phone

Tag: phone

Ham Radio Iphone applications

by Derek on Dec.21, 2009, under Amateur Radio

I have a Iphone and have been loading Ham applications onto it… Below is a list of some of them.

Amateur Radio Exam Prep for iPhone – Amateur Radio License exams are composed of questions from a pool. Use this application to practice all possible questions prior to taking your exam
CallBook for iPhone- CallBook is an Amateur Radio application that allows you to look up call signs via the free WM7D server, the QRZ Online subscription service or the HamCall subscription server and track active APRS stations on www.aprs.fi. Lookup results can be emailed and the QTH can be instantly viewed in the Maps application
Elmer for iPhone – iPhone Software to practice taking your Ham Radio Exam
Freq Finder: iPhone Repeater Directory – Freq Finder is an iPhone based Ham Radio Repeater Directory that locates repeaters based on the user location.
FreqLoader: iPhone companion for the mobile ham- FreqLoader is the perfect iPhone/iPod Touch companion for amateur radio operators, monitoring enthusiasts, shortwave listeners and anyone with an interest in the air waves. Whether you’re an active licensed ham or an avid scanner listener, FreqLoader will allow you to find what you’re looking for, keep track of your stations, maintain complete logs and share your finds with friends, groups and the world.
hamDXcluster for iPhone – DX Cluster for iPhone application
iLocator for iPhone – A small application for Apple iPhone that calculate grid locator from gps, wifi or gsm cells by IW2BSQ
iPhone Ham Radio Callsign Lookup- This webapp provides an iPhone-compatible lookup of Amateur Radio Callsigns. It provides the name, address, and license class (from the FCCâ€™s public records) of any US-Licensed Amateur Radio Operator.
Morse Key for iPhone – A free simple touchscreen-based CW Morse Code straight key. Practice sending Morse Code on your iPhone.
IBCNU APRS on the Iphone - The Live IBCNU feed can be found here.
APRS – how to configure the application can be found at http://www.aprs-is.net/Connecting.aspx. Find Maps at http://www.openaprs.net/iphone/

UPDATE

EchoLink is finally available for the iPhone and iPod touch. It even allows me to use my Bluetooth car kit to have a QSO.

HAM’s who use EchoLink on the PC and Mac will appreciate the value of this on the iPhone.

4 Comments :Amateur Radio, amateur radio operator, ASP, DES, EchoLink, Iphone, iPod touch, iPodtouch, Mall, online, phone, Radio, script, server, web more...

Ham Radio Links

by Derek on Nov.29, 2009, under Amateur Radio

Amateur Packet Radio Australian

Aussiewide Packet Radio Network http://www.ampr.org.au/

AAPRA http://members.optusnet.com.au/aapra

Australian Amateur Packet radio directory http://www.wia.org.au/links/Packet Radio Directory 050703.PDF

Data Group Sub Committee WICEN Vic http://datagrp.vic.wicen.org.au/

Queensland APRS Users Group http://www.tech-software.net/

VK2KFJ’s Packet Radio Links page http://www.qsl.net/vk2kfj/pacradio.html

VK3JED http://quest.apana.org.au/~tl/vk3jed/

VK4TTT XROUTER http://xrouter.ampr.org.au/

VK4ZU http://www.users.on.net/~trevorb/

VK5 AX25 Packet Network Map (VK5AH) http://homepages.picknowl.com.au/wavetel/vk5pack.htm

Winlink

Winpack

10GHz data Link http://www.cck.net.au/areg/inside/projects/10ghz/10ghz.htm

International

About Digital Ham Radio http://home.teleport.com/~nb6z/about.htm

Amateur Packet Radio Gateways http://www.ampr-gates.net/frame_e.htm

Amateur Packet Radio, net 44, and AMPR.ORG `http://www.ampr.org/

American Febo Enterprises http://www.febo.com/index.html

ARRL HSMM Links http://www.arrl.org/hsmm/links.html

Athenian TCP/IP http://www.athnet.ampr.org/freeserv.htm

BayCom http://www.baycom.org/

BBS Hierarchical Addressing Protocol http://www.tapr.org/tapr/html/Fbbssig.html

Colin’s packet info http://website.lineone.net/~colin_mccord/Radio/packet_radio.htm

CHIFLEY A R CLUB http://hamgate.rpi.net.au/netstat.html

CHIFLEY A R CLUB http://hamgate.rpi.net.au/chifley/packet.html

CX2SA http://cx2sa.net/

digitalhamradio http://www.digitalham.net/

DRSTM (Data Radio Standard Test Methods) http://www.rocler.qc.ca/burt/drstm.html

Flexnet http://dl0td.afthd.tu-darmstadt.de/~flexnet/

FUNET http://www.funet.fi/pub/ham/packet/

FUNET ftp://ftp.funet.fi/pub/ham/packet/

F4DAY http://perso.wanadoo.fr/jf.fourcadier/index_e.htm

F6FBB http://www.f6fbb.org/

GB7DIP TNOS/PBBS http://www.qsl.net/gb7dip/access.html

GB7IMK http://www.gb7imk.co.uk/

G4JKQ http://www.btinternet.com/~g4jkq/

G4JKQ TCP/IP Telnet listing http://www.qsl.net/g4jkq/tcp.htm

G7JJF TNC Driver Support (WINTNC) http://www.g7jjf.demon.co.uk/

High speed (2 Mbit/s) data signaling project http://perso.wanadoo.fr/jf.fourcadier/haut_debit/projet/projet_e.htm

High speed packet http://hydra.carleton.ca/articles/hispeed.html

High Speed Packet radio http://www.lmrgroup.com/ke3ht/hspr.html

High-speed Packet Radio http://cacofonix.nt.tuwien.ac.at/~oe1kib/Radio/

KE5FX http://www.qsl.net/ke5fx/

K4ABT (home page) http://www.packetradio.com/

K4ABT (packet radio primer) http://www.packetradio.com/primer.htm

Linux® / Amateur Radio Information http://delbert.matlock.com/linux-radio.htm

Linux projects http://cacofonix.nt.tuwien.ac.at/~oe1kib/Linux/

Linux AX25-HOWTO http://tldp.org/HOWTO/AX25-HOWTO/

MPRG http://www.mprg.ampr.org/index.html

NNA http://www.btinternet.com/~nna/

Netterm http://www.cs.unca.edu/~edmiston/handouts/netterm.html

PA3CGO http://www.qsl.net/pa3gco/

Packet Cluster information http://cpcug.org/user/wfeidt/Misc/pctut.html

Packet Info and Downloads http://www.packetradio.com/

Packet Links http://www.stack.serpukhov.su/~victor/hamradio/packet/packet.html

Packet Net (VK5 packet map) http://www.packetnet.org/

Packet Net (FBB software) http://www.packetnet.org/fbb.htm

PAcket Digital Amateur Network (PADAN) http://www.weaksignals.com/

PZT Software by G8PZT (Xrouter, PZT BBS) http://www.g8pzt.pwp.blueyonder.co.uk/software/software.htm

Radio-TNC Wiring Diagrams http://users3.ev1.net/~medcalf/ztx/wire/

RST http://www.qsl.net/on1blu/

Russian Packet http://www.stack.serpukhov.su/~victor/hamradio/packet/packet.html

Slovenian ATV/Packet http://lea.hamradio.si/~s51kq/

Sound Card Packet http://www.qsl.net/soundcardpacket/index.html

TAPR http://www.tapr.org/

TCP/IP Telnet listing http://www.btinternet.com/~g4jkq/tcp.htm

TNC-X http://www.tnc-x.com/

TPK http://www.f6fbb.org/f1ebn/index.htm

TNOS Central http://www.lantz.com/tnos/

TVIPUG http://www.tvipug.org

United Kingdom Internet Protocol http://www.gb7imk.co.uk/ukip/

VHF/UHF/Microwave Radio Propagation: A Primer for Digital Experimenter http://www.tapr.org/tapr/html/ve3jf.dcc97/ve3jf.dcc97.html

WA4DSY 56k RF Modem http://www.wa4dsy.net/

Yet Another 9k6 Modem http://www.microlet.com/yam/

1.2 GHz TRX http://www.ccr.jussieu.fr/physio/f6bvp/txenglish.html

9600 BAUD – A SHOPPERS GUIDE: http://www.g1gyc.demon.co.uk/martin/9600.htm

Sound Card Packet

ILINKBOARDS.com http://www.ilinkboards.com/

Sound Card Buddy http://www.sparetimegizmos.com/Hardware/SoundBuddy.htm

Soundcard Interfacing http://www.qsl.net/wm2u/interface.html

Sound Card Packet AGWPE (KC2RLM) http://www.patmedia.net/ralphmilnes/soundcardpacket/SV2AGW http://www.elcom.gr/sv2agw/ Sound Card Interface with Tone Keyer (WA8LMF) http://members.aol.com/wa8lmf/ham/tonekeyer.htm

QDG sound card interface

Return to Top

Winlink

Winlink! 2000 http://winlink.org/

Aussie Winlink http://www.aussiewinlink.org

Pactor Communications Australia http://www.pca.cc/

Winpack

Winpack home page http://www.peaksys.co.uk/

Winpack info http://www.g4fip.cwc.net/winpack.htm

Winpack info http://www2.tpg.com.au/users/peteglo/winpack.htm

Winpack info http://www.btinternet.com/~gb7omn/winpack.htm

TNC information

General

Data Group Sub Committee WICEN Vic http://datagrp.vic.wicen.org.au/

Setting Your TNC’s Audio Drive Level http://www.febo.com/packet/layer-one/transmit.html

TNC and Radio mods http://www.johnmather.free-online.co.uk/tnc.htm

TNC 2 – MFJ 1270 – Tone Calibration Procedure http://datagrp.vic.wicen.org.au/mfjtones.htm

TNC Mods by Warren Stirling VK3XSW http://203.36.211.21/xswmods/

MFJ

Alignment of MFJ-1270B http://www.packetradio.com/1270algn.htm

MFJ-1270 Tone Calibration http://gyld.online.se/mods/misc/MFJ1270

MFJ-1270B mods http://www.mods.dk/mods.php3?radio=tnc&model=mfj-1270&selectid=1073#1073

MFJ 1270B Modifications http://203.36.211.21/xswmods/mfj1270b.htm

MFJ-1270B Electromagnetic Interference http://datagrp.vic.wicen.org.au/mfj_emi.htm

MFJ-1278B Care and maintenance http://www.qsl.net/ke4mob/

AEA

PK-88 Mods http://www.mods.dk/mods.php3?model=pk-88&radio=tnc

PK-88 birdie fix http://732.com/ham/mods/aea/pk88fix.htm

AEA radio and TNC mods http://www.k7on.com/mods/aea/mods/aeamod.txt

Other suppliers

BYONICS http://byonics.com/

Fox Delta http://www.foxdelta.com/

Hal Communications http://www.halcomm.com/AmateurProducts.htm

Kantronics http://www.kantronics.com/

PacComm http://www.paccomm.com/

PKTerm for Windows http://www.cssincorp.com/pkterm/

Small Wonder Labs http://www.smallwonderlabs.com/

The DXZone Digital and Packet Radio http://www.dxzone.com/catalog/Manufacturers/Digital_and_Packet_Radio/

Tigertronics http://www.tigertronics.com/

Timewave http://www.timewave.com/amprods.html

TNC-X – The Expandable TNC http://www.tnc-x.com/

YAM Modem http://www.nordlink.org/yam/

Gateways

Amateur Packet Radio Gateways http://www.ampr-gates.net

G4JKQ http://www.g4jkq.co.uk/

Packet gateways http://www.packetnet.org/packet_gateways.htm

Radio Gateway Project http://www.cisi.unito.it/radiogw/index.html

The Gateways Home Page http://www.ampr-gateways.org/

Return to Top

High-Speed Digital Networks and Multimedia (Amateur)

N5OOM’s HSMM Projects http://www.n5oom.org/hsmm/

ARRL High-Speed Digital Networks and Multimedia http://www.arrl.org/hsmm/

North Texas High Speed MultiMedia group http://groups.yahoo.com/group/ntms-hsmm/

San Antonio 802.11 http://home.satx.rr.com/wdubose/

Also take a look at the wireless LAN pages

APRS

Aus APRS http://www.radio-active.net.au/vk2_aprs.html

APRS http://www.radio-active.net.au/web/gpsaprs/aprsrept.html

APRS http://aprs.rutgers.edu/

APRS http://web.usna.navy.mil/~bruninga/aprs.html

APRS http://www.cave.org/aprs/

APRS http://www.ew.usna.edu/~bruninga/aprs.html

APRS in Adelaide http://vk5.aprs.net.au/

APRS+SA Home Page http://www.tapr.org/~kh2z/aprsplus/

APRS maps & stuff http://www.users.cloud9.net/~alan/ham/aprs/

APRS Maps for G4IDEs UI-VIEW http://www.gb7iph.demon.co.uk/APRS_Maps___Links/aprs_maps___links.html

