Philippe Langlois weblog

« il n’y avait pas de failles dans le modem-routeur Bbox2 de Belgacom »... Bien sur, on y croit. C'est incroyable de voir ce genre de propagande.

Lire la suite

Excellent source of Cheat Sheets for Security... thanks.

System Advancements at the Monastery » Blog Archive » What%u2019s in Your Folder: Security Cheat Sheets

Lire la suite

Wonderful way of choosing your visualization method... very useful...

Lire la suite

The best resource I found to understand the root cause and issues with the current and future economis crisis.

Lire la suite

Pourquoi Nokia et Apple mettraient la pression sur le W3C pour que OGG/Theora et autres standards ouverts ne soient pas intégrés dans HTML5?

Tout simplement parce que OGG/Theora ne favorise pas le developpement des DRMs, ces verrous numériques illusoires, que Nokia et Apple favorisent pour generer leur revenus.

Une blague me direz vous? Pas du tout, et le W3C suit. Hallucinant.

Du coup, le W3C ainsi que Nokia et Apple se prennent une baffe monumentale de la communauté Internet. Bien fait.

Quand aux workgroups tellement influencés par les majors, il semblerait qu'une meilleure compréhension de l'importance de leur indépendance soit en cours de diffusion. Ca fait du bien.

Lire la suite

Woahhh... this is super cool, animated light sculpture like you rarely see! A must see / experience.

Lire la suite

Where will the crypto scare ("oh my god, some chinese red army hacker broken into the pentagon, please vote more budget!!!") and piracy brainwashing ("When you download a DVD, you are stealing something that the legitimate owner will not have anymore!") will stop?

Here is a funny campaign :)

Lire la suite

The new prototype website of the Young International Woodfirer Association is up and runnning using Joomla! 1.5. The goal of this new website is to enable YIWA directory browsing, photo sharing, organization of conference and workshops etc...

Preview available at:

http://yiwa.dreamhosters.com/

Lire la suite

There's been a recent trend in the US regarding illegal street installation to be considered as potential terrorist bombs.

Is it just me or they are going past the line of being ridiculous? Calling the bomb squad for some luminous signs or statue, that's a bit overkill isn't it?

Lire la suite

Who said biggotry and moral police was only active in USA (nude sculpture charged of being obscene), France (rappers "La Rumeur" charged of being disrespectful to the government), Europe and Muslim world?

In India, a student was recently jailed for depicting in his art work deities having sex. This work was not even intended for public appearance but yet got him jailed.

Lire la suite

This book is amazin, just out from the publisher, it's really a great book about modern and contemporary sculpture. We needed that!

Lire la suite

Shared view with Martyn Davies about SS7 Security. He basically summed up very nicely my introduction to SCTPscan & SIGTRAN security.

Lire la suite

This is an excellent expression of the social "missing mass". When I speak about this, some people go crazy: "What the hell are you talking about?". Well... This is not romantic stance. This is just a vision, we are missing things outside, in the street, for a varied set of factors. As a friend said, interior is the only space of freedom for the contemporary human being. It's why Ikea is succeeding. Also, computers and internet simulate social life online. Thus, the missing mass. The void of streets in post-2000 occidental cities.

Get a first life is a satire that targets exactly this. Go ahead, get a first life for a change.

Lire la suite

Funny way to backdoor a Vista system.

Lire la suite

After the adoption of database for surveillance (Promis case), the use of search engines and Networks of networks for monitoring of citizen exchanges (Echelon case), now there's the commodification of wireless technologies such as WiFi for monitoring purposes.

Combine that with the vigilante practice of online-monitoring that we witnessed with the mexican/texan border and you get a perfect glimpse on the transition from BigBrother to AnyBrother: anybody is going to be the narc or zealot... A nice shot of community based society. Orwell would not even believe his own eyes.

Lire la suite

One of the best book on computer security is now available free, online. This book by Ross Anderson is one of the best resource on computer and network security. It's broad, covers all aspect of computer and network security, gives excellent examples.

Lire la suite

Wow! This got me really interested. You may know Pure Data, a real-time graphical sound (or video) programming / designing interface. Well, this is the NEXT STAGE.

