Author Archives: Thomas Roth

Black Hat, CCS & Co.

Posted on 4. February 2011 by Thomas Roth

Update: CCS will be released at Black Hat EU 2011! Black Hat DC 2011 was great – a lot of interesting people, interesting talks, and nice parties. Unfortunately I wasn’t able to demonstrate and release the Cloud Cracking Suite as … Continue reading

Posted in Security | Tagged , , , | 5 Comments

Upcoming Black Hat Talk

Posted on 12. January 2011 by Thomas Roth

Because of the huge media coverage about my upcoming talk “Breaking encryption in the cloud: GPU accelerated supercomputing for everyone” at Black Hat DC I want to make sure that no one is getting the wrong impression about what I’m going to … Continue reading

Posted in Security | Tagged , , , , , , | 13 Comments

Cracking Passwords In The Cloud: Getting The Facts Straight

Posted on 20. November 2010 by Thomas Roth

My last article about the benchmark on the new GPU Cluster instances in the Amazon cloud had a large impact. One magazine wrote: “A German hacker claims to have used cloud computing to crack passwords stored in an algorithm that … Continue reading

Posted in Everyday Hacks, Security | Tagged , , , , , | 14 Comments

Cracking Passwords In The Cloud: Amazon’s New EC2 GPU Instances

Posted on 15. November 2010 by Thomas Roth

Update: Great article about this at Threatpost! This also got slashdotted, featured on Tech News Today and there’s a ZDNet article about this. Update: Because of the huge impact I have clarified some things here As of today, Amazon EC2 … Continue reading

Posted in Everyday Hacks, Security, Tools | Tagged , , , , | 196 Comments

Small Patch For The SET “Java Applet” Payload

Posted on 12. November 2010 by Thomas Roth

Update: This is fixed in revision 362 of the SET. The current Social Engineering Toolkit version from SVN (Revision 359) contains a broken java_applet.pde which will result in a compiling error like: teensy:20: error: expected ‘,’ or ‘;’ before ‘void’ … Continue reading

Posted in Security, Stuff, Tools | Tagged , , | Leave a comment

mbed.org – Introduction & Improved MbedRPC Module For Python

Posted on 10. November 2010 by Thomas Roth

Today I received my NXP mbed Design Challenge kit. At first glance it looks like a cool piece of hardware: NXP LPC1768 (ARM Cortex-M3 Core) running at 96 MHz, 512KB flash, 64KB RAM, Ethernet, USB device/host, CAN, SPI, I2C, Analog … Continue reading

Posted in Code | Tagged , , , | 1 Comment

Firesheep: Handlers for SchuelerVZ, StudiVZ and MeinVZ

Posted on 27. October 2010 by Thomas Roth

Update: I was relying on a cookie which only showed up under certain circumstances. This is fixed now, but accounts will show up multiple times in Firesheep. I will fix this soon. Firesheep is a great tool to show ‘normal’ people … Continue reading

Posted in Everyday Hacks, Security | Tagged , , , , , | 16 Comments

DIYDA: Lamps, Robots & ‘Finissage’

Posted on 2. October 2010 by Thomas Roth

On the last day of the DIYDA we had two great workshops at the DingFabrik: Fabienne did a workshop about building small, insect-like robots, while in the other room Julian showed how to make your own lamp out of wood … Continue reading

Posted in Stuff | Tagged , , , , , | Leave a comment

DIYDA: Stamps and 3D Printing

Posted on 30. September 2010 by Thomas Roth

Today there were two workshops in the rooms of the DingFabrik: Kathrin showed how to make your own stamps, and Fabienne and Wim brought their MakerBots. I spent most of the time socializing at the stamps workshop, and also tried … Continue reading

Posted in Stuff | Tagged , , , , , , | 1 Comment

Why ‘Password Maps’ Are a Bad Idea

Posted on 29. September 2010 by Thomas Roth

Update: Wow, F-Secure UK and KoreLogic are linking to this! Over the last couple of weeks, multiple people pointed me to articles about the idea of using maps instead of passwords. Most of them pointed me either to this MSNBC … Continue reading

Posted in Security | Tagged , , | 5 Comments