… Green For The Anti-Pineapple

Background Following on from the previous Post (Blue for the Pineapple…). I now want to introduce the Anti-Pineapple! Your probably asking the question “How do you create an Anti-Pineapple?” The answer is quite simple; by conducting a review of the security measures installed on the Pineapple device itself; it should be quite easy to create a list of possible scenarios and counter-measures.

Smart Cards – A Brief Introduction

Introduction A smart card, chip card, or integrated circuit card (ICC) is any pocket-sized card with embedded integrated circuits.  Nowadays, smart cards are found everywhere, the SIM inside your mobile phone (GSM Smart card), your Bank cards (VISA & Mastercard), your Sky/Cable Set-Top-Box, or even your company ID card additionally used for computer authentication. Because the chips in financial cards are the same as those used in subscriber identity modules (SIMs) in mobile phones, programmed differently and…

Playing a bit with localStorage

HTML5 is here and companies are starting to use it more and more to add value to their products. During the pentest we should be able to identify those new functionalities and their associated risks. I was playing today a bit with some HTML5 apps and localStorage got my attention. This is a feature to store content locally on the browser for later use on the application and may contains sometimes sensitive…