Comments on: Strategic GeoIP Hacking and TV Streaming Theft http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/ Information Security Think Tank Mon, 12 Dec 2011 19:56:03 +0000 hourly 1 http://wordpress.org/?v=3.1.2 By: NerdBert http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-128489 NerdBert Wed, 21 Apr 2010 07:40:53 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-128489 I used a Slingbox for a while but ended up ditching it. Nowadays internet speeds are so fast that I can access TV via the internet. I'm in Europe, so I use a VPN service to connect to either the US or UK (VPN gives me a local IP address, thus working around the outside the "US/UK" country blocking). Three of the best sites are Hulu, SeeSaw and BBC iPlayer. Here is a good updated list of the US/UK TV networks with free internet streaming http://www.vpntelevision.com Good luck in your quest for TV online! Uncle Abe I used a Slingbox for a while but ended up ditching it. Nowadays internet speeds are so fast that I can access TV via the internet. I’m in Europe, so I use a VPN service to connect to either the US or UK (VPN gives me a local IP address, thus working around the outside the “US/UK” country blocking). Three of the best sites are Hulu, SeeSaw and BBC iPlayer.

Here is a good updated list of the US/UK TV networks with free internet streaming http://www.vpntelevision.com Good luck in your quest for TV online!

Uncle Abe

]]> By: sean http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-117213 sean Sun, 23 Mar 2008 10:40:52 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-117213 Very interesting article. However, how do you handle the password part ? I understand you can designate a slingbox by its IP address, but how would you hack the password? Thanks Very interesting article. However, how do you handle the password part ? I understand you can designate a slingbox by its IP address, but how would you hack the password?

Thanks

]]> By: Adrian Pastor http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-74702 Adrian Pastor Tue, 20 Nov 2007 22:29:16 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-74702 @maze - Just run Wireshark while you try to authenticate with SlingPlayer. You can use the following filter on Wireshark: <code>ip.dst==targetIPaddress</code> @maze – Just run Wireshark while you try to authenticate with SlingPlayer. You can use the following filter on Wireshark: ip.dst==targetIPaddress

]]> By: maze http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-74637 maze Tue, 20 Nov 2007 20:19:09 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-74637 anyone got an idea on how the auth works? im trying to get a brute forcer goin... anyone got an idea on how the auth works? im trying to get a brute forcer goin…

]]> By: Adrian Pastor http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-73977 Adrian Pastor Mon, 19 Nov 2007 22:19:08 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-73977 @LordDoskias - I agree that security through obscurity is not the way to go. However, we all are in a comfort zone, and that is highly reflected in public security research. btw, I will check out "Silver needle in the skype" :-) Nice nmap tips guys! I was familiar with the timing -T flags, but not the -PS flag. @LordDoskias – I agree that security through obscurity is not the way to go. However, we all are in a comfort zone, and that is highly reflected in public security research. btw, I will check out “Silver needle in the skype” :-)

Nice nmap tips guys! I was familiar with the timing -T flags, but not the -PS flag.

]]> By: br4inmatic http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-73392 br4inmatic Mon, 19 Nov 2007 07:43:39 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-73392 <code>nmap -PS5001 -S5 -n -iL targets -p5001 -oG results</code> yeah.. that's really make it much faster. nmap -PS5001 -S5 -n -iL targets -p5001 -oG results yeah.. that’s really make it much faster.

]]> By: Dominik http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-73100 Dominik Sun, 18 Nov 2007 21:18:06 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-73100 Sorry, just made a typo. It should read -T5 and not -S5 Sorry, just made a typo. It should read -T5 and not -S5

]]> By: Dominik http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-73095 Dominik Sun, 18 Nov 2007 21:16:18 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-73095 My personal experience has been that scanrand is indeed fast, but also misses quite some open ports. Yes, nmap _will_ run very slow with the provided command line. But you can speed it up quite a bit. First, scanning with -P0 is dead slow, because nmap has no round-trip-time information without a ping first, and will default to a slow scan mode. Second, nmap has a not-so-well documented fast single port scan mode. Third, you can speed things up by setting less conservative timing limits An updated nmap command line would be: <code>nmap -PS5001 -S5 -n -iL targets -p5001 -oG results</code> My personal experience has been that scanrand is indeed fast, but also misses quite some open ports.

