Tweets from December 2010

Happy 0day to everyone!! :D

11:39pm December 31st 2010 via Twitter for Android

@trufae ja trigues :) per cert lo del .es es culpa meva O:) it was cheap :P

1:41pm December 31st 2010 via Twitter for Android in reply to trufae

RT @PaulOBrien: If you have an app distributed, that's not in the Market, put in the Market as 'unpublished' NOW to protect your Namespace. No brainer.

1:38pm December 31st 2010 via Twitter for Android

RT @PaulOBrien: If anyone has shipped APKs signed with the test cert (it HAS happened lots) it's even more of a danger - spam updates will actually install.

1:38pm December 31st 2010 via Twitter for Android

RT @PaulOBrien: For example, I could hijack 'Swype' (com.swype.android.inputmethod") in the Market with a namespace collision' and spam Swype users.

1:38pm December 31st 2010 via Twitter for Android

RT @PaulOBrien: Namespace hijacking is a big issue that hasn't come to the forefront yet. If you have an app out there, not in the market, you're at risk.

1:37pm December 31st 2010 via Twitter for Android

RT @0x90code: new nopcode url shortening service! - http://x90.es

1:05pm December 31st 2010 via web

RT @Garzari: -Un gintonic, por favor. -Le pongo pepino, caballero? -Desde el primer día que la vi, señorita. Lamento que se me note tanto.

2:18pm December 30th 2010 via web

Note to self: never ever again install /boot on a lvm2 partition, even with grub2. Morning lost :( #facepalm #FAIL

1:27pm December 30th 2010 via Twitter for Android

RT @revskills: [Video] Stripping SSL and Sniffing HTTPS using SSLstrip http://bit.ly/htvVEJ (via @SecurityTube)

11:46am December 30th 2010 via Twitter for Android

RT @c3streaming: Good morning at day 4! First recordings hopefully are going to get released today, stay tuned.

11:45am December 30th 2010 via Twitter for Android

RT @0xcharlie: Inspired by the popular press, I now write "cyberweapons" instead of exploits in my "cyberweapon factory", aka home office.

8:05am December 30th 2010 via Twitter for Android

Hay algún registrar de dominios .es (baratos, a menos de 5 eur) que acepte paypal como forma de pago? http://is.gd/jJS2F

1:22am December 30th 2010 via web

RT @secbydefault: Charla del team @fail0verflow disponible en video http://secby.us/dGj6va #27c3 #fail0verflow

1:19am December 30th 2010 via web

RT @sjmurdoch: The slides for my #27C3 talk, Chip and PIN is Broken, are now online: http://prezi.com/tkklfutly8ke/27c3-chip-and-pin-is-broken/

1:16am December 30th 2010 via web

Update your #wordpress to 3.0.4 now: http://is.gd/jJQDG (critical XSS vuln found in previous versions, err.. again!)

1:15am December 30th 2010 via web

@trufae mplayer http://wmv.27c3.fem-net.de/saal1 || ffplay rtmp://berlin1.rtmp.27c3.fem-net.de/rtmp/saal1_hq

3:14pm December 29th 2010 via TTYtter (pof) in reply to trufae

#27C3 console hacking 2010, PS3 Epic Fail - is about to start. Stream: http://is.gd/jDTcG +info: http://is.gd/jHRdd

2:57pm December 29th 2010 via TTYtter (pof)

RT @lostinsecurity: Flaws in Tor anonymity network spotlighted http://bit.ly/iiUZRe

12:55pm December 29th 2010 via Twitter for Android

RT @aramosf: PHP Security Guide & Checklist for Websites and Web Applications – Bottom Line for Every Good PHP Developer: http://secby.me/ehfNVC

12:47pm December 29th 2010 via Twitter for Android

RT @bandaanchaeu: Orange, el primer operador con numeración que empieza por 7 http://bit.ly/eje0JK

