October 12, 2017

Packet Analysis

Identifying suspicious network traffic packets

Some indicators of malicious stuff

1. Failed connection/login attempts (first TCP packet via TLS session)

2. RST = Reset   , indicates an error when trying to connect (not always nefarious, usually very common)

3. Low TTL's



The first TCP packet is the handshake (SYN) from Client > Server
 

Server SYN+ACK: after client SYN, server sends SYN+ACK to client.
o Server SYN to initiate server side of TCP stream

o Server ACK to acknowledge client’s SYN packet.

Client ACK: finally, client acknowledges server SYN.

List all TCP streams with  tcp.stream eq 0


Analyze the "Client Hello" from the TLS sessions to look for any inconsistencies
Consider any differences in:
TLS Version
Cipher Suites
Extensions



Selecting one packet in the target TLS/SSL stream.
Then: Analyze->Follow->SSL Stream.

This should display the content of that stream in a pop-up dialog box. It will also automatically set a display filter such that only packets from that TLS/SSL stream will appear in Wireshark’s packet list window.

March 13, 2015

2015 PC Build

Finally picked out some decent parts for my next PC build, and I caught a sale on the case last week on NewEgg. I'm posting the prices I paid for the parts for anyone interested in rough estimate of this build. If I see a comparable product on sale I might just buy it, and will update this list accordingly.

Purchased:
Corsair Carbide Series Air 540 (White)      Got on sale on NewEgg @ $119 shipped

Phantek PH-F140SP 140mm fan (2x)


Planning to buy:
AMD FX-6350  @  $126

ASUS Sabertooth 990FX  @ $180

EVGA SuperNOVA 850w Gold/FullModular @ $155

Will update with fan selections soon, I am also cannibalizing my RAM, videocard, and HDD's from my previous build which will help save some cash.





September 16, 2014

Next Generation Identification - The FBI's new facial-recognition system

"To ensure that those who care for our most vulnerable, those charged with protecting our nation and its citizens, can be trusted."  -Lockheed Martin

As stated above by the creators of this controversial piece of technology, it is to ensure security, not compromise it. Anyone who has ever submitted to a background check, did so because they were applying for some type of sensitive position, or working with someone or something that needed protection. Wouldn't it make sense to continue to watch these people, to ensure they remain trustworthy and responsible? Is one single background check enough? Enough of the cries of "Big Brother!", this tool will help law enforcement do their jobs. I'm sure there are some ways & tools you could use to make your job easier aren't there? Maybe some you haven't even thought about yet. This one is here now, so let's make the best of it, let's learn about it, let's use it for good. A few bad people may get their hands on it, but does that mean we should stop innovating as a society? Remember WikiLeaks? Should we deprive all of humanity any new technology and any chance of progressing, just because we have an irrational fear that somewhere, someday, someone might use it against us? We never would have left the stone age. Let's stop being paranoid, suspicious, and cynical.

"The NGI Program Office mission is to reduce terrorist and criminal activities by improving and expanding biometric identification and criminal history information services through research, evaluation, and implementation of advanced technology within the IAFIS environment." -FBI

  • Project NGI has been in process since 2006 (The privacy threshold analysis was developed in 2006) 
Regardless of the EFF's claims (Electronic Frontier Foundation) of threats to privacy, the project has also been adhering to the Privacy Act. This is not just some amateur, rogue software someone developed in their basement without concern to others well-being. Let's also not forget that Facebook is using the same concept for no real philanthropic purpose at all.

  • People with no criminal history could be impacted.
Let's define "Impacted" here....Impacted how? Their pictures are thrown into a pile of suspects just because they look like the actual criminal? Is that an impact? No, no impact there, their pictures are already in a database somewhere. That is a passive effect of this system. (I'm not saying they should be thrown into a pile of suspects, I'm saying you wouldn't know if that happened or not unless someone called you and told you.)
What if they're actually called into the police station and questioned about the crime based on their photo inclusion? Now we're talking. That's an impact. That would not be good, but there's no evidence of that happening. Where are the stories about computers wrongfully selecting a criminal and convicting them? I've heard of people convicting people, and witnesses lying or picking the wrong person, but haven't heard the one about a computer making the same mistake, though I'm open to studying it, after all, it's humans who build the computers and systems we're talking about.
  • Snowden already gave us a heads-up this was happening.
Nobody seemed to care much or believe him, but as soon as the official announcement comes from the source, direct from the horse's mouth, everyone cries foul. Why? Why not spearhead an operation to counter-attack this, violent, unacceptable intrusion of our privacy?

Why don't we all simmer down and see how many criminals we can catch with this new system first.


