Wireless Communications

Apparently the Eee PC 900 will come in black, as well as white. I'm shocked. Shocked I tell you! But seriously, I don't think anyone doubted that the next generation Eee PC would be available in black, white, and eventually several more pastel colors, just like its younger brethren, the Eee PC 701 line. But that didn't stop Engadget, Gizmodo, and a few dozen other tech sites from posting Flickr images of the first black Eee PC 900 spotted in the wild. And by wild, I mean someone apparently took a unit out for dinner, ordered the fish, and then posted the photos to Flickr. The folks at EeeUser should get credit for the find. But seriously, it looks exactly like the white Eee PC 900 we've come to know and love. But you know, it's black. If that's the sort of thing that floats your boat though, you should probably check out a post at French site Blogeee with a bunch of decent resolution press shots of the black Eee PC.

Ebay sellers are definitely faster than Asus in delivering the goods, well at least in selling the Eee PC900 to the U.S. market. Asuseeeblog reported citing of eBay auctions for the Eee PC 900. But $620 plus $79 shipping is definitely not cheap. Especially now that it was confirmed that the Eee PC 900 will be hitting U.S. stores on May 12. In addition, since these Eee PC 900 units will be coming from outside of the U.S., there are other risks involved. And how about warranty? Will those units come with international warranty? But if you are such a risk taker, and couldn’t wait for a couple of weeks more, we’ll you might want to check out the eBay auctions for the Eee PC 900.

$3200, yes that’s the price tag that a modder/hacker has put on a heavily modded 8GB Asus Eee PC which is currently available on eBay. Davidwcs took an 8GB 7-inch Eee PC and had a grand time modding the unit to come up with the following specs: 8gb solid state drive 32gb patriot xt drive * 2gb RAM * Intel Wi-Fi A/B/G/N upgraded card GPS with Sirff III 7″ LCD with touch screen Air Play installed so you can transmit all of your sound to an FM radio Custom copper heatsink installed because it’s overclocked bluetooth adapter 2 usb hubs so all the USB devices can hook up to the Eee PC web cam speakers microphone 3 USB ports one external VGA port so you can hook up an external monitor Windows XP Professional SP3 With all the drivers installed and tested Screen resolution is set a 1024×768 with the hacked Video Driver Those are definitely impressive features! This guy is definitely a genius and hardworking to come up with such an upgraded 7-inch Eee PC. And for $3200? Will anybody take the pl

Covers cracking WEP in Windows using Cain, AirPcap, airodump and aircrack-ptw.

A quick video tutorial showing how to crack WEP using AirPcap with packet injection drivers and Cain and Abel.

This shows how to crack a WPA-PSK network. You need to have installed the commview drivers which i explain in cracking a WEP network part 1. Here are the commands i type into the three command prompts REMEMBER AT THE BEGINNING OF EVERY COMMAND PROMPT TYPE IN: cd c:\aircrack OR ELSE NOTHING WILL WORK! Prompt 1: airserv-ng -d "commview.dll|debug" once we find out what channel, we type airserv-ng -d "commview.dll|debug" -c 6 where 6 is the channel Prompt 2: airodump-ng 127.0.0.1:666 once we figure out channel we type airodump-ng --channel 6 -w c:\aircrack\file 127.0.0.1:666 where 6 is channel number Prompt 3: aireplay-ng -0 5 -a bssid of network 127.0.0.1:666 prompt 4: aircrack-ng -a 2 -w 1.lst Isaac-01.cap where Isaac-01.cap is the name of the captured airodump file

After you have installed the proper commview drivers, this will show you how to use airowizard to obtain the necessary quantity of data packets in around 10 minutes and than crack it using ptw

THIS IS A VIDEO SHOWING YOU HOW TO INSTALL AIROWIZARD AND PROPER DRIVERS

JoikuSpot is a free mobile software solution that turns Nokia Smartphones to WLAN HotSpots. JoikuSpot software is installed directly to the phone. When switched on, laptops and iPods can establish instant and fast wireless internet connection via smartphone's JoikuSpot access point using phone's own 3G internet connection. Multiple devices can connect to JoikuSpot in parallel and seamlessly share the same 3G internet connection. JoikuSpot acts thus as an internet gateway to external WLAN devices. Release notes for JoikuSpot Light Beta 1.21: -Landing page works now with all operators -Encryption support with WEP including automatic 128bit key generator -Battery threshold shutting down the client when battery level is too low (adjustable) -Default Access point can be set -Support for secure SSH tunnels with Putty -90 days free trial. JoikuSpot Light will stay FREE also in the future. We shall later on introduce new Premium version with small payment. Naturally Premium will includ

Barbelo wants to be tool similar to aircrack (and more) but for Nokia phones.In the near future the most interesting functionality will be actually IP over DNS. This will enable people to use hotspot wifis for free, and this is very useful at airports etc. where you'll most likely be bored and have your phone handy. For now, Barbelo will show you the WLANs around and their signal strength. Unfortunately the refresh rate is very low since the card isn't in monitor mode - just using standard WLAN query APIs. barbelo-vx.x.sisx

