alexrad - Network

This weekend hackers had to solve remote timing attacks against the dragonfly PAKE for the @HackingForSoju midnight sun qualifier. This PAKE...

This weekend hackers had to solve remote timing attacks against the dragonfly PAKE for the @HackingForSoju midnight sun qualifier. This PAKE is the basis of WPA3's handshake. It's got a pretty silly history. Congrats to the solvers ✅ https://supernetworks.org/pages/blog/midnightsun-qualifiers-2024-dragonfly

Last week, I lost a dear friend and ctf teammate, Quend. Every spring we all gather to compile together the best challenges we can for the...

Last week, I lost a dear friend and ctf teammate, Quend. Every spring we all gather to compile together the best challenges we can for the Midnight Sun CTF qualifiers. The current HFS crew were all back together again this month getting things ready to launch

Years earlier, before we even met, I had started @rpisec with @rgov to find like minds to kick some butt at ctf. I was always very proud that we could inspire hackers like quend to join years later and seriously kick ass

Quend was an inspiration to me as well, between her resolve, her depth of knowledge, her funny jokes and memes, and always a joy to ctf with. It was good to brainstorm through challenge concepts too. She took the midnight sun ctf and helped organize it into a wonderful conference in stockholm and it's hard to understate how awesome she was

Between RPI, NYC, HFS, defcon, and all the little ctfs we played over the years, it was a great time and it's beyond an awful time right now to have lost one of the great ones

We've reported a double-free security bug with beacon/probe parsing in inet wireless daemon with potential for remote code execution....

We've reported a double-free security bug with beacon/probe parsing in inet wireless daemon with potential for remote code execution. This was addressed with v2.16.

Details within
https://supernetworks.org/pages/blog/beacon-double-free-inet-wireless-daemon-CVE-2024-28084

Took some time this sunday afternoon chatting with DaveG and writing up some exploits and fixes for...

Took some time this sunday afternoon chatting with DaveG and writing up some exploits and fixes for https://github.com/RaspAP/raspap-webgui/issues. I was able to confirm Julien's post https://dustri.org/b/carrot-disclosure.html for full preauth RCE. PHP is just not straightforward at all to write securely

https://github.com/RaspAP/raspap-webgui/pull/1546

I wrote up some speculative thoughts why memory safety could appear more urgent for the whitehouse than it does for an average tech...

I wrote up some speculative thoughts why memory safety could appear more urgent for the whitehouse than it does for an average tech developer working adjacent to or within infosec

https://www.supernetworks.org/pages/blog/federal-focus-memory-corruption-2024

CVE-2023-52161: inet-wireless daemon (iwd) APs allowed clients to connect with a NULL key, bypassing the WiFi...

CVE-2023-52161: inet-wireless daemon (iwd) APs allowed clients to connect with a NULL key, bypassing the WiFi password

https://www.top10vpn.com/research/wifi-vulnerabilities/

Anyone apply LLM's to their mastodon feed yet? please share your setup

Anyone apply LLM's to their mastodon feed yet? please share your setup

Find a CVE starter pack

Find a CVE starter pack

AQ35 https://ionq.com/news/ionq-achieves-technical-milestone-one-year-ahead-of-schedule

AQ35 https://ionq.com/news/ionq-achieves-technical-milestone-one-year-ahead-of-schedule

the wifi war driving community has the messiest cars. y'all are gonna get targeted advertising by car detailing services running @nzyme

the wifi war driving community has the messiest cars. y'all are gonna get targeted advertising by car detailing services running @nzyme

https://www.supernetworks.org/pages/blog/spr-2023-in-review

https://www.supernetworks.org/pages/blog/spr-2023-in-review

happy monday

happy monday

Happy Friday, we put together some of our favorite links for WiFi Radio & Security https://supernetworks.org/pages/docs/wireless

Happy Friday, we put together some of our favorite links for WiFi Radio & Security

https://supernetworks.org/pages/docs/wireless

shoot your wifi questions at me

shoot your wifi questions at me

Just published a post on making that built-in wifi a bit more useful on the raspberry pi 4, using Seemoo Lab's...

Just published a post on making that built-in wifi a bit more useful on the raspberry pi 4, using Seemoo Lab's Nexmon

https://www.supernetworks.org/pages/blog/spr-nexmon

i just launched barely-ap on seemoo's patched raspberry pi 4 firmware/drivers for monitor mode -- and then connected an iOS device

i just launched barely-ap on seemoo's patched raspberry pi 4 firmware/drivers for monitor mode -- and then connected an iOS device

@spr_networks is seeking an intern with Rust knowledge for wifi attack surface...

@spr_networks is seeking an intern with Rust knowledge for wifi attack surface reduction

https://www.supernetworks.org/pages/blog/barely-ap-surfaces

Pushed a fix for barely-ap bug that was preventing iOS devices from connecting https://github.com/spr-networks/barely-ap/

Pushed a fix for barely-ap bug that was preventing iOS devices from connecting
https://github.com/spr-networks/barely-ap/

Recv/read return a partial payload? Try sending fragmented packets in reverse. During this defcon's final round of livectf, the...

Recv/read return a partial payload? Try sending fragmented packets in reverse.

During this defcon's final round of livectf, the contestants ran into just this problem.

Here's my solution with a pwntools and scapy script
https://www.supernetworks.org/pages/blog/scapy-revfrag

😷 Defcon COVID surived, testing negative for 3 days now. Catching up on your DMs now! Was great seeing everyone in vegas

😷 Defcon COVID surived, testing negative for 3 days now. Catching up on your DMs now! Was great seeing everyone in vegas