AVR-Microcontroller http://www.qsl.net/dk5jg/aprs_karten/index.html

APRS in the UK http://www.aprsuk.net/

aprsworld http://www.aprsworld.net

APRS.DE http://www.aprs.de/

APRS-Berlin http://www.aprs-berlin.de/

APRS-Frankfurt http://www.aprs-frankfurt.de/

BYONICS (Electronics Projects for Amateur Radio) http://www.byonics.com/

CanAPRS http://www.canaprs.net/

Dansk APRS Gruppe http://www.aprs.dk/

findU.com http://www.findu.com/

France APRS http://www.franceaprs.net/

Kansas City APRS Working Group http://www.kcaprs.org/

KD4RDB http://wes.johnston.net/aprs/

Le Club ARPS France http://aprs.free.fr/

Live Australian APRS data maps http://www.aprs.net.au/japrs_live.html

NIAN http://nian.aprs.org/

N2YGK http://www.users.cloud9.net/~alan/ham/aprs/Ohio APRS NET http://www.ohioaprs.net/

Queensland APRS Users Group http://www.tech-software.net/

Tri-State APRS Working Group http://www.tawg.org/

Other Digital Modes

General HF-FAX http://www.hffax.de/index.html The Digital Ham Radio Revolution! http://home.teleport.com/~nb6z/about.htm NB6Z http://home.teleport.com/~nb6z/ ZL1BPU http://www.qsl.net/zl1bpu/

Morse Code

CW FACTS AND OPERATING TIPS http://www.magiclink.com/web/shurst/Page2.html

CW Operators’ QRP Club Inc. http://www.users.on.net/~zietz/qrp/club.htm

Fists Down Under http://fistsdownunder.morsekeys.com

FISTS DOWNUNDER http://www.fistsdownunder.org

LEARN MORSE CODE in one minute ! http://www.learnmorsecode.com/

MRX morse code http://www.mrx.com.au/

NZART CW program http://www.nzart.org.nz/nzart/Exam/morse.html

Not Morse Code, Slow Scan , Packet or APRS

HamDream by HB9TLK (digital radio) http://www.qslnet.de/member/hb9tlk/

JE3HHT, Makoto (Mako) Mori http://www.qsl.net/mmhamsoft/

PSK31 and other PC Magic http://www.psk31.com/

SIMPLE32 http://www.simple32.com/

WSJT ACTIVITY IN AU (follow link) http://www.tased.edu.au/tasonline/vk7wia/

Amateur Digital Radio

AR Digital Voice Communications http://www.hamradio-dv.org/

ARRL digital voice http://www.arrl.org/tis/info/digivoice.html

ARRL Digital Voice the next new mode? http://www.arrl.org/tis/info/pdf/0201028.pdf

Australian National D-Star http://www.dstar.org.au/

G4GUO (HF digital modems) http://www.chbrain.dircon.co.uk/index.html

Ham Radio digital info http://www.hamradio.com/pdf/dstar.pdf

ICOM America digital http://www.icomamerica.com/amateur/dstar/

TAPR digital http://www.tapr.org/tapr/dv/

Temple University Digital Voice Project http://www.temple.edu/k3tu/digital_voice.htm

Temple University Vocoder Redux http://www.temple.edu/k3tu/VocoderRedux.pdf

WinDRM – HF Digital Radio Mondiale http://n1su.com/windrm/

W2BRI’s Digital Voice Site http://www.standpipe.com/w2bri/fastmodem/fastmodem.htm

D-Star

Australian D-Star information http://www.dstar.org.au/

D-Star users http://www.d-starusers.org/

D-Star wikipedia http://en.wikipedia.org/wiki/D-STAR

ICOM America D-Star Forums http://www.icomamerica.com/en/support/forums/tt.asp?forumid=2

K5TIT http://www.k5tit.org/

Software Defined Radio

FlexRadio Systems Software Defined Radios http://www.flex-radio.com/

Rocky software for SoftRock-40 hardware http://www.dxatlas.com/rocky/

SDRadio – a Software Defined Radio http://digilander.libero.it/i2phd/sdradio/

SoftRock-40 Software Defined Radio http://www.amqrp.org/kits/softrock40/index.html

The Weaksignals pages og Alberto I2PHD (software) http://www.weaksignals.com/

Winrad software defined radio http://www.winrad.org/winrad/index.html

Digital Radio

BBC digital Radio http://www.bbc.co.uk/digitalradio/

DABdigital http://www.ukdigitalradio.com/home/default.asp

Digital Audio Broadcasting http://www.digitalradio.ca/

Digital Radio Broadcasting http://happy.emu.id.au/lab/info/digradio/index.html

Digital Radio is the sound of the future http://www.radio.cbc.ca/radio/digital-radio/drri.html

Digital Radio http://www.magi.com/~moted/dr/

Digital radio mondiale http://www.drm.org/indexdeuz.htm

DRDB http://www.drdb.org/

DRM – Digitaler Rundfunk unter 30 MHz http://www.b-kainka.de/drm.htm#dritte

SimplyRadios.com http://www.simplyradios.com/dab/dabhome.htm

Amateur Radio Direction Finding

Amateur Radio Direction Finding – ARDF http://www.nzart.org.nz/nzart/ar_info/ardf.html

Amateur Radio Direction Finding and Orienteering http://vkradio.com/ardf.html

Amateur Radio Direction Finding Webring http://www.qsl.net/vk3zpf/webring1.htm

Homing In http://members.aol.com/homingin/

RON GRAHAM ELECTRONICS (ARDF and more) http://users.mackay.net.au/~ron/

Victorian ARDF Group Inc. http://www.ardf.org.au/

Repeater Linking

There are currently There are 5 internet linking projects that I know of :-

IRLP, iPHONE, iLINK, eCHOLINK and WIN SYSTEM (May 2005)

EchoLink http://www.echolink.org/

Hamlink (K1RFD) http://www.hamlink.net/

KWARC (live audio) http://www.kwarc.org/listen/

Internet Linking http://www.qsl.net/g3zhi/index2.html

IRLP http://www.irlp.net/

IRLP status http://status.irlp.net

IRLP VK2RBM http://www.bmarc.oz-hams.org/irlp.html

IRLP VK4MTV http://www.throbware.com.au/irlp/

WIN SYSTEM http://www.winsystem.org/

Wires http://www.vxstd.com/en/wiresinfo-en/

iLINK

G4CDY-L Internet Gateway http://www.g4cdy.co.uk/

G7WFM Repeater Linking http://www.g7wfm.co.uk/

iLink http://www.aacnet.net./

VA3TO iLINK INTERFACE http://www.ilinkca.com/

VK2JTP iLINK gateway http://www.qsl.net/vk2jtp/

WB2REM & G4CDY’S iLINK boards http://www.ilinkboards.com/

WB4FAY http://www.wb4fay.com/ilink_FAQ.html

INTERFACES

ILINKBOARDS.com http://www.ilinkboards.com/

laser diodes

A Lightwave Communication http://www.n1bug.net/tech/laser/alc_wa6ejo.html

A R Laser Communications http://www.qsl.net/wb9ajz/laser/laser.htm

Australian Optical DX Group http://groups.yahoo.com/group/Optical_DX/

Driver Enhancements http://www.misty.com/people/don/laserdps.htm#dpsdepm

European Laser Communications http://www.emn.org.uk/laser.htm

Laser Communications http://www.arrl.org/tis/info/laser.html

Laser Communications http://www.gbonline.com/~multiplx/wireless/laser/

Mike’s Electric Stuff http://www.netcomuk.co.uk/~wwl/electric.html

Ronja http://atrey.karlin.mff.cuni.cz/~clock/twibright/ronja/

Amateur Radio Licence

Amateur Regulations Examination Guide http://www.wiavic.org.au/edu/regs.html

Australian info http://www.wia.org.au/info/gettingstarted.html

radiofun http://www.alphalink.com.au/~parkerp/gateway.htm

Radio and electronics School http://www.radioelectronicschool.com/about_course.html

Worldwide Information on Licensing for Radio Amateurs by OH2MCN http://www.qsl.net/oh2mcn/license.htm

Amateur Radio Clubs and Organisations

Also see ATV link page

and VHF link page

Australian

Adelaide Hills Amateur Radio Society http://www.qsl.net/vk5bar/

Amateur Radio Victoria http://www.amateurradio.com.au/

APC news http://vk3apc.mdrc.org.au/apcnews/

Barossa Amateur Radio Club VK5BRC http://www.qsl.net/vk5brc/

Bayside and District A R Society http://www.freewebs.com/vk4bar/

Brisbane Amateur Radio Club http://www.qsl.net/vk4ba/index.html

Brisbane VHF Group

Central Coast Amateur Radio Club http://www.ccarc.org.au/

Central Goldfields A R Club http://www.cgfar.com/

CHIFLEY A R CLUB http://chifley.radiocorner.net/

Coffs Harbour & District Amateur Radio Club http://www.qsl.net/vk2ep/index.html

CW Operators’ QRP Club Inc. http://www.users.on.net/~zietz/qrp/club.htm

Darling Downs Radio Club http://www.qslnet.de/member/ddrc/

Eastern and Mountain District Radio Club http://www.emdrc.com.au

Gippsland Gate Radio and Electronics Club http://home.vicnet.net.au/~ggrec/

Gold Coast AR Society http://www.gcars.com.au/

Healesville Amateur Radio Group http://www.harg.org.au/

Historical Wireless Society of South East Queensland http://www.hws.org.au/

Ipswich Metro Radio Group http://imrg.ips-mesh.net/

Ipswich Radio Club http://www.vkradio.org.au/

Lockyer Valley Radio and Electronic Club Inc http://www.qsl.net/vk4wil/

Locan West http://www.loganwest.cableable.com

Manly-Warringah Radio Society http://www.qsl.net/vk2mb/

Mid North Coast Amateur Radio Group http://www.mncarg.org

NWTARIG http://vk7ax.tassie.net.au/nwtarig/

QRP Amateur Radio Club International http://www.qrparci.org/

Queensland APRS Users Group http://www.tech-software.net/

RADAR Club Inc http://radarclub.tripod.com

Radio Amateurs Old Timers Club Australia Inc http://www.raotc.org.au/

Radio Sport http://www.uq.net.au/radiosport/

Radio and Electronics Association of Southern Tasmania http://reast.asn.au/

Redcliffe & Districts Radio Club Inc. http://vk4rc.we.net.au/

Riverland Amateur Radio Club http://www.rrc.org.au/

South Australian Packet User Group Inc. (SAPUG) http://www.sapug.ampr.org/

SERG http://serg.mountgambier.org

South Coast AMATEUR RADIO Club http://www.scarc.org.au/

SOUTHSIDE AMATEUR RADIO SOCIETY http://www.qsl.net/vk4wss/

Summerland Amateur Radio Club Inc http://www.nor.com.au/community/sarc/

Sunshine Coast Amateur Radio Club http://vk4wis.org/Tablelands Radio and Electronics http://www.trec.aussiewide.com Townsville Amateur Radio Club http://vk4zz.no-ip.org/tarc/

Twin Cities Radio & Electronics Club http://members.iinet.net.au/~sargeant644/tcrec/index.html

VK Young Amateur Radio Operator’s Net http://www.geocities.com/vk_ya/

VK3APC http://www.mdrc.org.au/

VK3BEZ (WIA Eastern Zone Amateur Radio Club) http://www.qsl.net/vk3bez/

VK4WIL http://www.qsl.net/vk4wil/

West Australia Repeater Group http://www.warg.org.au

WESTLAKES AR Club http://www.westlakesarc.org.au/

WIA VK4 Qld http://www.wiaq.com/

WIA VK4 QNEWS NEWSROOM http://www.wiaq.com/qnews/upload/qnews.htm

WIA VK3 http://www.wiavic.org.au

WIA http://www.wia.org.au/ WICEN Australia http://www.wicen.org.au/ WIA WICEN Queensland page http://www.wiaq.com/wiaq/wicen.htm