Driver : IPW3945 Special Notes : Enable the drivers via KDE menu or cd /usr/src/drivers/ipw3945-1.2.0/ && ./load Special Notes : Enters monitor mode, but cannot inject Special Notes : You may need to start the image with "bt irqpoll" Good way to tell: you see what looks like function call backtraces on startup and the suggestion to run "bt irqpoll" scrolls by pretty fast. Check your dmesg for more details if it scrolls too fast for you. Driver : IPWRAW, A guide can be found [here] Or an easy to use lzm module can be found here [here] Note : This driver is not included in Backtrack2 by default. Special Notes : Locked in monitor mode and can be used in all aireplay-ng attacks. For Kismet, edit your Kismet.conf to "source=ipw3945,wifi0,Intel" Notice: After starting airodump-ng only run one command at a time. If you do not your system may hang or freeze. ifconfig wifi0 down #Change to AP BSSID nano /sys/class/net/wifi0/device/bssid # Channel of AP

Barbelo is a wireless (WiFi) security related toolset for Symbian S60 v3. It currently supports, in a primitive form: Standart netstumbler/kismet like functionality. GPS support to map networks. Roadmap The plan is to implement the following: Aircrack like functionality. IP-over-DNS. VAP support and other crazy stuff? Notes It seems that the wifi card on phones and Symbian are quite capable, if you know the right API. JoikuSpot is an app that turns your phone into an access point. Perhaps Symbian allows applications to do raw 802.11 networking. If so, coding aircrack-like apps is possible. Ideally, IP-over-DNS would be implemented like a "vpn". That is, all traffic from the phone passes to the application, and the application tunnels it over DNS. This requires Symbian to have something like UNIX's tap interface. If it doesn't though, we can code IP-over-DNS by setting the web proxy of the browser to 127.0.0.1 and faking a proxy in the application. This will forward on

BlueMaho is GUI-shell (interface) for suite of tools for testing security of bluetooth devices. It is freeware, opensource, written on python, uses wxPyhon. It can be used for testing BT-devices for known vulnerabilities and major thing to do - testing to find unknown vulns. What it can do? (features) * scan for devices, show advanced info, SDP records, vendor etc * loop scan - it can scan all time, showing you online devices * alerts with sound if new device found * on_new_device - you can specify what command should it run when it founds new device * it can use separate dongles - one for scanning (loop scan) and one for running tools or exploits * send files * change name, class, mode, BD_ADDR of local HCI devices * save results in database * tracking - it can show when remote device was seen first and how many times * position feature - it can write to database WHERE scanned device was found (you specify location by yourself) * test remote device for known vulnerabilities (see explo

SIMable is an innovative little chip that frees your SIM card to work in the vast majority of mobile phones. We all know that the very latest 3G devices can be very difficult and expensive to unlock and SIMable is the 10 second solution without invalidating any warranty on your precious handset. Fitting SIMable is quick and simple and full instructions can be downloaded here . This involves pressing out a very small hole in your SIM card and we even include a free cutting tool with every purchase. Once done simply align SIMable to your SIM card, insert into your locked mobile phone and start talking. SIMable is compatible with most mobile phones including the latest Nokia E and N Series and the top of the range Sony Ericssons.

A 3G mobile service using the 900MHz band could help network operators reduce costs, as the both the voice and data coverage and the signal penetration for in-building coverage is superior to that of the higher frequency variant of UMTS currently used in European markets. These findings were announced at the Mobile World Congress by Chinese infrastructure supplier Huawei and Qualcomm, US producer of chips for mobile phones and other devices. These two companies carried out field trials in the Extremadura region of Spain along with Spanish telecommunications company Telefonica. The trial results confirmed that UMTS and HSDPA can co-exist with GSM at 900 MHz. Compared with the UTMS technology licensed for 2100MHz in Europe, the lower frequency 3G variant offers an increased cell radius and a better better in-building coverage, which would mean lower infrastructure costs. UMTS-900 would thus seem to be ideal for providers wishing to offer 3G services across large but relatively sparsely p

Apple Airport Extreme Base Station Bands: 802.11a (5Ghz), 802.11b/g (2.4Ghz), and 802.11n operating at either 5Ghz or 2.4Ghz Comments: The wide range of compatibility within this access point cannot go over looked. Combined with its relatively low price, it serves as a good, multi-purpose addition to your toolkit. Downsides: The AP itself is slightly bulky and the Airport Utility must be used for configuration. (Looking for an OpenWRT/DD-WRT flash) Buffalo WHR-G54S running OpenWRT Bands: 802.11b/g(2.4Ghz) Comments: OpenWRT (or DD-WRT) adds such a wealth of functionality to these low cost access points that they immediately become a must have addition to the toolkit. I’ll use this for a variety of quick and dirty tasks, especially when I don’t feel like booting into Windows to use the Airport Utility. (Although there is a Linux version available) Downsides: Only supports 802.11b/g, and it has been discontinued by the manufacturer Due to OpenWRT’s portability, the specific make/model of

