What to do with a new iPhone (1.1.3) jailbreak.
You can register and get a temp mobile number, it takes ages to get you number transferred 
Install itunes, & sign up normally, upgrade to the latest firmware (1.1.3) one you are up and running (can make calls) get http://downloadziphone.org/ZiPhone2.4b.zip from http://www.ziphone.org/
leave itunes running and run the app. Select jailbreak and click go.
it'll scroll a shell script, then reboot.
use the new installer app to install
bsd subsystem boostools bossprefs openssh community sources
openssh default root password is 'alpine', you can use bossprefs to see your IP
DO NOT USE passwd TO CHANGE THE ROOT PASSWORD. It breaks stuff.
use a *nix box with the command
perl -e 'print crypt("PASSWORD", "XX")."\n"'
where XX is the salt (apple uses /s, but you dont have to)
and hen edit the etc/master.password file by hand (vi)
e.g. for password 123456 with salt /s
you'd get the line:
root:/sD7047KCmDuU:0:0::0:0:System Administrator:/var/root:/bin/sh
the unit has two partitions
/dev/disk0s1 on / (hfs, local, noatime)
/dev/disk0s2 on /private/var (hfs, local, noatime)
Use bosstool to move your Application folder to the /var (symlink of /private/var) folder or you'll run out of space for your apps. It marks the second partition executable, moves /applications to /applications.bak and symlinks /applications -> /var/applications
These are the apps that i have found to be useful.
4Balls.app HP-16C.app MobileScrobbler.app TowersOfHanoi.app Blinker.app HuaRongDao.app MobileSlideShow.app Utils.app BossPrefs.app Installer.app MobileStore.app VNotes.app BossTool.app Lights Off.app MobileTimer.app Weather.app Caissa.app MACalc.app Multitouch.app YouTube.app Calculator.app Maps.app Othello.app iBlackjack.app Categories.app Marble.app Poof.app iDigger.app Cave.app Media.app Preferences.app iGXP2.app Config.app Mines.app RealArtist.app iGo.app Converter.app MobileAddressBook.app SCPH1001.BIN iLevel.app Customize.app MobileCal.app SendPics.app iMapIdle.app DemoApp.app MobileMail.app Stocks.app iPong.app Domino.app MobileMusicPlayer.app SysInfo.app iRadio.app FieldTest.app MobileNotes.app TTR.app iSlots.app Flashlight.app MobilePhone.app Tapp.app iSnake.app Games.app MobileSMS.app Term-vt100.app iSolitaire.app Garf.app MobileSafari.app TicTacToe.app
that's just an ls of my apps folder. vTerm doesn't work till you
chmod 4755 /usr/bin/login mkdir -p /usr/local/arm-apple-darwin/lib ln -s /usr/lib/libgcc_s.1.dylib /usr/local/arm-apple-darwin/lib/.
there are two (explorer like) 'app launching apps' the official apple springboard, and summerboard. Springboard is fine with 1.1.3, but if you must customize stuff...
customize is good for moding other bits, but i cant be arsed to do it every firmware update...
I stuck to springboard, using categories and poof to make subfolders, and hide apps from the main screen respecively. categories will automatically poof (bad name) apps when you file them into a subfolder.
http://george.zjlotto.com/index.php/2008/02/02/fix-application-issues-in-113/
is very useful for fixing 1.1.3 issues
rss subscribe to:
http://www.iphonehacks.com/
http://justanotheriphoneblog.com/wordpress/
http://www.theiphoneblog.com/
http://touchmods.wordpress.com/ < -- VoIP client coming soon
http://www.uk-iphone.co.uk/
http://www.iphoneapps.co.uk/
http://www.iphoneapps.org/
http://www.apprater.com/ looks good, but it's a new discovery for me.
DNS enumeration
I just found robtex.com, and I like it! You can list the first 100 domains that share the same DNS servers.
Few Useful Netcat Tricks
Shamelessly ripped from here My personal favorite, the netcat web server:
while true; do nc -l -p 80 -q 1 < error.html; done
I always say that small, simple and self contained tools can often be more useful, and more feature rich than huge bloated frameworks. For example lets take legendary “Swiss Army Knife of Networking� - netcat. It is a single binary, which takes up about 60KB of space on your disk (give or take a few KB depending on where and how you compile it). What can it do?
I guess a good question is what can’t it do?
