«
Expand/Collapse
48 items tagged "art"
Related tags:
black hat [+],
usa [+],
application [+],
vulnerability [+],
office art [+],
zero day [+],
slides [+],
zero [+],
mining [+],
minds [+],
mark ryan del moral [+],
mark ryan [+],
intelligence data [+],
dangerous minds [+],
toxin [+],
soul design [+],
soul [+],
script [+],
perl script [+],
office [+],
lan [+],
forensic analysis [+],
design [+],
defiling [+],
defeating [+],
day [+],
art and soul [+],
arp [+],
arbitrary code [+],
writing secure code [+],
whitepaper [+],
vulnerabilities [+],
voip [+],
unpacking [+],
sip [+],
secure [+],
science [+],
paul bhm [+],
paper [+],
misc [+],
microsoft office user [+],
mark vincent yason [+],
mark vincent [+],
magic [+],
information [+],
human brain works [+],
how the human brain works [+],
hackaday [+],
gathering [+],
forensic [+],
footprinting [+],
engineering [+],
digital [+],
dale pearson tags [+],
dale pearson [+],
code authors [+],
authors [+],
audio [+],
asia [+],
art of [+],
art and science [+],
arabic [+],
Bugs [+],
xmos [+],
work [+],
window message [+],
whistle [+],
web [+],
virtual art [+],
virtual [+],
video [+],
unix [+],
turntable [+],
tool [+],
tim [+],
tienda [+],
theo kamecke [+],
theo [+],
tags [+],
t scott [+],
swarm [+],
superplexus [+],
striking pieces [+],
stephen [+],
static art [+],
squidfoo [+],
sql injection [+],
springfield missouri [+],
springfield [+],
souvenir [+],
simple art [+],
sharingan [+],
sequencer [+],
sculptural [+],
screen [+],
scott sauer [+],
school of the art institute [+],
robotics [+],
rear ends [+],
reality environment [+],
reality [+],
ray [+],
quite some time [+],
pirated [+],
piece [+],
photography [+],
phil broussard [+],
pedro [+],
pedestrian mall [+],
ninja art [+],
ninja [+],
nick harbour [+],
multiple exposures [+],
motion blur [+],
missouri [+],
michael sutton [+],
medium [+],
mazine [+],
mall [+],
mad scientist [+],
little art [+],
links [+],
light sensors [+],
light art [+],
light [+],
lee miller [+],
led [+],
laptops [+],
laptop screen [+],
laptop lcd screen [+],
laptop [+],
lamp [+],
la rambla [+],
james [+],
iphone [+],
ipad [+],
intros [+],
installation [+],
hari kari [+],
harddrive [+],
hammacher schlemmer [+],
hackerspace [+],
guerrilla [+],
generic mechanism [+],
generative art [+],
gautam tags [+],
fuzzing [+],
funky beat [+],
fredrik petrini [+],
format [+],
file [+],
faux stained glass [+],
excel user [+],
discharge lamp [+],
delta [+],
daniel bertner [+],
dan roe [+],
dan kaminsky [+],
dan [+],
creepy [+],
coachella [+],
cnc [+],
classic [+],
circuit [+],
chicago [+],
chaos communication congress [+],
chaos [+],
cameras [+],
camera trickery [+],
camera [+],
burning desire [+],
browser [+],
brad pitt [+],
boston [+],
board artwork [+],
board [+],
black art [+],
black [+],
binary [+],
beat [+],
barcelona [+],
bachelor of fine arts [+],
art presentations [+],
art institute of chicago [+],
art installation [+],
art basel [+],
arduino [+],
application compatibility [+],
adam greene [+],
Software [+],
3gs [+],
3d cubes [+],
3d animations [+],
hacks [+]
-
-
14:01
»
Hack a Day
I am particularly pleased to be announcing SquidFoo, an Art gallery/studio and hackerspace in Springfield Missouri (hackerspaces.org link). For those unaware, this small town is where I’m located (Brad Pitt came from here too!). I would love to take credit for this hackerspace, but I can’t. [Scott Sauer] and [Phil Broussard] created it and reached [...]