Ubiquiti SuperRange Cardbus Basic Specs: Bands: 802.11 a/b/g 2.4 and 5GHZ Transmit Power: 300mW External Connectors: (2x)MMCX Chipset: Atheros AR5213/AR2112 Very popular card due to its high transmit power, dual band support and external connectors. URL:http://ubnt.com/products_src.php4 Netgear WAG511 Basic Specs: Bands: 802.11 a/b/g 2.4 and 5GHZ Chipset: Atheros AR5001X Solid and reliable general use card. Just about every Windows 802.11 application supports it. URL:http://www.netgear.com/Products/Adapters/ AGDualBandWirelessAdapters/WAG511.aspx Alfa 500mW USB Basic Specs: Bands: 802.11b/g 2.4GHZ Transmit Power: 500mW External Connectors: (1x)RP-SMA Chipset: RealTek 8185 Mostly notable because it is compatible within VMware. URL:http://www.data-alliance.net/servlet/the-90/AWUS036H-Alfa-500mW-USB/Detail AirPCAP Basic Specs: Bands: 802.11b/g 2.4ghz Deserves mention as it works well within Windows with tools such as Cain & Abel. URL:http://www.cacetech.com/products/airpcap-classic.ht

Wi-Fi security isn't very secure at all, but if your access point is more secure than others, evil-doing crackers are more likely to move on. In the spirit of "best of what's offered" security, most wireless access points are set to use WEP encryption to password their connections, but WPA (supported on most modern routers and computers) is less easy to crack than WEP. To switch to WPA, on your access point's administration page, change the security level and set your WPA passphrase to something long and difficult to crack.

While there are several software and hardware hacks for boosting your Wi-Fi signal (see below), there are also a few simple adjustments you can make to an unmodded access point to get the best coverage. The NY Times says: Place the base station centrally on an upper floor, or atop furniture, because radio waves spread best laterally and down Reception will be better if the signal does not have to travel at steep angles and if it doesn't have to go through thick walls, mirrors, fish tanks or anything metal Place wireless network components far from other devices in the house that can cause interference, like cordless phones, microwave ovens, baby monitors or halogen lamps Change the default signal channel (usually set to 6) to avoid interference with neighbors' network devices

With the advent of Wifi technology and the use of 802.11x it is very likely that your Wifi enabled device (laptop, pda, etc.) lights up like the 4th of July when you power it on. Many Wifi networks are not secured to begin with (not because users don’t see the relevance, rather because end-users are typically oblivious to the security ramifications of having an open door into their own private networks). In today’s technology age, where malicious users are around every corner, more and more people are seeing the benefits of security. For most end-users, with little or no computer experience, setting up wireless networks is as simple as going to the nearest brick and mortar (i.e., Bestbuy) and having an in-house technician (i.e., Geek Squad) come out to your place of residence and setting up your wireless router. Although most of these individuals will not leave you completely vulnerable to malicious users on the Internet, they will however take the easiest route to create a perception

Alfa AWUS036H USB 500mw RP-SMA Very powerful card. Linux compatible. Realtek 8187L Windows, Linux

LTE-Advanced should be real broadband wireless networks that provide equal or greater peak data rates than those for wired networks, i.e., FTTH (Fiber To The Home), while maintaining equivalent QoS. Smooth introduction of LTE-Advanced should be possible on top of LTE system. High-level requirements •Reduced network cost (cost per bit) •Better service provisioning •Compatibility with 3GPP systems Spectrum WRC 07 identified the following new bands for use by IMT/IMT-Advanced: 450−470 MHz band, 698−862 MHz band, 790−862 MHz band, 2.3−2.4 GHz band, and 3.4−3.6 GHz band. Not all of these bands are available on a worldwide basis. These bands are in addition to the bands currently specified in 3GPP. Specification for C-band should not be restricted to 3.4 – 3.6 GHz, but cover 3.4 to 3.8 and even 3.4 to 4.2 GHz as these will likely become available in some countries. Channel Bandwidth Channel bandwidths up to 100 MHz to be specified However, for many operators consecutive allocation of 100 MHz

The 3GPP TSG RAN workshop on IMT-Advanced was held (in the week after the RAN WG meetings) on April 7-8, 2008 in Shenzhen, China hosted by ZTE Corporations. The main conclusions from the workshop are: LTE Advanced shall be an evolution of LTE. o LTE terminal shall be supported in LTE-advanced networks. o An LTE-Advanced terminal can work in an LTE part of the network. o Primary focus of LTE-Advanced is low mobility users. All requirements/targets in TR25.913 apply to LTE-Advanced.LTE-Advanced requirements shall fulfill IMT-Advanced requirements within the ITU-R time plan For LTE-Advanced: o Same inter-RAT interworking capability with at least same performance as in LTE Release 8 o Intra-RAT handover performance shall be same or better than LTE Release 8 As a way forward for LTE-Advanced it was agreed: o TSG RAN email reflector for LTE-Advanced will be established (the new reflector is called 3GPP_TSG_RAN_LTE_ADVANCED and it is available since 21.04.2008) § Email discussions on LTE-Adva

