Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

3D Hacking Environment Links Kinect, Blender, and Metasploit

timothy posted more than 3 years ago | from the need-to-work-in-2d-life-angle dept.

GUI 93

baxpace writes with a link describing a way to test your own security systems for vulnerabilities using Kinect-interpreted natural gestures in tandem with the Metasploit Framework and the Blender game engine, writing: "The idea is to hack into your own systems while in a 3D, first person shooter style environment that interfaces with the Kinect sensor. The game engine was built using Blender and looks to be one of the most pleasing ways of uncovering your own systems' architectural/networking vulnerabilities."

Sorry! There are no comments related to the filter you selected.

The Gibson (2, Funny)

Anonymous Coward | more than 3 years ago | (#37066240)

We can finally hack it!

Re:The Gibson (0)

Anonymous Coward | more than 3 years ago | (#37066330)

Hack the planet! Hack the Planet!

Re:The Gibson (0)

Anonymous Coward | more than 3 years ago | (#37066718)

They're trashing our rights! Trashing them!

Re:The Gibson (1)

squidflakes (905524) | more than 3 years ago | (#37068380)

Is that a twenty eight point eight kay bee pee ess modem?

Re:The Gibson (1)

justforgetme (1814588) | more than 3 years ago | (#37080340)

No, it's an active matrix LCD screen! A million psychedelic colours!

Re:The Gibson (2, Funny)

Anonymous Coward | more than 3 years ago | (#37066732)

This is UNIX! I know this!

Re:The Gibson (1)

Stupendoussteve (891822) | more than 3 years ago | (#37076856)

Except fsn [siliconbunny.com] was real file manager for IRIX. You can get fsv [sourceforge.net] to recreate your own favorite Jurassic Park scene from the comfort and safety of your own home.

Swordfish (4, Insightful)

Ramin_HAL9001 (1677134) | more than 3 years ago | (#37066270)

I hate Hollywood style hacking with all that fancy 3D graphics that flash around on the computer screen while the "programmer" sits in front of it typing randomly on the keyboard saying, things like "512 bit encryption", "almost, almost", "come on!", "don't do this to me", "got it!".

So now we have an actual hacking application with actual 3D graphics that actually mean something. Too bad it doesn't look as cool as in the movies.

Re:Swordfish (1)

Ramin_HAL9001 (1677134) | more than 3 years ago | (#37066322)

Actually, now that I think about it, it looks more like Johny Quest.

Typing speed is everything! (1)

StoneyMahoney (1488261) | more than 3 years ago | (#37066390)

Prior art: Wargames, hacker types on keyboard while saying what he's typing for the benefit of the audience who aren't looking at the screen.

"What... {bashbashbashbashbashbashbashbashbash} ...is... {bashbashbashbashbashbashbashbashbashbashbashbash} ...the primary... {bashbashbashbashbashbashbashbashbashbashbashbashbashbashbashbashbashbash} ...goal?"

Hollywood couldn't even do a chatbot session right back in the 80's!

Re:Swordfish (2)

pinkstuff (758732) | more than 3 years ago | (#37066496)

This is what me and my friends refer to as "HOS", Hollywood Operating System

Re:Swordfish (1)

EdZ (755139) | more than 3 years ago | (#37066806)

As opposed to the other HOS [imageshack.us] , which results in rampaging construction machines due to malicious backdoor code.

Re:Swordfish (1)

Opportunist (166417) | more than 3 years ago | (#37069678)

Userfriendly called it Movie-OS [userfriendly.org] a decade ago.

Re:Swordfish (0)

Anonymous Coward | more than 3 years ago | (#37066744)

Anybody who knows something about a subject dislikes how it's generally depicted in films.

Re:Swordfish (1)

Speare (84249) | more than 3 years ago | (#37066864)

How about Global Thermonuclear War? --David

This is Unix! I know this! --Lex

All I see now are... Blonde, Brunette, Redhead. --Cypher

Re:Swordfish (1)

LordLimecat (1103839) | more than 3 years ago | (#37067548)

This is Unix! I know this! --Lex

If I remember correctly, it actually WAS Unix.

Re:Swordfish (1)

robthebloke (1308483) | more than 3 years ago | (#37067740)

Irix running on an SGi machine (ILM would have had hundreds of the things lying around....)

