«
Expand/Collapse
120 items tagged "bit"
Related tags:
vulnerability [+],
linux kernel [+],
zero day [+],
information disclosure vulnerability [+],
classic [+],
computer [+],
libpng [+],
interlaced images [+],
interlaced [+],
images information [+],
arbitrary code [+],
txt [+],
system [+],
service vulnerability [+],
news [+],
misc [+],
microcontrollers [+],
home [+],
hackaday [+],
denial of service [+],
bit computer [+],
arduino [+],
hacks [+],
zero [+],
weaver [+],
underflow [+],
table [+],
stack pointer [+],
stack [+],
pcs [+],
microcontroller [+],
java runtime environment [+],
inclusion [+],
hash table [+],
hash functions [+],
hash [+],
compat [+],
brute force [+],
bit systems [+],
applet [+],
android [+],
ARM [+],
windows [+],
win [+],
video [+],
unpacking [+],
scott [+],
root privileges [+],
robots [+],
quinn dunki [+],
project [+],
processor [+],
prevention techniques [+],
pal [+],
musical [+],
memory ranges [+],
memory leak [+],
lot [+],
links [+],
led [+],
kernel memory [+],
itzhak [+],
informatics [+],
ftp [+],
font resources [+],
execution [+],
directory traversal vulnerability [+],
dino [+],
day [+],
controller [+],
code [+],
child elements [+],
buffer overflow [+],
better security [+],
ben hawkes [+],
architecture [+],
application [+],
Software [+],
zilog z80 [+],
zdi [+],
z80 [+],
yutaka [+],
wireless motion [+],
wireless data transmission [+],
window hangings [+],
win32 [+],
william [+],
vision sensor [+],
vinod [+],
vigo [+],
video object [+],
video game system [+],
veronica [+],
usn [+],
user [+],
update [+],
twitter [+],
tutorial [+],
turn signals [+],
turn [+],
tube amp [+],
tremolo [+],
toy [+],
tool [+],
tiny bit [+],
time [+],
tim [+],
throughput [+],
thin clients [+],
thermal printer [+],
tetris [+],
technological development [+],
tdl [+],
tactile [+],
system updates [+],
system clock [+],
synthesizer [+],
super nintendo [+],
subtracting numbers [+],
stupid thread [+],
study [+],
studio [+],
street legal [+],
starfiremx [+],
square wave [+],
square holes [+],
spherical [+],
spartan [+],
sound [+],
slides [+],
simulation [+],
shortage [+],
shaft [+],
servo [+],
segment [+],
security reasons [+],
scissors [+],
scientist [+],
schematics [+],
scanning [+],
sarnoff [+],
saito [+],
rootkit [+],
roller [+],
rock city [+],
robert [+],
rob miles [+],
rle [+],
rig [+],
reprap [+],
read [+],
rants [+],
quot [+],
question [+],
questio [+],
ps 2 [+],
prototype [+],
programming microcontrollers [+],
programmer [+],
programmable logic [+],
probleme avec windows [+],
printer [+],
printed fabric [+],
precision [+],
power consumption [+],
power [+],
potentiometer [+],
poor attitude [+],
pleasing sound [+],
play [+],
plastic insert [+],
pirate bay [+],
picaxe [+],
pic development [+],
philco radio [+],
philco model [+],
phil [+],
personality [+],
permanent service [+],
peripherals [+],
pencil tip [+],
pencil holder [+],
pencil [+],
pc enthusiast [+],
paper [+],
oskar [+],
open source software [+],
open source project [+],
ns geode [+],
notifier [+],
nintendo entertainment system [+],
nintendo [+],
nibble [+],
navigator [+],
multitouch [+],
mouth [+],
motorola 6809 [+],
motorcycle headlight [+],
motion [+],
mood light [+],
modus operandi [+],
mod code [+],
mips [+],
minecraft [+],
midi synthesizer [+],
midi [+],
microprocessor [+],
messagebox [+],
mempodipper [+],
memory protection [+],
maze [+],
matthew arnoff [+],
matt sarnoff [+],
matt richardson [+],
materiel [+],
manuel [+],
malware [+],
mad scientist [+],
luna mod [+],
luis cruz [+],
logic ic [+],
logic chip [+],
logic [+],
local science [+],
local [+],
little bit [+],
line printers [+],
level languages [+],
lenore [+],
leds [+],
lazarus [+],
launcher [+],
laptops [+],
laptop [+],
kit [+],
kim dotcom [+],
keyboard interface [+],
keyboard [+],
junkyard [+],
jordan [+],
jai [+],
jack eisenmann [+],
itzhak avraham tags [+],