-
-
9:57
»
Packet Storm Security Recent Files
ARP Toxin is a simple Perl script designed to ARP poison a host on the LAN. It uses Nemesis as a packet crafting tool to create and send the ARP packets. It is NOT original code, merely a slightly improved version of the sample arpredirect script from the book "Hacking: The Art of Exploitation". This variant allows one to set their own poisoning interval and interface to poison on.
-
9:57
»
Packet Storm Security Tools
ARP Toxin is a simple Perl script designed to ARP poison a host on the LAN. It uses Nemesis as a packet crafting tool to create and send the ARP packets. It is NOT original code, merely a slightly improved version of the sample arpredirect script from the book "Hacking: The Art of Exploitation". This variant allows one to set their own poisoning interval and interface to poison on.
-
9:57
»
Packet Storm Security Misc. Files
ARP Toxin is a simple Perl script designed to ARP poison a host on the LAN. It uses Nemesis as a packet crafting tool to create and send the ARP packets. It is NOT original code, merely a slightly improved version of the sample arpredirect script from the book "Hacking: The Art of Exploitation". This variant allows one to set their own poisoning interval and interface to poison on.
-
-
7:01
»
Hack a Day
The creation you see above is the work of art student [Daniel Bertner] who is wrapping up his Bachelor of Fine Arts degree at the School of the Art Institute of Chicago. He calls the incredibly intriguing, yet somewhat disturbing device “TIM”, which is short for Tracking Interactive Mechanism. A culmination of different projects he [...]
-
-
3:37
»
SecDocs
Authors:
Nick Harbour Tags:
Windows exploiting Event:
Black Hat USA 2010 Abstract: This presentation will unveil a new tool for hijacking executables and discuss the underlying techniques it uses. Binject is a tool that can be used by pen-testers to establish a persistent foothold on a compromised host through trojanizing a system binary, or anyone with a burning desire to add functionality to a compiled program. Original techniques for process injection developed for this tool will be discussed in detail.
-
-
9:04
»
Hack a Day
[Pedro] had a busted laptop LCD screen on his hands, but rather than throw it out, he brainstormed what he could possibly do with what would typically be considered a worthless item. He decided to make a simple art installation using the scrapped part, so he gathered a few other supplies and got to work. [...]
-
-
23:49
»
SecDocs
Authors:
Dale Pearson Tags:
social engineering Event:
Hashdays 2010 Abstract: Social Engineering is considered by many as a sort of magical art form in the Infosec world, some of the best at it must have Jedi like powers to get into some of the places they do. The magic or art of SE is all about creating a situation that suggests you belong, and are perceived to be just like everyone else just going about your business. Some people have a natural flare for SE, they are good at building rapport and are generally likeable. People say that SE exists because of human stupidity and there is no patch for it, but what if you can understand why the human brain is susceptible, if you understand this better can you be more successful in your SE exploits, and can you use this to educate and perhaps help apply that patch. During my talk I will discuss how I looked at methods and skills that can be learnt to better understand how the human brain works, and how it can be manipulated. This will take us on the journey and fun of looking at NLP patterns, mentalism and becoming a hypnotist myself. We will talk about why these skills can improve your success as a social engineer, as well as being more aware of being manipulated yourself.
-
-
12:16
»
SecDocs
-
12:16
»
SecDocs
-
-
9:30
»
Hack a Day
The team at [blablabLAB] have been hard at work on their latest project, which they unleashed on the streets of Barcelona in the La Rambla pedestrian mall. Their art installation allows you to pose in the middle of the mall and receive a plastic statue of yourself as a souvenir. Not unlike the “Fabricate Yourself” [...]
-
-
10:01
»
Hack a Day
A new project from [James] targets the iPhone with this wild generative art in an Augmented Reality environment (free) app for 3GS and 4 running running iOS 4+. Powered by the String augmented reality library, and written in C + OpenGL the combo present a power AR platform offering over 100,000 polygons on screen with [...]