WICEN Brisbane Qld

New Zealand

NZART http://www.nzart.org.nz/nzart/

NZART Branches http://www.nzart.org.nz/nzart/Branches/

Papakura Radio Club http://www.qsl.net/zl1vk/

Tauranga AR Club http://home.clear.net.nz/pages/chrisle/index.htm

Wanganui Amateur Radio Society Inc. http://www.zl2ja.org.nz/

Wellington VHF Group http://www.vhf.org.nz/

International

American QRP Club http://www.amqrp.org/index.html

ARAC Online http://homepage.ntlworld.com/mikeadams/index.htm

ARRL http://www.arrl.org/

Clear Lake Amateur Radio Club http://www.clarc.org/

FRARS http://www.frars.org.uk/

HKAR http://www.hkra.org/

HRDXA http://www.qsl.net/vr2dxa/

ISSARO http://www.issaro.net

KIDSHAMRADIO http://www.kidshamradio.com/

K2MFF Amateur Radio club http://www-ec.njit.edu/~k2mff/

K9IU Indiana University AR Club http://www.indiana.edu/~k9iu/

North TeXas Repeater Association http://www.ntxra.com/main_page.htm

N0WGE http://www.sckans.edu/~sireland/radio/

Peterlee Radio Club G0KVJ http://www.g0fbw.demon.co.uk/

The Repeater Builders Technical Information Page http://www.repeater-builder.com/rbtip/index.html#main-index

Richardson Wireless Klub http://www.k5rwk.org/

RADARS http://www.mbc.co.uk/RADARS/

RSGB http://www.rsgb.org/

SARL http://www.sarl.org.za/

Submarine Veterans Amateur Radio http://w0oog.50megs.com/

Southgate AR club http://www.southgatearc.org/index.htm

TEARA http://www.teara.org/

The 500 KC Experimental Group for Amateur Radio http://www.500kc.com/

Tucson Amateur Packet Radio http://www.tapr.org/

Winona Amateur Radio Club http://www.jarviscomputer.com/warc/

W6DEK 435 Los Angeles http://www.w6dek.com/

Amateur Radio

Australian

Amateur Radio Australia http://www.amateurradio.org.au/index4alt.htm

Amateur and other Links http://members.ozemail.com.au/~vk2wi/links.html

Australian AR Repeater Map http://vkham.com/australimaps.html

AMATEUR RADIO WIKI http://www.amateur-radio-wiki.net

HAM FAQ http://members.ozemail.com.au/~andrewd/hamradio/hamfaq.html

HAM SHACK COMPUTERS http://www4.tpgi.com.au/users/vk6pg/

Ham Radio in Australia with VK1DA http://members.ozemail.com.au/~andrewd/hamradio/

HF Radio Antenna Tuners http://www.users.bigpond.net.au/eagle33/elect/ant_tuner.htm

Queensland AR Repeater listings http://vkham.com/Repeater/vk4map.html

Radioactive Networks: Ham http://www.radio-active.net.au/web/ham/

Tony Hunt VK5AH (Home of Adelaides 10m Repeater) http://homepages.picknowl.com.au/wavetel/default.htm

VK Amateur Radio Page http://www.home.gil.com.au/~bpittman/

VK1DA’s Amateur Radio Web Directory http://members.ozemail.com.au/~andrewd/hamradio/radlink.html

VK1KEP http://www.pcug.org.au/~prellis/amateur/

VK1OD http://www.vk1od.net/

VK2AFL http://www.qsl.net/vk2afl/

VK2BA (AM radio) http://www.macnaughtonart.com/default.htm

VK3PA http://www.vk3pa.com/home.asp

VK3UKF http://members.fortunecity.co.uk/vk3ukf/index.html

VK3XPD http://www.users.bigpond.com/alandevlin/index.html

VK3YE’s Gateway to AR http://www.alphalink.com.au/~parkerp/gateway.htm

VK3ZQB http://members.datafast.net.au/vk3zqb/

VK4CEJ http://www.hfradio.org/vk4cej/hamlinks.html

VK4TEC http://www.tech-software.net/

VK4TUB http://www.vk4tub.org/

VK4ZGB http://members.optusnet.com.au/jamieb/index.html

VK4ZQ http://users.bigpond.net.au/vk4zq/

VK4ZU http://www.users.on.net/~trevorb/

VK5ARD http://www.vk5ard.com/

VK5BR http://users.tpg.com.au/users/ldbutler/

VK5KK http://www.ozemail.com.au/~tecknolt/index.html

VK7AX http://www.vk7ax.tassie.net.au/

VK8JJ http://www.qsl.net/vk8jj/

New Zealand

Micro Controller Projects for Radio Amateurs and Hobbyists http://www.qsl.net/zl1bpu/micro/index.htm

Precision Frequency Transmission and Reception http://www.qsl.net/zl1bpu/micro/Precision/index.htm

ZL2TZE http://zl2tze.ath.cx

ZL3TMB http://www.hamradio.co.nz/

International

AC6V’s AR & DX Reference http://www.ac6v.com/

A DTMF Beacon controller http://ns1.mesh.net/~g4fre/dtmf.htm

Amateur radio with Knoppix http://www.afu-knoppix.de/

Amateur Radio Resources http://hamster.ivey.uwo.ca/~amsoft/amsoft0.htm

Amateur Radio Soundblaster Software Collection http://www.muenster.de/~welp/sb.htm

AM fone.net http://www.amfone.net

AMRAD Low Frequency Web Page http://www.amrad.org/projects/lf/index.html

Colin’s site http://website.lineone.net/~colin_mccord/Radio/index.htm

CX2SA http://cx2sa.net/

DL4YHF http://www.qsl.net/dl4yhf/

Direction finding http://members.aol.com/homingin/

DSP Links http://users.iafrica.com/k/ku/kurient/dsp/links.html

Electric-web.org www.electric-web.org

EI4HQ http://www.4c.ucc.ie/~cjgebruers/index.htm

EI8IC http://www.qsl.net/ei8ic/

EHAM http://www.eham.net/

eQSL (electronic QSL) http://www.eqsl.cc/qslcard/

HamInfoBar http://www.haminfobar.co.uk/

Felix Meyer http://home.datacomm.ch/hb9abx/

ftp list http://ftp.pspt.fi/pub/ham/ftp.ucsd.edu/

FUNET http://www.funet.fi/pub/ham/

F4DAY http://perso.wanadoo.fr/jf.fourcadier/index_e.htm

Gateway to Amateur Radio http://www.alphalink.net.au/~parkerp/gabra.htm

Grid Square Locator http://www.arrl.org/locate/grid.html

G3PTO http://www.qsl.net/g3pto/

G4FGQ’s Software http://www.btinternet.com/~g4fgq.regp/

G4KLX (The [ON/]G4KLX Page) http://www.qslnet.de/member/g4klx/

HAM RADIO EQUIPMENT & ACCESSORIES http://www.area-ham.org/library/equip/equip.htm

Ham-Links http://www.k1dwu.net/ham-links/

HAMUNIVERSE.COM http://www.hamuniverse.com/

Hamview DSP software http://www.qsl.net/k3pgp/Hamview/hamview.htm

Harry’s PDF Library http://hem.passagen.se/sm0vpo/

HA8ET http://www.pollak.sulinet.hu/www/radio.html

Homebrew RF Test Equipment And Software http://www.qsl.net/n9zia/wireless/appendixF.html#10

KA7NOC http://www.magiclink.com/web/shurst/

KB4VOL link site http://pages.prodigy.com/kb4vol/

KE5FX http://www.qsl.net/ke5fx/

KF6VTA & KG4TBJ http://www.geocities.com/silensiosham/index.html

KU4AY ham radio directory http://www.ku4ay.net/

KU5F Ham tools and links http://www.wtrt.net/~ku5s/

KU9Z AR links http://my.ais.net/~n9bkm/page1.htm

K1DWU http://www.k1dwu.net/

K1TTT http://www.k1ttt.net/

K1TTT Technical Reference http://www.k1ttt.net/technote/techref.html

K3PGP http://www.k3pgp.org/

K3TZ Ham Radio Experimentation http://www.qsl.net/k3tz/

K6XC (links) http://home.earthlink.net/~rluttringer/

Lighthouses (International Lighthouse/ Lightship Weekend) http://illw.net

Links2go http://www.links2go.net/more/www.ampr.org/

Links http://imc23.univ.trieste.it/links.html

Mels AMATEUR RADIO LINK’S http://www.users.zetnet.co.uk/melspage/amlinks.htm

Michael Todd Computers & Communications http://www.arcompanion.com/

MoDTS http://www.m0dts.co.uk/

n e o a m a t e u r . o r g http://neoamateur.org/

NT8N http://www.qsl.net/nt8n

NW7US (Amateur and Shortwave Radio) http://hfradio.org/

N3EYR’s Radio Links http://www.isrv.com/~joel/radio.html

PD0RKC http://www.qsl.net/pd0rkc/

PI6ATV (ATV, Antenna, software, info) http://members.tripod.lycos.nl/PI6ATV/software.htm

QRP and SWL HomeBuilder http://www.qrp.pops.net/

Radio Links http://www.angelfire.com/ri/theboss1/

Radio Corner (forum) http://www.radiocorner.net

Ray Vaughan http://rayvaughan.com/

Reference http://www.panix.com/~clay/ham/

Simplex radio software http://perso.clubinternet.fr/f1orl/simplexg.htm

S-Meter http://www.smeter.net/

streaming radio programs http://live365.com/home/index.live

The DX Zone http://www.dxzone.com/catalog/Reference/Radio_Spectrum/

The Elmer HAMlet (information) http://www.qth.com/antenna/index.htm

VE1XYL and VE1ALQ http://www.qsl.net/ve1alq/downloads/tetrode-ps/pwrsup.htm

WB6VUB (links) http://www.mpicomputers.com/ham/

WL7LP http://www.geocities.com/TimesSquare/Castle/3782/wl7lp.html

WA6TWJ http://www.jps.net/nwr/wa6twj.htm

W2XO http://www.w2xo.pgh.pa.us/

XE1BEF (DX, mods, links and more) http://www.geocities.com/xe1bef/

Communications Equipment

Australian

Andrews Communication Systems http://www.andrewscom.com.au/

AUSTRALIAN ENTERPRISE INDUSTRIAL http://www.spin.net.au/~aeitower/

BENELEC www.benelec.com.au

Bushcomm www.bushcomm.com.au

connektron www.connektron.com.au

G. & C. COMMUNICATIONS www.gccomm.com.au

Hamak (RM Products Italy) http://www.hamak.com.au/

Hamshack http://www.hamshack.com.au

Jenlex http://home.vicnet.net.au/~jenlex/

KENWOOD Australia http://www.kenwood.com.au/

Kyle Communications http://www.kyle.com.au/

ICOM Australia http://www.icom.net.au

Mini-kits http://www.minikits.com.au/

One Man Towers http://homepages.ihug.com.au/~aeitower/

OZGEAR http://www.ozgear.com.au/

Radio-Data (links) http://www.radio-data.net/

Radio Specialists (equipment connectors and antenna) http://www.radiospecialists.com.au

STRICTLY HAM http://www.strictlyham.com.au/

TET-EMTRON www.tet-emtron.com

Tower communications http://www.tower.visionimage.com.au/

Townsville CB& Communications http://www.vk4tub.org/tcb/tcb.html

TTS Systems http://www.ttssystems.com.au/

VK4-ICE Communications http://www.vk4ice.com

WiNRADiO (PC based receivers) http://www.winradio.com.au

International

MFJ http://www.mfjenterprises.com/index.php

Vertex Standard http://www.vxstd.com/en/index.html

W7FG VINTAGE MANUALS CATALOGUE http://www.w7fg.com/index.html

Z Communications Company (repair of old radio equipment) http://home.comcast.net/~zcomco/

How To Hijack Fast Food Drive-Thru Frequencies

by Derek on Aug.16, 2009, under Security

This is an article I found on the Phone Losers site I thought I would copy here so I can give it a go at some stage.

How To Hijack Fast Food Drive-Thru Frequencies

A few years back, some friends and I were messing around with a Taco Bell’s drive-thru frequencies. RijilV and isotek showed me how easy it was to hijack the frequencies of just about any fast food restaurant with a very simple mod to a ham radio. The radios they used were Yaesu VX-5 and VX-7 models. We had a few weeks of occasional fun, sitting a few parking lots away and saying all kinds of horrible things to potential fast food customers. For the most part, I didn’t record any of it. But you can find a few clips of our fast food hijinks if you scroll down on the PLA Sound Clips Archive page.

