Crash Safari Code

Crashsafari.com is a website that overloads the browser with a self-generating text string which populates the address bar. After about 20 seconds or so it will force an iPhone to reboot, while significantly heating it up as the smartphone tries to handle the code of the site.

The code of the website appears to generate an ever-increasing string of characters, which becomes harder and harder for the browser to load, likely resulting in a memory issue and forcing the reboot of the device.​

I pulled the source of the website broke it down to its smallest operable part and put it here (dont be a jerk):

What is in a Top Golf Golfball?

I have been to Top Golf for 3 different events this year and was always amazed by their RFID technology and have always left wondering “What is in a Top Golf golfball?”.

So when I saw a few “Top Golf” golf balls in the $1 ball bin at a golf store I bought them and decided to answer that question.

2016-01-23 17.54.22 2016-01-23 17.56.28 2016-01-23 18.12.01 2016-01-23 18.26.23 2016-01-23 18.32.08
That little “passive EPC Gen 2 ultrahigh-frequency (UHF) RFID” tag is what makes TopGolf so awesome.  Now all I need to do is invest in a UHF RFID reader to see what is actually on the tag.

Protip: Sawing a golf ball in half is a lot harder than it sounds.

 

Learning About SDR.

I have become more and more interested in hardware security lately and while I have been having a lot of fun learning about RFID Security I knew the next logical step would be to try to learn how to use a software-defined radio.

After doing a lot of reading and research over the last couple of weeks I came to learn that the best way to learn SDR is with a ~$20 HD DVB-T from Realtek called the RTL2832U.

The RTL-SDR blog sells an “upgraded” RTL-SDR on Amazon for $25 that I picked up and really like.

2016-01-21 17.34.15
Some of the projects I have started to explore include:

Tracking Airplanes Using Dump1090:Screenshot from 2016-01-22 06:49:13

Screen Shot 2016-01-21 at 6.48.51 PM

Decoding and Tracking TPMS:
Screenshot from 2016-01-22 06&%39&%52

RTLSDR-Scanner for general scanning:

rtlsdr-scanner

I have a lot more to learn with this setup but I can easily see that this will quickly turn me into dropping a few hundred dollars into a HackRF so that I can transmit as well as receive.

My Guiding Quotes of 2015

At the start of every month I pick a quote I like and hang it at my desk and try to use it to guide my thought process for the month and I thought I would share them here as I was cleaning off my desk for the year.

Here are the quotes I used in 2015:

January:
There is nothing more deceptive than an obvious fact.
– Doyle

February:
Never confuse movement with action.
– Hemingway

March:
You must either modify your dreams or magnify your skills.
– Jim Rohn

April:
Courage is grace under pressure.
– Hemingway

May:
The most formidable weapon against errors of every kind is reason.
– Thomas Paine

June:
If I panic, everyone else panics.
– Kobe Bryant

July:
Take time to deliberate, but when the time for action has arrived, stop thinking and go in.
– 
Napoleon

August:
I shouldn’t be near Vegas and have money in my pocket.
-Adam Sandler

(Let’s just say I had a lot of fun at BSides, Blackhat and Defcon this year.)

September:
If you ask me anything I don’t know, I’m not going to answer.
– Yogi Berra

October:
Everything we hear is an opinion, not a fact. Everything we see is a perspective, not the truth.
– Marcus Aurelius

November:
In any moment of decision, the best thing you can do is the right thing. The next best thing is the wrong thing. The worst thing you can do is nothing.
– Theodore Roosevelt

December:
Have a strategic plan. It’s called doing things.
– Herb Kelleher

…and yes I know doing this now apparently makes me dumb.

Proxying BurpSuite through TOR

From time to time I have the need to test or verify a web application vulnerability through the TOR network using BurpSuite. The easiest way to do this to use the pre-bundled TOR Browser.

Configuration is fairly easy:

  1. Download, Install and Start the TOR Browser:
    Screen Shot 2015-12-18 at 8.05.24 AM
  2. Verify that the SOCKS proxy is started on 127.0.0.1:9150
    Screen Shot 2015-12-18 at 8.06.54 AM
  3. Configure Burp (Options > Connections > Upstream Proxy Servers)
    Screen Shot 2015-12-18 at 8.09.18 AM
  4. Then…

    (Legally with proper permission of course!)

Pro Tips:
TorBrowser has to stay running while using Burp.
Verify the Proxy is still active if you have to restart Burp.
The TOR network runs slow sometimes.
Some web hosts block TOR traffic.
Dry clean only.