isa [+],
iphone [+],
ioio [+],
interface card [+],
instructables [+],
instructable [+],
installer windows [+],
indie [+],
ide [+],
human tetris [+],
heck [+],
hardware platform [+],
handy gadgets [+],
hand [+],
hacker [+],
gps [+],
government [+],
google translation [+],
google [+],
geode gx1 [+],
generales [+],
gaming [+],
gamesphere [+],
game system [+],
game play [+],
full adder [+],
fpgas [+],
field structures [+],
field [+],
feed samples [+],
fabric [+],
exploits [+],
experimenting [+],
exist il [+],
ethernet frames [+],
eric gregory [+],
eric [+],
entertainment [+],
elite 4 [+],
elite [+],
electronic real estate [+],
electromechanical [+],
eisenmann [+],
editorial freedom [+],
ecran [+],
duo [+],
dos vulnerability [+],
dogs [+],
displaying graphics [+],
discrete transistors [+],
digital [+],
development [+],
developer kit [+],
desk [+],
derek enos [+],
depth [+],
darknet [+],
daisy chain [+],
cylon [+],
custom libraries [+],
craig bishop [+],
craig [+],
control purposes [+],
control [+],
computing [+],
comment [+],
color [+],
code execution [+],
cluster computing [+],
clpd [+],
clock source [+],
classifieds [+],
city navigator [+],
chumby [+],
christmas lights [+],
christmas [+],
chomping at the bit [+],
chips [+],
capacitors [+],
calculator [+],
c language [+],
c bit [+],
burning man [+],
building a computer [+],
build [+],
brightness value [+],
breadboard [+],
bootloader [+],
blue leds [+],
black [+],
bit operating system [+],
bit depth [+],
bit architecture [+],
bipedal [+],
bill of materials [+],
becoming [+],
beaglebone [+],
battery life [+],
based computer [+],
baremetal [+],
ball [+],
balancer [+],
avr chip [+],
avr [+],
authors [+],
audio [+],
atmega32 [+],
assembly [+],
apple quicktime [+],
apple products [+],
animatronic [+],
alu [+],
aka alureon [+],
administrator [+],
adder [+],
adam papamarcos [+],
Support [+],
Programming [+],
HackIt [+],
General [+],
Discussions [+],
Discussion [+],
BackTrack [+],
64 bits [+],
64 bit windows [+],
555 timers [+],
kernel [+],
test targets [+],
random pool [+],
irisa [+],
haveged [+],
expansion algorithm [+],
algorithm [+],
linux [+]
-
-
5:01
»
Hack a Day
Very rarely do we see an Instructable so complete, and so informative, that it’s a paragon of tutorials that all Instructables should aspire to. [8 Bit Spaghetti]‘s How to Build an 8-bit computer is one of those tutorials. [8 Bit Spaghetti]‘s build began on his blog. He originally planned to build a 4-bit computer but decided a [...]
-
-
16:01
»
Hack a Day
[Kyle] has been hard at working building an 8-bit computer from the ground up. He’s using a set of logic IC’s for the various components, and some NVRAM chips to store the control words. What you see above is the roadmap for his instruction set. He’s just started writing them to the chips, making the [...]
-
-
11:01
»
Hack a Day
You’re going to want to do some stretching before undertaking a soldering project like this one. We’re betting that the physical toll of assembling this 4-bit discrete processor project is starting to drive [SV3ORA] just a bit crazy. This small piece of electronic real estate is playing host to 62 transistors so far, and he’s not [...]
-
-
10:02
»
Hack a Day
[Vinod] has done a lot of work with microcontrollers, but this is his first try at displaying graphics using composite video. He had a small PAL television on hand, and an ATmega32 which just needs a stable clock source and a few resistors to get things going. There are a lot of other hacks around [...]
-
-
9:01
»
Hack a Day
There is no shortage of government and entertainment-related agencies chomping at the bit to shut down the Pirate Bay for good. While the group has not suffered a permanent service ending raid like [Kim Dotcom] and the Megaupload crew, they are always thinking up novel ways to ensure that the site can endure whatever law [...]
