Contribuez à SecuObs en envoyant des bitcoins ou des dogecoins.
Nouveaux articles (fr): 1pwnthhW21zdnQ5WucjmnF3pk9puT5fDF
Amélioration du site: 1hckU85orcGCm8A9hk67391LCy4ECGJca

Contribute to SecuObs by sending bitcoins or dogecoins.

Chercher :
Newsletter :  


Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs





Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- USBsploit
- Commentaires


Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs


Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS/XML :
- Articles
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter


RSS SecuObs :
- sécurité
- exploit
- windows
- attaque
- outil
- microsoft


RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network


RSS Videos :
- curit
- security
- biomet
- metasploit
- biometric
- cking


RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco


RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS OPML :
- Français
- International











Revue de presse francophone :
- Appaloosa AppDome nouent un partenariat pour accompagner les entreprises dans le déploiement et la protection des applications mobiles
- D-Link offre une avec un routeur VPN sans fil AC
- 19 mai Paris Petit-Déjeuner Coreye Développer son business à l'abri des cyberattaques
- POYNTING PRESENTE LA NOUVELLE ANTENNE OMNI-291, SPECIALE MILIEU MARITIME, CÔTIER ET MILIEU HUMIDE
- Flexera Software Les utilisateurs français de PC progressent dans l'application de correctifs logiciels, mais des défis de tailles subsistent
- Riverbed lance SD-WAN basé sur le cloud
- Fujitsu multi-récompensé VMware lui décerne plusieurs Partner Innovation Awards à l'occasion du Partner Leadership Summit
- Zscaler Private Access sécuriser l'accès à distance en supprimant les risques inhérents aux réseaux privés virtuels
- QNAP annonce la sortie de QTS 4.2.1
- Une enquête réalisée par la société de cyber sécurité F-Secure a décelé des milliers de vulnérabilités graves, potentiellement utilisables par des cyber criminels pour infiltrer l'infrastru
- Trouver le juste équilibre entre une infrastructure dédiée et cloud le dilemme de la distribution numérique
- 3 juin - Fleurance - Cybersécurité Territoires
- Cyber-assurances Seules 40 pourcents des entreprises françaises sont couvertes contre les violations de sécurité et les pertes de données
- Des étudiants de l'ESIEA inventent CheckMyHTTPS un logiciel qui vérifie que vos connexions WEB sécurisées ne sont pas interceptées
- Les produits OmniSwitch d'Alcatel-Lucent Enterprise ALE gagnent en sécurité pour lutter contre les cyber-attaques modernes

Dernier articles de SecuObs :
- DIP, solution de partage d'informations automatisée
- Sqreen, protection applicative intelligente de nouvelle génération
- Renaud Bidou (Deny All): "L'innovation dans le domaine des WAFs s'oriente vers plus de bon sens et d'intelligence, plus de flexibilité et plus d'ergonomie"
- Mises à jour en perspective pour le système Vigik
- Les russes ont-ils pwn le système AEGIS ?
- Le ministère de l'intérieur censure une conférence au Canada
- Saut d'air gap, audit de firmware et (in)sécurité mobile au programme de Cansecwest 2014
- GCHQ: Le JTRIG torpille Anonymous qui torpille le JTRIG (ou pas)
- #FIC2014: Entrée en territoire inconnu
- Le Sénat investit dans les monnaies virtuelles

Revue de presse internationale :
- VEHICLE CYBERSECURITY DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack
- Demand letter served on poll body over disastrous Comeleak breach
- The Minimin Aims To Be The Simplest Theremin
- Hacking group PLATINUM used Windows own patching system against it
- Hacker With Victims in 100 Nations Gets 7 Years in Prison
- HPR2018 How to make Komboucha Tea
- Circuit Bender Artist bends Fresnel Lens for Art
- FBI Director Suggests iPhone Hacking Method May Remain Secret
- 2016 Hack Miami Conference May 13-15, 2016
- 8-bit Video Wall Made From 160 Gaming Keyboards
- In An Era Of Decline, News Sites Can t Afford Poor Web Performance
- BeautifulPeople.com experiences data breach 1m affected
- Swedish Air Space Infringed, Aircraft Not Required
- Why cybercriminals attack healthcare more than any other industry
- Setting the Benchmark in the Network Security Forensics Industry

Annuaire des videos
- FUZZING ON LINE PART THREE
- Official Maltego tutorial 5 Writing your own transforms
- Official Maltego tutorial 6 Integrating with SQL DBs
- Official Maltego tutorial 3 Importing CSVs spreadsheets
- install zeus botnet
- Eloy Magalhaes
- Official Maltego tutorial 1 Google s websites
- Official Maltego tutorial 4 Social Networks
- Blind String SQL Injection
- backdoor linux root from r57 php shell VPS khg crew redc00de
- How To Attaque Pc With Back Track 5 In Arabique
- RSA Todd Schomburg talks about Roundup Ready lines available in 2013
- Nessus Diagnostics Troubleshooting
- Panda Security Vidcast Panda GateDefender Performa Parte 2 de 2
- MultiPyInjector Shellcode Injection