802.11a - 54 Mbps standard, 5 GHz signaling (ratified 1999) 802.11b - 11 Mbps standard, 2.4 GHz signaling (1999) 802.11c - operation of bridge connections (moved to 802.1) 802.11d - worldwide compliance with regulations for use of wireless signalspectrum (2001) 802.11e - Quality of Service (QoS) support (2005) 802.11f – Inter access point protocol to support roaming clients (2003) 802.11g - 54 Mbps standard, 2.4 GHz signaling (2003) 802.11h - Enhanced version of 802.11a to support European regulatory requirements (2003) 802.11i - Security improvements for the 802.11 family (2004) 802.11j - Enhancements to 5 GHz signaling to support Japan regulatoryrequirements (2004) 802.11k - WLAN system management 802.11l - Skipped to avoid confusion with 802.11i 802.11m - Maintenance of 802.11 family documentation 802.11n - Future 100+ Mbps standard 802.11o – Voice over WLAN, faster handoff, prioritize voice traffic over data 802.11p – Using 5.9GHz band for ITS (long range) 802.11q – Support for VLA

The increased frequency reduces cell range, resulting in a more costly network rollout and makes achieving GSM like coverage (>90% population) very challenging. Additionally, with the rapid roll-out of HSDPA (an evolution bringing broadband like speed to UMTS) and its less robust, higher-order modulation scheme (16QAM), building penetration from macro deployments becomes an issue. W-CDMA (UMTS) in the 900MHz band achieves a 60 per cent reduction in the number of cell sites required to serve rural areas, and can deliver improved quality of service in urban areas by enhancing in-building penetration by 25 per cent. 900MHz is a good frequency for building penetration and decent range, and is used in rural areas where the small-cell-site advantage of 1800MHz is less applicable. Signal coverage of 2 – 4 times the coverage in the 2100MHz band, resulting in a reduced number of base stations required Improved indoor coverage in urban areas. A 2006 study showed a 25% improvement in in-buildi

The Huawei E220 is a Huawei HSDPA access device ( 'modem' ) manufactured by Huawei and notable for using the USB interface (USB modem). Technically it is a modem, USB and (due to the CDFS format) virtual CD-ROM device. The device is used for wireless Internet access using 3.5G, 3G, or 2G mobile telephony networks. It supports UMTS (including HSDPA), EDGE, GPRS and GSM. E220 works well with Linux, as support for it was added in Linux kernel 2.6.20, but there are workarounds for distributions with older kernels (eg for Debian etch's 2.6.18). The card is also supported by Vodafone Mobile Connect Card driver for Linux, and it is possible to monitor the signal strength through other Linux applications. Most 3G network operators bundle the device with a contract, with some operators simlocking the device (ie making it work only with a particular SIM card). E220 connects to the computer with a standard Mini USB cable. The device comes with two cables, one short and one long. The l

Huawei Technologies Co., Ltd. has released the world's smallest USB modem, the E230, which will support 4.5 Mbps high speed uplink packet access (HSUPA). Shown for the first time at Wireless World, the Huawei E230 USB modem is just 6 cm long with simple and smooth design. Size does not affect performance, as the E230 fully supports various standards such as HSPA, UMTS, EDGE and GPRS. It also supports 7.2 Mbps high speed downlink packet access (HSDPA) and 4.5 Mbps HSUPA, which enables faster Internet surfing and clear online streaming of movies. The E230 also has a MicroSD card slot, supporting up to 8 GB memory size. Along with the E230 modem, Huawei will also be demonstrating two industry-leading mobile broadband products – the D100 and E510. The D100 is the first WiFi adapter in the world and is aimed at SOHO users and home networks, enabling interconnection of phones, game consoles, PCs and laptops. The WiFi adapter helps to extend a single user to multiple users. The E510 is

Using 3G/UMTS/HSDPA services over 900Mhz frequency spectrum you will need 3G UMTS/HSDPA terminals (modems) 3G / UMTS / HSDPA 900MHz PHONES Sony Ericsson XPERIA X1 will support HSDPA 850 / 900 / 1900 / 2100 / 1700 3G Networks OTHER Features OS Microsoft Windows Mobile 6.1 Professional and Display Type TFT touchscreen, 65K colors Size 800 x 480 pixels, 3 inches, Full QWERTY keyboar, Optical joystick navigation, 400 MB internal memory, 128MB RAM, 256MB storage memory, Qualcomm MSM7200 528MHz processor, Wi-Fi 802.11b/g Nokia 6121 classic will support HSDPA 2100 / 900 3G Networks OTHER Features OS Symbian OS v9.2, S60 rel. 3.1 and ARM 11, 369 MHz CPU Nokia 5320 XpressMusic will support HSDPA 2100 / 900 3G Networks OTHER Features OS Symbian OS 9.3, S60 rel. 3.2 and ARM 11, 369 MHz CPU

UMTS/HSDPA technology at 900 MHz spectrum makes the delivery of voice and high-speed 3G services more cost effective as compared to 2100 MHz because at lower frequencies, the propagation advantage allows for a significant increase in the area covered by a base station. This advantage translates to significant cost savings for operators and better in-building coverage to improve the overall user experience for their customers. Deploying UMTS/HSDPA technology in 900 MHz spectrum can help mobile operators cost-effectively deliver UMTS/HSDPA services because the lower frequency provides a significant increase in the coverage area of a base station and, potentially, enables better signal penetration for in-building coverage. UMTS 900 may help solve the 3G coverage issues in Europe, since providing full coverage at 2100 MHz is very expensive. The financial and network advantages are numerous for operators redeploying in the 900 Mhz band currently used for 2G services. However, consumers will

