Tricking Android Smart Lock with BluetoothThe Smart Lock Feature allows Android users (Android version 5.0 and later) to automatically unlock their smartphone whenever a trusted device, Wi-Fi network or geo location is in close proximity. Trusted devices could either be NFC tags or Bluetooth devices. Looking at Bluetooth devices, it turned out that the Smart Lock implementation had at least one security issue that got resolved. Early implementations of Smart Lock implied that when a trusted Bluetooth device was connected to the phone it was safe to unlock the respective device. The method upon which the connected Bluetooth device was identified did miss an important point, though. Read the rest of this entry »

auditing_smarttvIn a recent assignment, I was asked to do an IT security audit of a Samsung Smart-TV app. It took me some time to find the (for me) ideal solution to do the audit with my usual setup of tools. Since Smart-TV apps are based on javascript, they run on a fancy browser in the Smart-TV device. Consequently, using the same auditing techniques for Smart-TV apps as for web applications makes sense.  So the goal was to get all the requests and responses from the emulator through a proxy – in my case BurpSuite. I hope to help fellow IT security auditors to save some time with this little write-up. Read the rest of this entry »

In the last blog-post on this blog,  I focussed on the use of Google analytics in HbbTV applications. After almost two months, the situation has changed quite a bit. Read the rest of this entry »

hbbtv_analyticsAfter yesterdays talk at 30C3, a very intersting question was asked by a person the audience. The question was, whether the stations that use Google analytics in order to track their viewers are using it in a legal way. In order to use Analytics legally, the tracking code has to be used with the anonymizeIp parameter. So I took some time and checked the stations red button pages in order to find out, whether the tracking code complies with the law. Read the rest of this entry »

spoooftickerSince attackers could modify the information that is being displayed on HbbTV capable SmartTVs, there is now a project that overlaps the news ticker section of some stations’ program. Read the rest of this entry »


HAL – to serve and protect

Major players in the entertainment industry specified a standard that defines a way for connected Smart TVs to access additional content from the Internet. This so-called HbbTV standard (Hybrid broadcast broadband Television) uses portions of the DVB broadcast stream (DSM-CC) in order to embed references to online resources. As it turned out, many HbbTV-capable devices offer little or no protection against malicious content that is eventually loaded down from the Internet by Smart TVs. Possible attack vectors are shown in my earlier Blog post.
Read the rest of this entry »


OMG – our Smart TV got pr0wn3d!

A large amount of the TV sets currently available for sale belong to the group of “Connected TVs” or “Smart TVs”. These devices have the capability to access the contents of online media libraries and allow users to access Internet-pages via an integrated web-browser. Mostly for the European market, the available devices have a feature called HbbTV. HbbTV stands for Hybrid Broadcast Broadband TV and defines a standard for TV sets to access station-specific online contents. Read the rest of this entry »

In diesem Post habe ich einfach die Links zusammengeschrieben, die mir bei meinen Recherchen zum Vortrag positiv aufgefallen sind bzw. aus meiner Sicht relevante Informationen beinhalten. Die Links sind relativ unsortiert und haben meistens nur eine kurze Inhaltsüberschrift.

Wer das hier gut findet und das ohne viel Zutun unterstützen möchte, setzt sich am Besten ein Bookmark auf diese Seite und klickt vor jedem Einkauf bei auf das auf der linken Seite. Vielen Dank 🙂

UPDATE: Das Video vom Vortrag ist jetzt online!


Österreichische Unterschriftenaktion gegen VDS (mitmachen und weitersagen!)

AnonBox-Projekt des CCC

DuckDuckGo (Diskrete Suchmaschine)

Wikipedia-Eintrag zu Vorratsdatenspeicherung

Digitalks Social Graph (Beispiel für Netzwerk Visualisierung)

InterVPN – Übersicht mit vielen VPN-Anbietern

Tor – The Onion Router

TKG 2003


Verfassungsklage gegen Vorratsdatenspeicherung

Österreichische Prepaid-Handies–schweiz/uebersicht-oesterreich.php

ARGE Daten zur Vorratsdatenspeicherung



VDS – Verstoß gegen Grundrechte—verstoss-gegen-grundrechte-004958

IF WE DON’T, REMEMBER ME. (Living Stills)

fuck you very much – Blog (immer eine gute Inspiration)

Richtlinie 2006/24/EG über die Vorratsspeicherung von Daten

Zypern (Balls of Steel)

Irland und Slowakei dagegen!49123/

Sehr gut reflektierte Beiträge zum Thema


CCC-Studie zur VDS

Arbeits-Kreis Vorratsdatenspeicherung Österreich

Richtlinie 2006/24/EG über die Vorratsspeicherung von Daten

When I first played around with asterisk in 2006, I was overwhelmed by all the different options and features that this full fledged open source PBX comes with. Back then I installed an administration front-end called FreePBX. This freely available UI helps you configuring all different and complicated scenarios easily. You don’t have to touch the text-based asterisk config files.

Due to some stupid errors on my behalf, I had to do a new setup of my telephony system, recently. Again, I decided to use FreePBX as a management interface, but this time with Asterisk Version 1.6 underneath. The documentation always refers to the older 1.2 version, but using Asterisk 1.6 (compiled from source) works without problems with FreePBX.

Now, it is very easy to configure features like conference rooms, waiting queues, voice menus and blacklists (for those annoying phone marketers). In order to receive calls, I registered a bunch of numbers (for different purposes) at sipgate. In Germany, it is necessary (since ) to proof that you are living in the respective location you are registering the number for. Sipgate Germany solves this via verification letter or fax.

If you got interested in playing around with your own installation, then check out the following pages:

Tell me about your experiences… especially if and how you got fax working 😉

fuck you very much widgetOut of personal dedication to a genius photo blog, I decided to do one of my first Android applications for The fuck you very much widget is a home screen widget that randomly displays miniatures of the photos along with the comments as posted on this blog. If one clicks on the widget, all the actual photos can be flipped through in a slideshow-like view. The application updates the feed on an hourly basis and has a fall-back mechanism for times when tumblr happens to be offline.

Keep in mind that this application – due to the mildly erotic content – would never become available for iPhones (except for jail-broken ones). So enjoy your freedom being an Android user and install this free app from the market by scanning the code with the Barcode Scanner app on your Android phone (Android version 1.6 and above).

For my part: I love this photo blog and find it very entertaining. You definitely should give it a chance – even if you are not owner of an Android phone.