Site Map - skip to main content - dyslexic font - mobile - text - print

Hacker Public Radio

Your ideas, projects, opinions - podcasted.

New episodes Monday through Friday.


Correspondent

operat0r

Host Image
Host ID: 36

Highly skilled hands-on technical IT Security professional, with over 15 years experience in networking and Internet Security. Certified Penetration Testing Specialist (CPTS), Web Application Penetration Test (WAPT), ACC Archer Certified Consultant Experience working with many teams and external clients to perform full Vulnerability Assessments and Penetration Testing for companies of varying size. Hands on experience with creating portable versions for security apps for windows W3AF, Metasploit and custom meterpreter scripts, Nessus, routing/CARP with software and hardware with UNIX based firewalls, SQL/PHP debug dynamic scripts, Advanced Apache Proftpd PHP MySQL and CPanel scripts, Webhosting/Consulting. Experience also includes security applications Snort/Snortsam IDP, MITM attacks, ISR-evilgrade and Ettercap filters, and hijacking update services for applications running on MacOS and Windows. Performed and developed Mobile security applications testing for IOS/Android devices using web proxies and Reverse Engineering Framework tools like lobotomy. Knowledgeable in web application vulnerability tools and techniques. Worked with a team to audit DMZ for Energy Company SCADA Systems to identify potential segmentation gaps. Worked with a team to setup VoIP system to automate Wardialing using WarVOX to identify potential telephony targets with consoles


email: freeload101.nospam@nospam.yahoo.com
episodes: 30

hpr2647 :: More Quick Tips

Released on 2018-09-25 under a CC-BY-SA license.

https://onlykey.io/collections/all/products/onlykey-color-secure-password-manager-and-2-factor-token-u2f-yubikey-otp-google-auth-make-password-hacking-obsolete?variant=469626486828

Nerf


hpr2602 :: HPR Quick Tips July 2018

Released on 2018-07-24 under a CC-BY-SA license.

Don’t use GOOGLE DRIVE ! They flag personal content and backups as malware and will not let you download or share your own backups!!!!!


hpr2575 :: Quick Tips June 2018

Released on 2018-06-15 under a CC-BY-SA license.
  • sites that required two factor tips
  • Referb your can opener
  • Referb your powerwheels
  • Humidifier filter DIY
  • free anonymous email over TOR

hpr2543 :: Home Theater - Part 1 Hardware

Released on 2018-05-02 under a CC-BY-SA license.
cat /etc/pwrstatd.conf
powerfail-delay = 60
powerfail-active = yes
powerfail-cmd-path = /usr/local/bin/pwrstatd-powerfail.sh
powerfail-duration = 0
powerfail-shutdown = no

lowbatt-delay = 30
lowbatt-active = yes
lowbatt-cmd-path = /usr/local/bin/pwrstatd-lowbatt.sh
lowbatt-duration = 0
lowbatt-shutdown = yes
enable-alarm = yes
shutdown-sustain = 60
turn-ups-off = yes
lowbatt-threshold = 15

ups-polling-rate = 1
ups-retry-rate = 10
prohibit-client-access = no

hpr2539 :: Interview - Austin Lee

Released on 2018-04-26 under a CC-BY-SA license.

https://www.youtube.com/watch?v=ktbiNmxFuZs

RAW:
https://rmccurdy.com/stuff/Austen_Lee.zip


hpr2533 :: Burp Suite / ABCMouse Game

Released on 2018-04-18 under a CC-BY-SA license.

https://rmccurdy.com/scripts/videos/rmccurdy_com/HPR_ABC.mp4

more burp/android videos:


hpr2528 :: CCTV with DARKNET

Released on 2018-04-11 under a CC-BY-SA license.

Twitter: @operat0r

DERP SHELL CODE https://rmccurdy.com/scripts/DARKNET


hpr2517 :: DIY CCTV Security System

Released on 2018-03-27 under a CC-BY-SA license.