Yes, nmap _will_ run very slow with the provided command line. But you can speed it up quite a bit. First, scanning with -P0 is dead slow, because nmap has no round-trip-time information without a ping first, and will default to a slow scan mode. Second, nmap has a not-so-well documented fast single port scan mode. Third, you can speed things up by setting less conservative timing limits

An updated nmap command line would be: nmap -PS5001 -S5 -n -iL targets -p5001 -oG results

]]> By: hackathology http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-72875 hackathology Sun, 18 Nov 2007 16:52:47 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-72875 unicornscan is the way to go unicornscan is the way to go

]]> By: LordDoskias http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-72818 LordDoskias Sun, 18 Nov 2007 15:19:07 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-72818 I think that "tcp/ip is widely understood" isn't a good argument. History has shown that "security through obscurity" doesn't work well. If tomorrow's technology is not tcp/ip or something else. Then it's a matter of time before someone document this technology. For example - "Silver needle in the skype" presented at BH '06. And skype is thought to be one of the most "hidden" technologies out there. I think that “tcp/ip is widely understood” isn’t a good argument. History has shown that “security through obscurity” doesn’t work well. If tomorrow’s technology is not tcp/ip or something else. Then it’s a matter of time before someone document this technology. For example – “Silver needle in the skype” presented at BH ’06. And skype is thought to be one of the most “hidden” technologies out there.

]]> By: Adrian Pastor http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-72466 Adrian Pastor Sun, 18 Nov 2007 03:55:10 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-72466 Hey Jason! I will try Scanrand when I have time. I've also been wanting to play with Unicorn http://www.unicornscan.org/ for a while! Hey Jason! I will try Scanrand when I have time. I’ve also been wanting to play with Unicorn http://www.unicornscan.org/ for a while!

]]> By: Zeryl http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-72229 Zeryl Sat, 17 Nov 2007 07:52:03 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-72229 I re-wrote the shell script for this, in PHP. It does all of the .csv's created from the other script, at once, and extremely quickly (about 5 seconds on a dual P3). Below is the code for it: <pre><code><?php //Look through the local directory for *.csv foreach (glob("*.csv") as $filename) { //Load the current file into the $lines array $lines = file($filename); $content = ''; foreach($lines as $line) { //Explode the start and end ip from the current line list($startIP, $endIP) = explode(',', $line); //Explode each octet of the current ip into arrays $start = explode('.', $startIP); $end = explode('.', $endIP); //Parse each array for the ip for($i = 0; $i<=3; $i++) { if($start[$i] == $end[$i]) { $nmap[$i] = $start[$i]; } else { $nmap[$i] = "$start[$i]-$end[$i]"; } } //Write the current namp'ified IP to the variable $content .= "$nmap[0].$nmap[1].$nmap[2].$nmap[3]\r\n"; } //replace the extension with target $newfile = str_replace('csv', 'target', $filename); //write the file $size = file_put_contents($newfile, $content); echo("Wrote $newfile with a size of $size<br />\r\n"); }</code></pre> I re-wrote the shell script for this, in PHP. It does all of the .csv’s created from the other script, at once, and extremely quickly (about 5 seconds on a dual P3). Below is the code for it:

<?php

//Look through the local directory for *.csv
foreach (glob("*.csv") as $filename) {
    //Load the current file into the $lines array
    $lines = file($filename);

    $content = '';

    foreach($lines as $line)
    {
        //Explode the start and end ip from the current line
        list($startIP, $endIP) = explode(',', $line);

        //Explode each octet of the current ip into arrays
        $start = explode('.', $startIP);
        $end   = explode('.', $endIP);

        //Parse each array for the ip
        for($i = 0; $i<=3; $i++)
        {
            if($start[$i] == $end[$i])
            {
                $nmap[$i] = $start[$i];
            }
            else {
                $nmap[$i] = "$start[$i]-$end[$i]";
            }
        }

        //Write the current namp'ified IP to the variable
        $content .= "$nmap[0].$nmap[1].$nmap[2].$nmap[3]\r\n";
    }

    //replace the extension with target
    $newfile = str_replace('csv', 'target', $filename);

    //write the file
    $size = file_put_contents($newfile, $content);
    echo("Wrote $newfile with a size of $size<br />\r\n");
}
]]> By: Jason Macpherson http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-72059 Jason Macpherson Fri, 16 Nov 2007 19:54:14 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-72059 Nmap tends to be a little slow for large scans like this. You'll get your results much faster if you used scanrand. http://www.doxpara.com/read.php/code/paketto.html Nmap tends to be a little slow for large scans like this. You’ll get your results much faster if you used scanrand.

http://www.doxpara.com/read.php/code/paketto.html

]]> By: Domber’s Basecamp » Blog Archive » Strategic Hacking: GEOIP http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft/comment-page-1/#comment-71996 Domber’s Basecamp » Blog Archive » Strategic Hacking: GEOIP Fri, 16 Nov 2007 15:13:00 +0000 http://www.gnucitizen.org/blog/strategic-geoip-hacking-and-tv-streaming-theft#comment-71996 [...] The small shellscript provides you with information about country IP ranges. This can be quite usefull, for instance for the new TV streaming theft … [...] [...] The small shellscript provides you with information about country IP ranges. This can be quite usefull, for instance for the new TV streaming theft … [...]

]]>