willing is not enough, you must do."
Lee
Baseband akıllı telefonların GSM ağları üzerinden data alma ve gönderme işlemleri için kullandığı parçasıdır. (modem)
- iPhones: Infineon baseband
- HTC Android phones: QualcommWP7 launch phones: Qualcomm
- Samsung: Infineon
- Nokia: Nokia RAP3G
- Blackberry: Marvell and Qualcomm
devteam önceki unlock uygulamaları için Infineon TMSI overflow yöntemini kullanmıştır.4.2.1 güncellemesi ile açık kapatılmıştır.
Infineon XMM6180 dışında diğer basebandlarda ataklara karşı korunma faktörleri genelde dikkate alınmamıştır. (Infineon XMM6180, NX) Yapılan ataklar ve konuyla ilgili daha fazla teknik bilgi için aşağıdaki 1 saatlik sunumu izlemenizi öneririm,
http://www.youtube.com/watch?v=TzR7R6fBr00
http://blog.c22.cc/2010/11/26/deepsec-all-your-baseband-are-belong-to-us/
.vmx kontrol dosyasında aşağıdaki düzenleme yapılarak özellik aktif hale getirilir.
monitor = "debug" usb.analyzer.enable = TRUE usb.analyzer.maxLine = 8192 mouse.vusb.enable = FALSE
kaydedilen verinin okunabilmesi için vsusb-analyser uygulaması kullanılır,
http://vusb-analyzer.sourceforge.net/tutorial.html
Detaylar için aşağıdaki orjinal kaynağa göz atabilirsiniz,
HSM araştırma notlarım,
HSM kriptografik işlemleri güvenli bir şekilde yapılmasını sağlar. Uygulama güvenliği için geliştirilmiş donanımlardır. ISO tarafından belirlenen standart kriptolojik süreçleri işleyen secure cryptographic device’lardır. (SCDs). Bankalar, finans kurumları tarafından kullanılır. ( Örn kriptokart: http://www-03.ibm.com/security/cryptocards/)
Uygulama seviyesinde alternatif API’ler kullanılabilir.
APIs
- PKCS #11 (Public Key Cryptography Standards) (also cryptoki)
- MSCAPI (Microsoft Cryptography API)
- JCE (JAVA Cryptographic Engine)
PKCS#11 API’sini kullanan örnek uygulamalar; Mozilla Firefox/Thunderbird OpenSSL OpenVPN…
HSM – Standards
(ISO 13491-1:2007 specifies the requirements for secure cryptographic devices (SCDs) based on the cryptographic processes defined in ISO 9564, ISO 16609 and ISO 11568. ) http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=41214
ISO-13491-1:2007 Banking – Secure Cryptographic Devices
- Specifies Requirements for Secure Cryptographic Devices
- Based on cryptographic processes defined in
- ISO-9564: Banking – Personal Identification Number
- ISO-16609: Banking – Requirements for Message Authentication
- ISO-11568: Banking – Key Management
Protection Profile – Secure Signature Creation Device
- BSI-PP-0004-2002T 03.04.2002 – Type1
- BSI-PP-0005-2002T 03.04.2002 – Type2
- BSI-PP-0006-2002T 03.04.2002 – Type
Certifications:
- FIPS (Federal Information Processing Standard) 140-2; FIPS 140-3 (draft)
- Common Criteria (CC)
- PCI HSM (draft) from PCI SSC (Payment Card Industry Security Standards Council)
- Local certifications: MEPS, ZKA,
HSM – üreticileri
Atos Worldline SA/N,
IBM,
Safenet,
BULL,
Ncipher (now Thales),
Utimaco,
Thales,
ARX
Sonuç olarak, Cryptocard veya HSM donanımı kullanmaksızın, PC seviyesinde yazılım geliştirme yaparak ISO standartlarına uygun tam anlamıyla kurumsal bir çözümün çok zor yapılabileceği, HSM’in kullanım amaçları dışında risk oluşturabileceği, HSM – üreticilerinin sunmuş olduğu çözümlerin değerlendirilmesinin mantıklı olacağı sonucuna vardım:)
Konuyla ilgili kaynaklar: http://secappdev.org/handouts/2010/Filip%20Demaertelaere/HSM.pdf
http://cisn.odtu.edu.tr/2004-10/pki2.php
http://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol
Unlocks iPhone 4 basebands 1.59.00 / 03.10.01 / 02.10.04 / 04.10.01 running iOS 4, iOS 4.1, 4.2, 4.2.1 and iOS 4.3 without requiring you to jailbreak your device
Alternative to gevey sim
http://rebelsimcard.com/rebel-micro-sim-card.html
How did It Work?
