Full Disclosure mailing list archives
Re: Hacking into a Windows CE PDA?
From: "James Matthews" <nytrokiss () gmail com>
Date: Thu, 28 Jun 2007 10:28:37 -0700
Yes Shmoo con was a great talk! There should be some stuff online On 6/28/07, matthew wollenweber <mwollenweber () gmail com> wrote:
It's pretty easy to attack Windows Mobile. There was a good presentation at Shmoocon 07 regarding that topic. If you can grab the slides it would be a good starting point. If you get physical access the game is over. Generally the things mount automagically as a hard drive. Even if they don't 9 times out of 10 the password is only a 4 digit numeric deal. If you really want to exploit the thing Ida supports Windows CE files. Generally the programs are very badly written so if you start fuzzing you'll find something quickly. They're a bit of overhead to all that. You need the SDK, the virtual Windows mobile device, and a newer version of Ida. However, it's been my experience that that most Mobile apps crash on their own. So, a couple minutes fuzzing is generally all you need. On 6/28/07, rx8volution <rx8volution () ishackingyou com> wrote: > > Hello folks, > > I have the occasion of needing to get an opinion on how 'difficult' > it would be to hack into (bypassing the 10-guess password limit, and > assuming complex passwords) a Windows 2003 Mobile Edition PDA. > > Thoughts? > > Thanks. //RX8volution. > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Matthew Wollenweber mwollenweber () gmail com | mjw () cyberwart com www.cyberwart.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-- http://www.goldwatches.com/watches.asp?Brand=14 http://www.jewelerslounge.com
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Hacking into a Windows CE PDA? rx8volution (Jun 28)
- Re: Hacking into a Windows CE PDA? matthew wollenweber (Jun 28)
- Re: Hacking into a Windows CE PDA? James Matthews (Jun 28)
- <Possible follow-ups>
- Re: Hacking into a Windows CE PDA? Joey Mengele (Jun 28)
- Re: Hacking into a Windows CE PDA? matthew wollenweber (Jun 28)