Revue Twitter
- RT @fpalumbo: Cisco consistently leading the way ? buys vCider to boost its distributed cloud vision #CiscoONE
- @mckeay Looks odd... not much to go on (prob some slideshow/vid app under Linux)
- [SuggestedReading] Using the HTML5 Fullscreen API for Phishing Attacks
- RT @BrianHonan: Our problems are not technical but cultural. OWASP top 10 has not changed over the years @joshcorman #RSAC
- RT @mikko: Wow. Apple kernels actually have a function called PE_i_can_has_debugger:
- [Blog Spam] Metasploit and PowerShell payloads
- PinkiePie Strikes Again, Compromises Google Chrome in Pwnium Contest at Hack in the Box: For the second time thi...
- @mikko @fslabs y'all wldn't happen to have lat/long data sets for other botnets, wld you? Doing some research (free/open info rls when done)
- RT @nickhacks: Want to crash a remote host running Snow Leopard? Just use: nmap -P0 -6 --script=targets-ipv6-multicast-mld #wishiwaskidding
- An inexpensive proxy service called is actually a front for #malware distribution -

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse

Annuaires des videos : curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit

+ de mots clés pour les videos

Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter

Top bi-hebdo des articles de SecuObs
- [Ettercap – Partie 2] Ettercap par l'exemple - Man In the Middle et SSL sniffing
- [Infratech - release] version 0.6 de Bluetooth Stack Smasher
- [IDS Snort Windows – Partie 2] Installation et configuration
- [Infratech - vulnérabilité] Nouvelle version 0.8 de Bluetooth Stack Smasher
- Mises à jour en perspective pour le système Vigik
- USBDumper 2 nouvelle version nouvelles fonctions !
- EFIPW récupère automatiquement le mot de passe BIOS EFI des Macbook Pro avec processeurs Intel
- La sécurité des clés USB mise à mal par USBDUMPER
- Une faille critique de Firefox expose les utilisateurs de Tor Browser Bundle
- Installation sécurisée d'Apache Openssl, Php4, Mysql, Mod_ssl, Mod_rewrite, Mod_perl , Mod_security

Top bi-hebdo de la revue de presse
- StackScrambler and the Tale of a Packet Parsing Bug

Top bi-hebdo de l'annuaire des videos
- DC++ Botnet. How To DDos A Hub With Fake IPs.
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- Defcon 14 Hard Drive Recovery Part 3

Top bi-hebdo de la revue Twitter
- RT @secureideas: I believe that all the XSS flaws announced are fixed in CVS. Will test again tomorrow if so, release 1.4.3. #BASESnort
- Currently, we do not support 100% of the advanced PDF features found in Adobe Reader... At least that's a good idea.
- VPN (google): German Foreign Office Selects Orange Business for Terrestrial Wide: Full
- @DisK0nn3cT Not really, mostly permission issues/info leak...they've had a couple of XSS vulns but nothing direct.
- Swatting phreaker swatted and heading to jail: A 19-year-old American has been sentenced to eleven years in pris..
- RT @fjserna You are not a true hacker if the calc.exe payload is not the scientific one... infosuck.org/0x0035.png

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- [IDS Snort Windows – Partie 1] Introduction aux IDS et à SNORT
- Origami pour forger, analyser et manipuler des fichiers PDF malicieux

A Glass FAQ

Si vous voulez bloquer ce service sur vos fils RSS
Si vous voulez nous contacter ou nous proposer un fil RSS

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]

