Stilgherrian (@stilgherrian)

Wentworth Falls NSW AU

The below is an off-site archive of all tweets posted by @stilgherrian ever

October 24th, 2015

So, I’ll catch up on sleep tonight, and a busy day tomorrow, recording interviews in between the sessions. pic.twitter.com/2KCqQRGq2Z

via TweetDeck

“The fewer the moving parts, the less there is to go wrong.” twitter.com/darrenpauli/st…

via TweetDeck

The smug twerp thinks he’s a hero for being uncooperative. He’s also wearing a uniform top that suggests he’s a rising basketball star.

via Plume for Android

A young man is fined $75 for fare evasion. instagram.com/p/9NOz0XiFmP/

via Instagram

I have a Myki now. I have no idea what I am doing.

via Plume for Android

All the romance of dodging trams on your wedding day. pic.twitter.com/57QeuzA01C

via Plume for Android

I’ve had to duck out of for a while, cos microsleeps were threatening to put me face down in the not good way.

via Plume for Android

Uhoh. Microsleeps.

via TweetDeck

The emphasis on hardware will surely become even more important with this Internet of (Stupid) Things thing. twitter.com/bigmac/status/…

via TweetDeck

IndoPilot Ever wondered how steep some airstrips are in Papua? Perhaps this drone’s eye view of Wipon gives you an idea! pic.twitter.com/XjJgtZje3U

via Twitter Web Client (retweeted on 2:12 PM, Oct 24th, 2015 via TweetDeck)

Note to self: The recorder records far better quality audio if you press the button marked “record”.

via TweetDeck

Like so many such talks, this one starts off by running through the architecture of the system, ApplePay in this case.

via TweetDeck

Fillmore has pointed out that ApplePay is “just” Apple’s implementation of credit card tokenisation.

via TweetDeck

This session: Fruit Salad, yummy yummy: An analysis of ApplePay by Peter Fillmore ruxcon.org.au/speakers/#Pete…

via TweetDeck

Up next for me, the First of three sessions about security and certain Apple things. pic.twitter.com/htjMaWnETq

via Plume for Android

A reminder that Sat and Sun I’m tweeting from Ruxcon in Melbourne. ruxcon.org.au/schedule/ Mute to avoid.

via TweetDeck

Watching the Ruxcon Black Bag challenge in progress. This team is in the room… pic.twitter.com/KeFdbymSZe

via Plume for Android

tinatbh why are iphone chargers not called Apple Juice

via Buffer (retweeted on 1:12 PM, Oct 24th, 2015 via Tweetbot for iΟS)

ASD’s SpookPizza has proved popular, but I’ve heard complaints that there’s not enough LSD in it. pic.twitter.com/JVmJPRbqjr

via Plume for Android

thegrugq Sometimes it’s hard to believe anyone is actually afraid of Russian hackers. pic.twitter.com/pqsflJKDSe

via Tweetbot for iΟS (retweeted on 12:35 PM, Oct 24th, 2015 via Tweetbot for iΟS)

T-shirt spotted: “I am a network engineer. To save time, assume that I am never wrong.”

via Tweetbot for iΟS

Struggling to stay awake. Not because of boredom, but because sheer fatigue. Roll on the SpookPizza lunch.

via Tweetbot for iΟS

@swearyanthony Well, the talk was in the context of in-car DAB receivers. Smart cars were this team’s gig. DAB is usually on the CAN bus.

via Tweetbot for iΟS in reply to swearyanthony

[True, but what if you send them a buffer overrun?] RT @rwerkh: I suspect most DAB units haven’t implemented the features.

via Tweetbot for iΟS

The DAB protocol dates back to 1995, and has all the network security smartness* you’d expect for 20yo internet gear.

via Tweetbot for iΟS

All that DAB hacking stuff is entirely theoretical at this stage, as far as we know anyway.

via Tweetbot for iΟS

A final scenario is to have malicious channel info, which DAB receivers will automatically pick up as they scan for channels.

via Tweetbot for iΟS

Scenario 2 is to set up your own DAB station on an unused channel, and social engineering to entice drivers to tune in.

via Tweetbot for iΟS

Scenario 1 is to broadcast malicious DAB at high power to override what people are likely to listen to. Easily spotted.

via Tweetbot for iΟS

My take is that this sort of hack is at very early stages, but also that automotive systems are vulnerable piece of shit.

via Tweetbot for iΟS

A short time ago we were shown how to insert images and other things into the RF stream.

via Tweetbot for iΟS

So unless the DAB radio receivers are updated, they suffer the usual potential for being attacked.

via Tweetbot for iΟS

DAB head units generally use basic open source libraries to display images, HTML etc. Or have databases to store TX details etc.

via Tweetbot for iΟS

Oh good*, DAB has a data encapsulation type for sending Java apps to run on the radio receiver.

via Tweetbot for iΟS

nancyayoussef Overheard at the Pentagon: “It’s not combat. It’s just really violent advising.”

