storm Security Recent Files
Whitepaper called Demystifying the Android Malware. It dives into various phases to discuss the hows and whys behind malware implementation for Android.
-
16:04
»
Packet Storm Security Misc. Files
Whitepaper called Demystifying the Android Malware. It dives into various phases to discuss the hows and whys behind malware implementation for Android.
-
4:03
»
Hack a Day
Instructables user [apple_fan] likes vintage telephones from the early 1900s, but while they are nice to look at, they’re clearly not too useful nowadays. He decided to change that, and retrofitted an old operator-dialed telephone with some modern amenities. He gutted the phone, stripping out the large electromagnets and capacitor that were once used to [...]
-
-
9:01
»
Hack a Day
If you spent your weekend outside and away from the Internet, you might have missed the massive liquidation of HP TouchPads on Amazon, woot.com, WalMart, and the HP online store. Normally a $100 fully featured tablet is nothing to scoff at, but there is a catch: The HP TouchPad runs WebOS. WebOS is a fine [...]
-
-
6:01
»
Hack a Day
A pair of security researchers have recently unveiled an interesting new keylogging method (PDF Research Paper) that makes use of a very unlikely smartphone component, your gyroscope. Most smart phones now come equipped with gyroscopes, which can be accessed by any application at any time. [Hao Chen and Lian Cai] were able to use an Android phone’s [...]
-
-
13:01
»
Hack a Day
Here’s an Android headphone add-on so clean that most people won’t know you built it yourself. [Will Robertson] was unsatisfied with the stock headphones that came with his HTC phone, but didn’t want to lose the control interface when upgrading. He built this add-on that lets him control the Android music player. He was inspired [...]
-
-
0:38
»
SecDocs
Authors:
Jesse Burns Tags:
phone Android Event:
Hashdays 2010 Abstract: Jesse Burns, an Android security expert who has been working with the Android platform since before it was released, explains some of the most interesting parts of Android Security. Discussing how Android's powerful security model offers to protect users, and the new types of vulnerabilities that can cause. How Android mechanisms like Binder can act like capabilities or be used to enforce permissions. Jesse will describe android's security enforcement points, discuss experiments in making the platform more flexible, and how several of the key security mechanisms in the platform tend to fail, especially when developers don't properly understand them. Jesse will also discuss some common Android security misconceptions, and make some suggestions about how Android could be further improved, hopefully without adding gross over-complexity. This will include a discussion of a tool that attempts to repackage Android applications with user, rather than developer specified permissions.
-
0:38
»
SecDocs
Authors:
Jesse Burns Tags:
phone Android Event:
Hashdays 2010 Abstract: Jesse Burns, an Android security expert who has been working with the Android platform since before it was released, explains some of the most interesting parts of Android Security. Discussing how Android's powerful security model offers to protect users, and the new types of vulnerabilities that can cause. How Android mechanisms like Binder can act like capabilities or be used to enforce permissions. Jesse will describe android's security enforcement points, discuss experiments in making the platform more flexible, and how several of the key security mechanisms in the platform tend to fail, especially when developers don't properly understand them. Jesse will also discuss some common Android security misconceptions, and make some suggestions about how Android could be further improved, hopefully without adding gross over-complexity. This will include a discussion of a tool that attempts to repackage Android applications with user, rather than developer specified permissions.
-
14:01
»
Hack a Day
The Kinect has been hacked for many purposes, but this Android implementation tutorial is the first we’ve heard of it being used on a mobile phone platform. Although not a finished product at this point, [Raymond's] tutorial is a good starting point for those wanting to experiment with fusing these two technologies. The Kinect programming [...]
-
-
8:42
»
Packet Storm Security Exploits
A 3rd party application may exploit Android's Browser URL loading process in order to inject JavaScript code into an arbitrary domain thus break Android's sandboxing. Versions 2.3.4 and 3.1 have been found vulnerable.
-
8:42
»
Packet Storm Security Recent Files
A 3rd party application may exploit Android's Browser URL loading process in order to inject JavaScript code into an arbitrary domain thus break Android's sandboxing. Versions 2.3.4 and 3.1 have been found vulnerable.
-
8:42
»
Packet Storm Security Misc. Files
A 3rd party application may exploit Android's Browser URL loading process in order to inject JavaScript code into an arbitrary domain thus break Android's sandboxing. Versions 2.3.4 and 3.1 have been found vulnerable.
-
-
13:27
»
Hack a Day
[charliex] from Null Space Labs wrote in to share a project that he and the rest of the gang have been working on over the last few weeks. The team has been remixing and building clones of the Google ADK demo board we saw earlier this year, in hopes of getting a huge batch prepped [...]
-
8:15
»
Packet Storm Security Exploits
File Expert for Android suffers from a vulnerability where users can delete files outside of the FTP root. Versions 3.0.4 and 3.0.5 are confirmed vulnerable.