Finally we decided to capture a bit of our FCC violations on video. But instead of capturing actual customers being harassed by us as they placed an order, I drove through the Taco Bell drive-thru myself with a video camera sitting on the dashboard. As I attempted to place my order, RijilV informed me of some crazy new Taco Bell policies and a manager immediately rushed out to explain to me that I wasn’t actually talking to an employee. Here is that video:

After spending several years on Google Video and YouTube, it’s been watched approximately 20,000 times. And of those 20,000 people who have viewed it, approximately all of them have emailed me and asked me what kind of radio we used and how can they use a radio to do the same thing. So in the spirit of April 1st and in order to quell the number of emails sent to me and posts on the PLA Forums asking the same thing, I’ve decided to write this tutorial to help those people out.

But I’m not going to explain how to modify a Yaesu VX5 or a Yaesu VX7. A simple Google search will show you how to modify these ham radios. The problem with these mods is that, even though they’re fairly simple, you have to buy the radios which could cost you anywhere from $200 – $400. Then, after removing a couple solder points, you have to learn how to use it, you have to look up fast food frequency lists, you have to understand the difference between the transmit frequencies and the receive frequencies and you have to scroll through PL tones using trial and error to find the correct one.

Or how about we do this a different way. A way that uses a couple items that you might already have in your home. You can easily modify most old CB radios in a way that will allow them to transmit directly to drive-thru frequencies. You won’t have to scroll through hundreds of possible drive-thru frequencies, because a CB radio’s channels line up in exactly the same way as most drive-thru’s channels, only at a higher frequency. How do you get your CB radio to run at a higher frequency? A simple replacement of the crystal inside, with a 6.5536 MHz crystal. This triples the megahertz that are broadcast on and there is no learning required. You just take the modified CB radio to a fast food restaurant and start broadcasting to the customers.

“But RBCP, I don’t have a 6.5536 MHz crystal lying around my house,” you might be whining at this point. But this isn’t true. Just about any house has several 6.5536 MHz crystals in them if you know where to look. This just happens to be the exact same crystal that you can find in electric heaters, hair dryers, electric stoves, curling irons, electric hot water heaters, irons, and toasters. These crystals are in just about any item that has heated coils and are used to control the frequency of the heating elements so that they don’t burn your house down.

So for this modification you need…

1 CB radio. It has to be a 40 channel CB radio with a digital display, which includes just about any CB radio manufactured after the mid 1980’s. The old 23 channel CBs from the 1970’s will not work. It can even be a walkie talkie CB radio. If you don’t have one, you can find one at Goodwill or a yard sale for probably less than $10.

1 toaster. (Or other item with heating elements inside.) A toaster is the most ideal to use, because it’s almost guaranteed to have the crystal inside of it. It’s more common to find curling irons and hair dryers that don’t. Again, it should be a toaster manufactured within the past 20 years or so. Before that they didn’t have crystal requirements for toaster manufacturers. (And incidentally, there were a lot more electrical house fires back then.) Goodwill will probably have a toaster for less than $10.

1 soldering iron and solder. Don’t worry if you don’t have soldering experience. It’s actually pretty easy. Click here for a soldering tutorial. You can purchase a soldering iron at Radio Shack or Sears for about $10.

A few screwdrivers

Even if you have to buy all these materials, you’re only out $30. That’s a lot better than the $300 you might end up spending on a Yaesu radio. And some of you might already have all these items so you don’t have to pay anything. Ask a friend or a relative if they’ve got an old toaster or CB radio lying around that they don’t need.

First you’ll want to take apart your toaster. This isn’t too hard. Just flip it upside down and start removing the screws. You’ll probably need to pull off the plastic lever and knobs before you remove the top of the toaster. Once you have the top off, you’ll see a green or brown circuit board inside.

Flip the circuit board down and you’ll see all the components on the other side, including the 6.5536 MHz crystal. The crystal is silver and will have 6.5 stamped on the side of it. In the picture below, I’ve used an arrow to show you where it’s located.

The crystal is likely in a different spot in other toasters, but it’s hard to mistake for any other electronic component. The crystal will have some form of 6.5 stamped on the side of it. In my toaster, it showed 6.55-12. While the official frequency needed is 6.5536 MHz, anything within 1.6 megahertz will work. So don’t worry if your crystal just says 6.5 or 6.50 – it’s all the same for our purposes.

It’s kind of hard to see what I’m doing in the picture above, but I’m heating up the leads on the crystal from underneath with my soldering iron to melt the solder, and I’m pulling on the crystal from above with a pair of needle nose pliers. It only takes a few seconds to get the crystal out of the toaster.

Now that the crystal is out of your toaster, throw your toaster away! Do not attempt to use it once the crystal is removed. Remember, the crystal is in there for safety and using your toaster without the crystal could burn your toast and/or start a kitchen fire. It’s likely your toaster won’t even turn on with the missing crystal, but please don’t even try. Just throw it away.

As I mentioned before, just about any brand and model of CB radio will work, as long as it has the digital display on it. Which means, just about any CB radio manufactured after the mid 1980’s. These are the kinds of CB radios whose frequencies are controlled by a single crystal inside of them. For my mod, I used a Radio Shack TRC-207 walkie talkie CB radio, which is pictured above. I prefer using a walkie talkie CB radio because it doesn’t requiring sticking a huge CB antenna on the roof of my car which might be noticed if a fast food employee starts looking around the parking lot for the culprits.

Taking apart your CB radio is just as easy as taking apart the toaster. Remove the screws and pop it open. You may or may not have to lift up the circuit board inside to find the crystal inside. In my particular model, the crystal actually plugged into a socket so I didn’t need to even desolder the old crystal. I just pulled it out with my fingers and then plugged in the new 6.55 MHz crystal. I don’t know how common this is, because in other CB radios that I’ve modified the crystal was soldered to the circuit board, just like in the toaster.

Put your CB back together and test it to make sure it’s working. You’re finished! Obviously, you won’t be able to talk on normal CB channels anymore since your CB is transmitting and receiving at a much higher frequency now. But who cares, CB channels are lame anyway. Let’s hop in the car and drive to our nearest fast food establishment to test it out.

Sit near the drive-thru and wait for a customer to pull up. While the customer is talking to the drive-thru speaker, start flipping through your channels until you hear them talking. I’ve found that most drive thrus end up being somewhere in the 16 – 25 channel range. I’ve never found one above channel 30 and only a few on channels 1 through 15. It all depends on how their drive-thru is set up and what frequencies they’re using. Anyway, push down your talk button and start talking to the customer.

The cool thing about using a CB radio to transmit on drive-thru frequencies is that a CB is designed to work for several miles. The headsets that those fast food people wear are only designed to work for about 100 feet. So you can easily overpower the employees, even if you’re several parking lots away. In fact, you may be inadvertently screwing with several other drive-thrus in town without even knowing it. This is more likely when you’re using the kind of CB radio that’s supposed to be installed in a car. Those usually run on 5 watts and can cover an entire city. This is another reason I like to use my walkie talkie. It’s lucky if it will work for even a mile, so I’m only harassing one restaurant at a time.

If you found this tutorial useful, you might also enjoy the video I’ve made on the same subject. It includes much of the same information in this tutorial, but also includes actual footage of us messing with a drive-thru with this CB mod. Enjoy!

You might also enjoy our original Taco Bell Takeover video, our Happy Birthday drive-thru video and our Drive-Thru Shenanigans video.

PLA TV: Hijacking Fast Food Frequencies [9:12m]: Download (4913)

Local Copy

3 Comments :access, antenna, broadcast, circuit, DES, difference, Digital, EFT, Electronic, frequency, hack, ISP, Mall, Material, phone, Pin, Radio, Restaurant, script, type, web more...

Corporate Phone Lockdown Links

by Derek on Dec.26, 2008, under Phones and Stuff

Hi,

I’m looking at some of the techniques used to lockdown the Iphone, Samsung, Sony and HDC mobile phones. I hope others find the links useful.

Iphone

Lock down the information on your iPhone and iPod touch

http://www.touchtip.com/iphone-and-ipod-touch/lock-down-the-information-on-your-iphone-and-ipod-touch/

iPhone’s PIM lockdown

http://forum.brighthand.com/showthread.php?t=264166&page=2

Apple ‘wise’ to lock down iPhone software

http://www.itnews.com.au/News/44505,apple-wise-to-lock-down-iphone-software.aspx

iPhone lockdown to boost on-demand services

http://www.pcmag.co.uk/vnunet/news/2194973/iphone-lockdown-benefits-firms

Wired’s Easy-Peasy iPhone Lockdown Checklist

http://www.tuaw.com/2007/09/28/wireds-easy-peasy-iphone-lockdown-checklist/

Gartner: iPhone 2.0 cuts business mustard

http://news.cnet.com/8301-1001_3-10016270-92.html

3G iPhone: The business perspective

http://news.cnet.com/3G-iPhone-The-business-perspective/2100-1041_3-6243471.html

What IT staff can do if the CEO gets an iPhone

http://www.infoworld.com/article/07/07/24/What-to-do-if-the-CEO-gets-an-iPhone_1.html

Iphone Hacking

http://www.9to5mac.com/hacked-iphoneOS-beats-Apple%27s-Updated-OS-hands-down-23459856

Iphone Enterprise

http://www.apple.com/iphone/enterprise/

http://www.apple.com/iphone/enterprise/integration.html

New Specification to Lock Down Mobile Phones

http://www.cio.com/article/24369/New_Specification_to_Lock_Down_Mobile_Phones

Samsung

Sony

HDC

———– Advertisement ———-
RapidRepair.com RapidRepair.com is dedicated to the service, repair, and modification of ALL iPod, iPhone, Zune, and other small electronic devices.

Leave a Comment :ASP, business perspective, Checklist, Corporate, Electronic, Enterprise, enterprise integration, hack, Hacking, integration, Iphone, lockdown, Mall, mobile phones, phone, php, Shiraz, technique more...

VoIP and SIP links

by Derek on Dec.26, 2008, under VoIP

I’m looking at the Microsoft OCS server and other SIP integration environments. So I thought I would put the links here for others who were interested. I am also considering the issues associated with Mitel VoIP and OCS integration.

It would be interesting if the Microsoft OCS could seamlessly allow the use of soft phones and the Mitel VoIP system. I assume a trunk needs to be setup between the two… Anyway something to look at.

http://communicationsserverteam.com/archive/2008/05/23/196.aspx

Office Communications Server 2007 VoIP Test Set

OCS Testing Tool

Connect Mitel and OCS2007

Mitel 3300 & OCS – Ring on deskphone and softphone

Connecting Mitel 3300cx and OCS

VOIP – MITEL 3300 SIP TRUNK TO OCS 2007

OCS 2007 Best Practices Analyzer

1 Comment :access, Analyzer, ASP, best practices, Communications, DES, deskphone, environment, integration, ISP, Microsoft, Mitel, OCS, ocs server, office communications server, phone, script, server, Shiraz, sip, softphone, something, testing tool, trunk, type, VOIP more...

Internet Banking Security Assessment Considerations

by Derek on Aug.05, 2008, under Banking and EFTPoS, Security

I was asked some time ago what sort of things may be considered when looking at Internet Banking.

Below is a list of things which could be considered. It was just a brain dump and as such may not be complete.

Don’t underestimate the value of standard for your infrastructure, website configuration, database engine configuration/architecture,staging environment and development/QA environments.

Some thoughts:

Many don’t lock accounts after X failed logins, this is normally done for good customer service, but leaves the system vulnerable.

- And all the other things expected for a remote login session (forced password changes, aging, etc))
- Tools such as Brutus may be use to brute force hack authenticated sessions.

Many allow session sequence numbers to be incremented, allowing an authenticated user to view other customer session.

- These may be server side, client side, cookie based, etc.
- Get someone to check the development methodologies and the code being used.
- Database query strings can be placed into test entry fields, allowing table dumps to browser.
- Check all pages served are secure and contain user authentication flags.

Customer data may not be segregated, this needs to be checked.
Customer data should not reside on the Web Server.

Authentication databases / system data should not reside on the webserver.
The databases should reside on a private/semi-private network.

- A different segment to the main banking system.

Webserver should be dual homed or equivalent (some VLAN techniques are good)

- Separate private and public network cards, monitoring/backup/administration
- Infrastructure set-up to explicitly deny inbound/outbound ports, private IP & monitoring escaping from the network.

At all data segregation points ensure rules are in place which appreciates the traffic though that point.

All customer data where possible should be sourced from a secure back-end database.