-
-
9:01
»
Hack a Day
While Hack a Day’s modus operandi is serving up hacks from around the Internet, sometimes we feel the need to exercise a bit of editorial freedom. A thousand words is a bit awkward for the front page, so feel free to skip the break and head straight to the full text of this article. It’s no [...]
-
-
11:01
»
Hack a Day
If you comfortable working with 8-bit microcontrollers, the thought of moving to a hardware platform running embedded Linux may be a bit daunting. After all, there’s a lot going on between you and the chips on a board like the BeagleBone seen above. But [Matt Richardson] shows how easy it can be to get at [...]
-
-
16:24
»
Hack a Day
We’ve enjoyed seeing the development progress of Veronica, [Quinn Dunki's] 8-bit computer project. It started out on a breadboard, then moved to edge-connected PCBs, and now [Quinn] has given Veronica a body of her own. The donor is a Philco Model 42-327T and was produced in 1942. It was chosen because it is non-functional and [...]
-
-
14:29
»
Packet Storm Security Recent Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
14:29
»
Packet Storm Security Tools
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
14:29
»
Packet Storm Security Misc. Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
-
10:19
»
Packet Storm Security Exploits
Local root exploit for Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms that leverages a flaw in the compat_alloc_user_space functions.
-
10:19
»
Packet Storm Security Misc. Files
Local root exploit for Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms that leverages a flaw in the compat_alloc_user_space functions.
-
-
9:49
»
Packet Storm Security Advisories
Most hash functions used in hash table implementations can be broken faster than by using brute-force techniques (which is feasible for hash functions with 32 bit output, but very expensive for 64 bit functions) by using one of two "tricks": equivalent substrings or a meet-in-the-middle attack.
-
9:49
»
Packet Storm Security Recent Files
Most hash functions used in hash table implementations can be broken faster than by using brute-force techniques (which is feasible for hash functions with 32 bit output, but very expensive for 64 bit functions) by using one of two "tricks": equivalent substrings or a meet-in-the-middle attack.
-
9:49
»
Packet Storm Security Misc. Files
Most hash functions used in hash table implementations can be broken faster than by using brute-force techniques (which is feasible for hash functions with 32 bit output, but very expensive for 64 bit functions) by using one of two "tricks": equivalent substrings or a meet-in-the-middle attack.
-
-
6:11
»
Hack a Day
Drilling square holes We’re still a bit baffled by the physics of this, but apparently it’s possible to drill a square hole with a round bit. This video shows square holes being milled using a cutter which is offset from the center of the bit. [Thanks Jordan] LED Motorcycle headlight driven by mains [William] found a [...]
-
-
14:01
»
Hack a Day
[Quinn Dunki] keeps rolling with her 6502 based computer build. This time around she’s added some memory to store the programs, but needed a way to get that code into the device. Above is her solution, a bank of hex switches used to program the 8-bit command and 16-bit address for each line of machine [...]
-
-
10:01
»
Hack a Day
Looks like [Dino] is getting the band back together. After a junkyard tube amp and a DIY tremolo stompbox, he’s back again, this time doing a bit of sound treatment in his studio. Most rooms naturally have a bit of flutter echo. You’ll notice this when you move into an apartment or new house – [...]
-
-
8:01
»
Hack a Day
So you’re getting better at programming microcontrollers and now you want to do several things at once? You know better than that, microcontrollers are only capable of processing one thing at a time. But if you’re clever with your coding you can achieve something that behaves as if several things are going on at once. [...]
-
-
17:41
»
Packet Storm Security Recent Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
17:41
»
Packet Storm Security Tools
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
17:41
»
Packet Storm Security Misc. Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
-
16:00
»
Packet Storm Security Recent Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
16:00
»
Packet Storm Security Tools
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
16:00
»
Packet Storm Security Misc. Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
-
10:01
»
Hack a Day
[Oskar] has been making puzzles for some time now. In 2000, he made a small electromechanical 4-bit maze that’s really fun to play. Lately though, he’s been working on an improved version that could be the beginnings of a commercial product. The earlier electromechanical maze (you can play it in an applet on that page) [...]