-
-
5:01
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 11-044 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Powerpoint 2007. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with the way the application will parse external objects within an Office Art container. When parsing this object, the application will append an uninitialized object to a list. When destroying this object during document close (WM_DESTROY), the application will access a method that doesn't exist. This can lead to code execution under the context of the application.
-
5:01
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 11-044 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Powerpoint 2007. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with the way the application will parse external objects within an Office Art container. When parsing this object, the application will append an uninitialized object to a list. When destroying this object during document close (WM_DESTROY), the application will access a method that doesn't exist. This can lead to code execution under the context of the application.
-
5:01
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 11-044 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Powerpoint 2007. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with the way the application will parse external objects within an Office Art container. When parsing this object, the application will append an uninitialized object to a list. When destroying this object during document close (WM_DESTROY), the application will access a method that doesn't exist. This can lead to code execution under the context of the application.
-
3:04
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 11-041 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way the application parses an Office Art record within a Microsoft Excel Document. Specifically, when parsing an office art object record, if an error occurs, the application will add a stray reference to an element which is part of a linked list. When receiving a window message, the application will proceed to navigate this linked list. This will access a method from the malformed object which can lead to code execution under the context of the application.
-
-
8:55
»
SecDocs
Authors:
Dale Pearson Tags:
social engineering Event:
Hashdays 2010 Abstract: Social Engineering is considered by many as a sort of magical art form in the Infosec world, some of the best at it must have Jedi like powers to get into some of the places they do. The magic or art of SE is all about creating a situation that suggests you belong, and are perceived to be just like everyone else just going about your business. Some people have a natural flare for SE, they are good at building rapport and are generally likeable. People say that SE exists because of human stupidity and there is no patch for it, but what if you can understand why the human brain is susceptible, if you understand this better can you be more successful in your SE exploits, and can you use this to educate and perhaps help apply that patch. During my talk I will discuss how I looked at methods and skills that can be learnt to better understand how the human brain works, and how it can be manipulated. This will take us on the journey and fun of looking at NLP patterns, mentalism and becoming a hypnotist myself. We will talk about why these skills can improve your success as a social engineer, as well as being more aware of being manipulated yourself.
-
-
14:36
»
SecDocs
-
-
22:02
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 10-246 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application frees resources when parsing a malformed Office Art record. Due to the application not properly freeing up resources during handling a parsing error, the application will later access the freed reference which can lead to code execution under the context of the application.
-
22:01
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 10-246 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application frees resources when parsing a malformed Office Art record. Due to the application not properly freeing up resources during handling a parsing error, the application will later access the freed reference which can lead to code execution under the context of the application.
-
-
6:00
»
Hack a Day
[Dan Roe] has been working on Sculptural Robotics for quite some time, and most recently presented his newest creation: Solar Flowers 2010. Typically, Sculptural Robotics (coined by [Dan] himself) are stand alone, static art presentations made from electronic components and wire. [Dan] of course has taken it quite a bit further; giving all his sculptures [...]
-
-
10:19
»
Hack a Day
This light art is created by a moving display playing an animated image through several camera exposures. In this case the display they’re using is an iPad, but that really doesn’t matter as it’s just a high-quality screen and it’s portable. 3D animations are generated in software and then sliced into cross sections. As the camera [...]
-
-
8:00
»
Hack a Day
[Theo Kamecke] is an artist who produces striking pieces using printed circuit boards. We’ve seen PCBs used as faux stained-glass before, but [Theo's] craftsmanship stands apart from everything we’ve seen. His webpage has at least one piece that sites the usage of vintage 1960′s circuit boards, but we wonder if he doesn’t design some of [...]
-
-
13:00
»
Hack a Day
What has 9000 LEDs, 3000 MSP430 processors, six XMOS XC-2 Ethernet modules, and goes blinkity-blink-blink? It’s Swarm Light, an art installation shown at this year’s Art Basel exhibition. [Fredrik Petrini] worked on the hardware that went into building the group of three 3D cubes of LED light modules. Unlike so many art pieces we see [...]