-
8:15
»
Packet Storm Security Recent Files
File Expert for Android suffers from a vulnerability where users can delete files outside of the FTP root. Versions 3.0.4 and 3.0.5 are confirmed vulnerable.
-
8:15
»
Packet Storm Security Misc. Files
File Expert for Android suffers from a vulnerability where users can delete files outside of the FTP root. Versions 3.0.4 and 3.0.5 are confirmed vulnerable.
-
-
8:14
»
Packet Storm Security Exploits
HTC devices running Android versions 2.1 and 2.2 suffer from a directory traversal vulnerability in the OBEX FTP service. Full details provided.
-
8:14
»
Packet Storm Security Misc. Files
HTC devices running Android versions 2.1 and 2.2 suffer from a directory traversal vulnerability in the OBEX FTP service. Full details provided.
-
-
17:10
»
Hack a Day
Every year, Qualcomm hosts the “Battle of the Schools.” This year the goal was to build homemade contraptions that would be judged on how cool they are. [Doug DeCarme], [Shaver Deyerle], and [Zach Rattner] – three Qualcomm employees at Virginia Tech – built an Android controlled t-shirt cannon for this event and ended up tying with Michigan [...]
-
15:01
»
Hack a Day
The IOIO, a breakout board for Android phones that predates the Android Developer Kit hardware, is a now a little bit easier to upgrade. That’s because [Ytai's] IOIO manager app just his the Android market. The PIC24F that sits proudly on top of the board has always been running a bootloader, but for security reasons it is [...]
-
-
12:01
»
Hack a Day
Here’s an Android accessory project that adds a secondary LCD display. It utilizes the Android Open Accessory Development Kit standard to connect the 16×2 character LCD as a USB device. It pairs an app on the phone which runs transparently with firmware for the ATmega2560-based Arduino compatible board you see to the left. The app [...]
-
13:01
»
Hack a Day
Forget Microsoft Surface, what do you think about having a 32-inch Android-powered touchscreen display in your living room? That possibility might not be too far off, thanks to the engineers over at SKR Technology in Japan. Primarily a company that designs and builds digital signage, they were approached by several customers who wanted a large [...]
-
-
9:05
»
Hack a Day
Here’s a way to gain control of your projects using an Android device. Bluescripts is a free app available in the Android market that makes it a bit easier to make interfaces to send customizable messages. If you have a Bluetooth receiver in your project, connecting to it is as easy as putting the MAC [...]
-
-
8:07
»
Hack a Day
Instructables user [tcollinsworth] is a big fan of his Android smart phone. He practically carries it with him everywhere, so he figured it would be cool to integrate as many of his home electronics with the phone as possible. His garage door openers seemed like easy enough targets, and while he was in the garage, [...]
-
-
6:07
»
Hack a Day
[Jeff] sent in a build of a voice controlled robot he just finished based on the Android ADK and an iRobot Create. The robot is able to obey voice commands telling it where to go. Currently the robot responds to forward, reverse, left, right, stop, and ‘whistle while you work.’ It’s a creative use of [...]
-
-
3:51
»
Hack a Day
[follower] prototyped a 2-line external display for his Nexus One using an Arduino with a USB Host Shield, and the Android Open Accessory Protocol. There are two basic software pieces at work: an Arduino sketch that handles displaying data sent from the phone, and a lightweight android app to detect the presence of the external [...]
-
-
15:01
»
Hack a Day
We remember when retro-gaming required a lot of equipment and a serious time commitment to put together a gaming interface. [Scooter2084] proves that we’ve come a long way with this gaming controller built to complement Android hardware. It’s not immediately obvious from the image above, but the controller itself looks just like Andy the Android. [...]
-
8:04
»
Hack a Day
Once the Google ADK was announced, the team over at [ElectFreaks] jumped right in and started experimenting to see what they could do with the new Arduino/Android interface. While the ADK was great for allowing the two devices to interact over a USB connection, they felt that the system would be far better if it [...]
-
-
16:01
»
Hack a Day
Once [Ruan] over at AndroidClone heard that Android devices were capable of running a full Linux environment, he started contemplating all of the things he might be able to do with a full Linux OS in his pocket. He decided that a portable penetration testing platform would be great to have on hand, so he [...]
-
13:01
»
Hack a Day
We have seen a few neat Google ADK projects pop up since its announcement a few weeks back, and this one is already on the list of our favorites. YouTube user [chrisjrelliot] has put together a great hack demonstrating the ADK’s power and how easy it can be to control devices in real time with [...]
-
4:06
»
Hack a Day
After the announcement of the Android Open Accessory ADK, [Ytai] decided he should get the the ADK running on the IOIO Android breakout board. The first batch of Android ADK boards sold for about $400. While that price has come down considerably, the IOIO is still cheaper and smaller. [Ytai] put the source and all [...]
