Blogs

Initial Qt Impressions

With OFACE development having begun on my end officially when I have time available, I figure I would share some of the good and bad about what I have seen with the Qt Libraries so far. Now, despite my knowledge and experience, I refuse to call myself and expert in many programming concepts and merely just a journeyman who is working to become as diverse as possible. In addition, these are impressions that I have based on the work that I have done up to this point with the library which has been less than a week. Overall though, my initial impressions have been positive.

The IDE that I have opted to use is Qt Creator straight out of the gate. This provides me a WYSIWYG setup for many of the GUI elements. I will state that for the form-based work Qt Widgets is recommended, but for more dynamic content (such as having animations) Qt Quick serves as a good solution. The bigger advantage of this IDE is that for C++ work it is far better than the horrific experiences I have had with getting Eclipse to even work. This is a good advantage to me.

Another advantage is that the Qt libraries are much more powerful than I have anticipated. Some of the tasks that I thought I would have to create manually with C++ (which while annoying, was something I was wanting to do for some aspects as for OFACE I want to avoid some of the libraries provided by Windows for C++ due to their antiquated nature.) I actually found preexisting libraries to simplify matters and speed up development. I will state that some of the libraries are not perfect and I don't like some of the example usages, but that is me nitpicking a bit. Overall though, the libraries do go a long way in helping make platform neutral products.

Online Dictionary Attack w/ Hydra

Introduction

When an attacker wants to learn credentials for an online system, he can use brute force or a dictionary attack. This article introduces these two types of attack and explains how to launch an online dictionary attack using Hydra.

Brute Force vs. Dictionary Attack

An attacker can try every possible password combination (brute force approach). The advantage is guaranteed success in finding the right password. The drawback is that it is a very time-consuming process.

It’s probable that a typical user is frustrated about password best practices and uses a pattern for the password (for example a common word and a digit appended at the end). Then the attacker can build a set of common words concatenated with a digit (an exemplary pattern in the dictionary) and try every combination from this set. This approach (dictionary attack) can save the attacker’s time, because he doesn't have to brute-force the whole key space. The disadvantage is that there is no guarantee that the right password will be found. However, the probability of hitting the right password is quite good, taking into account the passwords people often choose.

Environment

Hydra is described as a network logon cracker that supports many services. This article explains how to use Hydra to launch an online dictionary attack against FTP and a web form.

Metasploitableis a Linux-based virtual machine that is intentionally vulnerable. It can be used, for example, to practice penetration testing skills. Please remember that this machine is vulnerable and should not operate in bridge mode.

Back around for now

Hey, just dropping a line to mention that I just finished up my bachelor's degree in college. (Also received Summa Cum Laude and Departmental Honors.) Now that I have finished up this particular work I will have quite a bit more time to work on some projects that have been of interest to both myself and to SX as well. At the same time though, I will be looking into employment (I won't go into any further detail as I feel it isn't necessary to go into detail with many aspects of my life as to be quite honest, it's rather boring) so I won't be doing the whole 24/7 availability deal.

With this in mind, I have come up with a bit of a very rough basic idea for one of the main parts of how OFACE would run. In addition to this though, as I have decided to use C++ there is a matter of developing a GUI for it as well. The honest to god's reality is that should I develop this using modern Visual Studio releases, this forces me to use the .NET framework and I do not wish to have such a requirement on that project. I looked into GTK but many accounts have stated that it is not a fun experience to work with. After much consideration, I made the decision to look into Qt for the GUI and GCC 4.8.0 so that I can take advantage of the newer C++ capabilities as some of the boost libraries they have included are pretty good. I will start messing with Qt a bit shortly and looking at if it would be the best solution for this.

Brief Notes

I figure I would make a quick blog post for those who do read this and mention that I have not been able to get much forward momentum on OFACE (I have started writing code for one of the main modules for it, but have yet to look at GUI aspects as I wish to have a strong back-end first.) due in part to real life events. In particular, I am finishing my undergraduate studies which are taking up quite a bit of my time. After this is finished, OFACE will be a priority project that I will most likely be working on during Christmas.

The Future: OMGWTF

Today we are inundated with technology. It seems to me that very little of it is under our control. No I do not mean the machines are rebelling against us despite what you non-functional technology would have you believe. I don't actually know what the fuck I'm talking about. Perhaps I'm envisioning a world where everyone is surveilled by drones, and information is controlled under a hierarchical structure or maybe I'm disconcerted because the so called information revolution has not spontaneously created a utopia.

faeverine

faeverine

OFACE: Consumer of Crew Members

Well, looks like I have been asked to take a stab at OFACE by RaT. I have read through the notes about it (Of note being https://www.soldierx.com/bbs/201101/OFACE-Testing?page=2#comment-12597 which makes some good points) and have decided to come to a few decisions.

1. OFACE may benefit the most from being redone from the ground up.
2. The main initial focus will be on a minimalist, effective, and expandable core back-end.
3. The initial focus will be on working with a small number of applications to create one template that allows for OFACE to be expanded in a modular manner by both myself and others within SX.
4. GUI is to be focused on after the back-end is in an acceptable state.

This is what I have seen of this so far and over the weekend I will be fleshing out more details of this with RaT.

METROPCS ACTIVATION HELP

Reply to me if help or better explanation is required..it took me a couple of times to get the timing right..WIFI KILL APK for rooted phones..Also Placemask apk hides GPS and Mobile Location..but will show if logged into WIFI that's why we use BT5..

Part 2 on MetroPCS Update

Now you go to metroPCS and register your phone on their website..at 10:00 you lower the $60.00 plan that you just activated at 9:30pm to a $50.00 plan and restart your phone..NOW YOUR PHONE IS ACTIVATED..YOUR WELCOME ~Sik1est3~

test

test

Syndicate content