-
-
9:01
»
Hack a Day
[StarfireMX] churned out a fantastic turn signal replacement for his Mustang. When he switches on his blinker, a chasing pattern of amber LEDs is shown on the front corner of his car. Pretty cool, and as far as we can tell this is still street legal. But once he gets onto private property [StarfireMX] can [...]
-
-
7:04
»
Hack a Day
Anyone reading this post has undoubtedly used a keyboard. How they work, however, is a bit more complicated than “one button, one input.” [PyroElectro] has a great tutorial about building a PS/2 keyboard interface with a 7-segment LED display (video after the break). The tutorial also includes quite a bit of theory behind it. The [...]
-
-
7:06
»
Hack a Day
External EPROM burners are pretty handy gadgets to have around. They obviously can read and write EPROMS, but often times they will also handle a pile of PIC’s, some AVR’s, and other programmable logic like PAL/GAL and CLPD’s. While you can often find old models floating around for cheap (or free in my case) there [...]
-
-
8:05
»
Hack a Day
Feeling a bit left out because he didn’t have a PICAXE on hand, [Rob Miles] decided to port the Luna Mod code so that it would work on an AVR chip. He chose to build his around an ATtiny45, but also mentions that this is Arduino compatible. This case layout is a bit different from [...]
-
-
14:15
»
Hack a Day
We’ve been working hard on this one and finally made a tiny bit of progress. You will find that comments are now nested. We can see there are some slight visual issues, but we’re working on it. Please be patient with us. Another edition you will find is the “report” button. If you find comments [...]
-
-
10:22
»
Hack a Day
[Scott] found the iCufflinks from Adafruit Industries pretty interesting, but he thought that the stated run time of 24 hours was a bit short. He figured he could improve the product’s power consumption at least a little bit, to improve the overall battery life. From their schematics, he placed an order for parts and built [...]
-
-
15:01
»
Hack a Day
The IOIO, a breakout board for Android phones that predates the Android Developer Kit hardware, is a now a little bit easier to upgrade. That’s because [Ytai's] IOIO manager app just his the Android market. The PIC24F that sits proudly on top of the board has always been running a bootloader, but for security reasons it is [...]
-
-
23:51
»
Packet Storm Security Recent Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
23:51
»
Packet Storm Security Tools
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
23:51
»
Packet Storm Security Misc. Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
-
4:05
»
Hack a Day
Let’s admit it, you’re just a little bit vain. Heck, we’re all just a little bit vain when you really think about it. Instructables user [pdxnat] was self-absorbed enough that he constructed an LED “mood light” that alerts him each time someone mentions his user name on Twitter. The build is pretty simple, with most [...]
-
-
6:07
»
Hack a Day
Tim wrote in to tell us about this simple hack where he replaced the stock button lights with some really cool Blue LEDS on an ’87 BMW. He uses some capacitors, to achieve the effect that it takes a bit for the charge to drain out so the lights stay on for a bit after [...]
-
-
11:22
»
Hack a Day
The folks at Return Infinity just released a new version of their BareMetal OS, a 64-bit operating system written entirely in assembly. The goal of the BareMetal project, which includes a stripped-down bootloader and a cluster computing platform is to get away from the inefficient obfuscated machine code generated by higher level languages like C/C++ [...]
-
-
12:42
»
Hack a Day
If you think that your water cooled rig is pretty sweet, check out this creation by Dutch PC enthusiast [Peter Brands] (Google Translation). With his computer tweaked as far as he could imagine, he decided to spruce up his office a bit. In the process, he ended up tweaking his computer just a little bit [...]
-
-
11:38
»
Hack a Day
[Craig] sent in a link to this project which manages to implement color tracking on an 8-bit microcontroller at 60 frames per second. That’s some pretty incredible performance, but we’re also not talking about using a hobby-grade microcontroller. The C8051F360 is an ARM microcontroller with 100 MIPS throughput and with a system clock that can [...]
-
-
5:03
»
Hack a Day
The Nintendo Entertainment System is by far the most popular 8 bit post crash video game system. Therefore, the NES gets all sorts of mods and hacks done with it, but there is not a whole bunch of noise for its bigger badder 16 bit brother the Super Nintendo. Have no fear though [Vigo the [...]
-
-
5:01
»
Hack a Day
[Easton] was looking to enter his local science fair and needed a project that would wow the judges. After considering it for a bit, he decided that an animatronic hand would be a sure winner. Many animatronic projects we have seen are connected to a computer for control purposes, but his is a bit different. [...]