- This may be a staging environment. i.e. no the main banking system.
- This usually allows for transactions to appear real time to the customer.
- Many transactions may be batched in reality. (internal or external to the bank)

Ensure suitable rules have been set-up on firewalls.

- There should be inbound and outbound rules on firewalls and filtering routers.

Don’t allow any infrastructure on the front end to allow remote administrative connections. (telnet, etc.)

- Use the serial console port to connect to a server or back-end terminal server.

Look for the segregation / staging of online customer content from main banking systems

Ensure that a separate development / QA / production environment system and suitable process is in place.

Services not used by the system are active

- These should be disabled.

Port scan of the supporting infrastructure (routers /switches) and server(s).

- Investigate the reasons for all open ports.

Don’t use the main gateway for trusted partner access (clearing / RAS / etc.)
Do all that standard IIS checks and NT checks (Sample scripts, change management, patching methodologies, etc.)
Ensure denial of service precaution have been taken into account for all infrastructure and server equipment.
Check the adequacy of the escalation procedures used.

- Look for real-time monitoring and alerting.
- Look for responsibility matrix.
- Look for ownership of issues.

Consider upstream carrier(s) vulnerability (denial of service, IP spoofing, DNS hacking, etc)
Consider social engineering of customer, administrative, partner accounts / systems / infrastructure.

- Helpdesk procedures and policies and/or alternate technologies (Caller ID, Gateway IP, etc.).

Use dynamic passwords where possible (SecureID, TACACS, etc.).
Use encrypted tunnelling where needed (IPSec, Firewall 1, etc)
Consider looking at other customer authentication methods to enhance existing methods.

- Digital cert, IP address locked to account, etc.
- Consider use of CVV or CVN for bank issued cards.

Consider how passwords are distributed /changed for customers.

- Plain text email, telephone, etc.
- Can passwords be changed online?

Is additional authentication used between sections of the services once authenticated?
Consider what the customer has access to once authenticated.

- Look at SWIFT, RTGS, inter-bank transfers, access to credit cards, etc.
- If an attacker does get in, what can the do?

Use techniques to ensure pages, customer details are not cached at ISP, or client system.

- These are flags that can be set within pages.
- Normally SSL is cached, but some proxy vendors have been playing with techniques to do so.
- Caching of SSL pages on the client system can be turned on on some browsers.
- May banks use a Java (or similar) applet for all customer interaction, restricting all caching issues.

Ensure paper based and on-line liability clauses are available are address all effected areas.
Ensure within the customer sign-up process banking liability is reduced.

- I’ve seen statements like “use this system at your own risk, responsibility for any liability or claim will NOT……”
- Not very customer focused, but that’s what their legal department recommended.

All of the above can effect the security and/or operation of an on-line banking system.

Other things to consider:

External development and support of the application.
Ownership and management of the hardware/applications
Publishing points for new content (internal/private/trusted network or Internet)
Topology of front end. i.e. Security Architecture document should be in place and managed appropriately.
Are limited AP tests performed whenever changes are made to the environment? i.e. integrated AP into Change management process.
Database access. Is it buffered or is it live to the core banking systems.
What facilities are provided? Direct debit + Credit Card + SWIFT + ……. Consider different scenarios for your attack depending on the feature.
What other services are shared within the network segment that the Internet Banking service is running. Can this be used to compromise the Internet Banking site. eg. different support/business/development organisations with differing security strategies/profiles.
Consider all external supporting services within you AP. Look at internal/external DNS poisoning opportunities, mail relay, etc. What IPS’s do they use has the ISP any opportunity to access systems or supporting services which may affect Internet Banking.
Depending on the size of the Bank, many organisation do not use the same support groups for infrastructure and the application. As a result external connections to the infrastructure may be provided for an external support organisation to administer the infrastructure.
Look at the business and user authentication methods and paths (client side certs, secure ID, SMART Card, etc). Consider two factor authentication and modern user identification methods. eg. what is your favourite food in addition to normal usernames and passwords. Do system administration staff use dynamic passwords (secureID, etc)?
See if the Internet Banking application sends email to users which may contain interesting information.
Better access to the application can generally be gained after access to the system. i.e. get an legitimate account on the system. I have found that some sample/administration screens have been restricted to authenticated users only.
Consider social engineering the Help desk to have an account password reset.

6 Comments :access, account, administration infrastructure, architecture, attack, authenticate, authentication, bank, Banking, banking system, brute force hack, Brutus, Card, Credit, CVV, data, Debit, DES, development, development methodologies, Digital, DNS, EFT, environment, hack, Hacking, hardware, identification, infrastructure website, Internet, ipsec, ISP, JAVA, Mall, network, online, password, patch, Patching, phone, Pin, Relay, remote login, script, security, security architecture, server, server authentication, Shiraz, smart card, staging, support, SWIFT, technique, telnet, text, transaction, user authentication, vulnerability, Vulnerable, web more...

Cisco Command Cheat Sheet

by Derek on Jul.04, 2008, under Infrastructure

I found a list of useful Cisco commands which I though I would post here. The list has been updated since the original post extending on the original list from fastget2you.com.

Thanks to the fastget2you.com Joined With #missomhack Community for the original list.

ROUTER COMMANDS `:`

Config# terminal editing – allows for enhanced editing commands
Config# terminal monitor – shows output on telnet session
Config# terminal ip netmask-format hexadecimal|bit-count|decimal – changes the format of subnet masks

HOST NAME:

Config# hostname ROUTER_NAME

BANNER:

Config# banner motd # TYPE MESSAGE HERE # – # can be substituted for any character, must start and finish the message

DESCRIPTIONS:

Config# description THIS IS THE SOUTH ROUTER – can be entered at the Config-if level

CLOCK:

Config# clock timezone Central -6
# clock set hh:mm:ss dd month yyyy – Example: clock set 14:13:00 25 August 2003

CHANGING THE REGISTER:

Config# config-register 0×2100 – ROM Monitor Mode
Config# config-register 0×2101 – ROM boot
Config# config-register 0×2102 – Boot from NVRAM

BOOT SYSTEM:

Config# boot system tftp FILENAME SERVER_IP – Example: boot system tftp 2600_ios.bin 192.168.14.2
Config# boot system ROM
Config# boot system flash – Then – Config# reload

CDP:

Config# cdp run – Turns CDP on
Config# cdp holdtime 180 – Sets the time that a device remains. Default is 180
Config# cdp timer 30 – Sets the update timer.The default is 60
Config# int Ethernet 0
Config-if# cdp enable – Enables cdp on the interface
Config-if# no cdp enable – Disables CDP on the interface
Config# no cdp run – Turns CDP off

HOST TABLE:

Config# ip host ROUTER_NAME INT_Address – Example: ip host lab-a 192.168.5.1
-or-
Config# ip host RTR_NAME INT_ADD1 INT_ADD2 INT_ADD3 – Example: ip host lab-a 192.168.5.1 203.23.4.2 199.2.3.2 – (for e0, s0, s1)

DOMAIN NAME SERVICES:

Config# ip domain-lookup – Tell router to lookup domain names
Config# ip name-server 122.22.2.2 – Location of DNS server
Config# ip domain-name cisco.com – Domain to append to end of names

CLEARING COUNTERS:

# clear interface Ethernet 0 – Clears counters on the specified interface
# clear counters – Clears all interface counters
# clear cdp counters – Clears CDP counters

STATIC ROUTES:

Config# ip route Net_Add SN_Mask Next_Hop_Add – Example: ip route 192.168.15.0 255.255.255.0 205.5.5.2
Config# ip route 0.0.0.0 0.0.0.0 Next_Hop_Add – Default route
-or-
Config# ip default-network Net_Add – Gateway LAN network

IP ROUTING:

Config# ip routing – Enabled by default
Config# router rip
-or-
Config# router igrp 100
Config# interface Ethernet 0
Config-if# ip address 122.2.3.2 255.255.255.0
Config-if# no shutdown

IPX ROUTING:

Config# ipx routing
Config# interface Ethernet 0
Config# ipx maximum-paths 2 – Maximum equal metric paths used
Config-if# ipx network 222 encapsulation sap – Also Novell-Ether, SNAP, ARPA on Ethernet. Encapsulation HDLC on serial
Config-if# no shutdown

ACCESS LISTS:

IP Standard	1-99
IP Extended	100-199
IPX Standard	800-899
IPX Extended	900-999
IPX SAP Filters	1000-1099

IP STANDARD:

Config# access-list 10 permit 133.2.2.0 0.0.0.255 – allow all src ip’s on network 133.2.2.0
-or-
Config# access-list 10 permit host 133.2.2.2 – specifies a specific host
-or-
Config# access-list 10 permit any – allows any address
Config# int Ethernet 0
Config-if# ip access-group 10 in – also available: out

IP EXTENDED:

Config# access-list 101 permit tcp 133.12.0.0 0.0.255.255 122.3.2.0 0.0.0.255 eq telnet
-protocols: tcp, udp, icmp, ip (no sockets then), among others
-source then destination address
-eq, gt, lt for comparison
-sockets can be numeric or name (23 or telnet, 21 or ftp, etc)
-or-
Config# access-list 101 deny tcp any host 133.2.23.3 eq www

-or-

Config# access-list 101 permit ip any any
Config# interface Ethernet 0
Config-if# ip access-group 101 outIPX STANDARD:
Config# access-list 801 permit 233 AA3 – source network/host then destination network/host

-or-

Config# access-list 801 permit -1 -1 – “-1″ is the same as “any” with network/host addresses
Config# interface Ethernet 0
Config-if# ipx access-group 801 outIPX EXTENDED:
Config# access-list 901 permit sap 4AA all 4BB all
- Permit protocol src_add socket dest_add socket
-”all” includes all sockets, or can use socket numbers

-or-

Config# access-list 901 permit any any all any all
-Permits any protocol with any address on any socket to go anywhere
Config# interface Ethernet 0
Config-if# ipx access-group 901 inIPX SAP FILTER:
Config# access-list 1000 permit 4aa 3 – “3″ is the service type

-or-

Config# access-list 1000 permit 4aa 0 – service type of “0″ matches all services
Config# interface Ethernet 0
Config-if# ipx input-sap-filter 1000 – filter applied to incoming packets

-or-

Config-if# ipx output-sap-filter 1000 – filter applied to outgoing packets

NAMED ACCESS LISTS:

Config# ip access-list standard LISTNAME
-can be ip or ipx, standard or extended
-followed by the permit or deny list
Config# permit any
Config-if# ip access-group LISTNAME in
-use the list name instead of a list number
-allows for a larger amount of access-lists

PPP SETUP:

Config-if# encapsulation ppp
Config-if# ppp authentication chap pap
-order in which they will be used
-only attempted with the authentification listed
-if one fails, then connection is terminated
Config-if# exit
Config# username Lab-b password 123456
-username is the router that will be connecting to this one
-only specified routers can connect

-or-

Config-if# ppp chap hostname ROUTER
Config-if# ppp chap password 123456
-if this is set on all routers, then any of them can connect to any other
-set same on all for easy configuration

ISDN SETUP:

Config# isdn switch-type basic-5ess – determined by telecom
Config# interface serial 0
Config-if# isdn spid1 2705554564 – isdn “phonenumber” of line 1
Config-if# isdn spid2 2705554565 – isdn “phonenumber” of line 2
Config-if# encapsulation PPP – or HDLC, LAPD

DDR – 4 Steps to setting up ISDN with DDR Configure switch type

1. Config# isdn switch-type basic-5ess – can be done at interface config

2. Configure static routes
Config# ip route 123.4.35.0 255.255.255.0 192.3.5.5 – sends traffic destined for 123.4.35.0 to 192.3.5.5
Config# ip route 192.3.5.5 255.255.255.255 bri0 – specifies how to get to network 192.3.5.5 (through bri0)

3. Configure Interface
Config-if# ip address 192.3.5.5 255.255.255.0
Config-if# no shutdown
Config-if# encapsulation ppp
Config-if# dialer-group 1 – applies dialer-list to this interface
Config-if# dialer map ip 192.3.5.6 name Lab-b 5551212
connect to lab-b at 5551212 with ip 192.3.5.6 if there is interesting traffic
can also use “dialer string 5551212″ instead if there is only one router to connect to

4. Specify interesting traffic
Config# dialer-list 1 ip permit any
-or-
Config# dialer-list 1 ip list 101 – use the access-list 101 as the dialer list