Sources:
  1. http://www.wptv.com/news/national/fbi-finishes-1b-facial-recognition-system
  2. http://america.aljazeera.com/articles/2014/9/15/fbi-facial-recognition.html
  3. http://america.aljazeera.com/articles/2014/6/1/nsa-facial-recognition.html
  4. http://www.news.com.au/technology/science/fbis-facial-recognition-system-will-combine-faces-of-criminals-and-ordinary-citizens/story-fn5fsgyc-1227060756329
  5. http://www.lockheedmartin.com/us/products/ngi.html
  6. http://www.fbi.gov/about-us/cjis/fingerprints_biometrics/ngi

July 25, 2014

Google acquires Twitch.tv, Moisture Minder, Online Privacy (AGAIN?!?!)

Google Acquires Twitch.tv

Coming off last week's DOTA2 International Tournament 4 (TI4), we now know how big online PC gaming really is. Didn't think that many people were involved? Ha. Think again, and check the stats, noob! Google has now finally purchased one of the biggest game-streamers there is: Twitch.tv
They purchased it a little late in my opinion, the industry may be at its peak this year and in 2015. There's still room for profits, but if they didn't have the foresight to buy them out last year or the year before, I'm not sure they'll have the foresight to manage it, or get out in time to make that profit they're chasing. I'm sure they're not in it to help the gaming industry, considering Facebook beat them out over the Rift, and I haven't seen many investments in computer gaming recently. Anyway, I wish them luck, and hope to see them at TI5, at least they will draw bigger sponsors and vendors next year.

Moisture Minder Wally

One excuse I have for not blogging the past month is that my water heater failed, and started gushing water directly out of its side. I woke up to one of my small dogs lapping water in the bedroom. I thought to myself in a daze, "I don't remember bringing his water bowl in here, and the direction I'm hearing it from doesn't sound like he's drinking from the toilet, heck he's not even big enough to reach it. He must have peed and is drinking his own pee off the floor. Gross." As I rolled out of bed and set my feet on the tile, they submerged about 2 inches in water. Hot water. I still wasn't sure what was happening, as I stood up, I could hear a faint gushing of water. Sometimes I can hear my upstairs neighbors flush their toilet, or even taking a shower if I listened very carefully (which I don't often do, don't worry) but this was alot louder than those sounds. I walked toward the gushing sound, opened the utility closet, and saw the water rushing from the side of the tank at about the same rate as your shower faucet would be on full blast when filling the tub for a bath. It was that fast. Long story short, I cut the water feed, then I cut the breakers and electricity to the whole house, because to my horror, I saw a surge protector floating in the water with about 7 wires connected. The water covered the entire floor of every room in my 1,200 sqFt condo, I was moved into my parents house for the full month, and it took another 22 days to complete the full restoration of all the old formica cabinets (2 baths and kitchen). The dogs are okay and everything is back to normal.

The point of that story is to let everyone know about this product I read about that would have saved me from all of that crap: The Wally Moisture Minder
You connect a central hub unit to your Wifi, install the app, and then place the wireless sensors anywhere in your home that you are worried may leak one day. The sensors send signals to the app within 5 minutes of detection. It would have saved me alot of time and heartache if I had this product installed at the base of my water heater utility closet that morning. It would have gone off after about 5 minutes or less, and I may have mitigated the damage to only that closet, and been able to replace the water heater. Instead, I had to replace over $17,000 worth of cabinets, furniture, and flooring. I was also out of my home with construction and restoration workers in & out for over a month. Not the best experience. Like a carbon monoxide or smoke detector, everyone should have at least 1 or 2 of these things installed. Technical Papers for the Wally

Online Privacy 2014

Are we still talking about this? I hate to include this in this week's blog, but it's still all over the news. Can everyone just accept the fact that nobody will ever have true privacy? If you want privacy, move to your own island, get off the grid, stay off the internet. I've said it before and I'll say it again: As soon as you go "online", you're signing an invisible TOS that specifies you may fall victim to cybercrime, spammers, hackers, and any other type of electronic evil entity (EEE) you could imagine. Stop doing questionable things online, stop being paranoid. Remember the early 90's? When you would log on AOL 3.0 just to talk to your friends about your day? Join chatrooms to discuss hobbies or other cool stuff? I don't remember being concerned about privacy back then, do you? Why do we have so much to hide today? It's because we've volunteered all of our most secret, private information to go up "into the cloud". WE put it there. Nobody stole it from us. There's nobody to blame here. Would you stop trusting all the banks of the world because the one you used got robbed? No, you wouldn't, so stop crying about the entire internet being insecure. I'll try not to rant about this topic anymore but it just keeps popping up, so I thought I would address it again. If I change my opinion or some hacker/privacy invincibility software finally gets created, I'll post about it. Until then, get a VPN and be smart with your sensitive data. There's not much more we can do.