CCTV Security System

  • $80 Reolink IP PoE Security Camera 4MP Super HD 2560x1440 with SD Card & Audio Outdoor Indoor Bullet IR Night Vision Motion Detection RLC-410S
  • 65$ RLC-410 ( No SD CARD )
  • $150 Linksys Business LGS116P 16-Port Desktop Gigabit Ethernet PoE+ Unmanaged Network Switch I Metal Enclosure $150
  • Ispy to start
  • https://forums.zoneminder.com/viewtopic.php?f=36&t=26906 115 lines of bash
  • When event ends on ZM yolo is run on a random 10 images for that event (Person Dog Cat Car)
  • if an object is detected we look to see if two Android phones via MAC on network
  • if they are on the network it means somebody is home so events are throttled to 1/1hr max
  • if nobody is home then original image/object detected from event is sent to email
  • zones
  • zones preclusion
  • Video https://rmccurdy.com/scripts/videos/rmccurdy_com/ZoneMinder_Yolo_Yolov2_Darknet_Script_Plugin.mp4

Issues:

  • rain, spiderwebs, shadows, Car lights (preclusion zones)
  • full motion capture is -6hrs 16gig
  • smearing ( lower FPS on cam and make sure ZM has higher framerate then the cam make sure not to use Source Type:ffmpeg and use remote or try both)
  • journalctl -f -t DARKNET.service (shows nothing...@#%ing systemd)
  • night time

More Notes:

Start with one zone at a time and raise/test sensitive KISS...don't setup like 4 zones and expect to trouble shoot anything. I used my Android to do a lot of tweaking. I also want to sort out "night" mode config so after night mode kicks in a different config is automatically applied.

Use low quality for motion detection and drop frame rate of cam to lower than max of ZM for little to no smearing and I also set "Alarm Frame Count to 2" and "overload ignore frame count to 4" but I think it's more about Alarm Frame Count..I can't be sure..

Explanation of overload ignore frame count
Report this post Quote
Post by bb99 » Thu May 10, 2012 5:22 pm

For sudden changes to the environment, no better tool then Overload Frame Ignore Count. Your fps determines these settings but at 10 fps with Overload Frame Ignore Count set to 4, it only ignores .4 seconds. In other words if a drastic change to the lighting (such as a car with headlights on in darkness) passes within the monitors view it will ignore the number of frames you specify before processing for motion detection.

Alarm Frame Count

This option allows you to specify how many consecutive alarm frames must occur before an alarm event is generated. The usual, and default, value is 1 which implies that any alarm frame will cause or participate in an event. You can enter any value up to 16 here to eliminate bogus events caused perhaps by screen flickers or other transients. Values over 3 or 4 are unlikely to be useful however. Please note that if you have statistics recording enabled then currently statistics are not recorded for the first ‘Alarm Frame Count’-1 frames of an event. So if you set this value to 5 then the first 4 frames will be missing statistics whereas the more usual value of 1 will ensure that all alarm frames have statistics recorded.

https://forums.zoneminder.com/viewtopic.php?f=36&t=26222

Windows software to get basic idea ( install face plugin )
https://www.ispyconnect.com/plugins.aspx

Videos

eazy getting started

getting started with GPU

you need 4gig+ GPU and new nvidia or old GCC4.9 /GCC4_NEEDED_FOR_DARKNET$ ls cpp-4.9_4.9.2-10_amd64.deb gcc-4.9_4.9.2-10_amd64.deb libasan1_4.9.2-10_amd64.deb libcloog-isl-dev_0.18.2-1+b2_amd64.deb libisl10_0.12.2-2_amd64.deb g++-4.9_4.9.2-10_amd64.deb gcc-4.9-base_4.9.2-10_amd64.deb libcloog-isl4_0.18.2-1+b2_amd64.deb libgcc-4.9-dev_4.9.2-10_amd64.deb libstdc++-4.9-dev_4.9.2-10_amd64.deb https://github.com/dasGringuen/debian9-install

GPU memory talk

https://groups.google.com/forum/#!msg/darknet/ZRAEvMmKzFc/iVZgibJiJQAJ

trying to GPU prep ..