-
-
10:01
»
Hack a Day
[Pcdevltd] pulled an all-nighter to get his first Android Developer Kit project up and running. Basing the project off of the example that Google used when unveiling the new accessory development hardware, he set to work controlling a marble labyrinth game using his smart phone. What began at 7pm was wrapped up by 5am to [...]
-
-
4:08
»
Hack a Day
[Joe] was experimenting with his Arduino when he started thinking about how he could get it to communicate wirelessly with his Android phone. Bluetooth is an option, but it requires some extra components, and Google’s ADK works as well – just not wirelessly. Instead, he thought it would be neat to see if he could [...]
-
-
5:06
»
Hack a Day
The hackers over at the xda-developers forum always seem to have something awesome brewing, and [fosser2] is no exception. He bought himself a Viewsonic G-tablet, but was a bit disappointed in its lack of a GPS module. He pried the tablet open in hopes of finding a spot where he might be able to cram [...]
-
-
4:10
»
Hack a Day
Google’s Maker Faire exhibit space is swarmed with robots…er, androids. Amidst some cool bipeds and Segway-balancers, our inner sci-fi nerd was most smitten with this hexapod design, which they’ve dubbed SKPR Bot. The “Skipper” is on hand to showcase the ease of various Google technologies: SketchUp, Android OS and the Android Open Accessory Development Kit. The whole project [...]
-
-
14:01
»
Hack a Day
[Rich] needed to come up with a senior design project and decided to combine two things he loved: his Android phone and Super Nintendo. While touchscreen phones are great, he felt that nothing beats the tactile feedback of a physical controller when it comes to gaming. He figured out how the controller’s signaling works, then [...]
-
6:06
»
Hack a Day
[yergacheffe] was able to get his hands on a shiny new Google ADK board about a week before it was announced at I/O, and got busy putting together a neat project to show off some of the ADK’s features. His idea was to meld together the ADK and Google’s new music service, two items he [...]
-
-
6:09
»
Hack a Day
When we heard that Google’s open accessory development standard was forthcoming, we were pretty excited. However once we heard that the reference hardware kit was going to cost nearly $400, our thoughts changed to, “Surely you can’t be serious.” Well, Google is dead serious (and we hear they don’t take kindly to being called Shirley [...]
-
-
14:01
»
Hack a Day
With the recent announcement and release of their ADK, it was only a matter of time before Google started invading your home in a big way. From the looks of it, Google will be jumping into the home lighting market very shortly, which could prove to be quite interesting. Partnering with Florida-based Lighting Sciences, Google is [...]
-
7:03
»
Hack a Day
A new development kit for android was unveiled at the Google I/O 2011 developer conference that officially supports the Arduino. It looks like Google took a cue from Circuits@Home, because the interesting part of this dev kit is the fact that the shield can be put into USB Host mode. That’s great for phones and [...]
-
-
15:11
»
Hack a Day
Pace clocks are used in a variety of sports, from swimming to track. The systems are typically expensive however, often beyond the reach of smaller organizations and underfunded programs. For their electrical and computer engineering final project, Cornell students [Paul Swirhun and Shao-Yu Liang] set out to build a much cheaper alternative to commercial pace [...]
-
-
8:56
»
Hack a Day
Last week, the Internet was alight with stories of iPhone location tracking. While this wasn’t exactly breaking news in security circles, it was new information to many people out there. Lots of blogs were full of commentary on the situation, including ours, with many Android users chiming in saying, “Android doesn’t do that”. Well, that’s [...]
-
-
5:25
»
SecDocs
Tags:
Android Event:
Black Hat Abu Dhabi 2010 Abstract: The well-known way of breaking out of the Android sandbox is using a recent local Linux kernel exploit for privilege escalation. However, why always pick on Linus in Ring-0 when there is so much more to explore in user mode. Join me in a fascinating journey through Android's sandbox implementation with a lot of IPC endpoints, Services, Content providers, Serialisation, Permissions, Activities and much more, all scattered through multiple processes with different privilege levels. From a single point of entry we will build our majestic sandcastle in Android's sandbox, spanning multiple processes to hopefully obtain the holy grail of Android permissions: android.permission.INSTALL_PACKAGES
-
5:25
»
SecDocs
Tags:
Android Event:
Black Hat Abu Dhabi 2010 Abstract: The well-known way of breaking out of the Android sandbox is using a recent local Linux kernel exploit for privilege escalation. However, why always pick on Linus in Ring-0 when there is so much more to explore in user mode. Join me in a fascinating journey through Android's sandbox implementation with a lot of IPC endpoints, Services, Content providers, Serialisation, Permissions, Activities and much more, all scattered through multiple processes with different privilege levels. From a single point of entry we will build our majestic sandcastle in Android's sandbox, spanning multiple processes to hopefully obtain the holy grail of Android permissions: android.permission.INSTALL_PACKAGES
-
-
7:01
»
Hack a Day
Sony Ericsson recently added a new section to their developer world portal called Unlocking the boot loader. They provide all the information and tools needed to root some of their newer Android phones. Of course, this information comes from Sony Ericsson dripping with warnings, disclaimers and warranty-voiding rhetoric. Once you’ve waded through all of that, [...]