Port Scanner
Netcat can be a port scanner. It does not have as many features as say nmap, but if you just want to see what ports are open on a given machine, you can simply do:
nc -v -w 1 localhost -z 1-3000
The command above will scan all the ports in the range 1-3000 on localhost.
File Transfer
Let’s say you want to transfer a big zip file from machine A to machine B but neither one has FTP, and using email or IM is out of the question due to file size, or other restrictions. What do you do? You can use netcat as a makeshift file transfer software.
On machine B do the following, where 1337 is some unused port on which you want to send the file:
nc -lp 1337 > file.zip
Assuming that the IP of machine B is 10.48.2.40 go to machine A and do:
nc -w 1 10.48.2.40 1337 < file.zip
That’s it. The file will be magically transfered over the network socket.
Chat Server
Have you even needed an improvised one-on-one chat? Netcat can do that too. You simply start listening to connections on some port like this:
nc -lp 1337
Then on another machine simply connect to that port:
nc 10.48.2.40 1337
Now start typing on either machine. When you press enter, the line will immediately show up on the other machine.
Telnet Server
Nectat can also be used to set up a telnet server in a matter of seconds. You can specify the shell (or for that matter any executable) you want netcat to run at a successful connection with the -e parameter:
nc -lp 1337 -e /bin/bash
On windows you can use:
nc -lp 1337 -e cmd.exe
Then on a client machine simply connect to port 1337 and you will get full access to the shell, with the permissions of the user who ran nc on the server.
Spoofing HTTP Headers
You can use netcat to connect to a server using completely spoofed headers. You can actually type out your user agent, referrer and etc. It’s useful when you want to generate bunch of hits that can be easily found in the logs or something like that:
nc google.com 80GET / HTTP/1.1Host: google.comUser-Agent: NOT-YOUR-BUSINESSReferrer: YOUR-MOM.COM
Note that your request won’t be sent until you generate a blank line. So hit return twice when your are done typing. You will get a response of headers and HTML streaming down your screen:
HTTP/1.1 200 OKCache-Control: privateContent-Type: text/html; charset=ISO-8859-1Set-Cookie: PREF=ID=79f8f28c854d90ec:TM=1186369443:LM=1186369443:S=UIiTvi68MtmbcmGl; expires=Sun, 1-Jan-2038 19:14:07 GMT; path=/; domain=.google.comServer: GWS/2.1Transfer-Encoding: chunkedDate: Mon, 06 Aug 2007 03:04:03 GMT 738
I deleted the HTML that followed the response - but you get the idea. It is also a good way of looking at headers. Some sites have nice surprises there (like slashdot’s X-Bender and X-Fry headers). Seriously, check them out!
Web Server
I think this is my favorite trick. Did you ever need to set up simple makeshift webserver that would serve a single page? I know I did. In the past when my web server at work melted down, I set up laptop with this simple script:
while true; do nc -l -p 80 -q 1 < error.html; done
The error.html page was just a very simple error message notifying our users about the outage, and giving them an estimate of when it would be fixed. It took me 3 minutes to set up, and probably saved us many angry support calls.
Cloning Hard Drive Partitions Over the Network
This trick was submitted by Craig in the comments. On a system you want to clone do:
dd if=/dev/sda | nc 192.168.0.1 9000
Where 9000 is some random port. On the receiving side di:
nc -l -p 9000 | dd of=/dev/sda
Of course you need to have the cloned partitions unmounted on both systems. So if you are cloning / you will have to boot from a live distro like Knoppix. Note that you can use this technique to clone NTFS partitions as well - just need to use a live Linux distro on both sides.
Summary
Despite being able to do all that netcat still conforms to the Unix philosophy of doing one thing, and doing it well. Netcat was designed for a single purpose - to read and write data packets over network sockets. And because of it’s singular purpose it can be used in such a myriad of ways.
It is ironic, but it is of ten the case that the more features you add to your application, the more specialized it gets. And of course, GUI is the ultimate functionality killer. If netcat had a GUI I doubt it would be half as useful as it is right now.
I’ve been told that socat is a more powerful netcat fork which has even more functionality. Personally, I haven’t played with it at all. It does seem to have a different syntax, and it is not as mature or well known, and popular as it’s predecessor.
WEB 2.0 Tools. Useful ones!
Planetweb has a lovley list of web2.0 apps:
----Quote-----
Let’s have a look at the top 5 most popular Web2.0 services hackers cannot live without. This listing is based on my personal research that was also presented at OWASP Web Application Security Conference 2007 in Italy.