apt-get remove --purge nvidia-cuda-toolkit libcudnn*
dpkg -i libcudnn7_7.0.5.15-1+cuda9.1_amd64.deb
dpkg -i libcudnn7-dev_7.0.5.15-1+cuda9.1_amd64.deb
dpkg -i cuda-repo-ubuntu1704-9-1-local_9.1.85-1_amd64

sudo dpkg -i cuda-repo-ubuntu1704-9-1-local_9.1.85-1_amd64.deb
sudo apt-key add /var/cuda-repo-9-1-local/7fa2af80.pub
sudo apt-get update
sudo apt-get install cuda

apt install libopencv-dev

more code/ references

yolov2 training

ffmpeg -c:v h264_vdpau -rtsp_transport tcp -i "rtsp://admin:@25.0.0.238/h264Preview_01_main" -f segment -segment_time 60 -segment_format mp4  -reset_timestamps 1 -strftime 1 -c copy -map 0 dauphine-%Y%m%d-%H%M%S.mp4

ffmpeg -hwaccel vdpau -i rtsp://admin:@25.0.0.238/h264Preview_01_main -an -f rawvideo -y /dev/null

complicated zoneminder plugins and bits of code :(

cheap cams 720p max

Save as video

By default ZoneMinder saves events as a sequence of images. It is however possible to save an event as a video file. Caution is advised when converting events to video as it is very strenuous on the ZoneMinder machine, however once you have converted an event it can be viewed/downloaded any time without additional stress on the server.

First, make sure you have OPT_FFMPEG under Options -> Images set to yes (checked).

If necessary, set the proper full path for the ffmpeg executable in PATH_FFMPEG (ex.: /usr/bin/ffmpeg)

Open up the default view for an event and Click the video link located in the top left corner

Choose a video export file type and click generate.

Download the video to your machine. If video files have already been generated you will see them listed at the bottom of the page.

When an event gets a video file encoded for it you can choose to automatically include that event with any future exports. For a more detailed explanation on how to select and export events investigate How to export download and view events


hpr2471 :: Tea Time!

Released on 2018-01-22 under a CC-BY-SA license.
  • Yerba Mate Pajarito Special Selection/ Seleccion Especial 1.1lb/500 Gr Pajarito

hpr2468 :: THE WELL

Released on 2018-01-17 under a CC-BY-SA license.

I record a video with audio on my fathers well setup in the sticks

https://rmccurdy.com/scripts/videos/rmccurdy_com/THE_WELL.mp4


hpr2465 :: TronScript where have you been all my life!

Released on 2018-01-12 under a CC-BY-SA license.

hpr2458 :: Chrome Plugins You Must Have

Released on 2018-01-03 under a CC-BY-SA license.

https://www.linkedin.com/pulse/block-more-ads-unlimited-cloud-storage-multi-threaded-robert-mccurdy


hpr2450 :: Android Audio with viper 4 android and magisk

Released on 2017-12-22 under a CC-BY-SA license.

hpr2398 :: AutoHotkey Master of Automation ?

Released on 2017-10-11 under a CC-BY-SA license.

hpr2359 :: Android ROM and PAIN

Released on 2017-08-17 under a CC-BY-SA license.

http://www.nirsoft.net/utils/usb_devices_view.html

https://forum.xda-developers.com

https://www.bignox.com/


hpr2357 :: Air Soft Mini Howto

Released on 2017-08-15 under a CC-BY-SA license.

http://airsoftjunkiez.com

get off the computer !


hpr2355 :: Wii and WiiU Software Modding

Released on 2017-08-11 under a CC-BY-SA license.

https://wiiu.guide/ A complete guide to Wii U custom firmware, from stock to Coldboot Haxchi.


hpr2246 :: My Custom RSS Comic and Security Feed

Released on 2017-03-13 under a CC-BY-SA license.

hpr2243 :: My Quick Tips E01

Released on 2017-03-08 under a CC-BY-SA license.

-rmccurdy.com


hpr2205 :: Quick Tips Roomba and silicone Packets

Released on 2017-01-13 under a CC-BY-SA license.
  • First bit is about Roomba and keeping them clean and happy!
  • 2nd bit is about reusing Silicone Packets by baking them in the toaster oven!

hpr2204 :: MASSCAN

Released on 2017-01-12 under a CC-BY-SA license.

