linuxct (inactive)

6.3K posts

linuxct (inactive)

@linuxct

Not active on Twitter anymore. Find me elsewhere!

Joined Ağustos 2015

175 Following7.3K Followers

Pinned Tweet

linuxct (inactive)@linuxct·6 Kas

Hey, I am also on that Mastodon thing where all the cool peeps are moving! Mutuals already there, feel free to follow and I will follow you back :) For some toots: @linuxct @androiddev.social @linuxct" target="_blank" rel="nofollow noopener">androiddev.social/@linuxct

English

linuxct (inactive)@linuxct·5 Nis

hey, I have decided I will be perma-deactivating my account in the next 24hrs. this is unrelated to the stuff happening on twitter itself, but more of a personal choice/mental health related. if you want to reach out, you probably know how. so long, and thanks for all the fish ☺️

English

33.8K

linuxct (inactive)@linuxct·4 Nis

@f4micom "Ableton Moment". MY SIDES, I CAN'T HAHAHA

English

556

f4mi ‼️@f4micom·3 Nis

Like I can even easily turn this into a Mac shortcut since it’s just an POST request to your website, I just wanted to made sure you know this since idk if you want this to be this exploitable or not, it you need details you can DM me here lol

English

5.3K

f4mi ‼️@f4micom·3 Nis

hey @Ableton there are a few music apps on the App Store which include a free license to Live Lite 11 but all they do is open an internal browser page to a sniffable https clear web link where you can potentially generate infinite licenses without any checks, is this intentional?

English

172

20.2K

linuxct (inactive)@linuxct·3 Nis

@PablockMS JJAJAAJAJAJJA

Español

344

linuxct (inactive)@linuxct·3 Nis

@PablockMS Que prompt xD Also curiosidad del software de la pantalla, qué se habrá inventao?

Español

131

linuxct (inactive)@linuxct·3 Nis

@f4micom the filter and the audio 😭

English

313

f4mi ‼️@f4micom·2 Nis

Showcase of My New Product Designed For This Third Web Iteration

English

344

26.9K

linuxct (inactive)@linuxct·31 Mar

@odbol @f4micom Yeah that’s true, I also addressed it in one of the replies

English

368

odbol@odbol·31 Mar

@linuxct @f4micom Even easier if you use the accelerometer since that doesn't need special permission like the microphone

English

455

f4mi ‼️@f4micom·30 Mar

github.com/ggerganov/kbd-… this tool lets you extract text from an audio recording of keyboard strokes, right now, for free i am not making this shit up, you can potentially steal a password from an audio recording in an office

English

112

710

4.7K

1.1M

linuxct (inactive)@linuxct·31 Mar

@PickledeBarbens Perque dius aixo?

Català

183

Pickle Me@PickledeBarbens·31 Mar

Lo important és tenir salut

linuxct (inactive)@linuxct

@f4micom I work in the mobile payments security industry, and one interesting attack is abusing the microphone of a smartphone that's being used as a PoS to detect where the user placed their finger on a PIN pad shown on the screen.. That's just one more example of side-channel attacks :)

Català

490

linuxct (inactive)@linuxct·31 Mar

@NoTubeZone @f4micom Hmm those in particular use the lockscreen itself, we are talking about apps the merchants would run on their phone to collect money from a purchaser, like in a store. When a transaction is above the card limit, it needs to request a CVM such as PIN through a custom keyboard…

English

204

Redka@NoTubeZone·31 Mar

@linuxct @f4micom Ah so like gpay and stuff ?

English

271

linuxct (inactive)@linuxct·31 Mar

@NoTubeZone @f4micom Not necessarily, this can be applied to just any standard smartphone running an app to take payments too

English

456

Redka@NoTubeZone·31 Mar

@linuxct @f4micom You talking about sum Pax and ingenico devices ain't ya ?

English

563

linuxct (inactive)@linuxct·31 Mar

@_xs @f4micom Yes, this is very true. I have seen implementations that use external seeding on mobile devices as well, given that the comms channel is considered secure enough to transfer seeds. It's a nice technique indeed :)

English

141

Orange@_xs·31 Mar

@linuxct @f4micom Random digits that the user puts in prior to the real input. I can imagine some of those methods becoming more common place if we keep using pin codes for things

English

177

linuxct (inactive)@linuxct·30 Mar

@f4micom The same goes for the camera (image tilt and angle of inclination), the gyroscope and accelerometer, as these (isolated or combined) can bring representative data as to how a screen is being pressed

English

879

linuxct (inactive)@linuxct·30 Mar

English

386

47.6K

linuxct (inactive)@linuxct·29 Mar

@luciascarlet lol don't try sway them, you'll be shocked

English

159