8:47am December 29th 2010 via web

RT @secbydefault: Gran jornada hoy del #27c3! recordamos que a las 16h será la charla de Hector Martín (@marcan42) Console Hacking2010 http://secby.us/fG6i2W

8:02am December 29th 2010 via Twitter for Android

+1 RT @i0n1c: I wish I had a GSM sniffer at #27c3 right now

8:18pm December 28th 2010 via TTYtter (pof)

@esizkur "If i demo here, ther'es a chance that someone will sniff the exploit" --- You're my idol! :D #27C3

8:16pm December 28th 2010 via TTYtter (pof)

nice talk from Ralf-Philipp Weinmann #27C3 - pretty much complements if you've read his previous work here: http://is.gd/jEEcj [PDF]

7:51pm December 28th 2010 via TTYtter (pof)

Ready to see The Baseband Apocalypse #27C3 - All your baseband are belong to us: http://saal2.h264.27c3.fem-net.de/ starting in ~10min

7:23pm December 28th 2010 via TTYtter (pof)

@pfreixes Que mires punyetero? no veus que és un lletrero

7:22pm December 28th 2010 via TTYtter (pof) in reply to pfreixes

#27C3 #SAAL1 #CCC - answer to a generic disassembly open source framework: RADARE.ORG /cc @radareorg @41414141

5:13pm December 28th 2010 via TTYtter (pof)

Radare2 preview - new feature "artificial intelligence assistant": http://radare.org/img/r2clip.png

4:52pm December 28th 2010 via TTYtter (pof)

RT @trufae: @pof bah :p i thought it was a disassembler from scratch or for radare. Doing it for IDA has no interest for me.

4:13pm December 28th 2010 via web

#27C3 talk from @41414141 starting in 10 minutes: Building custom Disassemblers - stream: http://is.gd/jDTcG (+info: http://is.gd/jDTk2)

4:07pm December 28th 2010 via TTYtter (pof)

OsmocomBB: http://is.gd/jDsZV (open source GSM baseband) + A5/1 Rainbow Tables: http://is.gd/jDt11 , http://is.gd/jDt1U (A5/1 Decryption)

2:01pm December 28th 2010 via TTYtter (pof)

amazing lesson to GSM operators from Karsten Nohl and Sylvain Munaut - #27C3 - GSM sniffing possible using a $10 phone

1:52pm December 28th 2010 via TTYtter (pof)

RT @fo0_: @pof or ffplay rtmp://hetzner1.rtmp.27c3.fem-net.de/rtmp/saal1_hq to non user flash

1:00pm December 28th 2010 via TTYtter (pof)

#27C3 next talk "Wideband GSM sniffing" in Saal1: http://saal1.h264.27c3.fem-net.de/ - starts in 15 min

12:47pm December 28th 2010 via TTYtter (pof)

#27C3 - anonymous ninja in Saal3 -> http://saal3.h264.27c3.fem-net.de/ - Lightning Talk (guest@agent5-eee) #wikileaks

12:41pm December 28th 2010 via TTYtter (pof)

NetS-X: e-learning on network security - http://code.google.com/p/nets-x/

12:33pm December 28th 2010 via TTYtter (pof)

congrats @tmbinc for the awesome #27C3 talk! - you should rent your setup as cloud cracking service! :D

11:25am December 28th 2010 via TTYtter (pof)

Distributed FPGA Number Crunching For The Masses #27C3 - is about to start: http://saal2.h264.27c3.fem-net.de/

10:31am December 28th 2010 via TTYtter (pof)

REMnux: #Malware Reversing Linux Distro - http://bit.ly/fqVHCK includes Zerowine and radare (via @revskills) /cc @matalaz @radareorg

10:18am December 28th 2010 via TTYtter (pof)

wow ... di.fm has an android app: http://di.fm/apps

12:49am December 28th 2010 via TTYtter (pof)

@trufae si, algun problemilla amb l'audio aquest mati xo ho han solucionat rapid, es veuen millor dsd casa q dsd allà :)

9:21pm December 27th 2010 via Twitter for Android in reply to trufae

RT @revskills: WPA-PSK Wordlist Download - 13GB http://bit.ly/gkN3hA (via @devilok)

5:38pm December 27th 2010 via TTYtter (pof)

impressive talk from Collin Mulliner and Nico Golde (SMS-o-Death) #27c3 - Use openBSC to do fuzzing with SMS against feature-phones.

