gotta love the tiny PCB full of all the compliance logos :D in the meantime i just got my design produced for a 400V power supply that contains the labeling "DANGER ZONE!" and i figured if that doesn't stop you touching it i can't help you anyway :P
@KirbyDaMasterРік тому
Godamn man i really hope 7 years on the chemist learned how to do public speaking. so many "uh"s, i never realized id be so fixated and annoyed on that.
@smacks999Рік тому
Looks great! Do you have the sketch to share?
@kekkettoful2 роки тому
hello can i do packet injection with ubertooth?
@CodyMechanix2 роки тому
You guys should provide us windows 10 users with working links for a pre-built copy of cen64.
@perfumedmanatee62353 роки тому
FRONT TOWARDS PLAYER
@jtn1913 роки тому
I can't get CEN64 running on Windows 10. Apparently I have to build it myself? Great talk, love seeing progress on emulating the N64
@natecw41643 роки тому
It's a ring toss game.
@Markus4513 роки тому
As of 2020, what's the status of the broken encryption on BT Smart?
@cyberhuman66403 роки тому
Hey Mike! I think you're awesome and appreciate your videos/research. I am currently getting my masters and my thesis research will include BLE... if you had a few minutes that I could pick your brain, I would be super appreciative! If you do, comment back and I'll leave my email for you (I just don't want to post it right now so the crazies can get it haha). Thanks for your consideration!!
@greencoder15943 роки тому
Link to the paper: www.usenix.org/system/files/conference/woot13/woot13-ryan.pdf
@jemoeder11474 роки тому
hi mike , im new to the hack rf portapack and purchased one , could you help me a bit with it ?
@Mountainmonths4 роки тому
wow interesting talk
@theannoyedmrfloyd39984 роки тому
Any way to bypass the chip entirely? Ten Gen not Ten Jen.
@nuthinnew38813 роки тому
Say generator
@emmettturner94523 роки тому
@@nuthinnew3881 He's right. I always called it "Tin Jen" until I saw an old CES video where a Tengen employee called his own company "Tin Gen[ji]" "Gen-ji G is hard G, like again, guy, great and so on"
@LiEnby4 роки тому
32:00 "uh right now where working on undo functionality, as thats very important" LMFAO also if you have ACE on the PIF, cant you just disable the CIC checks anyway ?
@kylehill36435 років тому
All the CEN64 files lead to dead end 404 errors. WTF?
@JacobHepworth5 років тому
They're working for me. Are you looking on their Github?
@RegalPixelKing5 років тому
This is very interesting. It is exciting to know that we are finally getting an emulator that is going to eventually be completely accurate to the original hardware. For the time being it will be better to stick to Mupen64, but this is definitely going to be my emulator of choice once there are more updates and optimizations improve it.
@deckofcards876 років тому
I'll support you if you're on patreon
@codecoderr74956 років тому
hey, emu author here. Good to hear hardware development / reverse engineering from others!. Cheers.
@furrtek6 років тому
Great stuff !
@tonyferber32526 років тому
What is the IRC channel please, and are they receptive to enquiries, or is it just for dev questions thanks?
@SpectatorAlius6 років тому
It was true when he said it, that "key exchange is broken". But now in Bluetooth 4.2 they support Diffie-Helman Key Exchange -- as they should have done in the first place.
@sorellekamdem34426 років тому
is it possbile to get the bluez source code you are using to fuzz?
@marinellovragovic12076 років тому
I wanna like this video so badly but it's counting at 64 right now, so forgive me
@sorellekamdem34426 років тому
is it possbile to get the bluez source code you are using to fuzz?
@Oblivionburn6 років тому
Good to see the project hasn't died... still my only hope of playing Gauntlet Legends 64 lol
@anonlopez27186 років тому
Thank you man!
@Ganjulation6 років тому
Great talk, make N64 emulation great agian. Dont let the globalist agenda of plug-ins and hacks get in the way.
@RobertButler14 роки тому
Globalist agenda?
@breakersun6 років тому
Thanks for sharing, very helpful.
@drewconley64447 років тому
Is there any way I could donate to this? I've been waiting for an accurate n64 emulator for years!! I'll fully support what you guys are up to.
@runewhiz7 років тому
Hey im doing a project at the moment, and could you give me a nudge in the right direction into how to force re-pairing?
@romanbogza7 років тому
Can you clarify as why implementing security layer on top of GATT is a bad idea? (referring to 23:05), as that is what I did for my project:). Excellent talk BTW.
@mpeg4codec7 років тому
Building secure crypto systems is so hard that expert cryptographers with years of experience still make mistakes. Although flawed, BLE crypto is secure enough for most scenarios. A crypto system created by a non-expert is likely to be significantly more flawed.