Re:Swordfish (2)

Fatch Racall (2330110) | more than 3 years ago | (#37068536)

I distinctly remember seeing a c:\ prompt(DOS, usually), a Mac OS(trash can, quicktime, etc), Lex said it was Unix, and I remember them mentioning that they were 'supercomputers' which suggests CrayOS. In other words, the most retarded system ever created.

Re:Swordfish (1)

Opportunist (166417) | more than 3 years ago | (#37069734)

You just can't top this [youtube.com] in terms of utter stupidity. Yes, it's German, but the idiocy should need no translation.

But then, it's from an action show that seems to build its cars out of C4 explosives, so cut them some slack. :)

Re:Swordfish (1)

robthebloke (1308483) | more than 3 years ago | (#37067698)

Hmmm..... Fancy 3D graphics? Unable to describe "programmers" without the use of quotes. Frequent uses of phrases such as "Come on!" "FFS" "Don't do this to me!!".

You do realise you are describing Window Aero? :p

Re:Swordfish (1)

DaVince21 (1342819) | more than 3 years ago | (#37078272)

How about creating a GUI in Visual Basic to track down someone's IP address?

And you really need all this (3, Insightful)

aglider (2435074) | more than 3 years ago | (#37066274)

in order to audit your own systems?
Cool, but rather complex for an audit!

Re:And you really need all this (4, Funny)

DarkOx (621550) | more than 3 years ago | (#37066596)

Manager: What do you think you think you're doing you can't play video games at the office, at least not during business hours!

Jr. Network Admin: Sir I am conducting a Pen test of against our dev environment.

Manager: Yea I think my kid likes one too, its Japanese right?

Network Admin: Sir I am its not a game.

Manager: Look I know you guys take you aviators seriously, but try to do it on your own time ok.

Jr Network Admin: Sir I think you mean avatar and like I said this is actually not a game its a front end for metasploit.

Sr Network Admin: He cut the crap Jr that interface is not scriptable at all and how many times do I have to tell you if you think you're going to do it twice, script it once! It leaves more time for slashdot.

Manager: What is slashdot?

Sr Network Admin: Its a um.. hmm.. I guess you'd call it a computer based continuing education tool.

Manager: Really, that sounds great, I want the whole department spending a couple hours a day on this slashdot.

Re:And you really need all this (1)

Anonymous Coward | more than 3 years ago | (#37066626)

Continuing education? I weep for the industry.

Re:And you really need all this (1)

Opportunist (166417) | more than 3 years ago | (#37069784)

I informed my manager that /. is a communication tool with various other experts in the business and that it is very beneficial to find all the security concerns quickly, so I have to spend a lot of time there.

I think I mentioned before what's the key benefit of being in IT security is, didn't I? People know even less about ITSEC than about the rest of IT, so bullshitting them is even easier.

Re:And you really need all this (1)

orgelspieler (865795) | more than 3 years ago | (#37070858)

I tell my boss it's where I find out about changes in patent law and important pending technology litigation.

Command line for me (2)

king_grumpy (1685560) | more than 3 years ago | (#37066286)

Call me old school, but I'd prefer a command line. Can't see this taking off for security professionals.

Re:Command line for me (0)

Anonymous Coward | more than 3 years ago | (#37066298)

Call me old school, but I'd prefer a command line. Can't see this taking off for security professionals.

That's it! I'm calling you old school, my liege.

Re:Command line for me (1)

Ramin_HAL9001 (1677134) | more than 3 years ago | (#37066318)

I'm with you.
With Compiz as your window manager, and an ordinary VT100 terminal emulator, or perhaps Emacs-GTK with a black background, you can make your computer look like a Hollywood movie hacker's computer, with it actually BEING a hacker's computer that can actually hack things. It's not the 3D that matters, it is how quick and efficient you are at searching through lots of code and modifying it. If the 3D isn't helping you be more efficient at that, get rid of it.

Re:Command line for me (1)

king_grumpy (1685560) | more than 3 years ago | (#37066362)

Yeah doesn't Hugh Jackman have something like kinectasploit on a PDP-10 somewhere :)

Re:Command line for me (0)

Anonymous Coward | more than 3 years ago | (#37066468)

I'm with you.
With Compiz as your window manage

So no, you're not "with him".