-
-
10:00
»
Hack a Day
This little art piece might be just the thing to add that mad scientist look to your room. It’s called the Coachella lamp and it makes use of several throwback display devices. At the top an Argon discharge lamp puts out ultraviolet light. Protruding from each of the four sides you can see a set [...]
-
-
21:03
»
SecDocs
Authors:
Dan Kaminsky Tags:
web application web Event:
Source Conference Boston 2010 Abstract: The web is remarkably difficult to secure. Browsers are ornery, powerful creations, and we security people demand all sorts of things of developers to make them behave. By in large, the developers ignore us. Our asks, they say, are too expensive. Rather than just guilting them, could we make better asks -- of both web developers, and browser manufacturers? Possibly. In this talk, I explore a couple of interesting techniques for easily mitigating entire classes of Cross Site Scripting and Cross Site Request Forgery attacks. They aren't perfect, but they work, and more importantly they represent a new class of ask for browser manufacturers that might even be implementable past the genuinely more powerful forces of application compatibility, performance, and developer compliance. I will also discuss Treelocking, a generic mechanism for mitigating injections into protocols as diverse as SQL, LDAP, XML, and JSON.
-
-
2:17
»
SecDocs
-
2:17
»
SecDocs
-
2:17
»
SecDocs
-
2:17
»
SecDocs
-
-
7:24
»
Hack a Day
$30,000?
Is it art or is it a puzzle? Well, it functions as a game but it’s certainly a work of art and priced accordingly. The Superplexus was featured in Make Mazine and Hammacher Schlemmer sells it for thirty grand (you can’t just click to add it to your cart though). Think of the work that [...]
-
-
21:13
»
SecDocs
Tags:
culture Event:
Chaos Communication Congress 26th (26C3) 2009 Abstract: At its heart, photography is a ridiculous hack to make pictures from light. In the 170 years since Talbot and Daguerre, techniques have been cleaned up and simplified. A field that once demanded experimentation and had no clear way of doing it right, now attracts many who haven't a clue why it all works. Innovation and new techniques occur on the edges - they are the beautiful fragments scattered in disaster, the sloppy chaos of the unknown. Discovery happens by doing it wrong. Beyond the traditions, beyond the rules, there be dragons, and they are the best teachers of all. In this talk, I will discuss the concept of fluency as it relates to photography, and how confidence in the medium is a direct result of doing it all wrong. Broken and inadequate equipment drives quick adaptation, because it has to work (in some definition of work) immediately. What are the absolute essentials of getting this photograph, right now? Right now is all there is. With fluency comes greater experimentation. Knowing the rules of a medium means knowing how to break them effectively. Experimental artists, like hackers, use the flaws and weaknesses of their medium to bend it to their will. New techniques are often discovered by accident or through questioning "what happens if I...?" Over time, some of these techniques, like solarization and multiple exposures, have become standard. What happens out at the borders where things break, where things are unpredictable? I will share some of my own processes as well as some by other artists, both historical and contemporary. Early photographers exploited motion blur that resulted from long exposures (half hour exposures were once the norm). Exposing a sheet of film more than once, intentionally or not, results in a composite image. Solarization, a partial darkening of highlight areas in a print or lightening of shadows in a negative, was made famous by the surrealist photographers Lee Miller and Man Ray. Even the corruption of digital files has been used for artistic effect. Something is only really a flaw before a suitable application is understood. To do it wrong, wholeheartedly, is to abandon the myth of perfection and predictibility in favor of discovery.
-
-
11:00
»
Hack a Day
[Stephen] built a sequencer that uses a turntable and light sensors to lay down a funky beat. If you like creepy videos with repeated gratuitous corderoy-clad rear-ends we’ve got you covered after the break. Art film aside, he’s got an interesting project. Four light sensors are mounted below the turning record with LEDs hovering above. [...]
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
SecuriTeam
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Wirevolution