Ofer For You (1)

Wednesday, 11 December 2013

How To Hack A Satellite


How To Hack A Satellite

In a few days we have heard of a couple of satellite attacks by hackers meanwhile surfing on the web I came across more than one occasion in satellite photos reporting strange structures that we asked the real intended use.

The successful attacks occurred in 2007 and 2008. The more serious of the two happened in ’08 when NASA had control of the Terra EOS earth observation system satellite disrupted for 2 minutes in June, and then a further 9 minutes in October. During that time, whoever took control had full access to the satellites’ systems, but chose to do nothing with it. The second hack affected the Landsat-7 satellite on two occasions, one in October of ’07, the other in July of ’08. Unlike the Terra OS incident, this hack did not see control taken away, but access was gained.
We read that Chinese hackers have taken control of NASA satellites for 11 minutes and we know how the news is disturbing. The satellites are a vital component in the process of information management, a stream of bits passes on our heads, no matter whether its a talk show or to military communications, they are there and hackers and militar government know it. It is a new challenge, access and control this data.
What is going on in our heads? The phenomenon of hacking satellites seems to be fashionable. Let me suggest a precious reading (Hacking a Bird in the sky), a proof of concept made by the popular security experts Jim Geovedi, Raditya Iryandi and Raoul Chiesa that have approached the problem in the past.
What if they could get hold? Which scenario we face if they were able to govern satellite communications?  The answer is obvious as terrifying.
But the satellites are really vulnerable? Current satellite systems are vulnerable to several type of attacks but the problem is known and from several parts is working to improve its security.
Without going deep in the topic we can enumerate the main threats for those systems:
  • Denial of Service (Jam Uplink, Overpower Uplink, Jam Downlin)
  • Attack to Orbital Positioning (Raging Transponder Spoofing, Direct Commanding,Command Replay,Insertion)
To show e sensible interest on this issue by Governments and cyber criminals Congress of the U.S has made a report entitled “U.S.-CHINA ECONOMIC AND SECURITY REVIEW COMMISSION“.
Malicious cyber activities can be carried out to either destroy the system rendering it useless, or to exploit it to access to sensible informations breaking intelligence actions. Interestingly, the report points to the use of ground stations outside of the U.S. to control satellites as weak points. The reason being they use the Internet for data access and communication, not a closed link.
Which are the conclusions proposed in the report ?
 • China is one of the top space powers in the world today.The prestige of space exploration and the national security benefits of space systems serve as primary motivators for Chinese decisionmakers.
• China views all space activities in the context of ‘‘comprehensive national power.’’ This concept includes many dimensions, but military aspects are fundamental.
• China’s civil space programs have made impressive achievements over the past several decades.
• China seeks new opportunities to sell satellites as well as satellite and launch services in international commercial space markets. Chinese firms’ prospects for greater success in this field remain uncertain over the near term. However, China’s international space-related diplomatic initiatives and their firms’ ability to offer flexible terms on sales to developing countries may provide additional opportunities.
• In the military sphere, China appears to seek ‘‘space supremacy.’’ The PLA aims to implement this policy through two tracks. First, they increasingly utilize space for the purposes of force enhancement. The best example is China’s integration of space-based sensors and guided weapons. Second, they seek the capabilities  to deny an adversary the use of space in the event of a conflict. To this end, China has numerous, active, counterspace weapons programs with demonstrated capabilities. China’s military space and counterspace activities are part of a larger strategy for area control.
But are we sure that it is all China’s fault? Are they the only Country interested in the control of satellite communications? Of course not.
I leave you with a little mystery … In recent days the media spread the news of the discovery of satellite images which were taken strange structures in the Chinese desert.
What are they for? Some experts believe that these are structure in use for satellite calibration. So far so normal. This morning a collegue informed me that coordinates reported in the article related to NASA satellite hacking are related to the area where the strange calibration structures has been discovered. Amazing!!  The Chinese hack a NASA satellite to calibrate or to test it on presumed internal calibration structures? Journalistic error or what else? Something is not right!

Still Having Problem..!!! Connect with Admin Kunal Vohra

Download Our Official Android App & Get Free Internet*

"The Hackers Street"

For Daily Updates

Monday, 2 December 2013

How to steal Facebook Authentication cookies

How to steal Facebook Authentication cookies



Connect with admin : Kunal Vohra

How to hack a facebook account – or, basically how to hijack php sessions. Yes – this is old news – yes its a common vulnerability – but you get a better idea for what it is and how it works when things are explained in detail (with screenshots!).

Before we begin, however, I want to re-emphasize that it is VERY EASY to protect yourself against this sort of attack. Facebook supports HTTPS, so when you browse facebook (or twitter for that matter) or if you have it bookmarked – please make sure you’re using HTTPS:// rather than HTTP:// in the URL at the very least, if not using a VPN solution for further encryption. Also, if the ‘victim’ logs out of facebook, the attackers session becomes invalid – so it’s a good practice to actually log out of facebook and log back in again rather than using the ‘remember me’ checkbox.

Facebook like many sites operates using authentication cookies. Their auth cookies contain a variety of information, but for our purposes this is irrelevant. Here is a sanitized cookie for reference:



You can see the ‘lxe’ field is the login. We haven’t done any further research into what the various other fields mean, but using facebook without any kind of security you’re both leaking the email address used for your login and the session cookie.
First thing you’ll want to do is fire up your favorite packet capture application. For this example we’ve used Wireshark:
Next, set the filter in the top left to ” http.cookie contains “datr” “. This should show you only packets captured which contain the cookie we’re looking for. You can see that in this screenshot we’ve already captured a cookie.
Once you’ve found a suitable cookie, you can copy it into the buffer by right clicking on the cookie line, and clicking Copy -> Bytes (Printable Text Only)
Next you’ll want to open up firefox. You’ll need both greasemonkey and the cookieinjector script.
Simply browse to facebook – make sure you are not logged in:
Hit ALT-C to bring up the cookie injector dialog box:
Then paste in the cookie!
Hit refresh and – VIOLA! you’re now logged in as your victim! Now this doesn’t give you access to their credentials, this is about the equivalent to walking up to their workstation while they’re away from their desk and using facebook.
Neat huh? Pretty easy too. I smiled big when we demo’ed the attack in our lab – its old, sure, but being successful is always a good feeling!





Still Having Problem..!!! Connect with Admin Kunal Vohra

Download Our Official Android App & Get Free Internet*

"The Hackers Street"

For Daily Updates