Re:Command line for me (1)

eriqk (1902450) | more than 3 years ago | (#37074830)

I'm with you. With Compiz as your window manager, and an ordinary VT100 terminal emulator, or perhaps Emacs-GTK with a black background, you can make your computer look like a Hollywood movie hacker's computer, with it actually BEING a hacker's computer that can actually hack things.

Hollywood's way ahead of you. [boingboing.net]

Re:Command line for me (1)

DaVince21 (1342819) | more than 3 years ago | (#37078342)

But now you can imitate even more Hollywood movies!

Re:Command line for me (0)

Anonymous Coward | more than 3 years ago | (#37066486)

Old school? what happened did you loose your captain crunch whistle? get with the times before the times get you... Personally it might be enjoyable to see what the hip thrust movement does. :P

Re:Command line for me (0)

Anonymous Coward | more than 3 years ago | (#37066624)

Motherfucker, I got an Arduno and a BackTrack Live CD in a box of Cap'n Crunch. It's still as hackalicious as ever.

Re:Command line for me (1)

Opportunist (166417) | more than 3 years ago | (#37069798)

Get offa my lawn, whippersnapper! Only a young'un could poop on that whistle, it saved me thousands of dollars worth of phone bills back in the ol' days!

Re:Command line for me (1)

robthebloke (1308483) | more than 3 years ago | (#37067774)

Call me old fashioned, but I'd prefer to see rows and rows and rows of blinky lights. No practical reason for this. I just like blinky lights.

Re:Command line for me (1)

_0xd0ad (1974778) | more than 3 years ago | (#37069880)

They're called blinkenlights.

Waste of time? (1)

Errol backfiring (1280012) | more than 3 years ago | (#37066328)

Gee, if you have so much time to waste, can you lend me some?

The hacking movies of the 90s were right! (1)

rebelwarlock (1319465) | more than 3 years ago | (#37066352)

Damn, now I have to buy roller skates and glow sticks. Penetration testing used to be so simple!

Re:The hacking movies of the 90s were right! (1)

SlashV (1069110) | more than 3 years ago | (#37066764)

But hey, if you're lucky, you'll get to kiss Angelina! That should be worth your trouble.

Re:The hacking movies of the 90s were right! (1)

Opportunist (166417) | more than 3 years ago | (#37069832)

Nah, that part of the movie is so unrealistic...

Re:The hacking movies of the 90s were right! (0)

Anonymous Coward | more than 3 years ago | (#37066818)

Make sure you have a nice glass of wine as well while you're hacking away.

BFG (1)

abelb (1365345) | more than 3 years ago | (#37066464)

Merge it with the Doom source and play online with your friends and strangers!

Re:BFG (2)

olden (772043) | more than 3 years ago | (#37066528)

Yes! That's exactly what this reminds me of: psDooM ! http://psdoom.sourceforge.net/ [sourceforge.net]
Why merely check for vulnerabilities when you can obliterate them, along with the rest of the system you're "auditing" :-)

Re:BFG (1)

Kompressor (595513) | more than 3 years ago | (#37067646)

Kill 'em all and let root sort 'em out!

But can it hack... (0)

Anonymous Coward | more than 3 years ago | (#37066472)

The Gibson?

I hacked the Gibson! (0)

Anonymous Coward | more than 3 years ago | (#37066492)

But the the Cisco fragged me! Aaaaaarrgh!

I know what OS they are using at least (1)

brunes69 (86786) | more than 3 years ago | (#37066510)

It's a UNIX system!!!!!

http://www.youtube.com/watch?v=dFUlAQZB9Ng [youtube.com]

Re:I know what OS they are using at least (1)

flimflammer (956759) | more than 3 years ago | (#37069298)

At least the software she was using was real.

All these times... (2)

BenevolentP (1220914) | more than 3 years ago | (#37066616)

All these times you tried to explain people that what they see in the movies is bullshit when it comes to "hacking". And now, that SOME slowly get it - bam - they will inevitably see this and think that you have no idea what you're talking about when it comes to computers.

Re:All these times... (0)

Anonymous Coward | more than 3 years ago | (#37066700)

Lesson learned: quit trying to explain computer shit to lay people. They don't really want to know. And they will never really understand.