5:17pm December 27th 2010 via TTYtter (pof)

@c3streaming thanks, Saal2 audio working now :)

11:55am December 27th 2010 via TTYtter (pof)

@c3streaming no audio in saal2 stream... please fix :)

11:52am December 27th 2010 via TTYtter (pof)

#27C3 code deobfuscation by optimization starts now. Stream: http://is.gd/jysQX + Slides: http://is.gd/jysSm

11:46am December 27th 2010 via TTYtter (pof)

RT @c3streaming: Only a few minutes left until the 27C3 opens. Official streams available via http://27c3.fem-net.de/

10:37am December 27th 2010 via TTYtter (pof)

Read Embedded NAND Flash Chips without removing them: http://bit.ly/fuEftJ

9:17am December 27th 2010 via Twitter for Android

@hdubli which kind of lock is it? And why did it happen?

10:12pm December 26th 2010 via Twitter for Android in reply to hdubli

RT @reversemode: Los creadores de virus cambian sus tácticas en busca de ingresos http://is.gd/ju7l0

9:59pm December 26th 2010 via Twitter for Android

RT @hdmoore: Takeaway from ExploitDB/Offsec/Ettercap compromise: PHP and sloppy web roots get you owned: http://bit.ly/fjIKkl

11:32pm December 25th 2010 via Twitter for Android

RT @secbydefault: Publicada owned & exp0sed #2, hackeados inj3ct0r, exploit-db, backtrack, free-hack, ettercap y de nuevo, carders.cc http://secby.us/gGWS4F

11:32pm December 25th 2010 via Twitter for Android

I liked a YouTube video -- Speed-Riding Down The Eiger http://youtu.be/rLKVx60I5BM?a

9:26pm December 25th 2010 via Google

You rock!! :D RT: @radareorg welcome to the core team @earada :)

8:59am December 24th 2010 via TTYtter (pof)

La búsqueda social será el nuevo Page Rank http://bit.ly/ejpmtL #MIBers

9:27pm December 23rd 2010 via Twitter for Android

RT @jcanto: es un buen chiste geek. 'un niño tan feeeo tan feeeo que cuando nació le asignaron un CVE'

6:56pm December 23rd 2010 via Twitter for Android

New blog post - Fully backup KVM virtual machines: http://is.gd/jjbBm #pofHQ

3:36pm December 23rd 2010 via web

Not All Retailers Overreacting To Mobile Phone Wielding Shoppers http://bit.ly/gmMcEY

9:46am December 23rd 2010 via Twitter for Android

@whatsbcn all your browser extensions are belong to us ;-)

2:00am December 23rd 2010 via web in reply to whatsbcn

new profile picture, by popular request :*

1:41am December 23rd 2010 via web

RT @jduck1337: Oh my! Santa came early! He brought a .NET 2.0 ROP enabling my unpatched IE CSS exploit to work against Win7! http://j.mp/h27caQ

12:37am December 22nd 2010 via Twitter for Android

@toomanysecrets LMAO!! Ya no lo tengo, ahora hay algo mejor y se llama 'metasploit' :-) que tiempos...