Researchers have found some holes in Google's Android SDK that could make the software vulnerable to hack attacks. Five mobile trends to watch… What's the mobile world got in store for 2008? Core Security published an alert on its website stating it had found eight vulnerabilities related to some open source image processing libraries in Google's Android SDK, which the group claims are outdated. Attackers exploiting these vulnerabilities could take complete control of Android handsets, the alert said. Android, which Google announced in November, is still in beta. Even though several companies showed off prototypes using the Android software at the GSMA Mobile World Congress last month, none of them have built a commercial product yet. The final version of the software code won't be available until later this year. Original article: Security threat discovered in Google's Android software from CNET News.com

Tutorial Videos on how to use Airowizard: Driver installation: http://nazircon.googlepages.com/drivers.html Failed driver installation : http://nazircon.googlepages.com/drivers_failed.html AiroWizard's features and Fragmentation attack, Part1: http://nazircon.googlepages.com/frag_demo_a.html AiroWizard's features and Fragmentation attack, Part2: http://nazircon.googlepages.com/frag_demo_b.html Forum AirDump.Net • WiFi • Hacking • Security TAZ Forum

Every credit card has personally identifiable information inserted into the magnetic strip on the back, but hacking it so far proved a task too difficult for most malevolent figures to even attempt. RFID security guru Adam Laurie has come up with a test program named CHaP.py, specifically designed to read the chip and PIN credit cards that comply with the EMV standard.The EMV is a standard for interoperation of IC cards ("Chip cards") and IC capable POS terminals and ATM's, for authenticating credit and debit card payments. The name EMV comes from the initial letters of Europay, MasterCard and VISA, the three companies which originally cooperated to develop the standard. It defines the interaction at the physical, electrical, data and application levels between IC cards and IC card processing devices for financial transactions, according to Wikipedia. The Black Hat DC briefings saw the first demo of the program in action in its early stages. It only works with PC / SC rea

The RFID hacks keep coming fast and furious -- hot the heels of that Mifare / Oyster Card exploit , the crew at BoingBoing TV has posted up a little demo of how easy cracking the RFID encryption on an American Express card can be. All it takes is an $8 dollar reader easily available on eBay, some software, and the courage to walk around with a laptop waving plastic boxes at people's butt pockets, but developer Pablos Holman says he's hoping to develop a newer version that will allow him to be a little more discreet. The root of the problem is apparently the fact that the system uses local decryption rather than sending card info to a secure data center, but either way we've been worried about this for a long time -- we're sticking to loose change and the barter system from now on. Video

Login into the remote administration of your router then look for the wireless security part. Enable WPA-PSK or WPA2 encryption and make a password of completely random characters and numbers with a length of 63 for your password. Also change the default password on your router. A good idea to get maximum distance is to change your signal channel to either 1 or 11 instead of 6. Do not disable SSID broadcast or enable MAC filtering. Worthless precautions that only cause connectivity issues.

WPA-PSK cracking. The text about cracking WPA coding is an alternative to the classic process (dictionary atack - cracking WPA key with Aircrack-ng and wordlist). I have used Cowpatty, John the Ripper and genPMK. Additionaly to the pentest you can get hash at Lostboxen (6GB) or at Shmoo (35GB) and wordlist for generating your own control sums... more

What you'll need: One of the supported routers. I used a Linksys WRT54GL Wireless router that I picked up from Newegg, and the instructions that follow detail the upgrade process specifically for that router and its close siblings. If you're upgrading one of the other supported routers, you might want to look into instructions specific to your router. These instructions may generally work for other supported routers, but I'm not making any promises. The generic DD-WRT v23 SP1 mini firmware version located here.* The generic DD-WRT v23 SP1 standard firmware version located here.* *You'll be upgrading the firmware twice, first using the mini firmware, then using the standard. Upgrading your router to the DD-WRT firmware Check out this gallery for the detailed step-by-step upgrade with screenshots. When you're finished, come back here for some of my favorite tweaks. more

AWUS036E 802.11b/g Usb wirelesslan adapter 17dbm with detachable antenna (rp-sma female) http://www.osgroupinc.com/cards/awus036e.html

USB Alfa Network AWUS036H This usb card AWUS036H coming from alfa network is a jewel!. She's fully compatible with aireplay-ng , 500mw, a RP-SMA connector and -96dbm sensibility !High security 64/128/256bit WEP Encryption, TKIP, WPA, 802.11. She've a realtek rtl8187 chipset, who works great under linux and with the aircrack suite . Dongle Wifi Awus036s She has a RPSMA connector too and she's more portable with no usb wire need. This time, it's not a realtek rtl8187 chipset but a ralink rt2500 chipset, much better ;) Also works great in WEP and WPA TKIP/AES see the constructor doc for more informations.More of then , with her ralink chipset, she's really good supported by linux and especially backtrack.