Re:All these times... (-1)

Anonymous Coward | more than 3 years ago | (#37066762)

A conversation I have just had with a colleague:
Q: Why are you hogging all the bandwidth?
A: I need to work from home, and I need to take this data with me.
Q: What data?
A: Just some stuff from the database.
Q: No, hang on, no techno bullshit, give it to me in detail?
A: Okay, it's an SQL dump of a portion the site's database so that I can recreate some taxonomic relationships on the home system.
Q: What's a taxonomy?
A: A taxonomy is a set of classifications applied to an object. So for example a dog might be categorised as Dog, Mammal and canine. This complex intercconected web of relationships, when applied to thousands of website nodes, form the basis by which our product data is categorised. I am now downloading all that data so I can work on it over the weekend for no extra pay and no recognition.
And that is why your f*cking youtube videos are buffering, you f*ckwit.

I didn't say that last line. I just wish I had.

Re:All these times... (2, Insightful)

Anonymous Coward | more than 3 years ago | (#37066816)

I smell bullshit. No real-life colleague could make the linguistic jump from taxonomic to taxonomy unaided.

Re:All these times... (1)

Anonymous Coward | more than 3 years ago | (#37067190)

Perhaps the colleague was an English major?

Re:All these times... (1)

justforgetme (1814588) | more than 3 years ago | (#37080406)

or a taxonomy major :-)

Re:All these times... (1)

T.E.D. (34228) | more than 3 years ago | (#37067792)

Good. That'll keep them from asking me to fix theirs.

Re:All these times... (1)

tacokill (531275) | more than 3 years ago | (#37069284)

Good! Maybe they'll quit bugging me for help and asking stupid questions about "apps". For them to think I know nothing about computers is not the world's worst outcome....

Re:All these times... (0)

Anonymous Coward | more than 3 years ago | (#37071096)

Once upon a time, there was a master of computers.
And there was a herd of idiots.
The idiots, despite knowing shit, judged the master.
And the master, despite knowing they know shit, cared about their judgment.
The moral of the story: Grow some balls and a spine, say NEIN, and you will be mighty fine! ^^

Pleasing? WTF? (1)

Qbertino (265505) | more than 3 years ago | (#37066702)

How on earth is this 'a pleasing way of uncovering system architecture'?
3D visuals? OK, I get that. However, I'd leave out crappy wall textures and 3rd grade FPS props and stick to abstract platonic and geoedic shapes with distinct colors, connected with various forms of lines and indexed with a cool looking 3D-enviroment-friendly font. ... The pointy balls aside, I'd basically do pretty much everything exactly opposite of how they did the 3D. ... This guy [quelsolaar.com] has it pretty much nailed in terms of 3D enviroment UI and data ... since, like, 8 years ago or so.

The actual work I'd have scripts do, while I go and flirt with the helpdesk cutie over a latte. ... As, errm, pretty much everybody does it today already, I might add.

What system analyser in his right mind is going to wave his hands around and shake his hips to lauch scanners and change views?? My fingers can do that way faster. And much cheaper. ... And the technology is there allready.

Bottom line: Nothing new. Not so spectacular realisation. Way better solutions out there allready. No cookie!

My 2 cents.

Re:Pleasing? WTF? (0)

Anonymous Coward | more than 3 years ago | (#37066800)

What system analyser in his right mind is going to wave his hands around and shake his hips to lauch scanners and change views??

Mr The Plague already did this.

Re:Pleasing? WTF? (2)

Sinthet (2081954) | more than 3 years ago | (#37067090)

I'm pretty sure this hack was done "just because" and "for fun" rather than a serious attempt at a front-end for metasploit.

Re:Pleasing? WTF? (1)

spaceman375 (780812) | more than 3 years ago | (#37068074)

While you visit a friend, give his kids a bootable USB stick and let THEM play the game. When they "win", show him what they just did.

movie (1)

goarilla (908067) | more than 3 years ago | (#37066734)

Reminds me a little bit of the movie nirvana, with christopher lambert of highlander fame.

Works for me (1)

Lieutenant_Dan (583843) | more than 3 years ago | (#37066766)

I found a trojan of some sorts in the NT kernel; someone left the message "Created by Warren Robinett". Weird, only happens when I hit this invisible spot with Metasploit in the Kinect/Blender interface. I wonder if he's still employed by Microsoft.