May 30, 2014

Google's Self-Driving Car & It's Ripple Effect On Traffic

   A recent article has pulled back the curtain surrounding some of the mystery of the Google self-driving car. Instead of processing road conditions and obstacles in real-time, as they happen, the Google car is following a pre-plotted virtual track that has been laid out for it on specified roads. The car still has to react to dynamic and spontaneous events, such as a pedestrian walking out in front of it, or even other human drivers, but I just wanted to help clear the air about what the technology is really capable of, including its limits. As of 2014, there are 2,000 miles "mapped" for Google Car to use, however they also boast that there have been 700,000 miles driven. This means that the same 2,000 mile route has been driven 350 times, it doesn't mean that you could send the Google car off for 700,000 miles alone and it would never crash. The technology of course is still very cutting-edge and impressive, but there's still a lot of work left before they "take over the roads" as everyone seems to be concerned about.

Some questions regarding laws that will be affected by the automated cars include:
Orange - Unanswered Questions
Red - New Problem Created
Green - Problems Solved
  • Gas/maintenance/repair cost 
Who will be responsible for the fuel and maintenance of the vehicle? Will the manufacturer program the vehicle with alerts of low fuel and drive itself to the gas station and fill up? Will it be fully electric? Will the passenger be required to pay for the service to cover the cost of gas?
  • Drunk driving
 Will people be allowed to enter the vehicle drunk? What if they abuse the controls in the vehicle (emergency stop, etc) Can they bring open containers into the vehicle? Why or why not?
  • Distracted driving
 This issue would be eliminated entirely from society. Prove me wrong.
  • Speeding
 Also would not be a problem anymore.
  • Wreckless driving
 The car would always be following the same path, driving at the same speed. There would be no cases of a wildly swerving, out of control Google car flying through neighborhood streets. There would be a lot of wreckless driving though, because there wouldn't be any wrecks!
  • Insurance
 Who would the insurance fall under? Would passengers have to pay for insurance while they're in transit? Would Google only be liable for the health of the passenger and damage to the car? WHat if someone with no other form of transportation wanted to commit a crime, and used the Google car as the getaway vehicle?
  • Seniors
 Senior citizens who are unable to drive any longer would be able to have their freedom back. I live in South Florida so I see alot of really bad older drivers and I also see this as another point which would cut down on accident
  • Young drivers
I counted this as a potential "problem" because younger people, who typically get to experience driving as young as 16, would not have a chance at learning how to drive. They would just sit in the car and go. Eventually we would be phasing out all skills and sense of awareness most of us only use while driving. We would always have video games, though.
  • Accident faults
How could we prove a system malfunction in a Google car? What if two of them crashed? Who would defend or represent the Google car system in a court of law if something ever happened? I listed this as a problem and not a question because it creates the problem of figuring this out, and it is one of the most important problems that should have been solved long before this venture met the pavement.
  • Parking/need for Parking Lots 
Solved with simple math and accounting for annual tourism numbers. The only problem with this plan is that people would have to be willing to carpool, and the Google cars would have to increase in size for mass transit. You wouldn't need parking lots because the car would stop at the curb to unload passengers, it wouldn't need to park anywhere other than its own car lot, or if there were some type of "Park & Wait" program built into this plan.

Future Considerations:
  • Jurassic Park vehicles/Theme park transportation
Let's remember the cars from Jurassic Park. They were on physical tracks, but we're talking about the same thing. We could use these cars on tours (such as Lion Country Safari down here in Florida) or any other zoos or wild adventure setting (think African Safari tours, or other dangerous places). Taking driving out of the equation, you could focus on enjoying the ride and snapping pictures. You could use it for long distance applications also, a 5-hour trip to Key West? No problem. Not as much planning required, and you won't have to worry about missing that exit anymore either.
  • Partial self-driving traffic
Let's say 50% of the population are manual drivers, the other 50% are automated Google cars. What problems would arise? Well, we've had a preview of the interaction, and the only accidents that have happened were because a human rear-ended the Google car. Things would still be somewhat inefficient because the 50% human drivers would still be a bottleneck to the system. Traffic would operate at full efficiency with 100% automated cars.
  • Fully self-driving traffic
With 100% of the cars on the road being fully automated, there wouldn't be a purpose for traffic lights. Think about it, the lights are only to inform humans about what the other lanes are doing, because we can't know or calculate that sort of thing ourselves. But a Google car can. A Google car could see another one coming, and perform calculations (by adjusting speed) to avoid the other cars. In this way, traffic would constantly flow through each other without ever contacting one another (though it may come very close) Cars would only need to come to a full stop when they are dropping off their passengers, as traffic jams would be non-existent (or avoidable)

Hardware used:
Light Detection And Ranging (Lidar remote sensing/visual sonar)
Velodyne 64-beam laser (to generate 3D visual map)

Sources:

Why Google's self-driving car will fail

How does Google's self-driving car work?