5. Other Options
Config-if# hold-queue 75 – queue 75 packets before dialing
Config-if# dialer load-threshold 125 either
-load needed before second line is brought up
-”125″ is any number 1-255, where % load is x/255 (ie 125/255 is about 50%)
-can check by in, out, or either

Config-if# dialer idle-timeout 180
-determines how long to stay idle before terminating the session
-default is 120

FRAME RELAY SETUP:

Config# interface serial 0
Config-if# encapsulation frame-relay – cisco by default, can change to ietf
Config-if# frame-relay lmi-type cisco – cisco by default, also ansi, q933a
Config-if# bandwidth 56
Config-if# interface serial 0.100 point-to-point – subinterface
Config-if# ip address 122.1.1.1 255.255.255.0
Config-if# frame-relay interface-dlci 100
-maps the dlci to the interface
-can add BROADCAST and/or IETF at the end
Config-if# interface serial 1.100 multipoint
Config-if# no inverse-arp – turns IARP off; good to do
Config-if# frame-relay map ip 122.1.1.2 48 ietf broadcast
-maps an IP to a dlci (48 in this case)
-required if IARP is turned off
-ietf and broadcast are optional
Config-if# frame-relay map ip 122.1.1.3 54 broadcast

SHOW COMMANDS

Show access-lists – all access lists on the router
Show cdp – cdp timer and holdtime frequency
Show cdp entry * – same as next
Show cdp neighbors detail – details of neighbor with ip add and ios version
Show cdp neighbors – id, local interface, holdtime, capability, platform portid
Show cdp interface – int’s running cdp and their encapsulation
Show cdp traffic – cdp packets sent and received
Show controllers serial 0 – DTE or DCE status
Show dialer – number of times dialer string has been reached, other stats
Show flash – files in flash
Show frame-relay lmi – lmi stats
Show frame-relay map – static and dynamic maps for PVC’s
Show frame-relay pvc – pvc’s and dlci’s
Show history – commands entered
Show hosts – contents of host table
Show int f0/26 – stats of f0/26
Show interface Ethernet 0 – show stats of Ethernet 0
Show ip – ip config of switch
Show ip access-lists – ip access-lists on switch
Show ip interface – ip config of interface
Show ip protocols – routing protocols and timers
Show ip route – Displays IP routing table
Show ipx access-lists – same, only ipx
Show ipx interfaces – RIP and SAP info being sent and received, IPX addresses
Show ipx route – ipx routes in the table
Show ipx servers – SAP table
Show ipx traffic – RIP and SAP info
Show isdn active – number with active status
Show isdn status – shows if SPIDs are valid, if connected
Show mac-address-table – contents of the dynamic table
Show protocols – routed protocols and net_addresses of interfaces
Show running-config – dram config file
Show sessions – connections via telnet to remote device
Show startup-config – nvram config file
Show terminal – shows history size
Show trunk a/b – trunk stat of port 26/27
Show version – ios info, uptime, address of switch
Show vlan – all configured vlan’s
Show vlan-membership – vlan assignments
Show vtp – vtp configs

CATALYST COMMANDS
For Native IOS – Not CatOS

SWITCH ADDRESS:

Config# ip address 192.168.10.2 255.255.255.0
Config# ip default-gateway 192.168.10.1DUPLEX MODE:
Config# interface Ethernet 0/5 – “fastethernet” for 100 Mbps ports
Config-if# duplex full – also, half | auto | full-flow-control

SWITCHING MODE:

Config# switching-mode store-and-forward – also, fragment-free

MAC ADDRESS CONFIGS:

Config# mac-address-table permanent aaab.000f.ffef e0/2 – only this mac will work on this port
Config# mac-address-table restricted static aaab.000f.ffef e0/2 e0/3
-port 3 can only send data out port 2 with that mac
-very restrictive security
Config-if# port secure max-mac-count 5 – allows only 5 mac addresses mapped to this port

VLANS:

Config# vlan 10 name FINANCE
Config# interface Ethernet 0/3
Config-if# vlan-membership static 10TRUNK LINKS:
Config-if# trunk on – also, off | auto | desirable | nonegotiate
Config-if# no trunk-vlan 2
-removes vlan 2 from the trunk port
-by default, all vlans are set on a trunk port

CONFIGURING VTP:
Config# delete vtp – should be done prior to adding to a network
Config# vtp server – the default is server, also client and transparent
Config# vtp domain Camp – name doesn’t matter, just so all switches use the same
Config# vtp password 1234 – limited security
Config# vtp pruning enable – limits vtp broadcasts to only switches affected
Config# vtp pruning disableFLASH UPGRADE:
Config# copy tftp://192.168.5.5/configname.ios opcode – “opcode” for ios upgrade, “nvram” for startup config

DELETE STARTUP CONFIG:

Config# delete nvram

BGP:

show ip bgp – Displays entries in the BGP routing table.
show ip bgp injected-paths – Displays paths in the BGP routing table that were conditionally injected.
show ip bgp neighbors – Displays information about the TCP and BGP connections to neighbors.

BGP Conditional Route Injection:

Step 1 Router(config)# router bgp as-number
- Places the router in router configuration mode, and configures the router to run a BGP process.

Step 2 Router(config-router)# bgp inject-map ORIGINATE exist-map LEARNED_PATH
- Configures the inject-map named ORIGINATE and the exist-map named LEARNED_PATH for conditional route injection.

Step 3 Router(config-router)# exit
-Exits router configuration mode, and enters global configuration mode.

Step 4 Router(config)# route-map LEARNED_PATH permit sequence-number
- Configures the route map named LEARNED_PATH.

Step 5 Router(config-route-map)# match ip address prefix-list ROUTE
- Specifies the aggregate route to which a more specific route will be injected.

Step 6 Router(config-route-map# match ip route-source prefix-list ROUTE_SOURCE
- Configures the prefix list named ROUTE_SOURCE to redistribute the source of the route.
Note The route source is the neighbor address that is configured with the neighbor remote-as command. The tracked prefix must come from this neighbor in order for conditional route injection to occur.

Step 7 Router(config-route-map)# exit
- Exits route-map configuration mode, and enters global configuration mode.

Step 8 Router(config)# route-map ORIGINATE permit 10
- Configures the route map named ORIGINATE.

Step 9 Router(config-route-map)# set ip address prefix-list ORIGINATED_ROUTES
- Specifies the routes to be injected.

Step 10 Router(config-route-map)# set community community-attribute additive
- Configures the community attribute of the injected routes.

Step 11 Router(config-route-map)# exit
- Exits route-map configuration mode, and enters global configuration mode.

Step 12 Router(config)# ip prefix-list ROUTE permit 10.1.1.0/24
- Configures the prefix list named ROUTE to permit routes from network 10.1.1.0/24.

Step 13 Router(config)# ip prefix-list ORIGINATED_ROUTES permit 10.1.1.0/25
- Configures the prefix list named ORIGINATED_ROUTES to permit routes from network 10.1.1.0/25.

Step 14 Router(config)# ip prefix-list ORIGINATED_ROUTES permit 10.1.1.128/25
- Configures the prefix list named ORIGINATED_ROUTES to permit routes from network 10.1.1.0/25.

Step 15 Router(config)# ip prefix-list ROUTE_SOURCE permit 10.2.1.1/32
- Configures the prefix list named ROUTE_SOURCE to permit routes from network 10.2.1.1/32.
Note The route source prefix list must be configured with a /32 mask in order for conditional route injection to occur.

DHCP

Step 1 (config)# interface ethernet0/0
(config-if)#ip address 1.1.1.1 255.0.0.0
(config-if)# no shutdown
- Configure an IP address on the router’s Ethernet port, and bring up the interface. (On an existing router, you would have already done this.)

Step 2 (config)# ip dhcp pool mypool
- Create a DHCP IP address pool for the IP addresses you want to use.

Step 3 (dhcp-config)# network 1.1.1.0 /8
- Specify the network and subnet for the addresses you want to use from the pool.

Step 4 (dhcp-config)#domain-name mydomain.com
- Specify the DNS domain name for the clients.

Step 5 (dhcp-config)#dns-server 1.1.1.10 1.1.1.11
- Specify the primary and secondary DNS servers.

Step 6 (dhcp-config)#default-router 1.1.1.1
- Specify the default router (i.e., default gateway).

Step 7 (dhcp-config)#lease 7
- Specify the lease duration for the addresses you’re using from the pool.

Step 8 (dhcp-config)#exit
- Exit Pool Configuration Mode.

This takes you back to the global configuration prompt.

Next, exclude any addresses in the pool range that you don’t want to hand out.

For example, let’s say that you’ve decided that all IP addresses up to .100 will be for static IP devices such as servers and printers. All IP addresses above .100 will be available in the pool for DHCP clients.

Here’s an example of how to exclude IP addresses .100 and below:

Optional (config)#ip dhcp excluded-address 1.1.1.0 1.1.1.100

The full DHCP reference can be found on the CISCO site.

Common Commands and Troubleshooting

Set a password on the console line:
- configure terminal
- line console 0
- password ‘cisco’
- login
Passwords are case sensitive.
You must configure a password on the VTY lines, without one no one will be able to telnet to the switch/router.
The default mode when logging into a switch/router via telnet or SSH is user exec mode, which is indicated by the ‘>’ prompt.
To configure the switch/router you need to use the privileged EXEC mode. To do this you enter the enable command in user EXEC mode. The prompt is indicated with ‘#’.
If both enable secret and enable password are set, the enable secret will be used.
The enable secret is encrypted (by default) where as the enable password is in clear text.
In a config containing an enable secret 5 ‘hash’ the 5 refers to the level of encryption being used.
If no enable password/secret has been set when someone telnets to the device, they will get a ‘%No password set’ message. Someone with physical access must set the password.
To place all telnet users directly into enable mode:
- configure terminal
- line vty 0 4
- privilege level 15
To put a specific user directly into privileged EXEC mode (enable mode)
- username superman privilege 15 password louise
Telnet sends all data including passwords in clear text which can be intercepted.
SSH encrypts all data preventing an attacker from intercepting it.
Setting up a local user/password login database for use with telnet:
- configure terminal
- line vty 0 4
- login local
- exit
- username telnetuser1 password secretpass
To set up SSH you need to create the local user database, the domain name must be specified with the ip domain-name command and a crypto key must be created with the crypto key generate rsa command. To enable SSH on the VTY lines, use the command transport input ssh.
If you connect two Cisco switches together and the lights don’t go amber then green, but instead stays off. A straight through cable has been used instead of a crossover cable.
The term ‘a switches management interface’ normally refers to VLAN1.
Assign a default gateway using the ip default-gateway ipaddress command.
You can use the command interface range fasterthernet 0/1 – 12 to select a range of interfaces to configure at once.
MOTD banner appears before login prompt.
The login banner appears before the login prompt but after the MOTD banner.
The banner exec appears after a successful logon.
line con 0 – configuring the logging synchronous on the console port stops the router from displaying messages (like an interface state change) until it detects no input from the keyboard and not other output from the router, such as a show commands output.
exec-timeout x y (x=minutes, y=seconds) – the default is 5 minutes. Can be disabled by setting x=0 y=0
Shortcut commands
- Up Arrow – will show you the last command you entered. Control+P does the same thing.
- Down Arrow – will bring you one command up in the command history. Control+N does the same thing.
- CTRL+A takes the cursor to the start of the current command.
- CTRL+E takes the cursor to the end of the current command.
- Left arrow or CTRL+B moves backwards (towards the start) of the command one character at a time.
- Right arrow or CTRL+P moves forwards (towards the end) of the command one character at a time.
- CTRL+D deletes one character (the same as backspace).
- ESC+B moves back one word in the current command.
- ESC+F moves forward one word in the current command.
show history command will show the last 10 commands run by default.
the history size can be increased individually on the console port and on the VTY lines with the history size x command.
Config modes
- config t R1<config> is the global configuration mode.
- line vty 0 4 R1<config-line> is the line config mode.
- interface fastethernet 0/1 R1<config-if> interface config mode.