Yahoo Pipes is the web hacker power tool. The powerful mashup
functionalities of YPipes cannot be compared to any other service
available on-line. Even Google’s Mashup Editor looks like a baby toy
when compared to Yahoo’s big guns.
Yahoo pipes allow you to mashup feeds, xml and csv files. The
service provides powerful caching capabilities to improve the
availability of the mashed data. Among the traditional filters and
aggregators, Yahoo pipes can be used to replace text blocks, perform
mathematical computations, execute contextual searches and many other
things. The result of the mashed data can be exported in RSS, ATOM,
JSON, XML and pretty much everything else that is under the sun.
Yahoo pipes is one of the most elegant tools when it
comes to AJAX worms. The internal Pipes logic can be used to fetch any
resource and serve it as well structured JSON serialized object. With a
few blocks on pipes, attackers can develop powerful vulnerability
scanners/spiders that work on browser based JavaScript code (i.e.
harmless web pages). Yahoo Pipes is the most elegant tool for all sorts
of malicious purposes on-line. Signup today.
Dapper is the web2.0 scraping service. Dapper’s wrapper allows you
to parse the content of any page in a few simple steps. Just like
Pipes, Dappers supports many output formats, including XML, RSS, ATOM,
JSON, etc.
Dappers is most suitable for community supported malware
code. Why do you want to statically embed your XSS attack vectors
inside your malicious JavaScript when you can dynamically parse them
from websites such as?
As soon as a new XSS vector is added to the on-line XSS database,
Dapper will pick it up and send it to all bots so they are all updated
with the latest vulnerability findings. Worms that propagate across the
entire Web has never been easier without Dapper.
Feed43 goes even further then Dapper. Instead of parsing the top
layer data, Feed43 allows you write regular expression like rules. This
service is suitable when you need to get into the remote page source
code. In a few simple steps, we can parse and collect important bits of
informaton from every page online. Feed43 outputs RSS only, but that
shouldn’t bother you. We can get Pipes and Dapper to convert it back to
JSON, XML or ATOM. It is that easy.
Feed42 is suitable when you need to get to the point. Do
you want to extract the latest Google Hacking database entries, or you
may prefer to look for SQL Injection payloads? No problem. Use Feed42
powerful parsing capabilities and get your results as simple RSS feeds.
Then feed the Trojan. Why not use Digg’s commenting system as covert
channel for distributing malicious payloads? Feed42 will help you out
with whatever your needs are.
Zoho Creator is MS Access for the Web. You can create database like
applications in a few simple steps. Just login and start building your
forms. It is as simple as dragging the type of field that you want and
dropping it inside the current workspace. Save you form and exposed it
online. Now use JavaScript to populate your database entries.
Zoho Creator is a great tool, and very powerful too. It
allows you to do all sorts of useful things, like Phishing users with
only client-side JavaScript. For example, create a new database that
has fields for the username, the password and of course the website
where the credentials were retrieved from. Now link that to your
JavaScript. When you hijack the login forms your are after, just send
the credentials across Zoho. The Service will store them for you and
will send you a confirmation email. I’m loving it! Now sit back and
relax. Soon your phished accounts will start showing up in your mail
box. If you are not after accounts, well, just store whatever else you
need, like sites that has been already compromised so your worm does
not have to redo the job again. Simple!
Google Reader the one of the most powerful feed readers on-line.
This application allows you to subscribe to anything. It also has some
nice GUI features. However, there is more then that.
Google Reader is one of the most powerful feed backup
and mashup services on-line. Do you need to backup the stolen
credentials? Use the reader. Do you want to mash them up with your
friends’ malicious feeds? Use the reader. Whatever you need, the reader
is the right tool for you. It is so powerful that you can export to
mashed feeds again into ATOM and then feed it back to your Trojans.
---/quote----
DIY: Convert the iPod Mini to a Flash-Based Player – Gizmodo
DIY: Convert the iPod Mini to a Flash-Based Player - Gizmodo
Why would someone want to replace the iPod mini hard drive with a compact flash card? Well, why not? Compact flash cards are becoming readily available in larger and larger capacities (16GB iPod mini anyone?) and it requires much less battery power than a hard drive. If you have a large CF card laying around and want to revive that iPod mini, hit the link below and get modding.