S'abonner au fil RSS global de la revue de presse



A Glass FAQ

Par Errata Security
Le [2013-06-23] à 01:01:32



Présentation : There are better sources of info about Google Glass, I thought I'd write up my own answers to frequently asked questions, since mine will often differ with others. Basics ------ What is it It s an early prototype for doing a mind-meld with the cloud. It s for interacting with the cloud while you are physical active, leaving your hands free, without having to look down at your phone all the time. I m excited, how do I get one You can t, and you don t want to. Both the device itself and the cloud services behind it are in early prototype stage, such that its failures usually outweigh its successes. Unless you are a developer or a futurist , you really don t want one, and Google won t sell you one. How much does it cost I paid 1500 for mine plus a trip to New York. You have to go to the Google offices in NYC LA SF for fitting and indoctrination. At this time, though, you can t buy one. How intuitive is it What s the learning curve I just hand it to people with no explanation. They figure it out instantly. Of course, these people are all nerds average people may need more help. How heavy is it My perception is that it s no heavier than the glasses I normally wear. How comfortable is it Almost like any pair of glasses. Battery life As it sits on your face, it s off except for the bluetooth connection to your phone. It ll last all day in this mode. If you heavily interact with it, such as constantly sending messages to from people, it ll last about 4 hours. If you stream video to the net, it ll last for about 40 minutes before the battery gets drained. What s the recharge time Very fast. They warn you to be careful about using the power adapter for other Android devices, because it may charge them too fast. Does it connect to my phone or is it a device of its own Both. Its primary connection is through your phone. It can also connection through WiFi. Basically, you use it for messaging and stuff while you are out and about doing stuff, but you might wait until you get back to your hotel before uploading any videos that you took, because the data connection on phones costs a bunch of money. What are the WiFi capabilities It s 802.11n on the 2.4 GHz band. It ll automatically connect to open access points. However, it doesn t handle captive portals that make you accept Terms of Service. To configure WPA2 and passwords, you go to Googlel s site. It makes a QRcode out of it, which Glass then reads. It supports WEP because somebody in Glass development is a Grade A moron. What s the primary use of Glass It s hard to say, especially since the device is still in development, and so many cool features still don t work right. I got it mostly to annoy other people, but that s just me. Does it heat up while under heavy load like taking video Yes, it gets very hot. Luckily, the battery and the circuit are separated from each other, so the heat won t damage the battery. Also, the hot side is away from your face so while the outside can get uncomfortable to the touch, the part touching your head barely feels warm. Do I have to always speak for actions No, you can completely control the device with the touch pad as well. The touch pad is on the side of your face. Can it autofocus That s not needed. It s got an infinite depth of field. The Heads up Display HUD -------------------------- How big is the HUD It s not distracting when you aren t looking at it, invisible, fading from view. It s huge when you are looking at it, taking up most of your field of view. This is perception, not objective measures. Futurism -------- Why would anybody think Google Glass is a good idea They said the same thing about the iPhone and the Newton. The Newton is the best comparison. This was Apple s failed hand-held computer from the 1990s. It was before it s time it was the iPhone hand-held computer that changed the world. In much the same way, Glass is before it s time, but there s good reason to suspect that the effort Google puts into Glass now will result in cool related products in the future. Do you feel like a tool for wearing them I aspire to be a tool. Has anybody objected to you wearing them in their presence Not yet, but I haven t been trying hard enough. Video Privacy ------------- Is it always recording streaming video No. That quickly drains its tiny battery and uses up your phone s data plan. A person with Glass is no more likely taking video of you than a person with a mobile phone. How do they get consent from people before streaming video to the cloud The issue is the same as with any mobile phone. You don t need permission in the United States. I don t know about other country, but in every country I ve been to, people just upload pics video to the web from their mobiles. If someone wearing Glass is at the neighboring urinal, did the entire Internet just see my penis Probably not. Video drains the battery extremely fast, so it s almost never enabled. The problem with Glass is that it doesn t fit in your pocket while not in use. The only convenient place to put it is on your face. Just because somebody is wearing it doesn t mean its on. What mined data is sent to the cloud The same as with any Android phone. This is just an Android device with a smaller screen that fits on your head. How do I disable usr sbin prismd It has no additional privacy concerns beyond what your Android phone already has. How do I tell people wearing Glass not to record me Well, they probably aren t. It drains the battery fast. They are less likely to be recording you than somebody else covertly recording with a mobile phone. How practical is face recognition Not very. The first problem is that face recognition based on 2D static images is impractical. Practical face recognitions requires 4D two cameras to get a 3D image plus dynamic video instead of still images. In short, you need a Kinect-type system. The second problem is compute power and bandwidth. You ll have to stream the hi-def video up to the cloud and let those servers do the number crunching. In short, face recognition is far beyond the abilities of the current device, but will probably become a reality in a few years. Hacking ------- Can I install my own Android apps No at least, not without jailbreaking . Right now, there is a list of 10 approved apps Twitter, Facebook, etc. on the MyGlass site and that s the ONLY thing that can be installed. Can I browse unfiltered HTML sites There is no web browser. The screen is way to small for that. You get only a few lines of text. That s part of Google s cloud services, attempting to summarize the main point of something into a few lines. Is it vulnerable to the evil maid attack somebody secretly adding a backdoor Probably not. First of all, if you take it on a trip, you ll be wearing it the entire time. Second of all, it s hostile to anybody adding software, even legitimate software. Can you run vi on it Unless you jailbreak it, you can t get such apps on the device. The tiny screen is 640x360 pixels, or 80 columns by 30 lines using the standard 8x12 font. Voice recognition is pretty good, so you might get it to work. On the other hand, if anybody caught you trying to do vi text editing using Glass, you d probably get shot.




AddThis Social Bookmark Widget



Les derniers articles du site "Errata Security" :

- I'm hacking your website
- Unwanted access
- SilentCircle and technical debt
- NSA hacking Chinese it's self defense
- A Glass FAQ
- I survived Google's re-education camp
- Even Microsoft has to pay for it
- Upcoming revelations speculations
- NSA poll You are reading the numbers wrong
- Oaths, conscience, and honor




S'abonner au fil RSS global de la revue de presse

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]



Si vous voulez bloquer ce service sur vos fils RSS :
- avec iptables "iptables -A INPUT -s 88.190.17.190 --dport 80 -j DROP"
- avec ipfw et wipfw "ipfw add deny from 88.190.17.190 to any 80"
- Nous contacter par mail




SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :