Thursday, November 03, 2016 hon1nbo Security No comments

Well, the upstream IP provider decided they don’t want the Tor nodes there for the time being (partially since they didn’t have an official policy… yet). My node in Canada is still operational, however the beefy nodes operating out of my DC are down for...

Thursday, August 25, 2016 hon1nbo FOSS , Security No comments

I feel like I needed to help out a little more towards a great project: TOR. I won’t go into what it is here, as I assume my average reader knows. Hacking and Coffee decided to stand up a couple of exit nodes to contribute to the network. They do have a...

Saturday, August 13, 2016 hon1nbo Conventions , Security , The Tail , The Wolf-Dog No comments

Now that the dust has settled, and the Vegas alsohol has left my system, time to write the post mortem from Def Con 24.

I solved the Caezar Challenge (albiet I needed a tiny hint on the last stage, as there was a lt of confusion with the hint given whic...

Saturday, August 13, 2016 hon1nbo Conventions , Guides , Security , The Wolf-Dog 1 Comment

Part of the Caezar challenge involved URL forcing. There were four characters, three unique, that were unsolved in the domain name. Using a combination of scripting and nslookup, it was trivial to solve (though later determined not to be necessary, but ...

Saturday, August 06, 2016 hon1nbo Conventions , Security , The Wolf-Dog No comments

Hon1nbo here reporting from Def Con 24. I am taking a break from exploding at “The Box,” and sending this to post via raven carriers.

I got a Caezar’s Challenge badge, and whilst I don’t care to spend all of my time cracking the challegnes for the party...

Thursday, August 04, 2016 hon1nbo Conventions , The Tail , The Wolf-Dog No comments

As I write this post, sitting on a plane with my bits flowing through the ether that is tunnels and routers of the networking abyss, I ponder my previous years attending Def Con. My first year, DC 19, was fun with the tamper evident competition yet I co...

Tuesday, July 12, 2016 hon1nbo Chemical , Projects No comments

(from the Project Archives)

Back when I was in high school, I did a lot of darkroom photography. At one point, I decided to make my own photographic emulsion. I wanted to coat canvas with it and expose my prints to it. With a little bit of chemical prep...

Thursday, June 09, 2016 hon1nbo FOSS , Projects , Security No comments

I uploaded the first of my old Peach fuzzer templates to my Github account. This template is for the Microsoft PE/COFF 32bit EXE executable standard. I originally made this at my super-secret-alter-ego job almost 4 years ago. However, we did not have th...

Tuesday, June 07, 2016 hon1nbo Guides , Red Teaming No comments

I have decided to post about a personal trick I created and have used for quite a while. Given that most process servers are private entities, rather than actual members of the court, they are ready for hire without filing an actual legal process. Thus,...

Friday, May 27, 2016 hon1nbo The Wolf-Dog No comments

The site is getting worked on again.

However, since i like to move fast and break things I am bypassing QA right now and, as long as my content is there, letting things happen. So formatting may look weird here and there but unless a link is actually br...

Wednesday, May 25, 2016 hon1nbo Conventions , Guides No comments

There is now a Git repo for people to submit tips, tricks, and advice to! Why a Git repo you ask rather than a wiki? It allows people to pull in an offline copy quickly and easily.

https://github.com/hacking-and-coffee/defcon-for-n00bs

Wednesday, April 06, 2016 hon1nbo Electrical , Projects No comments

(from the project archive)

I wanted to install the option of an alternate Microphone for a Yaesu mobile radio which uses a modular (RJ11) type hand mic, whilst keeping the original microphone DTMF Functions.

I made this modification because I want to us...

Wednesday, April 06, 2016 hon1nbo Computer Stuff (non-security) , Projects No comments

(from the project archives)

This project was a simple Hard Drive Window. Originally was going to be used for another project involving lasers, mirrors, and the moving platter/drive head. However, I could never find enough drives with similar head mechan...

Wednesday, April 06, 2016 hon1nbo Electrical , Projects No comments

(another project from the archive)

I built a capacitor pulse bank a while back. It was installed into a large suitcase, and was using Electrolytic capacitors (so no super-fast rise times, but a fairly decent amount of energy density for the cost).

Caps:...

Wednesday, April 06, 2016 hon1nbo Electrical , Projects No comments

This project is a favorite of mine, and the one shown here was built for the “laboratory of the Scientists from Krypton that saved Superman from the exploding planet room thingy” of a past event.

The Jacob’s Ladder is a pair of vertical (or in extreme c...

Wednesday, April 06, 2016 hon1nbo Electrical , Projects No comments

(another from the project archives)

I have been interested in the quirky sides of electronics for as long as I can remember, but I don’t know how Nixies evaded my eye for so long. Only during my first semester of college did I come across them. Such an ...

Wednesday, April 06, 2016 hon1nbo Ballistics , Projects No comments

I built a PVC cannon fueled by Acetylene gas back in high school (this is part of my old project archives migrating here). The gas was generated by Calcium Carbide. This cannon originally had electronic ignition but after several fires the igniter decid...

Tuesday, March 29, 2016 hon1nbo Conventions , Guides No comments

The first revision of DEFCON for Noobs is up. Still very rough, early draft, and missing many things. However, I figured a living document is better and would do better with feedback.

Check it out

-H

Tuesday, March 29, 2016 hon1nbo Red Teaming No comments

Over the years I have acquired many tools and tricks used to gain entry to a target office. At DEFCON 23 I got a lot of questions regarding my custom pack, and the gear inside.

While I cannot share every detail (that would give away too many trade secre...

Monday, March 28, 2016 hon1nbo Disclosures No comments

Home_Depot_Intro_smaller

I found a massive Key Space Reduction Attack on locks sold by Home Depot. The flaw lies in their procurement process, rather than the locks themselves, and enables an adversary to reduce the possible key codes for locks based on the time of shipment, i...

Monday, March 28, 2016 hon1nbo Disclosures No comments

140px-US-NuclearRegulatoryCommission-Seal

I found a spreadsheet containing a nuclear materials database credential on Google. The technique used was very simple, but I have to wonder why such a document misplacement was overlooked. Maybe people are afraid to tell them they just stumbled upon a...

Monday, March 28, 2016 hon1nbo Publications & Interviews No comments

I had a nice time being interviewed by The Guardian regarding my disclosure of a password leaked from the Nuclear Regulatory Commission. While the NRC insists that this is a non-issue (and in the case of this protected system was the case), it exposes a...

Monday, March 28, 2016 hon1nbo Conventions No comments

The convention was fairly productive and wildly entertaining for me this year for a multitude of reasons. First, I did not go to a single talk. Instead, I decided to go the video and slide route so I could focus on the villages, interacting with others...