Think about a table on which you drop physical items which produce sounds and interact between them based on their proximity. You move the item, you change the sound. The sound is shown by its signal connecting the different items. A must see!

Lire la suite

I'll be presenting "SCTPscan - Finding Entry Points to SS7 Networks & Telecommunication Backbones" at Black Hat Briefings in March in Amsterdam. My speech is on March, 29 and I'll be showing there the recent advances in penetration techniques against SS7 networks.

When people ask me "Why are you researching this?", I wondered and it came down to this reasonning: I like to explore, to discover things, to know about things that are unknown. And definitely, the SS7 network is one of the most used network (every time you make a phone call, it's the SS7 network that makes it possible), and yet most unknown to the general public (Go ahead, ask anybody if he knows Internet or SS7 network, replace SS7 by "Phone system" and you get a different answer). I think this governs quite a few things in my life: trying to understand things which are not very much studied but yet govern by their shape and interaction a lot of what we do.

Black Hat Briefings Europe 2007 Schedule

The outline of the conference

Lire la suite

A game is just a game, right. Recently, on a virtual massively-multiplayer on-line game called "EVE Online", gaming and real life just got suddenly mixed.

To sum up the situation, a gamer used spying techniques in the game in order to gain intelligence and advantages: something that is rather encouraged by the game developer. In the game, you're a living form in space and pilot spaceships, trade, assault, defend, ... Space Far West.

This user (Kugutsumen) did so well at manipulating and spying that he discovered a tough truth about the game developer: one of them was at the same time playing and using his developer status in order to win the game and give an unfair advantage to the alliance he was part of.

When disclosed, this information was a real bomb: it mixed virtual life and real life, showed that dirty techniques existed in both world, and.... gave a strange outcome.

CCP, the software company that runs the game decided to ban Kugutsumen instead of first investigating the issue. Then, faced with so much outrage and shouts, made an investigation and recognized that one of its developer had indeed played bad.

If you advocate bad behaviors, you'll probably end up with more, in this game it was obvious. And that even for funny (games) thing, you can end up with dirty tricks and "security through obscurity".

Lire la suite

A concert by Andy Bolus. It's great to see friends play in live, but hey, the problem is actually to get to see them live. Andy gives a nice crescendo performance in bent electronics & laptop. A must see for the experimental crowds :)

Lire la suite

Nice new company. With this one, you can do free webcasts: show powerpoint, talk on the phone conference call to explain them (free US number, so now it's free with VoIP offers), share your desktop, etc...

I'm going to use this for my next SCTPscan workshop actually. The last one was great, with excellent questions and remarks.

Lire la suite

Discovering a new artist that rocks is always a pleasing experience. Tom Sachs is my recent inclusion in my list, and i'd love to share it with you.

When I walk all the art galleries of one town, usually on 20 or 30 galleries, I find only one or two that shows work I like. Tom Sacks shows a personal world of chaos, illegal stuff, society judgement on things. He manages to be demonstrative and yet not anecdotical nor trivial. I like that. Fun is one force of his fun, irony too. The result is an hindsight into some things you may not acknowledge immediately about where we live. Yet, he speaks about now.

Societal Hazardous Material Handling Chamber

A must see: Tom Sachs, Islandia, January 20 - February 24, 2007, Thaddeus Ropac gallery

Lire la suite

Interesting video showing evolution from web1.0 in its beginning, up to web2.0 changes.

It's not just the look, it's the way everything is structured in a new dynamic.

Short (4:31) and interesting intro to web2.0.

Lire la suite

I'll be making a presentation at IT Underground in March. The subject of this presentation will be:

SCTPscan - Finding entry points to SS7 Networks & Telecommunication Backbones

This will be followed by a hands on workshop on how to test SIGTRAN / SS7 over IP networks and how to use SCTPscan and other tools to do this.

Lire la suite

Are you the kind of person who love computer graphic representation of complex systems? Well... then, Opte is going to satisfy you. Something like an open source-minded version of CAIDA.org, it's a real pleasure to see this project going strong.

Lire la suite