A Virginia DEF CON community
Someone mentioned this on Reddit, seems to be a great local privilege escalation resource for both Windows and Linux, including a .bat file which creates vulnerabilities on your (NON-INTERNET-FACING) Windows VM.
https://github.com/sagishahar/lpeworkshop
Video is for inspiration while you’re trying it out.
The September meetup is a week away. I know this is a long shot, but if anyone has working configs for ANYTHING involving a BladeRF X40 and 3G/4G, please bring it.
The lab did NOT burn down yesterday.
Anyone want to give a hashcat tutorial?
Happy Monday!
Pic unrelated.
If you’d like to help defray some of the expenses involved in running this group, please feel free to contribute to the GoFundMe for the CTF server, or contact [email protected] if you’d like to donate in some other way. I’d like to keep the meetings free and open for as long as possible, because so far, I like the people that attracts to the group.
I’m ready, are you? If you’re joining us in the group Hackerbox build, have you ordered one?
Still haven’t heard from anyone wanting to present, teach or learn something, so it’s likely to be the same chaotic meeting as usual, with the added lubrication of festive beverages.
The space is just about ready, and my back hurts from all the rearranging. No photos, I don’t want to spoil the surprise.
The PCBs for the MultiPass badges should be here early next week. Some will be available for purchase if you’re interested.
Reminders:
I emailed Waveshare indicating my problem getting anything to display on the 2.13in epaper. They were VERY quick to get back to me, and suggested I try running the tests for another size, the 1.54in model, just to see what it did.
Turns out, that worked. So I started looking closer…
drwxr-xr-x 2 root root 4096 Sep 10 00:11 .
drwxr-xr-x 5 root root 4096 Sep 10 00:11 ..
-rw-r–r– 1 root root 2801 Sep 10 00:11 epd_1in54b_test.py
-rw-r–r– 1 root root 2657 Sep 10 00:11 epd_1in54c_test.py
-rw-r–r– 1 root root 2976 Sep 10 00:11 epd_1in54_test.py
-rw-r–r– 1 root root 2969 Sep 10 00:11 epd_1in54_V2_test.py
-rw-r–r– 1 root root 3756 Sep 10 00:11 epd_2in13bc_test.py
-rw-r–r– 1 root root 3020 Sep 10 00:11 epd_2in13d_test.py
-rw-r–r– 1 root root 3026 Sep 10 00:11 epd_2in13_test.py
-rw-r–r– 1 root root 3097 Sep 10 00:11 epd_2in13_V2_test.py
-rw-r–r– 1 root root 4006 Sep 10 00:11 epd_2in7b_test.py
-rw-r–r– 1 root root 3017 Sep 10 00:11 epd_2in7_test.py
-rw-r–r– 1 root root 3851 Sep 10 00:11 epd_2in9bc_test.py
-rw-r–r– 1 root root 3760 Sep 10 00:11 epd_2in9d_test.py
-rw-r–r– 1 root root 3822 Sep 10 00:11 epd_2in9_test.py
-rw-r–r– 1 root root 3981 Sep 10 00:11 epd_4in2bc_test.py
-rw-r–r– 1 root root 3147 Sep 10 00:11 epd_4in2_test.py
-rw-r–r– 1 root root 3859 Sep 10 00:11 epd_5in83bc_test.py
-rw-r–r– 1 root root 3154 Sep 10 00:11 epd_5in83_test.py
-rw-r–r– 1 root root 3981 Sep 10 00:11 epd_7in5bc_test.py
-rw-r–r– 1 root root 3147 Sep 10 00:11 epd_7in5_test.py
I had been using epd_2.3_test and the epd_2.3_V2 test, neither of which worked. After seeing it function properly on a couple of the 1in54 tests, I went through them all systematically. Turns out both epd_2in13bc_test and epd_2in13d_test work.
So I generated some red and black bitmaps, and using the example code as a template, pulled them in and displayed them.
What I love about epaper is that it doesn’t require power to display, only to change the display.
Now I’m looking at a 1500mah RPiZeroW-sized LiPo. I have other battery banks, but I like the idea of a low profile unit that can fit in a small pocket and maybe even be enclosed with the assembly. I was looking at this one…
So I spent more time than I care to admit this weekend trying to prep a Pwnagotchi platform (RPiZW and e-paper). The code (by @evilsocket) hasn’t been released yet, but I want to be ready. My mistake was only ordering one e-paper HAT from Waveshare. I should have taken failure rates into account. At least I’m 75% certain it’s a DOA unit. I tried numerous approaches based on numerous experiences by randos on the internet, and I couldn’t get that damned thing to display SQUAT. If it fed me back any data, it was just “e-paper busy.” Not helpful, Waveshare. Not helpful.
On the plus side, I was watching a video comparing different levels of USB microscopes for soldering (GreatScott!), and noticed that it was sponsored by JLCPCB, and they were offering a too-good-to-be-true deal on new PCB orders. So I went ahead and placed an order for ten MultiPass boards. Some of those will be up for grabs when they arrive. WAY cheaper than expected. I remain cautiously optimistic.
So a few of us came to a consensus of wanting to work on Hackerbox #0046 “Persistence” for the upcoming September meeting. If you want in, bring one, and bring soldering gear. I have specialty stuff, like an electric solder removal tool and a hot air tool, but bring your basics — iron, solder, etc.
I am REALLY tempted to order boards and parts to assemble the DC27 Multipass badge, since the Gerber/Eagle files have been released along with the software. It will be a bit of a challenge for some — but we’re all about challenges, right? There are like 70 0603-sized SMD parts on it. I have more than half the parts in my lab already, but some parts I’ll need to order. If there’s enough interest, I can order stuff for the October meeting. Cost of the bare boards is about $36 each from OSHPARK, ordered in sets of three. If there’s enough interest I’ll price out the BOM and you can decide if it’s worth it to you to play.
It has been decided that for the foreseeable future, meetings will be held in my hackerspace basement (hackerspasement?) just a few blocks from the Gum Spring Library.
I (Bob) am looking to grow this group and its members. I am also looking to transition it into more of a cooperative and less of me being the main driver. I love hosting these things, and I’m more than happy to keep doing so, but I thrive on entropy. So for the future, I would love to see:
Crossover cable came late today, and as suspected, when my laptop is connected through the gigabit switch and directly into the WOPR (as opposed to through the wifi), and I create a blank VM with BRIDGED networking through the ethernet cable, I’m able to deploy a fully-updated Kali instance to the VM (via FOG) in just over two minutes.
Shutdown and startup scripts are reliable. A quick shutdown script via ssh key tells WOPR to first SUSPEND all the VMs, then shut down itself. All the machines startup automatically when I power on the unit. The network is usable within a minute of powering it up.
Packing everything up for tomorrow’s meeting now…
See you at the meeting. Or at the pregame. I’m going to hit the hot tub and then hit the sack. It’s been a busy weekend.
| Stat | WOPR | WOPR Jr |
| Cubic Inches | 2011 | 74.6 |
| Weight | 23 | 3 |
| Storage | 500GB | 2x2TB |
| RAM | 16GB | 32GB |
| Memory BW | 21GB/s | 37.5GB/s |
| Bus Speed | 2.5GT/s | 8GT/s |
| Storage test | 1.55MB/s | 574MB/s |
| Blinkyshit | Standard | Skull |