SIM card holds many different types of information, but the part most involved with carrier lock is the IMSI number, which is a unique code that corresponds to your account in the mobile carrier’s database.
A sample IMSI might look like this
310 150 987654321
The first two segments are known as Mobile Country Code (MCC) and Mobile Network Code (MNC) respectively, and in the example above the IMSI indicate the SIM is from USA (310) AT&T (150).
When the iPhone baseband is loaded into memory, it checks the MCC and MNC against its own network lock state stored in the seczone. If the combination is allowed, the cell radio is activated and vice versa.
The earliest iPhone baseband revisions only check IMSI twice following a restart, therefore it is very easy to send spoof information in order to bypass the check. Nevertheless, the baseband was soon updated to validate SIM more aggressively and the method soon became obsolete.
What does it mean to Unlockers?
It works if A.your network handles 112 calls properly according to the GSM standard; B.they are tolerant to TSMI spoofing and does not actively validate your SIM again for incoming calls.
Unlike its ancestors, the i4 SIM interposer is not a drop-in-and-forget device. The exact precedure must be performed should the device restart, lose reception for an extended period of time or move to another PLMN. In all these situations the TMSI expires and has to be obtained again. Theoretically it is possible for a daemon to automate the process similar to ZeroG, but that only makes thing more convoluted.
It is, without question, unethical or downright illegal to use the technique anywhere 112 is a legitmate emergency number. Not a huge issue in China where the number is only used for informative purposes and the networks cannot be bothered to fix the issue.
All firmware/baseband combinations for the i4 up to iOS4.3 are vulnerable, however the exploit may be patched in any future software updates or via the carrier. If apple can influence providers to block Cydia it is not impossible for them to press them to fix the exploit. The only way to permanently unlock your baseband is NCK.
SIM interposer should not harm your phone hardware, however your network could request IMEI and identify your device during the emergency call. Your identity cannot be faked and it is possible that they will ban your account. There is a reason why SIM cards remain legally the property of the service provider: you are not supposed to tamper with them without breaching contract.
Notwithstanding all the problems, SIM interposer does not cause any battery drain since it is only active transiently, nor would it cause signal loss because it does not change cellular transmission other than the initial validation step.
DEV-Team comments about gevey sim
http://www.iphonedownloadblog.com/2011/03/27/musclenerd-confirms-the-gevey-sim-iphone-4-unlock-is-illegal/Dialing this 112 phone number is basically like dialing 911 here in the US, which is illegal, unless you’re calling for a good reason of course.
Because the 112 call has to be made every time you reboot your unlocked iPhone, it will most likely get you in trouble in the long run. First, your SIM might be banned by the carrier, and you might even be banned as a customer.Technical details of IPHONE4
http://theiphonewiki.com/wiki/index.php?title=Main_Page
Oracle database firewall ile database sunucunuzu ataklara karşı daha duyarlı hale getirebilirsiniz. Oracle database firewall network seviyesinde filtreleme yapar. White list, black list, exception list policies özellikleriyle sorgular için filtreleme yapmanıza imkan tanır.
White list özelliğinden faydalanarak izin verilen sorgular dışında sorgu çalıştırılmasını engelleyebilir, istenmeyen sorgu taleplerini alert özelliğinden faydalanarak takip edebilirsiniz. Operasyonel veritabanlarınız için sert güvenlik tedbirleri almanıza yardımcı olacak üründür.
Technical Information |
|
| Data Sheet | |
| Overview White Paper | |
| F5 and Database Firewall Integration | |
| Frequently asked questions | |
combofix sisteminize bulaşan zararlı yazılımları temizlemek için kullanabileceğiniz etkili uygulamalardan biridir. combofix kullanarak windows işletim sisteminize bulaşan zararlı uygulamaların (malware, spyware, worm) neden olduğu bozuklukları düzeltebilirsiniz.
Download ve detaylar http://www.combofix.org/ adresinde
hping3 -2 -c 10 192.168.1.22 -p 110 -d 10
http://events.ccc.de/congress/2010/Fahrplan/track/Hacking/index.en.html
Üye olarak ülke kodlarına göre; os, port vb filtreleri kullanarak sunucu listeleri çıkarabiliyorsunuz,
Örneğin; country:tr port:21 edu.tr biçiminde yaptığım arama sonucu;
Results 1 – 10 of about 173 for country:tr port:80 edu.tr
DOMAIN
HTTP/1.0 302 Found
Date: Sat, 08 Jan 2011 08:06:57 GMT
Server: LiteSpeed
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Location: https://www.sivasnetwork.net/
Content-Type: text/html
Content-Length: 389
…
Contact us