5:47pm December 21st 2010 via Twitter for Android in reply to toomanysecrets

RT @AndroidDev: It’s not “rooting”, it’s openness: http://goo.gl/GlcIG

10:26pm December 20th 2010 via Twitter for Android

RT @prodrigestivill: @pof Here Is The Fake HTC Official Site (M.I.C. Gadget) http://t.co/hSFWTM9

6:56pm December 20th 2010 via Twitter for Android

@MikeTracking el kill era amb -USR1 o algo similar, mira el man, estic fora d casa amb el mov i parlo d memoria O:)

10:59pm December 18th 2010 via Twitter for Android in reply to MikeTracking

Eugenio "hay dos fuerzas en el mundo: la avaricia y el miedo"

3:18pm December 18th 2010 via Twitter for Android

RT @freakboy3742: Newly discovered XSS vulnerability in Amazon. Attack vector -- you have to write a book http://bit.ly/f1203K

10:58am December 18th 2010 via web

RT @roman_soft: RT @fo0_: sshttp feature http://bit.ly/bptKub hide #SSH inside #HTTPS as well.\n#linux #security #tunneling

9:47am December 18th 2010 via TTYtter (pof)

RT @olopez: Android 2.3 Gingerbread's source code now available OH OH OH !

6:45pm December 17th 2010 via TTYtter (pof)

reading rfc2109 - http state management mechanism (cookies) - http://is.gd/iUkyq

4:37pm December 17th 2010 via TTYtter (pof)

I uploaded a YouTube video -- Titanic performance http://youtu.be/fXTM9ukowZU?a

2:12am December 17th 2010 via Google

@quetzal no tinc massa experiencia, nomes he provat sipdroid i n'estic força content, això si ha d ser un andoid d gama alta x q funcioni b.

1:16pm December 16th 2010 via Twitter for Android in reply to quetzal

Angry Birds y su modelo de negocio en Android: http://bit.ly/g2s9m4

6:26pm December 15th 2010 via Twitter for Android

algun admin de seguridadwireless q tenga +d 15 años puede explicar q ha pasado? en lugar d censurar el foro podriais publicar el algoritmo.

3:33pm December 15th 2010 via TTYtter (pof)

screenshot de la pagina de seguridadwireless que calculaba las claves WPA antes de que la quitaran. http://twitpic.com/3g5rrt

2:52pm December 15th 2010 via Twitpic

Han quitado la pagina de seguridadwireles que "calculaba" las claves WPA de Movistar y Jazztel: http://is.gd/iN4wl ¿alguien tiene +info?

2:45pm December 15th 2010 via TTYtter (pof)

RT @trufae: Claus WPA de les WLANs de Movistar i Jazztel compromeses :DD http://j.mp/hU8KVg

11:40am December 15th 2010 via TTYtter (pof)

@trufae podria ser mailman ? /cc sha0coder

10:52am December 15th 2010 via TTYtter (pof) in reply to trufae

RT @thorstenholz: Yahoo search hacked? Image result thumbnails are leading to porn pictures. [Updated] http://t.co/aKmlKPP via @tnwmedia

9:07am December 15th 2010 via TTYtter (pof)

RT @mdowd: Suggestion for OpenBSD webpage: "Only one government-installed backdoor in over 10 years!"

8:18am December 15th 2010 via Twitter for Android

RT @anow_null: Facebook 0-day SQL Injection vulnerability has been found. [ http://oxod.ru/?p=252 ]

8:14am December 15th 2010 via Twitter for Android

RT @ioerror: Back doors in OpenBSD? Props to Theo for disclosing this email - http://marc.info/?l=openbsd-tech&m=129236621626462&w=2

12:13am December 15th 2010 via Twitter for Android

RT @minid: Julian Assange is free, hoooray! #wikileaks

3:39pm December 14th 2010 via TTYtter (pof)

@poltarrago i de moment s'integra amb twitter i facebook (amb FB no ho he provat, no tinc compte :P)

11:54am December 14th 2010 via TTYtter (pof) in reply to poltarrago

@poltarrago encara està una mica verd, pero IMHO promet bastant. Si vols encara em queda alguna invite /dm el teu mail.