I chat about my issues with our vuln scanner and destroy the discovery scan times from 5-8 days to 1hr with Masscan.

masscan   -p21,22,23,25,53,80,88,110,111,113,135,139,143,220,264,389,443,445,449,524,585,636,993,995,1433,1521,1723,3306,3389,5900,8080    --rate=14114 --open --excludefile BLACKLIST --ping  172.16.0.0/12 -oX  172.xml

hpr2203 :: NOT SO SMART

Released on 2017-01-11 under a CC-BY-SA license.

(tracer32.exe) and LogExpert regex (warn|\berr|fail|unabl|can|not|fault)

rsync --info=progress2 ( need to compile from source ... )
grub-install --force --removable --boot-directory=/s/boot /dev/sdd

grub-mkconfig -o /s/boot/grub.cfg

boot.ini ?!?!? ..( never could figure out how to boot my windows XP part from GRUB ...thought this would help with no luck )

multi(0)disk(0)rdisk(0)partition(2)\WINXP="Microsoft Windows XP Professional"
multi(0)disk(0)rdisk(1)partition(2)\WINXP="Microsoft Windows XP Professional"
multi(0)disk(0)rdisk(2)partition(2)\WINXP="Microsoft Windows XP Professional"
multi(0)disk(0)rdisk(3)partition(2)\WINXP="Microsoft Windows XP Professional"
multi(0)disk(0)rdisk(4)partition(2)\WINXP="Microsoft Windows XP Professional"
tune2fs -c 1 ( check drives on boot )

Linux provides other I/O schedulers such as the Noop scheduler, the Anticipatory scheduler and the Deadline scheduler.

Dec 31 14:59:46 plexserver console-kit-daemon[1463]: missing action
Dec 31 15:01:45 plexserver smartd[1038]: Device: /dev/sda [SAT], SMART Usage Attribute: 194 Temperature_Celsius changed from 113 to 112
Dec 31 15:01:45 plexserver smartd[1038]: Device: /dev/sdc [SAT], SMART Usage Attribute: 194 Temperature_Celsius changed from 112 to 111

40-50C range are optimal.


hpr2149 :: What is in my Pentesting Bag?

Released on 2016-10-27 under a CC-BY-SA license.

hpr2147 :: Glass cutting bottles

Released on 2016-10-25 under a CC-BY-SA license.

https://www.amazon.com/Diamond-Tech-Crafts-Bottle-Cutter/dp/B004ZRV3AU/ref=sr_1_8?ie=UTF8&qid=147568599%204&sr=8-8&keywords=Glass+++Bottle+Cutters+++++Tool


hpr2128 :: Various glass bottle cutting methods

Released on 2016-09-28 under a CC-BY-SA license.

This episode describes various methods of glass bottle cutting and my experience


hpr2120 :: WEBDUMP wmap EyeWitness phantomjs selenium

Released on 2016-09-16 under a CC-0 license.

hpr0331 :: Snort Part 2

Released on 2009-04-07 under a CC-BY-NC-SA license.
Operat0r hosts a follow up episode to his snort ep

hpr0126 :: Ripping the Web

Released on 2008-06-25 under a CC-BY-NC-SA license.
operator explains how to rip content from websites.

hpr0049 :: XPlane

Released on 2008-03-07 under a CC-BY-NC-SA license.
Operat0r, is on approach at KLAX, runway 07R. Will he make it? - maybe not. He can crash and live to tell the tale with his X-Plane flight simulator. X-Plane is a proprietary, multi-platform, flight simulation program. While, he's no flight instructor, Operat0r's got a 'system' for landing X-Planes.
http://x-plane.com
http://www.atcmonitor.com
http://stoenworks.com/Aviation%20home%20page.html
http://xplane.org/

Shownotes by: diggsit

hpr0011 :: dd_rhelp

Released on 2008-01-14 under a CC-BY-NC-SA license.
http://del.icio.us/operat0r/dd_rescue

Become a Correspondent