Troubleshooting

Cisco Discovery Protocol (CDP) runs by default on Cisco routers and switches. It runs globally and on a per-interface level.
CDP discovers basic information about neighboring switches and routers.
On media that supports multicasts at the data link layer, CDP uses multicast frames. on other media, CDP sends a copy of the CDP update to any known data-link addresses.
The show cdp command shows CDP settings.
CDP can be disabled globally using the command no cdp run and re-enable using cdp run.
CDP can be disabled at an interface level using the no cdp enable command at the sub-interface level.
The command show cdp neighbor - lists one summary line of information about each neighbor. Including:
- Device ID – the remote devices hostname.
- Local Interface – the local switch/router interface connected to the remote host.
- Holdtime – is the number of seconds the local device will retain the contents of the last CDP advertisement received from the remote host.
- Capability – shows you the type of device the remote host is.
- Platform – is the remote devices hardware platform.
- Port ID – is the remote interface on the direct connection.
The command show cdp neighbor detail – lists one large set (approx 15 lines) of information, one set for every neighbor. Including:
- The IOS version.
- VTP management domain.
- Management addresses.
show cdp entry name - lists the same information as the show cdp neighbors detail command, but only for the named neighbor (case sensitive).
show cdp – states whether CDP is enabled globally, and lists the default update and holdtime timers.
show cdp traffic – lists global statistics for the number of CDP advertisements sent and received.
show cdp interface type number - states whether CDP is enabled on each interface or a single interface if the interface is listed, and states the update and holdtime timers on those interfaces.
CDP should be disabled on interfaces it is not needed to limit risk of an attacker learning details about each switch or router. Use the no cdp enable interface subcommand to disable CDP and the cdp enable interface subcommand to re-enable it.
The command show cdp interface shows the CDP settings for every interface.
Interface status messages:
- Interface status is down/down – this indicates a physical problem, most likely a loose or unplugged cable.
- Line protocol is down, up/down – this indicates a problem at the logical level, most likely an encapsulation mismatch or a missing clock rate.
- Administratively down – this indicates the interface has been shutdown and needs to be manually opened with the sub interface command no shutdown.
The command show mac-address-table shows the mac address table. show mac-address-table dynamic sows the dynamically learned entries only.
Most problems on a switch are caused by human error – misconfiguration.
The command show debugging shows all the currently running debugs.
undebug all – will turn all debugging off.
The command show vlan brief shows a switches VLAN configuration.
If pinging 127.0.0.1 fails on a pc, there is a problem with the local PC, most likely a bad install of TCP/IP.
On a pc the command netstat -rn shows the pc’s routing table.
Additional Telnet commands:
- show sessions shows information about each telnet session, the where command does the same thing.
- resume x, x being the session number is used to resume a telnet session.
- To suspend a session use the command CTRL+ALT+6.
- To disconnect an open session use the command disconnect x, x being the session number.
Ping result codes:
- !!!!! – IP connectivity to the destination is ok.
- ….. – IP connectivity to the destination does not exist.
- U.U.U – the local router has a route to the destination, but a downstream router does not.
debug ip packet – can help troubleshooting the above ping results.
When using traceroute or extended ping the Escape Sequence is: CTRL+SHIFT+6.
Extended ping can only be run from enable mode.
If a routing table contains multiple routes to the same destination with multiple next hops and the prefixes are different, the most specific (longest) prefix route will be used. If all of the prefix lengths are the same the Administrative Distance will be used. [AD/Metric].
Administrative Distance is a measure of a routes believability, with a lower AD being more believable than a route with a higher AD. AD only comes into play if the prefix lengths are the same.
You can set the Administrative Distance on a static route with the command ip route 55.55.55.0 255.255.255.0 192.168.1.2 150, you would do this to set a backup route if a dynamic route fails/is not available in the routing table.

Cisco NX-OS/IOS BGP (Advanced) Comparison

These may also assist: Undocumented Cisco Commands

6 Comments :access, authentication, authentification, boot system, broadcast, cisco commands, data, DES, DNS, domain name services, EFT, encapsulation, Ethernet, frequency, hack, interface, ISP, name server, network, password, phone, pvc, Relay, SAP, script, security, server, Shiraz, telnet, text, trunk, type more...

Hidden Skype Emoticons

by Derek on Jul.02, 2008, under General

Recently I came across a site which had some of the Skype Hidden Emoticons.
As I was interested in identifying if this was an exhaustive list I loaded the skype.exe file into a HEX editor to have a look around.

Here is what I found:

(inlove) (love) (cry) (surprised) (smile) (cool) (wink) (sweat) (sad) (surprised) (speechless) (kiss) (tongueout) (wonder) (snooze) (dull) (inlove) (love) (grin) (talk) (yawn) (puke) (angry) (wasntme) (party) (worry) (mm) (mmm) (mmmm) (nerd) (wave) (hi) (bye) (call) (devil) (angel) (envy) (wait) (hug) (bear) (makeup) (kate) (chuckle) (giggle) (clap) (think) (bow) (rofl) (whew) (happy) (smirk) (nod) (shake) (punch) (emo) (y) (Y) (ok) (yes) (n) (N) (no) (handshake) (skype) (ss) (h) (H) (l) (L) (heart) (u) (U) (brokenheart) (e) (m) (mail) (F) (f) (flower) (rain) (london) (sun) (o) (O) (time) (clock) (music) (~) (film) (movie) (mp) (ph) (phone) (coffee) (pi) (pizza) (cash) (mo) ($) (flex) (muscle) (^) (cake) (beer) (bricklayers) (d) (D) (drink) (dance) (ninja) (*) (star) (mooning) (finger) (bandit) (drunk) (smoking) (smoke) (ci) (toivo) (rock) (headbang) (banghead) (poolparty) (hrv) (swear) (bug) (fubar) (tmi) (heidy) (myspace)

This is what they look like when included in a Skype message:

Here are then smilies:
:D :-D :=D :d :-d :=d :) :-) :=) 8-) 8=) B-) B=) ;) ;-) ;=) ;( ;-( ;=( (:| :O :-O :=O :o :-o :=o :| :-| :=| :P :-P :=P :p :-p :=p :^) |-) I-) I=) ]:) >:) :& :-& :@ :-@ :=@ x( x-( X( X-( x=( X=( :S :s :-s :-S :=s :=S 8-| B-| 8| B| 8=| B=| :x :-x :X :-X :# :-# :=x :=X :=# :-? :? :=? \o/ \:D/ \:d/

References to Skype Flags
http://www.semanticpool.de/hidden-skype-emoticons/

3 Comments :bar, handshake, Hidden, hidden emoticons, phone, Shiraz, Skype more...

Debbie and Torsten’s Fellas Shop

by Derek on May.17, 2008, under Environment & People

Debbie and Torsten own the Fellas Gifts at the West Lakes Mall in South Australia.

Drop in to say hi, or contact them via email or phone.

Fellas Gifts is a gift shop where ‘it’s easy to shop for men’!

We offer and extensive range of products including collectables, unique gifts, puzzle games, bar ware, sports memorabillia and supporter gear and more! We also have chess sets, hipflasks, figurines, boats and nautical products, games, clocks, barometers and various licensed products and garments (Holden, Ford Jim Beam, Jack Daniels, Harley Davidson, Coca-Cola etc.)

Fellas Gifts offers you an extensive range of products from over 150 suppliers.

Shop T55

West Lakes Mall

111 West Lakes Bouldevard,

West Lakes SA 5021

westlakes_at_fellas.com.au

Phone: (08) 8353 0966

Fax: (08) 8353 0977

http://www.fellas.com.au/store_locations.html

Leave a Comment :Australia, bar, Fella, Fellas, fellas gifts, figurines, Ford, garments, Gifts, Harley Davidson, Holden, Jack Daniels, Jim Beam, Mall, phone, Shiraz, something, sports memorabillia, support more...

Bluetooth – Security

by admin on Mar.24, 2008, under Bluetooth

Redirected from Bluetooth

Source

1 Bluetooth
2 Wireless- History
3 Wireless- Technologies
4 Bluetooth- Technical Introduction
5 Bluetooth- Advantages
6 Bluetooth- Applications
7 Bluetooth- Security Issues
7.1 The SNARF attack
7.2 The BACKDOOR attack
7.3 The BLUEBUG attack
7.4 Bluejacking
7.5 Warnibbling
8 Future of Bluetooth
9 See also:
10 Reference List

Bluetooth

Bluetooth is a new technology that utilises radio frequency waves as a way to communicate wirelessly between digital devices. It sets up personal area networks that incorporate all of a persons digital devices into one system for both convergence and convenience.

Wireless- History

Many people put the invention of [wireless] radio down to Guglielmo Marconi, who in 1895 sent the first radio telegraph transmission across the English Channel. Only twelve years later radio began being used in the public sphere. [Mathias, p.2] Up until then however, many wireless pioneers conducted trials across lakes where the antenna used to transmit the signal was longer than the distance across the lake. [Brodsky, p. 3] After its introduction the main use of wireless radio was for military communications where its first use was for the Boer War. [Flichy, p. 103] The invention of broadcast radio ensured the feasibility of wireless technologies. [Morrow, p. 2] By the 1920s, radio had become a well-recognised mass medium. [Flichy, p. 111] From the 1980s until now, wireless communications have been through several stages, from 1G (analogue signal), 2G (digital signal) and 3G (always on, faster data rate). [Lightman and Rojas, p. 3] The history of Bluetooth is a much more recent one, with the first Bluetooth-enabled products coming into existence in 2000. Named after Harald Blatand the first, king of Denmark around twelve hundred years ago, who joined the Danish and Norwegian kingdoms, Bluetooth technology is founded on this same unifying principle of being able to unite the computer and telecommunication industr[ies]. [Ganguli, p. 5] In 1994 the Ericsson Company began looking into the idea of replacing cables connecting accessories to mobile phones and computers with wireless links, and this became the main inspiration behind Bluetooth. [Morrow, p. 10]

Wireless- Technologies

Bluetooth is not the only wireless technology currently being developed and utilised. Other wireless technologies, including 802.11b, otherwise known as Wi-Fi, Infrared Data Association (IrDA), Ultra- Wideband Radio (UWB), and Home RF are being applied to similar technologies that Bluetooth use with mixed results. 802.11 is the most well known technology, excluding Bluetooth, and uses the same radio frequency, meaning that they are not compatible as they cause interference with each other. 802.11 is being implemented into universities in the US, Japan and China, as well as food and beverage shops where they are being used to identify students and customers. Even airports have taken up the 802.11 technology, with airports all over America, and three of Americas most prominent airlines promoting the use of it. [Lightman and Rojas, p. 202-3] Infrared Data Association is extremely inferior to that of Bluetooth. Its limitations include only being able to communicate point-to-point, needing a line of sight, and it has a speed of fifty- six kilobytes per second, whereas Bluetooth is one megabyte per second. [Ganguli, p. 17] The Ultra- Wideband Radio is superior to that of Bluetooth in that it can transmit at greater lengths (up to 70 metres), with only half of the power that Bluetooth uses. [Ganguli, p.17] HomeRF is a technology that is not very well known. It is used for data and voice communication and targeted for the residential market segment and does not serve enterprise- class WLANs, public access systems or fixed wireless Internet access. [Ganguli, p.17-18]

Bluetooth- Technical Introduction

Bluetooth is a short- range radio device that replaces cables with low power radio waves to connect electronic devices, whether they are portable or fixed. The Bluetooth device also uses frequency hopping to ensure a secure, quality link, and it uses ad hoc networks, meaning that it connects peer-to-peer. It can be operated worldwide and without a network because it uses the unlicensed Industrial- Scientific Medical (ISM) band for transmission that varies with a change in location. [Ganguli, p. 25-6] The Bluetooth user has the choice of point-to-point or point-to-multipoint links whereby communication can be held between two devices, or up to eight. [Ganguli, p. 96] When devices are communicating with each other they are known as piconets, and each device is designated as a master unit or slave unit, usually depending on who initiates the connection. However, both devices have the potential to be either a master or a slave. [Swaminatha and Elden, p. 49]

Bluetooth- Advantages

There are many advantages to using Bluetooth wireless technologies including the use of a radio frequency, the inexpensive cost of the device, replacing tedious cable connections, the low power use and implemented security measures. The use of an unlicensed radio frequency ensures that users do not need to gain a license in order to use it. Unlike Infrared which needs to have a line of sight in order to work, Bluetooth radio waves are omnidirectional and do not need a clear path. The device itself is relatively cheap and easy to use, one can be bought for around ten American dollars, and this price is currently decreasing. Compare this to the expensive cost of implementing hundreds of cables and wires into an office and there is no competition. Of course, this is the main reason for the take -up in Bluetooth -enabled devices; it does away with cables. Another of Bluetooths advantages is its low power use, ensuring that battery operated devices such as mobile phones and personal digital assistants wont have their battery life drained with the use of it. This low power consumption also guarantees minimal interruption from other radio operated and wireless devices that operate at a higher power. Bluetooth has several enabled security measures that ensures a level of privacy and security, including frequency hopping, whereby the device changes radio frequency sixteen hundred times per second. Also within the security tools are encryption and authentification mechanisms that guarantee little interference by unauthorised hackers. [Ganguli, p. 330] One of the best advantages of Bluetooth devices, especially the hands free device that connects to a mobile phone, is that it removes radiation from the brain region. [Tsang, p.1]