11:52am December 14th 2010 via TTYtter (pof) in reply to poltarrago

@ismaller nooo... la inteligencia colectiva de Y! answers :)

10:09am December 14th 2010 via TTYtter (pof) in reply to ismaller

testing #diaspora social network, I don't think this will be a facebook killer but it certainly is privacy aware, decentralized and open ...

7:56am December 14th 2010 via Diaspora

"Crowd Fighting": guerras sin generales se han ganado muchas, pero guerras sin tropas nunca se ganó ninguna. (Via http://is.gd/iFmQa)

12:45pm December 13th 2010 via TTYtter (pof)

congrats @earada for adding Haret IO support to radare2: http://is.gd/iEZKC /cc @radareorg

10:25am December 13th 2010 via TTYtter (pof)

RT @Luis_Corrons: BlackHat SEO attack – Target: Wikileaks http://bit.ly/gI8FSR PandaLabs blog

10:22am December 13th 2010 via TTYtter (pof)

RT @hdmoore: Anonymous Releases Very Unanonymous Press Release: http://bit.ly/hQaze6

6:47pm December 11th 2010 via TTYtter (pof)

+1 RT @Annabel210: @_Kimbosch Bona sort en la nova etapa!!

8:46am December 11th 2010 via TTYtter (pof)

@hdubli probably... but who knows yet :) we'll see it in tablets and high profile phones next year... maybe in MWC 2011.

12:57am December 11th 2010 via Twitter for Android in reply to hdubli

Open source ARM Cortex simulator models debut - http://bit.ly/feMpH6

12:54am December 11th 2010 via Twitter for Android

TI OMAP 4440 dual core Cortex A9 ARM, 3D GPU and 75% more performance: http://bit.ly/elj7KO

12:49am December 11th 2010 via Twitter for Android

@roman_soft eso que acabas de decir ya es una maldad en si :P /cc @bquintero @gadixcrk

7:41pm December 10th 2010 via TTYtter (pof)

RT @aramosf: This is a hack that makes your machine appear (to unix traceroute) to be anywhere on the internet.: http://secby.me/guxfSq

5:24pm December 10th 2010 via TTYtter (pof)

RT @YJesus: RT @mangelrp: En protesta por su encarcelamiento, Julian Assange ha decidido ponerse en huelga de hembra.

5:22pm December 10th 2010 via TTYtter (pof)

@aramosf otro... ok ok, entendido ya lo cambiare! O:-)

4:52pm December 10th 2010 via TTYtter (pof) in reply to aramosf

RT @coolkamio: No entiendo el entusiasmo de que Amazon llegue a España… ¿No la estabais boicoteando por lo de wikileaks?

4:32pm December 10th 2010 via TTYtter (pof)

Oferta de trabajo: Técnico de producto +info: http://is.gd/iuKAK - interesados, contact me :)

1:16pm December 10th 2010 via TTYtter (pof)

RT @msuiche: http://twitpic.com/3ekeyl WikiLeaks & Google Insight (Must see) So much fun (via @Nico_Lanter)

10:35am December 10th 2010 via TTYtter (pof)

Toshiba #Wikileaks ad on linkedin: http://i.imgur.com/0cUSB.png (Avoid a Wikileaks Deisaster - Document Security Webinar)

9:25am December 10th 2010 via TTYtter (pof)

Ever wondered why some URLs (eg: twitter) have a '#!' sign? here's the answer: http://is.gd/isXSk #SEO #ajax #MIBers

12:45am December 10th 2010 via web

RT @_ikki: "1499 websites (29.88% of the total we analyzed) contained at least one page vulnerable to HTTP Parameter Injection" - http://bit.ly/i3J6R6

3:36am December 9th 2010 via Twitter for Android

99.98% Of Domains Unsigned By DNS Security Extensions http://bit.ly/gV7ZG8

4:32pm December 8th 2010 via Twitter for Android

RT @meneame_net: Vicepresidente de Paypal sobre el bloqueo a Wikileaks: "El Departamento de Estado nos dijo que era... http://m.menea.me/nuzw