Ubiquiti SRC Driver : Madwifi-ng Chipset : Atheros AR5212 a/b/g FCC ID: SWX-SRC http://www.ubnt.com/products/ NetGear WG511v2 Chipset : Marvell lspci : Marvell Technology Group Ltd. 88w8335 [Libertas] 802.11b/g Wireless (rev 03) lspci -n : 11ab:1faa (rev 03) FCC ID : PY3WG511V2H1 CANADA ID : 4054A-WG511V21 CE : 0470 Senao NL-2511CD PLUS EXT2 Driver : HostAP (wlan-ng drivers have been removed from BT2 final. See here to use HostAP driver) Chipset : Prism 2.5 Firmware : 1.74 is suggested, check [here] for instructions. FCC ID: NI3-2511CD-PLUS3 For Kismet, edit your Kismet.conf to "source=hostap,Wlan0,Prism2" To raise the output of this card to 250mw Not verified Caution! This might destroy your card if you do not know exactly what your doing! The change in readmif seems stable only in Master mode. ifconfig wlan0 up iwpriv wlan0 alc 0 iwpriv wlan0 readmif 116 [-> actual powertx value] iwpriv wlan0 writemif 62 49 [-> I've no idea at all why "49"] iwpriv wlan

Complex & Ever Changing Bluetooth is an extremely complex software and hardware technology that is evolving fast. Even the most experienced Bluetooth developers and test engineers are challenged by keeping up with the latest changes from the baseband all the way to the profile level. Interoperability There are now enough Bluetooth-enabled devices on the market to prove that the technology is viable. Commercial success is tied to making sure that your devices interoperate smoothly so consumers can realize the benefits of Bluetooth. Currently Supported Version 2.1+EDR Features: Extended Inquiry Response. Secure Simple Pairing. QoS. Non-Automatically Flushable Packet Boundary Flag. Sniff Subrating. Erroneous Data Reporting. Encryption Pause and Resume. Link Supervision Timeout Changed Event. Security Mode 4. Supports EDR (Enhanced Data Rate): FTS4BT is the only analyzer currently on the market to support Bluetooth v2.1 + EDR. Finger-sized Bluetooth ComProbe: Air sniffing hardware

The Eee 900 Series was officially launched in Hong-Kong on April 16, 2008 for 513 USD. The system will launch on May 1, 2008 in the UK for £329 (approximately €410, $650) including VAT. The system is expected to cost around 399 EUR or 499 USD when it launches in other territories around April. The 900 series is supposed to launch on May 12th, 2008 in the US for a base price of $549. The Eee 900 series dimensions are a little larger than the 70x models - measuring 225 × 165 × 35 mm (WxDxH) and weighing around 1 kg. The machine has multi-touch features that allow two-finger scrolling and zooming via a "pinch" gesture The machine is available in both Linux and Windows XP configurations. Linux version is named the EeePC 900 and comes with a 20 GB SSD, while the Windows XP version is named the EeePC 900 Win and has a 12 GB SSD. The Windows version comes with Microsoft Works and Windows Live Suite preinstalled. The machines are otherwise identical to each other with 1 GB of RAM, an

There were some pretty interesting things developments during the last few weeks: aircrack-ptw or Breaking 104 bit WEP in less than 60 seconds . Works great! There is a tutorial “ How to crack WEP with no clients ” which helps you to generate the necessary ARP packets. Lorcon - Loss Of Radio CONnectivity. 802.11 packet generator implementing an hardware abstraction layer - you don’t have to mess around with WiFi drivers anymore. From now on Lorcon does this for you. Pretty interesting slides on Wi-Fi fuzzing from Black Hat Europe .

The last weeks there where some rumors about “Bluetooth Sniffing for everyone”. Max Moser released a paper in which he is describes how to modify a regular Bluetooth dongle into a full featured Bluetooth Sniffer using Frontline’s FTS4BT software .The Software is available for free, the firmware you need to convert a Bluetooth dongle into a sniffer comes with the Software. All you need is a serial number to run the Software. The media give the impression that now everybody can easily sniff Bluetooth. But in fact, Bluetooth Sniffing is not that easy. To successfully sniff Bluetooth connection you always have to know at least one of the Bluetooth addresses used in a piconet. And not only that, you also have to know whether the device is master or slave of the piconet and if it’s inquiry or page scanning.If the connection is encrypted you even need more information. You need to know the other devices Bluetooth address, too and you have to know the Link Key the two devices are using for th

These are some Bluetooth dongle, which support changing firmware with dfutool and tuning with bccmd. There is no guarantee that they still support flashing and tuning when you buy them, because vendors often tend to change the hardware without further notice. Acer Bluetooth Stick - BC2-EXT Linksys USBBT100 Rev 1 D-Link DBT-120 Rev C1 DELOCK 61478 A7 eb502-HCI Fujitsu Siemens BLUETOOTH V2.0 - BC4-EXT -there are no known revision for this dongle Toshiba PA3455U-1BTM Aircable Host XR Cellink BTA-6030 Bluetooth Adapter The adapter must allow flashing of the external ROM ( BlueCore4-ext or BlueCore2-ext )