-
-
14:01
»
Hack a Day
The world can be a pretty difficult place to navigate when you lack the ability to see it. There are many visually impaired people across the globe, with some figures claiming up to 40 million individuals affected. While walking canes and seeing-eye dogs can be a huge help, [Anirudh] of Multimodal Interactions Group, HP Labs [...]
-
-
13:00
»
Hack a Day
[sparkfun] announced a new board called the IOIO (pronounced “yo-yo”) this week that allows communication from your Android devices to your upcoming projects. The board hasn’t been released yet; [sparkfun] is still pulling together documentation and waiting on their first production run. We do know that the board contains a PIC24F MCU, and will give [...]
-
-
15:00
»
Hack a Day
Here’s a new way to connect an Android phone and a Propeller microcontroller. It’s called the PropBridge and uses a very simple circuit with a voltage regulator, a couple of transistors, and a few resistors. The trick to this method lies in creative use of software features that already exist on Android hardware, the Android [...]
-
11:01
»
Hack a Day
Instructables user [tanbata] recently got his hands on a Google Anroid figurine and thought that while it looked great, it served no real purpose. He decided to change that, and converted this once-useless hunk of plastic into a miniature robot that moves and responds to sound. He pried of the head of the figure and [...]
-
-
9:01
»
Hack a Day
For those that are unaware, Androids are often judged by where they fall on the uncanny valley curve, a graph that maps human revulsion to robots that closely resemble humans but are just a bit off (similar to how a corpse resembles a living person). This offering jumps right over that dip of the curve [...]
-
10:45
»
SecDocs
Authors:
Itzhak Avraham Tags:
phone Android Event:
Black Hat DC 2011 Abstract: The attendees will gain knowledge on how to exploit ARM buffer overflows, use Ret2ZP attack and will demo a vulnerable application that is in current Android and can be used for remote attacks(!). Also, We'll cover the problems with native/mixed code debugging, issues with current implementations of Androids and how ARM exploits can be used if better security prevention techniques is being implied (like XN bit - same as NX bit on X86).
-
10:44
»
SecDocs
Authors:
Itzhak Avraham Tags:
phone Android Event:
Black Hat DC 2011 Abstract: The attendees will gain knowledge on how to exploit ARM buffer overflows, use Ret2ZP attack and will demo a vulnerable application that is in current Android and can be used for remote attacks(!). Also, We'll cover the problems with native/mixed code debugging, issues with current implementations of Androids and how ARM exploits can be used if better security prevention techniques is being implied (like XN bit - same as NX bit on X86).
-
-
5:00
»
Hack a Day
[bill2009] wanted to reuse some common seven segment LCDs, but the question was how to drive them. Armed with a couple application notes from [Microchip] and [Atmel], an oscilloscope and an Arduino, he has made a proof of concept which shows its not super hard to drive those little reflective LCDs that so many devices [...]
-
-
9:36
»
Hack a Day
Upon learning that the Nexus S smartphone was equipped with a Near Field Communications NFC) radio, [Eric Butler] decided he would put the newly released Gingerbread SDK to good use. Focusing initially on ORCA fare cards used by several Washington state transit systems, he built an open-source application he calls FareBot, which can read data [...]
-
-
12:16
»
Hack a Day
[Deeper-blue] has released all the files necessary to get Android honeycomb working on your nook color. We had a chance to play with the nook color for a bit, but ours was only on Android version 2.1. It seems like they’ve come a long way with the capabilities of this simple e-reader since then. While [...]
-
6:28
»
Hack a Day
This very informative talk given at Shmoocon 2011 has been posted over at IronGeek. Covering all kinds of angles that a person could attack someones computer through the USB port, this should be read by anyone who is security minded at all. No matter which side of the port you tend to be on, this [...]
-
-
13:00
»
Hack a Day
[Lucas Fragomeni] is controlling this robot using the accelerometer on his Android phone (translated). He could have gone through our Android tutorials and developed a custom application but he took the shorter route and used Amarino, an ‘Android meets Arduino’ toolkit, to do it for him. [Lucas] combined an Arduino, a BlueSMiRF Bluetooth modem, and two servo [...]
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
SecuriTeam
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Darknet
The Exploitant
