Pi Bar

Using parts made from a Makerbot Replicator 2X 3D printer, some square metal rods, and a series of 5 peristaltic pumps. The project was based off a project called Bar Mixvah. The problem with the orginal is that you had to use a sluggish MongoDB database and a laptop in order to get it up and running. I wanted something that was self contained. Using an old Raspberry Pi with 256mb ram, I worked with a few guys from NESIT to redesign the top portion to fit the raspberry pi into and then created a slim MySQL backend with PHP and node.js.

20140623_225646

Continue reading

Old Code

This is just a post to preserve some old backdoor programs i wrote 10+ years ago that I used to mischievously learn programming and windows API. I no longer have the source for anymore. If I can dig them up I’ll post with the binaries.


Acid Reign 1.0
Coded in ASM 9/2001
First program I wrote was a webdownloader , the client was in Visual Basic and the server was in ASM
Acidreign
version 2.0 coded in ASM 5/9/2002
Acidreign2.0


trILLian rape ver. 1.0
Coded in ASM 4/27/2002
a 2.45kb trillian pws thats sends user names and passwords to your icq number.
Trillianrape1.0


ILL-Eagle 1.0
Coded in ASM 5/20/2002
a 1.62kb webdownloader that will download any Visual Basic file from a website and execute it. works on win9x/me/nt/2k/xp
*checks to see if Msvbvm60.dll is in the system directory ,if not it dlls it
*once downloaded runs the file hidden
*melts itself after file is downloaded removing any traces of itself
Ill_eagle1.0


mini-web vers. 1.0
Coded in ASM 6/2/2002
a 1kb webdownloader that will download any file from a website and execute it.works on win9x/me/nt/2k
Miniweb1.0


kILLer webdlr vers. 1.0
Coded in ASM 6/12/2002
a 3.1kb webdownloader that will download any file from a website and execute it.also kills any AV’s and firewalls running works on win9x/me/nt/2k/xp
Webdownloader_killer1.0


Shut-it Downloader vers. 1.0
Coded in ASM 6/17/2002
a 3.5kb webdownloader that will download any file from a website and execute it.also kills any AV’s and firewalls running works on win9x/me/nt/2k/xp
Webdownloader_shut-it1.0


half life jacker ver. 1.0
Coded in ASM 10/19/2002
a 1.35kb app thats sends half life cd-key to your icq number.
Halflifejacker1.0


WebcamNow Jacker
Coded in ASM 6/2003
Snags the saved password from the registry and sends it to an ICQ number
Webcamnow


CMDGet 1.0
Coded in ASM 8/2003
Downloads a file from a website from user provided parameters from the commandline/dos prompt/shell
Directions:
type: CMDGet


CMDGet 1.0
Coded in ASM 9/2003
a 1.26kb program that silently installs Radmin on a remote computer for win9x/me/nt/2k/xp. basically it downloads the radmin server and dll from the web and adds the proper registry keys for it to function.
Ghost_radmin1.0


NCWrapper 1.0
Coded in ASM 1/30/04
Automatically expands Netcat to the windows directory and executes user-choosen parameters *self-deletes after expanding/running commands (netcat is left running)
Ncwrapper1.0


mini-web vers. 2.0
Coded in ASM 2/10/04
a 1.5 kb webdownloader. Compressed with FSG it is only 977bytes. works on win9x/me/nt/2k
Miniweb2.0


Ghost Radmin 2.1
Coded in ASM 6/15/2004
a 1.24kb program that silently installs Radmin on a remote computer for win9x/me/nt/2k/xp. basically it downloads the radmin server and dll from the web and adds the proper registry keys for it to function. (default port is 4899 and pass is LetMeIn )
Ghost_radmin2.1


Ghost Radmin Generator 1.0
Coded in ASM 10/6/04
Generates a dropper that silently installs Radmin on a remote computer for win9x/me/nt/2k/xp.Extracts the radmin server and dll from itself and adds the proper registry keys for it to function.(default pass is 12345678). Self-deletes after installing Radmin.
Ghost_radmin1.0gen


To Catch a Thief – CarDuino Alarm

Due to my car getting broken into 2 times in the past few weeks, I decided to use the opportunity to make a project out of it. One of our members had bought a Seeed Studio GPRS Arduino shield last year for a project but it was sitting around collecting dust so I asked him if i could borrow it.