2:55pm December 8th 2010 via Twitter for Android

@MarioVilas en linux no funciona, pero puedes usar "netstat -pene" para lo mismo /cc @aurelianito

4:06pm December 7th 2010 via TTYtter (pof) in reply to MarioVilas

RT @Reuters: FLASH: WikiLeaks founder Julian Assange arrested in Britain - UK police

10:29am December 7th 2010 via web

Restaurant el pescador (casa angelina) les cases d'alcanar http://twitpic.com/3d6f84

2:05pm December 5th 2010 via Twitter for Android

Dotfuscator SKU for WP7 apps with patented renaming, string encryption, metadata removal obfuscation transforms: http://bit.ly/hhTEZk

8:33am December 5th 2010 via Twitter for Android

@hdubli not yet unveiled, but I guess will be the major SoC along with Tegra when LTE devices become widely available.

8:25am December 5th 2010 via Twitter for Android in reply to hdubli

Qualcomm MSM8960: 5x performance, 75% less power. Can u believe? http://bit.ly/emzBa0

7:27am December 5th 2010 via Twitter for Android

RT @nacionred: Aumenta la presión sobre WikiLeaks: PayPal cancela su cuenta para recibir donativos http://bit.ly/fQshXz

10:10am December 4th 2010 via Twitter for Android

RT @YJesus: Explotando Android vía Web con airbase-ng http://is.gd/i8Ccc

12:28pm December 3rd 2010 via TTYtter (pof)

RT @trufae: El tema de #chiptune 'kung fu goldfish' es realment gran. @pof @neuroflip busqueu-lo que us molarà :D happy blirping

12:20am December 3rd 2010 via web

RT @radareorg: Another yummy update of what is happening in ragui ... http://j.mp/eOxXqp

12:18am December 3rd 2010 via web

RT @roman_soft: RT @pentestit http://bit.ly/gvJizI <~~ Nice! Update to WordPress 3.0.2. NOW!

4:08pm December 2nd 2010 via TTYtter (pof)

RT @txipi: RT @ArtePresentar: RT @dreig: Realidad aumentada y Kinect, increible... http://dreig.cc/fHAmPc

2:47pm December 2nd 2010 via TTYtter (pof)

@toomanysecrets tu por lo q veo sigues con la poligamia... suse + *BSD, no?

12:24pm December 2nd 2010 via TTYtter (pof) in reply to toomanysecrets

@toomanysecrets no ha llovido ni nada ;-) casi todo lo q tengo s ubuntu con gnome... aunq m sta empezando a gustar archlinux tb O:)

12:23pm December 2nd 2010 via TTYtter (pof) in reply to toomanysecrets

Ubuntu-based ARM server runs on 80 Watts - http://bit.ly/i69J6M

11:38am December 2nd 2010 via Twitter for Android

@hdubli does it last at least 24h with 3G data connection always on?

8:42am December 2nd 2010 via Twitter for Android in reply to hdubli

shame on @amazon for dropping @wikileaks out of their cloud. Period. #amazonfail

2:03am December 2nd 2010 via web

RT @Xylit0l: Armag3ddon Armadillo unpacking tool 1.9 released, here you go dude -> http://www.accessroot.com/arteam/site/download.php?view.262

12:47am December 2nd 2010 via web

@hdubli nice, will b launched by @vodafone_es here very soon, i'll try to see if i can get one too! :D

5:50pm December 1st 2010 via Twitter for Android in reply to hdubli

RT @0x90code: click on "Listen": http://is.gd/i3kd4

4:35pm December 1st 2010 via web

RT @corelanc0d3r: Exploit dev cheatsheet wallpaper v8 online - http://bit.ly/aLHZ6l - sorry for messing up v7

12:00am December 1st 2010 via web