The only long-range (10 km-class) Bluetooth® USB "Dongle" Key Features: Bluetooth 2.0-compatible Standard USB connector Works with Windows, Linux, and Mac OS X. 1 km external antenna included Extended range for up to 30 km No external power needed Aluminum case for reduced interference and increased sensitivity Extends the range of your existing bluetooth devices! Built on AIRcable XR™ long-range technology The AIRcable Host XR, equipped with an extremely-powerful, highly-sensitive Bluetooth transmitter, can achieve an unparalleled range of up to 30 km! With a 9 dBi omni-directional antenna, the extended range is up to 2 km, and with the 18 dBi directional antenna, it is up to 10 km. Additionally, given its high sensitivity, it can extend the range of weaker Bluetooth devices like cell phones and headsets by hundreds of meters. With most other devices only capable of obtaining a range of 10 meters or less, no other Bluetooth device comes even close. Plus, this long-range Blue

Wifi connection management can be a bit fiddly on Windows Mobile, but WeFi looks like it might be a step in the right direction. When activated, the app searches for nearby wifi hotspots and grade the quality of their connection before connecting you to the best. You can specify an app to launch as soon as a connecton is made and WeFi will also alert you if your IM contacts are online. Here is a quick YouTube clip showing the app in action:

O’Reilly Radar is reporting news of a new web service that claims to offer real time decryption of the GSM protocol. Cracking GSM encryption has always been a computationally intensive process but thanks to a technique known as Rainbow Tables (essentially, this just means working out a lot of the hard sums in advance and storing the answers in a huge lookup table) a lot of the work has already been done. The other ingredient is a device called a Universal Software Radio Peripheral (USRP) - unlike most receivers that can pick up, say, FM transmissions, TV or mobile phone signals the USRP can receive the lot. It is relatively simple to program the device to isolate particular signals and these are then digitised for analysis by the cracking service. What does this mean for the security of GSM phone calls? Well, according to O’Reilly, the service should let you grab a live GSM call and begin listening in on it within 30 seconds. The article (and the researchers behind the service) are at

Chipset BlueCore4-Ext bt ~ # hciconfig hci0 up bt ~ # hciconfig hci0 revision hci0: Type: USB BD Address: xx:xx:xx:xx:xx:xx ACL MTU: 384:8 SCO MTU: 64:8 HCI 19.2 Chip version: BlueCore4-External Max key size: 56 bit SCO mapping: HCI bt ~ # hciconfig hci0 -a hci0: Type: USB BD Address: xx:xx:xx:xx:xx:xx ACL MTU: 384:8 SCO MTU: 64:8 UP RUNNING RX bytes:79 acl:0 sco:0 events:8 errors:0 TX bytes:30 acl:0 sco:0 commands:8 errors:0 Features: 0xff 0xff 0x8f 0xfe 0x9b 0xf9 0x00 0x80 Packet type: DM1 DM3 DM5 DH1 DH3 DH5 HV1 HV2 HV3 Link policy: Link mode: SLAVE ACCEPT Name: 'NET' Class: 0x1c010c Service Classes: Rendering, Capturing, Object Transfer Device Class: Computer, Laptop HCI Ver: 2.0 (0x3) HCI Rev: 0x77b LMP Ver: 2.0 (0x3) LMP Subver: 0x77b Manufacturer: Cambridge Silicon Radio (10) -----------------------------------------

Radio Common Tx/Rx terminal simplifies external matching; eliminates external antenna switch BIST minimises production test time. No external trimming is required in production Full RF reference designs available Bluetooth® v2.0+EDR specification compliant (v2.1 upgradeable) Transmitter +6dBm RF transmit power with level control from on-chip 6-bit DAC over a dynamic range >30dB Class 2 and Class 3 support without the need for an external power amplifier or Tx/Rx switch Supports Π/4 DQPSK (2Mbps) and 8DPSK (3Mbps) modulation Receiver Integrated channel filters Digital demodulator for improved sensitivity and co-channel rejection Real time digitised RSSI available on HCI interface Fast AGC for enhanced dynamic range Supports pi/4 DQPSK and 8DPSK modulation Channel classification Synthesiser Fully integrated synthesiser requires no external VCO, varactor diode, resonator or loop filter Compatible with crystals between 8 and 32MHz (in multiples of 250kHz) or an external clock Accepts 7.

Find more how to and instructional Mobile videos on 5min.com

Find more how to and instructional DIY videos on 5min.com

Find more how to and instructional Mobile videos on 5min.com

Find more how to and instructional DIY videos on 5min.com

Aircrack video clips updated regularly from thousands of video content providers. Watch aircrack videos or use the video search engine to find other video clips. Browse recently added aircrack videos:

theDisclaimer v1.0disclaimer: This article is for informational and educational purposes only. Hacking into a private security enable wireless network is illegal and is not the intent of this article. With the advent of Wifi technology and the use of 802.11x it is very likely that your Wifi enabled device (laptop, pda, etc.) lights up like the 4th of July when you power it on. Many Wifi networks are not secured to begin with (not because users don’t see the relevance, rather because end-users are typically oblivious to the security ramifications of having an open door into their own private networks). In today’s technology age, where malicious users are around every corner, more and more people are seeing the benefits of security. For most end-users, with little or no computer experience, setting up wireless networks is as simple as going to the nearest brick and mortar (i.e., Bestbuy) and having an in-house technician (i.e., Geek Squad) come out to your place of residence and setting

Changing the Wireless card in an EeePC. An easy guide with step by step procedure.