-
-
5:05
»
Hack a Day
A while back, [Dino] built an automatic ball launcher for his dogs, but he wanted to revise it to make it smaller and a bit more user-friendly. While watching an episode of “Prototype This”, he came across a great idea to improve his launcher, so off to the workshop he went. He repurposed a power [...]
-
-
10:45
»
SecDocs
Authors:
Itzhak Avraham Tags:
phone Android Event:
Black Hat DC 2011 Abstract: The attendees will gain knowledge on how to exploit ARM buffer overflows, use Ret2ZP attack and will demo a vulnerable application that is in current Android and can be used for remote attacks(!). Also, We'll cover the problems with native/mixed code debugging, issues with current implementations of Androids and how ARM exploits can be used if better security prevention techniques is being implied (like XN bit - same as NX bit on X86).
-
10:44
»
SecDocs
Authors:
Itzhak Avraham Tags:
phone Android Event:
Black Hat DC 2011 Abstract: The attendees will gain knowledge on how to exploit ARM buffer overflows, use Ret2ZP attack and will demo a vulnerable application that is in current Android and can be used for remote attacks(!). Also, We'll cover the problems with native/mixed code debugging, issues with current implementations of Androids and how ARM exploits can be used if better security prevention techniques is being implied (like XN bit - same as NX bit on X86).
-
-
6:00
»
Hack a Day
This 2-bit adder was a lot of work to build. It uses a total of thirty-six 555 timers and it does have the option of adding or subtracting numbers. It’s a rather unorthodox use of the part, depending more on the chip as an inverter and taking advantage of the fact that there’s an NPN [...]
-
-
7:02
»
Hack a Day
[Derek Enos'] toils are starting to yield results. He’s been working on an 8-bit synthesizer that is MIDI controlled which he calls the deMIDulator. As he demonstrates after the break, the device has sine and square wave functions that produce quite a pleasing sound. But it also offers the option to record your own samples which [...]
-
-
6:06
»
Hack a Day
Only a little bit out of season but better late than never! [Scott] brings us his Black Rock City Navigator. This unique bike mounted GPS device made for Burning Man 2010 features a servo driven array of LEDs. Two LED strips are used to cover the full 240 degrees of the C shaped city without [...]
-
-
8:11
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 11-084 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the findClass method of the sun.plugin2.applet.Applet2ClassLoader class. Due to a failure to properly validate URLs supplied by an implicitly trusted applet, it is possible to execute arbitrary code on Windows 32-bit and 64-bit, as well as Linux 32-bit platforms under the context of the SYSTEM user.
-
8:11
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 11-084 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the findClass method of the sun.plugin2.applet.Applet2ClassLoader class. Due to a failure to properly validate URLs supplied by an implicitly trusted applet, it is possible to execute arbitrary code on Windows 32-bit and 64-bit, as well as Linux 32-bit platforms under the context of the SYSTEM user.
-
8:11
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 11-084 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the findClass method of the sun.plugin2.applet.Applet2ClassLoader class. Due to a failure to properly validate URLs supplied by an implicitly trusted applet, it is possible to execute arbitrary code on Windows 32-bit and 64-bit, as well as Linux 32-bit platforms under the context of the SYSTEM user.
-
-
4:12
»
Packet Storm Security Recent Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
4:12
»
Packet Storm Security Tools
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
4:12
»
Packet Storm Security Misc. Files
haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
-
-
11:57
»
Packet Storm Security Exploits
This exploit takes advantage of the same underflow as the original, but takes a different approach. Instead of underflowing into userspace (which doesn't work on 64-bit systems and is a lot of work), the author uses an underflow to some static values inside of the kernel which are referenced as pointers to userspace. This method is pretty simple and seems to be reliable.
-
11:57
»
Packet Storm Security Recent Files
This exploit takes advantage of the same underflow as the original, but takes a different approach. Instead of underflowing into userspace (which doesn't work on 64-bit systems and is a lot of work), the author uses an underflow to some static values inside of the kernel which are referenced as pointers to userspace. This method is pretty simple and seems to be reliable.