The device uses an unlocked SIM card to send out sms text messages. (Can also be used for voice and data too). I worked with a few guys at NESIT to figure out the best plan to trigger the device. Our option was to connect the interior light to pin2 on the Arduino so that when the light turned on the 12volts would trigger the shield to send the SMS. Also added a 10kΩ resistor inline to drop the voltage down to so it wasn’t feeding a full 12v back into the Arduino. To power the device i was originally going to go with a 9v battery but since my cars cigarette lighter stays on when the car is off I decided to use this to power the device so I didnt have to worry about the 9v battery dying.

So hacking up an old phone charge wire I then used a perf board to solder together a 0.1uF capacitor and a LM7805 voltage regulator to drop the voltage from 12v to 5v to feed into the Arduino. Also added a 5.1k. resistor to ground. This is the design that member Cobey had drawn up for the connections.

The SIM card that he had no longer worked since it was over a year so I stopped by Walmart and bought an AT&T gophone SIM card for $10 and a recharge/refill card for $15. It was as simple as calling the number provided on the package and putting in the refill card pin info, and giving the GPRS shield’s IMEI printed on the SIM900 chip.

So after a few tests I finally got it working, so all’s i need to do is hook it up to my lighter, then hook pin2 up to my interior light underneath the dash

When my original $15 is up AT&T said I can convert my gophone plan over to text only for $5/month, so its pretty cheap.

If you would like to build a similar device the cheapest ive seen for an arduino clone is $13.50 ::HERE::

And for the GPRS Shield was $30 ::HERE::

Find yourself a nice case for them (I ended up using a weatherproof AT&T DSL box) and you’ll be off and running for about $70 total including the SIM card and first month.

The Arduino source code is available ::HERE:: you just need to change the phone number to your own number and upload it to your Arduino.

Thanks to Cobey,Devin, and Gary for helping out with the project, one of the great things about a hackerspace is you have people to turn to when you have questions. I’ll be updating soon with results if my device is triggered :)

MiniPwner – Evil Network Dropbox


The MiniPwner is a penetration testing “drop box”, it is a small, cheap, and simple but powerful device that can be inconspicuously plugged into a network and provide the penetration tester remote access to that network. I purchased this device for a project here @ NESIT and thought it packed quite a punch for only $23, compared to the pwnie express plugs which run upwards of $500. And at that price you could afford to lose one or two on a pentesting job and not be hurting :p Continue reading

RFPiD – Raspberry Pi Access Control

We’ve been working on our new door entry system for NESIT that will allow members to enter the space through our sliding door. This will replace our current Arduino RFID door access system. It utilizes a RFID card reader that checks the tag against a SQLite database then opens the door by triggering a 5v relay connected to a garage door opener. It also tweets when someone arrives @ the space to Twitter.com as well as logging the arrival into the database. Connected to the front of the device is a small 4.5 lcd screen connected by s-video port that plays videos when someone scans their card. Continue reading

PirateBox

The PirateBox is a device designed to facilitate sharing, you need to be close enough to connect via WiFi to this portable file server. PirateBox is designed to be private and secure. No logins are required and no user data is logged. Users remain completely anonymous – the system is purposely not connected to the Internet in order to subvert tracking and preserve user privacy. It can be used anywhere, it runs on batteries, usb, or by power cord.

We had an old Fonera router laying around collecting dust so we decided to put it to good use as a Piratebox. Our first step was to try to find a suitable case , we found a used oldschool domed lunchbox on ebay, we decided to try to bid instead of buy it now, not realizing there was such a demand for the lunchbox, someone finally outbid us for more than the lunchbox went for new. So i did some more searching and found a plastic one on Amazon for $8

Continue reading