:D

Nokia N95 Imitation Nokia N95 Asian Edition

It’s all about flogging knock-off Nokias nowadays. At least, that’s what appears to be happening on eBay, where fake Nokia N95 8GB phones are increasingly popular. Check the YouTube video above, where someone’s helpfully outlined the difference between the real thing, and one of the fakes – which apparently are often claimed to be the Asian model of the handset. Buy one, and you’ll soon be swearing about the weedy camera and lack of GPS, Wi-Fi, Symbian or, er, 8GB of memory. And in any case, we bet you can get five for a pound on Deptford Market, rather than shelling out on eBay…

Fantastic Enjoyment with HSUPA Uplink 2Mbps With HSUPA Uplink speed up to 2Mbps and HSDPA Downlink 7.2Mbps, the Huawei USB Modem E270 enables you to manage large scale of data communications such as video streaming and big file transferring. You can upload and receive video clips, music or photos and share any contents more easily with your family members and friends. E270, a perfect combination of elegant design and technology makes your mobile life more exciting. 1. Main Features 2. Specifications 1. Main Features HSDPA/HSUPA/UMTS/EDGE/GPRS/GSM HSDPA Downlink 7.2Mbps; HSUPA Uplink 2Mbps UMTS Downlink / Uplink 384kbps EDGE Downlink / Uplink 236.8kbps SMS service Plug & Play, convenient for use Windows® 2000, XP & Vista Operating Systems 2.Specifications Item Description Technical standard HSDPA/HSUPA/UMTS: 3GPP R5 GSM/GPRS/EDGE: 3GPP R99 Operating frequency UMTS/HSDPA/HSUPA 850/1900/2100MHz GSM/GPRS/EDGE 850/900/1800/1900MHz External interface EGPRS Multi-slot Cla

E220 HSDPA USB Modem Be mini. Be Speedy With tiny design and high speed, Huawei E220 USB Modem redefines mini fashion for the elite. The irresistible creation features the eye-catching sleek design and a great speed up to 3.6Mbps. Its USB cable can be used by both laptops and desktop computers. Put the chic near your hand and enjoy the charm of mini fashion. 1. Main Features 2. Specifications 1. Main Features HSDPA/UMTS/EDGE/GPRS/GSM HSDPA packet data service with a maximum transmission rate of 3.6Mbps UMTS packet data service with a maximum transmission rate of 384kbps EDGE packet data service with a maximum transmission rate of 236.8kbps SMS service Auto installation, convenient for use Windows 2000 and Windows XP Operating system 2.Specifications Item Description Technical standard HSDPA/UMTS: 3GPP R99, R5 GSM/GPRS/EDGE: 3GPP R99 Operating frequency HSDPA/UMTS 2100MHz GSM/GPRS/EDGE 900/1800/1900MHz External interface Mini USB interface: supporting USB 2.0 Full Speed Anten

This has been my little project the last couple of weeks. A massive internal modification to my Eee 4G. It includes the following: ● 2x USB hubs ● Bluetooth 2.0+EDR ● GPS module with antenna ● Voyager GT 4 GB flash drive ● SDHC card reader ● FM transmitter ● Draft-N wireless adapter with a third antenna from a Wii. ● Everything connected via a dip switch It's quite weird that Asus decided to leave that much free space unused in the Eee. The Eee could be slimmer and thinner if they really wanted to. Anyhow, let the pictures tell their story. I've created a Wiki page with all the nitty gritty details. USB hubs The first USB hub mounted next to the memory bay: Second USB hub over SSD drive: GPS GPS DIY kit from Ebay stripped down to only the necessary parts: GPS antenna mounted on the left-side of the display. I had to remove 4 plastic stubs to make it fit: GPS module mounted over the ethernet and audio chip: Bluetooth Bluetooth adapter mounted under the GPS antenna on the left si

Eee PC eeepc hacking eee hardware upgrade

Well, apparently hacking Asus Eee pc is being a new addiction for JKKMobile. Last week this creative soul successfully transfor his Eee to a 7-inch tablet pc by making its Eee screen to a touchscreen .Addicted to hack his little machine, the guy trying to add an internal HSDPA module to Eee and success. Video after the break…. This hack required a ZadaCOM 3G+ HSDPA modem and need some soldering skill. This hack is applicableon any Eee pc without the extra pcie slot.

So, ever since I got the eeePC I’ve loved how easy it is to tinker with. Since I’m not a Linux guy, I dumped the Xandros preload and opted for Windows XP so I could you my EVDO USB datacard and blogging software easier, but I wondered could I install OSX on it? And, after trial and error - you can! The only problem is that the eeePC only supports SSE2 instead of the SSE3 that Leopard is coded for. Kinda a bummer, and will require some extra tinkering to coax the OS on the eeePC. Thankfully Adam’s awesome tutorial over at Lifehacker provided an excellent foundation on how to do these hacks. First, download the Brazil Mac Hack from OSX86 Scene. This patch helps you create a X86 version of Leopard you can install on generic PC’s. Once that is done, you will need an DMG of Leopard, if you have a Mac you can create and Image in Disk Utility - just make sure your self created image is called osx-leopard105.dmg and it should be saved on your desktop. Or you can skip all the steps below and