Bluetooth- Applications

The applications that are in development or current use for the Bluetooth technology include such areas as automotive, medical, industrial equipment, output equipment, digital -still cameras, computers, and communications systems. [Lightman and Rojas, p. 201] Bluetooth is an ad hoc network user, and therefore it may be used for social networking, i.e. people can meet and share files or link their Bluetooth devices together to play games or other such activities. [Smyth, p. 70] Using Bluetooth, a mobile phone can become a three- way phone, where at home it connects to a landline for cheaper calls, on the move it acts as a mobile phone and when it comes in contact with another Bluetooth-enabled phone it acts as a walkie- talkie. This walkie- talkie option allows for free interaction and communication, as Bluetooth is not connected to any telecommunications network. [Gupta, p.1] Bluetooth also allows automatic synchronization of your desktop, mobile computer, notebook and your mobile phone for the user to have all of their data managed as one. [Gupta, p.1]

Bluetooth- Security Issues

Bluetooth has several threats which range in level of risk and how widespread the action is. These threats have the ability to provide criminals with sensitive information on both corporate and personal levels. The only way to avoid such threats is for manufacturers, distributors, and consumers to be provided with more information on how they are committed, current attack activity and how to combat them. This information can be used on a technical level for manufacturers, it can be used by distributors at retail levels to teach consumers the risks and it can be used directly by consumers to be aware of the threats. The outcome of such research will allow end users of Bluetooth products to have an upper hand in this wireless warfare. Bluetooth security is in early stages with regards to both the attackers, their techniques and consumers understanding of these attacks. Some research has been conducted into what the attackers are doing and how they do it. Adam Laurie of A.L Digital Ltd http://www.thebunker.net/release-bluestumbler.htm is leading the research race in Bluetooth security and is often linked to academic resources. Laurie’s research has uncovered the following capabilities of Bluetooth attacks:

Confidential data such as the entire phone book, calender and the phone’s IMEI.
Complete memory contents of some mobile phones can be accessed by a previously trusted (“paired”) device that has since been removed from the trusted list.
Access can be gained to the AT command set of the device, giving full access to the higher level commands and channels, such as data, voice and messaging.

Attacks on Bluetooth devices at this stage are relatively new to consumers, and therefore are not widely seen as a real threat. Attacks such as the Bluejack attack are probably more recognised by consumers due to its perceived humorous and novelty nature as well as the ease to Bluejack someone. Users who allow their phone to be Bluejacked open the door to more serious attacks, such as the Backdoor attack which have a low level of awareness amongst consumers as attackers can attach to the device with out the users knowledge. Corporations are starting to understand the risks Bluetooth devices pose, Michael Ciarochi (in Brewin 2004) stated that ‘Bluetooth radios were included in laptop PCs that were being configured by an IT Engineer. It raises the possibility of opening a wireless back door into data stored on the PCs. Such a security weakness would be extremely attractive to hackers. Although Bluetooth invites hackers to such attacks; Bluetooth Venders are playing down the risks, Brewin (2004) said that ‘Bluetooth advocates last week dismissed growing security fears about the short-range wireless technology, saying any flaws are limited to a few mobile-phone models. They also detailed steps that users can take to secure Bluetooth devices’. There are many methods of Bluetooth attacks, the Snarf, the Backdoor, Bluebug, Bluejack and Warnibbling attack are the only recognised attacks at this early stage. Below are explanations of such attacks.

The SNARF attack

It is possible for attackers to connect to the device without alerting the user, once in the system sensitive data can be retrieved, such as the phone book, business cards, images, messages and voice messages.

http://www.salzburgresearch.at/research/gfx/bluesnarf_cebit2004.pdf

Local Copy: BlueSnarf_CeBIT2004.pdf

The BACKDOOR attack

The backdoor attack is a higher concern for Bluetooth users; it allows attackers to establishing a trust relationship through the “pairing” mechanism, but ensuring that the user can not see the target’s register of paired devices. In doing this attackers have access to all the data on the device, as well as access to use the modem or internet; WAP and GPRS gateways may be accessed without the owner’s knowledge or consent.

The BLUEBUG attack

This attack gives access to the AT command set, in other words it allows the attacker to make premium priced phone calls, allows the use of SMS, or connection the internet. Attackers can not only use the device for such fraudulent exercises it also allows identity theft to impersonate the user.

Bluejacking

Dibble (2004) explained that ‘Just as SMS was spawned, there’s a new craze that’s spreading across parts of Europe. Reportedly, it’s more prominent in the UK, but popular elsewhere too’. Bluejacking allows attackers to send messages to strangers in public via Bluetooth. When the phones ‘pair’ the attacked can write a message to the user. Although it may seem harmless at first, there is a downside. Once connected the attacker may then have access to any data on the users Bluetooth device, which has obvious concerns. Powell (2004: 22) explained that ‘Users can refuse any incoming message or data, so Bluejackers change their username to a short barb or compliment to beat you to the punch. For example, you might receive something along the lines of “Incoming message from: Dude, you’ve been Bluejacked.” Or, “Incoming message from: ROI is overrated.” Bluejacking is regarded as a smaller threat to Bluetooth as users being attacked are aware they have been Bluejacked. This does not mean however that they are aware that sensitive information is being accessed and used in a malicious manner.

http://www.bluejackq.com/

Warnibbling

Warnibbling is a hacking technique using Redfang, or similar software that allows hackers to reveal corporate or personal sensitive information. Redfang allows hackers to find Bluetooth devices in the area, once found, the software takes you through the process of accessing any data that is stored on that device. Redfang also allows non-discoverable devices to be found. Whitehouse explains when testing Redfang ‘One of the first obstacles we had to overcome was the discovery of non-discoverable devices (it was surprising to see the number of devices that dont by default implement this security measure)’. http://www.atstake.com/research/reports/acrobat/atstake_war_nibbling.pdf

Future of Bluetooth

Further information, and somewhat speculation is required for consumers and Bluetooth stakeholders on the future of Bluetooth. Such information will provide a clearer understanding of why security of Bluetooth must be improved. Luo and Lee (2004) provide a short term prediction of where Bluetooth is heading, Europe and Asian countries already offer electronic newspapers, subway tickets, and car parking fees via wireless devices. Collins (2003) says that Bluetooth devices ‘appear to be more secure than 802.11 wireless LANs. However, this situation may not last, as the Bluetooth technology becomes more widespread and attracts greater interest from the hacking community’.

http://www.arraydev.com/commerce/jibc/0402-10.htm

Reference List

Brodsky, I. (1995) Wireless: The Revolution in Personal Telecommunications, Massachussetts, USA: Artech House Inc, ISBN 0890067171 (Erin Watson)
Collins, G. (2003) Bluetooth Security. Byte.com [Online], Available: Academic Search Elite, ISSN:0360-5280 [Accessed 6/9/04]. (Ben Henzell)
Dibble, T (2003) ‘Bluejack city: a new wireless craze is spreading through Europe’ [Online]. Available: http://www.sys-con.com/Wireless/article.cfm?id=710 [Accessed 4/8/04. (Ben Henzell)
Finn, E. (2004) Be carefull when you cut the cord. Popular Science [Online], vol. 264, issue. 5, p30. Available: Ebsco Host: Academic Search Elite, ISSN:0161-7370 [Accessed 6/9/04]. (Ben Henzell)
Flichy, P. (1995) Dynamics of Modern Communication, London: Sage Publications, ISBN 0803978502 (Erin Watson)
Ganguli, M. (2002) Getting Started with Bluetooth, Ohio: Premier Press, ISBN 1931841837 (Erin Watson)
Gupta, P. 1999. Bluetooth Technology: What are the Applications?. http://www.mobileinfo.com/Bluetooth/applic.htm (accessed August 23, 2004). (Erin Watson)
Laurie, B & L (2003) Serious flaws in Bluetooth security lead to disclosure of personal data [Online]. Available: http://www.thebunker.net/release-bluestumbler.htm [Accessed 4th Aug 2004]. (Ben Henzell)
Lightman, A. and Rojas, W. (2002) Brave New Unwired World, New York, USA: John Wiley and Sons, Inc., ISBN 0471441104 (Erin Watson)
Luo, X. Lee, C. (2004). Micropayments in Wireless M-Commerce: Issues, Security, and Trend[Online]. Available: http://www.arraydev.com/commerce/jibc/0402-10.htm [Accessed 4/8/2004] (Ben Henzell)
Morrow, R. (2002) Bluetooth Operation and Use, New York, USA: The McGraw- Hill Companies, ISBN 007138779X (Erin Watson)
Powell, W. (2004) The Wild Wild Web T+D [Online], Vol. 58, issue. 1, p22. Available: Academic Search Elite, ISSN:1535-7740 [Accessed 6/9/04]. (Ben Henzell)
Smyth, P. (ed.)(2004) Mobile and Wireless Communications: Key Technologies and Future Applications, London, UK: The Institute of Electrical Engineers, ISBN 0863413684 (Erin Watson)
Swaminatha, T. and Elden, C. (2003) Wireless Security and Privacy: Best Practices and Design Techniques, Massachussetts, USA: Pearson Education, Inc., ISBN 0201760347 (Erin Watson)
Tsang, W. et al. Date unknown. Bluetooth Applications. http://ntrg.cs.tcd.ie/undergrad/4ba2.01/group3/applications.html (accessed August 23, 2004). (Erin Watson)
Whitehouse, O. (2003).’War Nibbling: Bluetooth Insecurity’ [Online]. Available: http://www.atstake.com/research/reports/acrobat/atstake_war_nibbling.pdf [Accessed 9/8/04] (Ben Henzell)

Erin Watson 08:47, 8 Sep 2004 (EST) –nhenzell 12:30, 8 Sep 2004 (EST)

Leave a Comment :access, antenna, attack, authentification, Backdoor, bar, best practices, bluejacker, Bluejacking, Bluetooth, broadcast, Card, Commerce, Communications, Corporate, data, DES, development, Digital, Dust, EFT, Electronic, encryption, Enterprise, Ericsson, frequency, hack, Hacking, identity, Internet, JAVA, javascript, Mall, mechanisms, mobile phones, network, online, payment, personal area networks, phone, php, Pin, privacy, Radiation, Radio, script, security, Serious, Shiraz, SLA, SMS, SNARF, something, Technical, technique, technology, threat, Threats, transmission, web more...

« Older Entries

Howdy. Welcome to Madrock!
Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed. See ya around!
Categories
Recent Posts
- No need to bypass security with a boot disk – 17 year old Windows exploit found
  
  The problem has been discovered in the Virtual DOS Machine (VDM) introduced in 1993 to support 16-bit applications (real mode applications for 8086). VDM is based on the Virtual 8086 Mode (VM86) in 80386 processors and, among other things, intercepts hardware routines such as BIOS calls. Google security team member Tavis Ormandy has found several [...]
  
  more...
- The Internet is the modern day electricity
  
  Recently I have been been sorting through some of my old electronic engineering books and found myself randomly flicking through circuit design principals and practical electronics/radio theory application of calculus.
  I remember the amount of hours I spent trying to get the different laws (Faraday, Coulomb, Kirchhoff, Lenz, Ohm, etc.) stuck in my head ready for [...]
  
  more...
- SSLv3 / TLS Man in the Middle vulnerability
  
  Recently I have been looking into the vulnerabilities in the TLS negotiation process discovered late last year.
  There are a range of experts debating the exploit methods, tools and how it may be fixed (server or client site or both). From what I have seen so far this may prompt a change to the TLS standard [...]
  
  more...

Recent Comments
Translator

By N2H
Visitors Online
- 22 visitor(s) online
- powered by WassUp

Tag: phone

ROUTER COMMANDS :

These may also assist: Undocumented Cisco Commands

Bluetooth

Wireless- History

Wireless- Technologies

Bluetooth- Technical Introduction

Bluetooth- Advantages

Bluetooth- Applications

Bluetooth- Security Issues

The SNARF attack

The BACKDOOR attack

The BLUEBUG attack

Bluejacking

Warnibbling

Future of Bluetooth

See also:

Reference List

Howdy. Welcome to Madrock!

Categories

Blogroll

Recent Comments

Translator

Visitors Online

ROUTER COMMANDS `:`