via Twitter Web Client (retweeted on 11:26 AM, Oct 24th, 2015 via Tweetbot for iΟS)

calestous and in carry owners’ mobile numbers for identification | Photo credit @Lattif pic.twitter.com/yg6gFLTqQC

via Buffer (retweeted on 11:26 AM, Oct 24th, 2015 via Tweetbot for iΟS)

So far this is an exposition of the DAB protocols and capabilities. It’ll be a while before we get to the hacky-hackies.

via Tweetbot for iΟS

Yes, the digital radio head units are often connected to the car’s CAN bus, that is, its data network.

via TweetDeck

Hacking car radios, “pivoting their attacks toward more cyber-physical modules such as those concerned with steering or braking.”

via TweetDeck

Next up for me: Broadcasting Your Attack: Security Testing DAB Radio In Cars, by Andy Davis ruxcon.org.au/speakers/#Andy…

via TweetDeck

So @darrenpauli is cleaning “all this sticky shit” off his computer. I’ve no idea what he’s been doing.

via Plume for Android

bigmac Okay so @spenchdotnet that whole story about en.wikipedia.org/wiki/Internati… and spacecraftforall.com should be a whole talk!

via TweetDeck (retweeted on 10:37 AM, Oct 24th, 2015 via TweetDeck)

Mind you, the Ruxcon Black Bag challenge coming up later today is certainly a game of a certain style. ruxcon.org.au/events/blackba…

via TweetDeck

@dtbell91 Baby steps, David. Baby steps… ;)

via TweetDeck in reply to dtbell91

The sponsor’s message is fairly straightforward, no? instagram.com/p/9MsJLbiFi1/

via Instagram

Finally, I’m officially in the event. (Also, love the sponsors.) instagram.com/p/9MrIE1CFhJ/

via Instagram

Wait. How come @spenchdotnet gets to use the Arecibo Radio Telescope to play with abandoned satellites? This is so not fair.

via TweetDeck

So, there’s no encryption on the tollway car ID things? So you can track the cars yourself, just like a tollgate? Sweet.

via TweetDeck

bigmac Now @spenchdotnet is talking about how simple restaurant pagers are, they’re using FSK - easy to transmit using

via TweetDeck (retweeted on 9:51 AM, Oct 24th, 2015 via TweetDeck)

Being shown how to spoof the signals that set off pub “Your meal is ready” pagers. “But you said my food was ready!”

via TweetDeck

“Point your antennas upstairs, because there’s all these satellites up there.”

via TweetDeck

And now we’re seeing how to reverse-engineer and decode unknown data packets coming over the radio.

via TweetDeck

bigmac You too can receive “INMARSAT Aero” comms, with what looks like stuff you’ll find in your garage and wires. Lots of wires.

via TweetDeck (retweeted on 9:31 AM, Oct 24th, 2015 via TweetDeck)

As usual, we’re progressing through this stuff far faster than I can tweet it. But we’ve been shown how to build receivers.

via TweetDeck

Learning about aviation satellite communications. pic.twitter.com/dACmSVEhI3

via Plume for Android

Esther_Lim Hacking the wireless world pic.twitter.com/uNuryqh9P0

via Twitter for iPhone (retweeted on 9:24 AM, Oct 24th, 2015 via TweetDeck)

Learning how to do things with software-defined radio (SDR), which transmit as well as receive. A Boeing 747 has around 31 radios.

via TweetDeck

@dtbell91 Wow, sounds like you’ve gone to a bunch of trouble. Thanks, that sounds like it’ll solve the problem. Much appreciated.

via TweetDeck in reply to dtbell91

Learning about what we can see in this spectrum analysis. pic.twitter.com/3W43hYoxMx

via Plume for Android

First up for me: Hacking the Wireless World - Software Defined Radio Exploits, by Balint Seeber. ruxcon.org.au/speakers/#Bali…

via TweetDeck

Ruxcon kicks off. Schedule at ruxcon.org.au/schedule/, and mute to avoid my voluminous stuff.

via TweetDeck

I have been recognised, and waved through. Told to come back at 0900 to get a badge etc.

via Plume for Android

We’ve all been told to have our registration email and confirmation code ready. I do not have such things.

via Plume for Android

Arriving at and feeling safer* already. instagram.com/p/9MdY0rCFpk/

via Instagram

Approaching the Melbourne CBD, so there’s that. instagram.com/p/9McpShCFoF/

via Instagram

While blaming the (hacking, in this case) victim usually isn’t helpful, when does their stupidity become criminal negligence?

via TweetDeck

@davispg Thank you. I’m looking forward to it. I always learn heaps.

via TweetDeck in reply to davispg

@Esther_Lim Yes, there are Young People™ at , and some of them go very late indeed. I’m already desperately short of sleep.

via TweetDeck in reply to Esther_Lim

I’ll be using the hashtag , not , because I know what year it is, tweets are timestamped, and it’s four fewer characters.

via TweetDeck

Sat plan, draft: 0900 @ruxcon all day ruxcon.org.au/schedule/; this is likely to include the party in the evening, if I last.

via TweetDeck

Saturday. The real mystery is why They decided not to terminate the experiment immediately once They discovered the truth. Saturday.

via Plume for Android