-
11:57
»
Packet Storm Security Misc. Files
This exploit takes advantage of the same underflow as the original, but takes a different approach. Instead of underflowing into userspace (which doesn't work on 64-bit systems and is a lot of work), the author uses an underflow to some static values inside of the kernel which are referenced as pointers to userspace. This method is pretty simple and seems to be reliable.
-
-
5:00
»
Hack a Day
[Matt Sarnoff] is designing his own 8-bit computer from scratch. This means not only designing the hardware but also writing his own kernel and custom libraries. Since we last saw this 8-bit machine hes added both video and sound output which has allowed him to start developing some software for his computer (see it play Conways game [...]
-
-
6:42
»
Hack a Day
[Robert] wanted more out of his GE Color Effects G-35 LED Christmas lights. He reverse engineered and then hacked the protocol the lights use to communicate so that he can control each bulb. A 26-bit frame contains a 6-bit address, an 8-bit brightness value, and a 12-bit color value. The daisy chain topology of the [...]
-
-
12:00
»
Hack a Day
[Bissinblob] has about 70 of these WYSE 3125SE thin clients and is offering them up at $15 a piece plus shipping. That’s quite a steal! The specs are as follows: NS Geode GX1 core (SC2200)266Mhz Flash 32MB RAM 64MB Video 1280×1024(at 8-bit color), 1024×768 (at 16-bit) 10/100 network 3x usb 1x serial 1x parallel 2x [...]
-
9:00
»
Hack a Day
Who wouldn’t want to install this little bot as your newest pencil holder? Place a pencil tip-down and it will keep it from falling using two motors. There is a Dynamic Vision Sensor for each axis that provides feedback, but it’s not the same as using a camera. These sensors pick up changes in pixel [...]
-
-
10:00
»
Hack a Day
[Lenore] added a bit of customization to her office window hangings by fitting roller curtains with custom printed fabric. The treatment seen above is a $20 Enje roller blind from Ikea but that logo is all Evil Mad Science. The weight at the bottom of the fabric uses a friction-fit plastic insert that can be [...]
-
-
12:00
»
Hack a Day
[Phil] over at Retroleum has cobbled together a clean, well put together laptop based entirely around a Zilog Z80 microprocessor and a pair of Spartan II FPGAs. These FPGAs allow him to reduce the number of devices on his board, and therefore cut his production cost as well as device size. He even managed to [...]
-
-
7:13
»
Hack a Day
We all love a little bit of multitouch, but we’ve seen so many setups that it is getting a bit less exciting. This one will get your attention with its unique shape. It is a spherical multitouch using all open source software. Well, since the poles are unusable, it might just be toroidal, or cylindrical, [...]
-
-
6:34
»
Hack a Day
[Eric Gregory] has gone a bit mad scientist on the Chumby, turning it into a bipedal bot. We expected all kinds of cool chumby hacking, but we can’t say we saw this one coming. [Eric] points out that with a 454Mhz processor, 64MB of RAM, 2GB of expandable storage and a USB host port, the [...]
-
-
10:00
»
Hack a Day
Lazarus-64, breadboard game system; certainly sounds like something from the 1980s. We were surprised to find out not only the name, but also all the ICs used are only those available from the retro age of 30 years back (Save for the AVR controlling everything, of course). Even more amazing is how it has 256 [...]
-
8:00
»
Hack a Day
We love games here but we don’t often get a reason to write about them. This, however, is worth mentioning. The indie hit Minecraft is eating the entire internet right now. The game itself is hit and miss amongst our staff, but this project is unanimously accepted as awesome. [Theinternetftw} has created a simulation of [...]
-
-
9:47
»
Hack a Day
Take a few minutes out of your day, grab your scissors, and learn how a simple processor works. [Saito Yutaka] put together an exercise to teach processor operations with paper. After downloading the PDF you can cut out the Address and Data pointer as well as two-bit data tokens for each. The processor has three [...]
-
-
14:01
»
Packet Storm Security Recent Files
Ubuntu Security Notice 988-1 - Ben Hawkes discovered that the Linux kernel did not correctly validate memory ranges on 64bit kernels when allocating memory on behalf of 32bit system calls. On a 64bit system, a local attacker could perform malicious multicast getsockopt calls to gain root privileges. Ben Hawkes discovered that the Linux kernel did not correctly filter registers on 64bit kernels when performing 32bit system calls. On a 64bit system, a local attacker could manipulate 32bit system calls to gain root privileges.
-
14:01
»
Packet Storm Security Advisories
Ubuntu Security Notice 988-1 - Ben Hawkes discovered that the Linux kernel did not correctly validate memory ranges on 64bit kernels when allocating memory on behalf of 32bit system calls. On a 64bit system, a local attacker could perform malicious multicast getsockopt calls to gain root privileges. Ben Hawkes discovered that the Linux kernel did not correctly filter registers on 64bit kernels when performing 32bit system calls. On a 64bit system, a local attacker could manipulate 32bit system calls to gain root privileges.
-
-
10:52
»
Hack a Day
[Manuel] built his own thermal printer based around an Arduino. We’re a bit confused about the parts, his webpage specifies an EFA-1019HW2 print head but the bill of materials on his github shows EPT-1019W2. We can’t find a source for either product number, but we did find similar thermal line printers for as low as [...]
-
-
13:10
»
Hack a Day
[Geordy] wanted to use some IDE devices but he didn’t have an interface card for his XT system, which can’t handle 16-bit IDE. He looked around for 8-bit ISA controllers but they were hard to find and quite expensive. Lucky for him there’s an open source project that makes a solution to this problem. The [...]
-
-
7:33
»
Hack a Day
[Matthew Arnoff] built an 8-bit computer around the Motorola 6809 processor. He chose this processor because it seems there are a lot of Z80 builds out there and he wanted to try something different. This actually packs quite a punch. He’s clocking the machine at 2 MHz with 512 KB of SRAM memory. Compact Flash [...]
-
-
18:24
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 10-132 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the browser's method for parsing child elements out of a particular tag. The application will use a 32-bit index to enumerate them, but will store it in a 16-bit signed integer and then use it to allocate space for a cache. When populating the cache a buffer overflow will occur. This can lead to code execution under the context of the application.
-
18:24
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 10-133 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within handling of references to external font resources. A value is used as a 16 bit integer in an array allocation and later as 32 bit when iterating over and then populating these fields. By creating enough references, a remote attacker can exploit this vulnerability to execute arbitrary code under the context of the browser.
-
18:22
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 10-132 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the browser's method for parsing child elements out of a particular tag. The application will use a 32-bit index to enumerate them, but will store it in a 16-bit signed integer and then use it to allocate space for a cache. When populating the cache a buffer overflow will occur. This can lead to code execution under the context of the application.
-
18:22
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 10-133 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within handling of references to external font resources. A value is used as a 16 bit integer in an array allocation and later as 32 bit when iterating over and then populating these fields. By creating enough references, a remote attacker can exploit this vulnerability to execute arbitrary code under the context of the browser.
-
-
16:00
»
Hack a Day
We’re not sure how we missed [Jack Eisenmann's] 4 bit TTL CPU when we were tipped off the first time, but we’re glad it was sent in again for us to feature it. 41 different ICs (mostly TTL) come together to comprise the DUO 128 Elite. While the architecture is a little different than what [...]
-
-
22:00
»
Packet Storm Security Advisories
Ubuntu Security Notice 947-1 - It was discovered that the Linux kernel did not correctly handle memory protection of the Virtual Dynamic Shared Object page when running a 32-bit application on a 64-bit kernel. It was discovered that the r8169 network driver did not correctly check the size of Ethernet frames. Wei Yongjun discovered that SCTP did not correctly validate certain chunks. It was discovered that KVM did not correctly limit certain privileged IO accesses on x86. Evgeniy Polyakov discovered that IPv6 did not correctly handle certain TUN packets. Tons of other vulnerabilities have also been discovered and addressed.
-
-
9:00
»
Hack a Day
Are you hardcore enough to build your own 32-bit ARM powered gaming console AND use point-to-point soldering to accomplish this? [Craig Bishop] did just that when building his GameSphere console project. First thing’s first, click through the jump and watch the game play video. He wrote that game in the C language in less than [...]
-
-
14:00
»
Hack a Day
Elaborating on an item previously mentioned among last weekend’s Cornell final projects list, this time with video: For their ECE final project, [Adam Papamarcos] and [Kerran Flanagan] implemented a real-time video object tracking system centered around an ATmega644 8-bit microcontroller. Their board ingests an NTSC video camera feed, samples frames at a coarse 39×60 pixel resolution (sufficient for simple [...]