Google's Official Blog Post from 2010

Google's Official Blog Post from 2014

Who gets the traffic ticket?

Mapping out tracks for Google cars 

April 14, 2014

Land Rover's Transparent Hood

One of the hot tech news articles that have been floating around online recently is that Land Rover was able to invent this Transparent Hood technology. However, for the rest of us who have been following tech, specifically cloaking and invisibility concepts, we already know that the military has been toying with things like this for years. It is still exciting that it has finally landed on the consumer market, and everyone who uses it will benefit from it. There are also some differences between traditional cloaking concepts, and what Land Rover has patented.

The traditional cloaking method I am referring to is known as Quantum Stealth Technology.
This method removes visual light, infrared light, thermal signatures, and the shadow cast by the target. This method is different from what land Rover has announced because this method does not use cameras, batteries, lights, or mirrors. This method works by bending the light waves around the target.

The Land Rover method uses cameras and a windshield projection system. It is also possible by using augmented reality. The cameras are located on the lower-front bumper of the vehicle, and the video is fed to a projector inside the car, and projected onto the inside of the windshield. The video feed is superimposed onto the hood of the vehicle, so it looks like the hood is transparent.

Now you can see that the Quantum Stealth method is far superior, as one can view the object from any angle, and never see the target, whereas Land Rover's method is only useful from inside the car. However, someday I am hopeful that the car manufacturers will start making hoods out of the Quantum Stealth material.


Here are two products you can use to build your own transparent hood system:

Car Rear Vehicle Backup View Camera (Waterproof)

Garmin Head-Up Display (HUD) Dashboard Mounted Windshield Projector

After the basic setup, you would need to tinker with the transparency settings on the projector to get it just right, possibly even digging into the software itself to customize the display output further. This setup probably wouldn't look exactly the same as the examples, and wouldn't include visuals of the tires as it's simply projecting the image onto the dashboard, but it's the same concept. To be perfect, you would also want a much wider reflector lens that spans the entire width of the windshield, and that means more tweaking of the display output. The project would require a ton of customization but the point is, it's not impossible to do on your own, so don't feel like you have to buy a Land Rover to get this type of technology. I'm sure we will see it on every make and model in the next few years.


Sources:  
http://www.businessinsider.com/land-rover-invented-a-disappearing-hood-2014-4
https://www.landrover.com/us/en/lr/
http://www.hyperstealth.com/Quantum-Stealth/
https://www.youtube.com/watch?v=1Nj0vCSBFT8
http://www.occupycorporatism.com/home/scientists-perfect-nano-tech-develop-invisibility-cloak/

March 30, 2014

Building a Raspberry Pi Cluster

Slow internets got you down? Keep getting pwnd in-game because of choppy video rendering? Thinking about a new computer? Should you buy one or just build a quick fast setup?
I had the same questions 3 years ago and I ended up just building a cheap setup with the fastest components at the time, also was able to salvage some leftovers from a previous purchase.
I ended up with the following items for about $300 shipped from Newegg:


Almost all of those items were refurbs or open-box discounted (2011) I already had a keyboard, mouse, monitor, and I was going to use it as a Linux box so I didn't need the extra $100 for an OS. This was an easy and cheap build to get online and do what I needed. Eventually I was able to upgrade the video card and even got to run Diablo 3, Starcraft 2, DOTA2, and other medium load games on it with low settings.

The motherboard and processor are the bottleneck on this system.
Anyway, the point is that you can build a decent computer very cheaply now if you have the main peripherals already. It's been this way for a while, but a new piece of hardware has emerged to help us build even cheaper than before: The Raspberry Pi

I'm a little late to the scene here but I'd like to write about it anyway, because I plan on building a small Pi cluster in the near future.
From my understanding of a simple Pi Cluster (let's say 5 nodes), you'll need:

5x Raspberry Pi = $210
Pi Power Hub = $30
Wi-Pi wifi dongle = $10
5x  Cat6A Ethernet Cables (1-Foot lengths) = $25 (this is one exception where you could go with quality-tested cables for a total of closer to $60)

Don't forget the typical desktop peripherals you'll need too: keyboard, mouse, monitor, ethernet cables, etc. (Think of this project as an extension of your existing desktop setup)

Items above are priced at MCMelectronics.com and BlueJeansCable.com
 
For a custom-built rack, sized to whatever specifications and dimensions you can think of, check out  Sheep Plastics, very affordable and very customizable pieces of acrylic to mount your Pi onto.
Heck, you could probably even build a full-size tower from them too.


Sources:

Blue Jeans Cables

MCMelectronics.com


How-To build a Raspberry Pi server cluster

40-core cluster with 20GB RAM & 5TB Storage

Mini-Cluster Setup

Small cluster from Southampton

Custom-cut acrylic