TL;DR random idea i had for an android app
Frank Forrester
So I have this list.. I call it simply the "idea list." I go back from time to time and read over it. Lately I have noticed it has become F-ing huge. Some of the ideas.. I don't quite know how to execute do to my lack of knowledge in any given area and some times what I think would be relatively easy to do turns out... requires..well seasoned skill. Any how In the spirt of my 1st techy love, Linux, I thought I would share some of them to see if at all there viable or out right suck. What can it hurt right? There just siting in a txt file and I don't know if there worth a dam. (have other crap i do think is good im working on :-)
So I like y'all ISD folks so I thought I would share with yins to see what ya think.. So i'm just tossing shit out there at the wall to see if it sticks I guess you could say...
So.. please be gentle.. i bruise easy ;-p If someone thinks its a stupid idea please tell me or even better, tell me why were I can scratch it off my list. Don't troll or insult me…. IRC asshats have become quite the bore…ha. Any how... got leads, links I can click blindly in to the night… cool beans. If it's cool with the mod's I'll drop one of these "ideas" from time to time so as not to be to annoying with a big ol list of random ideas...maybe have a conversation about stuff… who know eh? What's that saying?? "The only dumb question is the one not asked." bla bla bla bla bla anyways so here gos…
I present to you.. "Shit I thought of wile I toil away at my menial labor job listening to a ass ton of security podcasts…"
I sent this to Boris an Kos on G+ to see what they thought.. Maybe they didn't get it...Didn't get a response (maybe cause it's suck ass idea???) probably cause they have a life and are to busy with it to grok my musings…
copy pasta...
""+Kos .io I have an idea for a android app directly related to security. However I know just a little (make that a tiny) on how to develop apps. I have read some of your work so I thought you are the best person to ask. (maybe wrong person to ask idk)
What Im wanting to do is make a android device look like something elce. For instance like you can do with mod security but with android. So say if I scanned a network and seen that there are 300 machines on the network. 200 are dells running XP, 75 running win7 and the rest servers and printers ect... But then say i hop on the network with an android and some one elce dose a scan and sees 1 android... not good. I would like to create an app that obfuscates that. Ideally have a menu to have options for vendor of nic,oem ect and OS type.. so if in a OSX environment it spoofs that info and so on. So in short something that dose something like mod security or user agent switcher but for the complete OS have in on android OS running in background...
Maybe it's a dumb question.. Don't know if it's even possible... idk. (Now I am almost 100% positive it can be done I'm just shit at writing APKs) Been tossing the idea around in my head for a bit. I thought if someone would know it may be you...
It could be called NAHTA for short... "Network admins hate this app" lulz.""
That it in a nut shell...
===================================
Notes:
go to: http://curreedy.com/stu/nic/ key in desired manufacture… or go to http://anonsvn.wireshark.org/wireshark/trunk/manuf
and get your scrolling on.
then go to: http://www.techzoom.net/tools/check-mac.en
and check any of these MAC's
You get back.
Exsamples:
00-00-36-00-00-00 ATARI CORPORATION
00-07-E9-00-00-00 Intel Corporation
00-01-02-00-00-00 3COM CORPORATION
00-01-0B-00-00-00 Space CyberLink, Inc.
00-01-43-00-00-00 Cisco Systems, Inc.
00-02-55-00-00-00 IBM Corporation
00-05-02-00-00-00 APPLE COMPUTER
00-06-5B-00-00-00 Dell Computer Corp.
00-22-A1-00-00-00 Huawei Symantec Technologies Co.,Ltd.
So have searchable in app DB of http://anonsvn.wireshark.org/wireshark/trunk/manuf
I shit you not… Every freaking time I go to research in to something Adrain has something related on his site…case in point circa 2008
No: 26
IP Address: 192.xxx.xxx.10
Host Name: ACME-1233445
MAC Address: 00-06-5B-00-00-42
Vendor Name: Dell Inc.
State: Reachable
No: 27
IP Address: 192.xxx.xxx.11
Host Name: ACME-1233745
MAC Address: 00-06-5B-00-00-69
Vendor Name: Dell Inc.
State: Reachable
Spoofed:
No: 28
IP Address: 192.xxx.xxx.12
Host Name: ACME-1233444 ======== not spoofed: ciphersson-nexu7
MAC Address: 00-06-5B-00-00-69
Vendor Name: Dell Inc ======== not spoofed: asustec
State: Reachable
So.... yea... that's it what yall think?
#!/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj
$/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1
lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/)
Adrian Sanabria
http://www.irongeek.com/i.php?page=security/osfuscate-change-your-windows-os-tcp-ip-fingerprint-to-confuse-p0f-networkminer-ettercap-nmap-and-other-os-detection-tools
Frank Forrester
--
You received this message because you are subscribed to the Google Groups "isdpodcast" group.
To post to this group, send email to isdpo...@googlegroups.com.
To unsubscribe from this group, send email to isdpodcast+...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/isdpodcast?hl=en.