-
-
11:57
»
Hack a Day
It seems a bit late to the party, but Microchip has just announced a family of PIC development boards for Apple products. The three offerings include a digital audio development kit, 8-bit accessory development and charging kit, and a 16-bit accessory development and charging kit for iPhone or iPod.
We’ve seen a lot of homebrew Apple [...]
-
-
13:00
»
Hack a Day
[Luis Cruz] built a gaming console with motion control. The circuit above connects via composite video to a television and communicates with a wireless controller. The controller is on a smaller breadboard which includes an accelerometer for the input and the infrared circuitry necessary for wireless data transmission back to the home system. Take a [...]
-
-
13:05
»
remote-exploit & backtrack
jai installer windows 7 64bit et jai essayer plusieur version de driver pour mon alfa AWUS036H et rien functionne jai toujours en bas a droite un petit ecran avec un x rouge, et des fois 1 fois sur 100 je reussi a connecter mais 5 seconde apres le petit ecran avec le x rouge revien pour me dire aucune connection est disponible.
functionne tres bien sur mon windows xp.
quelqun connais le probleme avec windows 7 64 bit et AWUS06H
merci
-
-
19:58
»
remote-exploit & backtrack
ok, given the audience and the nature of my gripe, i have no doubt that there will be an open season on this post, but as the title says; enough is enough.
i've been on the boards for a while... mostly lurking, mostly learning. i used to post a bit here and there, when i thought i could actually contribute something. for the most part, i tend to keep my mouth shut because i feel that if i can't contribute to the thread, i should just hush. i try to learn what i can from the excellent tutorials and anecdotal stories.
this has been said before and i've read all the tired excuses for the poor attitude and general snobbish, elitist pain-in-the-arse behavior that is exhibited by certain members and more importantly moderators. fact of the matter, it's all crap.
don't get me wrong, if some moron posts "how do i hax0rz my neighbor's wifi?" or whatever, i say release the hounds of hell. i enjoy perusing the idiot's corner for just such posts and i always get a chuckle out of pureh@te's interception of an otherwise stupid thread. between him and streaker69, they probably instilled enough dread to make me think six or seven times before opening my mouth.
but that's not what i'm talking about here. i came back this evening after being away for a bit and i am saddened by the ridiculous behavior of certain mods. it is as though there is some sort of competition between them to see which of them can single-handedly destroy the largest amount of threads for the most banal of reasons (asking a question that the mod finds "ridiculous" for instance). i won't name anyone, a simple search will answer that quick enough and besides, you know who you are already.
you guys should really be ashamed of yourself. i have picked on a poster when they needed a dose of reality, but i have also been patient with people who knew far less than I and were obviously not "ready for prime time". News flash... THAT IS WHY THEY ARE HERE. i have asked some questions that at the time confused me but in retrospect were fairly basic. when i discovered the answer, no matter how much of a moron it made me out to be, i posted it in good humour...in the hopes that it would help someone else in the future.
you guys need to grow up. you need to put this back into perspective and perhaps remember that you are wardens of this community, not errant bullies. having been here longer or having more knowledge on a subject doesn't give you license to be a dick. if anything, it enjoins you to care more, not less. perhaps you have groupies that are impressed with how you put this or that n00b in their place, i am not one of them and i would sincerely hope that i am not alone.
look, i don't want to go off on a tangent here and write the 'great american novel' or anything, i'm just saying that many decent people would probably become more involved with this community (myself included) if there wasn't such a foreboding aura of arrogance and general prickishness. i may very well be wrong, but i'm not entirely sure that mother would approve of all of this.
if someone is being stupid or asinine, by all means call them on it and keep our standards high. but stop screwing with people for just being wrong or perhaps behind the curve. saying "use the search bar" 50 times a day has got to get old, but so does reading your self-important and unnecessary flames.
speaking of flames, i guess i'm ready for what i strongly suspect happens next.
i'm done. go for it.
~b
-
-
12:57
»
Hack a Day
[Antonb] added 10-bit encoding to a standard servo. He’s removed the potentiometer, separated its shaft and used it to rotate a small magnet. By sandwiching an AS5040 rotatory encoder IC into the servo’s housing he can now measure the precise orientation of the servo horn. This is made easier by his tiny breakout board for [...]
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
SecuriTeam
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Wirevolution