@kazinasimfaisal7 років тому
mike what is your opinion after 5 years
@mpeg4codec7 років тому
Bluetooth 4.2's LE Secure Connections fix the pairing problem, but 4.2 is not widely supported yet. LE Legacy Pairing has crypto issues at pairing-time as well as UI/UX issues in Android/iOS. If you're building a BLE device and you can work around the UI/UX issues, you should probably use Legacy Pairing. While it has pairing-time weaknesses, in the long run it's secure and it's probably better than what most people will invent themselves.
@yunushkin886 років тому
Good evening Mike. I sometimes revise your video, sometimes even began to understand what you are talking about)) my friend do until a prototype security system for a small house. Here we have tried to build different networks on chips TI, STM32, NRF, Silicon Labs. We tried different network 6lowpan, Thread (2.4 GHz, Sub1GHz), BLE, MESH, Bluetooth, 5 (all this is of course a test, not commercial). Whatever you're network is implemented. Now here Bluetooth 5, Bluetooth mesh. Do You think such as sensors are networked Ble Mesh a good choice for the floor of an office building? Or better to take 6lowpan on 868 MHz for example. I understand that this is a difficult question right now I'm just sitting here thinking that with all this iron and stacks to do.
@Mike.Garcia7 років тому
Anyone know if anyone is making new n64 cartridges, for new homebrew games?
@renakunisaki7 років тому
Could this vuln do more than crash my music player?
@arunmagesh6 років тому
App crashed because of memory violation. if a crafted data is sent, remote code execution could be possible.( bit tricky with ASLR in android)
@ANTIMONcom7 років тому
do they still use the same bad key agreement protocol?
@SpectatorAlius6 років тому
Yes, if you use the same pairing method you used with 4.0. But there is a better option available now: the "LE Secure Connection". This option even uses the Elliptic Curve version of Diffie-Helman Key Exchange, finally addressing the absurd flaw Ryan exposed so well in this video.
@joshway55997 років тому
He doesn't know "why networking people call 'octets', 'bytes'..."? I get the comments tort, but it made him sound really uneducated. Otherwise a decent overview.
@mpeg4codec7 років тому
It was intended as a joke but didn't land quite right I guess. Thanks for the feedback.
@Bylga7 років тому
Isn´t it possible to hardwire cic or make a adapter pcb to make system region free?
@Ninjastar2027 років тому
My N64 plays all regions
@SianaGearz6 років тому
You can hardwire existing CIC into your system to bypass copy and region protection. But it won't work with all games. Unfortunately you can't just cut out the CIC reset line in the console like in the prior systems. The console-side CIC on N64 is integrated into PIF chip which does a lot of other things, so if you were to bypass its capability to jam the processor and RAM, you still won't have working inputs and such. It's desirable to have reproduction CIC regardless. There has been active homebrew scene with physical releases on multiple consoles now, on Neo-Geo, Dreamcast, Megadrive - with CIC reproduction, it becomes possible to make new cartridge runs for Nintendo systems too without destroying more existing cartridges.
@CaiZhongwen20238 років тому
hi,I am using A42MX09 PL84 and A42MX02 PL68 不过这型号比较老了呵呵
@farhan008 років тому
Was watching this video while reading the paper by Mike Ryan. Excellent.
@DekoAs3Breezer8 років тому
really interesting, tho suck really bad that no demos are available for us :P
@JT-9018 років тому
Bluetooth 4.2
@lovetodaylivetommorow28617 років тому
Jacques Townsend it can still be broken you know
@VictorNascimentoo9 років тому
>2015 >wireless security still broken
@DaveJacoby9 років тому
So, don't buy Bluetooth LE door locks
@heyaisdabomb9 років тому
I'm confused. Reading up about the new BT LE house locks, I found this: "Unlike Bluetooth version 2.1, the latest version doesn't actually require two devices to initially pair with each other the way you would have to pair your smartphone to a Bluetooth headset, for instance. So more common Bluetooth-based attacks like Bluejacking, Bluesnarfing and Bluebugging are a non-issue". source: gizmodo.com/are-smart-locks-secure-or-just-dumb-511093690 paragraph 6, line 2 But this video shows bt le devices DO pair. and that sniffing a connection is easy. Show is this article wrong? Or am I misunderstanding BT LE?
@janigerud9 років тому
Really good talk for getting to know Bluetooth Smart and it's security flaw and a big thanks to Mike Ryan and the great people who made Ubertooth :-)
@TheTraveler97610 років тому
Cool catch, cant wait to fly it next year from Lax to Singapore.
@santospoland10 років тому
Nice job.
@santospoland10 років тому
Real Exchange key protocol. Hopping patterns/sequence is not gonna secure you.