Zumba? (1)

polle404 (727386) | more than 3 years ago | (#37066776)

"3D Hacking Environment Links Kinect, Blender, and Metasploit"....and Zumba!

So now I can "hack" like a scriptkiddie, while playing 'Dance Dance Revolution'?
come to think of it, my 7 Year old goddaughter would probably be a better "hacker" than me, if it comes to this.

The positive sideeffect is that the scriptkiddies soon will have the physique to run from the cops/feds.
"news at eleven: Hackers fitter than jocks!" (still can't catch a fuusball, though)

Scary! (1)

Ian-K (154151) | more than 3 years ago | (#37066830)

Now that's scary.

Hacking is going to be waaaaaay more fun with this thing... And lots of people are now going to have a go at it just for the fun of it.

Hmmm

povray (1)

flok (24996) | more than 3 years ago | (#37066964)

Slightly related: it would be nice if someone wrote a program that lets you create 3d models for e.g. blender or povray using a kinect. I wrote the beginning for that ( http://www.vanheusden.com/kinect2povray/ [vanheusden.com] ) but don't have the time to extend it so that it combines multiple angles.

Re:povray (1)

Khyber (864651) | more than 3 years ago | (#37067094)

How about creating a gesture-based 3d modeling program? Act like you're sculpting out stuff in a 3d space and instant model!

Re:povray (0)

Anonymous Coward | more than 3 years ago | (#37077528)

How about creating a gesture-based 3d modeling program? Act like you're sculpting out stuff in a 3d space and instant model!

The latest post addresses this - http://goo.gl/uzOmn

Re:povray (1)

Khyber (864651) | more than 3 years ago | (#37080136)

That's not even remotely close to what I'm talking about.

I'm talking about starting with a blank space, you make a movement or gesture, a sphere appears. You start "grabbing" the sphere and start creating a model. There is nothing to interact with besides what you see on screen. You 'rotate' the sphere, it rotates on screen.

Doom (1)

sgt scrub (869860) | more than 3 years ago | (#37066972)

wasn't there a network management interface or something like that based on doom? supposedly you went around shooting stuff to make changes or something. i wish i could remember its name.

Re:Doom (1)

49152 (690909) | more than 3 years ago | (#37067154)

Re:Doom (1)

sgt scrub (869860) | more than 3 years ago | (#37068566)

That's it! You shoot processes to kill them. Awesome.

Eduard (1)

haggus71 (1051238) | more than 3 years ago | (#37067130)

Am I the only one picturing Ed on the Bebop making little fish to munch through someone's firewall?

parallels in real life? (1)

Thu Anon Coward (162544) | more than 3 years ago | (#37067362)

without reading any further, almost sounds like what they used in that movie 'Disclosure' with Michael Douglas; wearing the 3-D glasses and whatnot. or somewhat similar to 'Minority Report'

What, no Johnny Mnemonic references yet? (1)

JSC (9187) | more than 3 years ago | (#37067390)

Seriously? I mean, 3D VR hacking attempt, reaching out with VR Gloves to manipulate/hack interface, face palm into VR Gloves, etc.

And no Pr0n jokes about 3D VR Penetration testing?

Who are you and what have you done with my SlashDot?

Re:What, no Johnny Mnemonic references yet? (1)

WWWWolf (2428) | more than 3 years ago | (#37067760)

Seriously? I mean, 3D VR hacking attempt, reaching out with VR Gloves to manipulate/hack interface, face palm into VR Gloves, etc.

"Sogo 7 Data Gloves, a GPL stealth module, one Burdine intelligent translator... Thompson iPhone."

Well, folks didn't foresee the future in 1995. Blender is GPL, but Metasploit is BSD. And iPhones come from Apple. (And why Johnny Mnemonic would use iPhone to begin with? All that jailbreaking! Bleh.)

Re:What, no Johnny Mnemonic references yet? (1)

BetaDays (2355424) | more than 3 years ago | (#37072112)

I'm with you and that there is no VR5 references yet with it's 10 levels of vr. http://en.wikipedia.org/wiki/VR.5 [wikipedia.org]

LAWNMOWER MAN (0)

Anonymous Coward | more than 3 years ago | (#37067562)

Let's not cross The Matrix with Sling Blade ever EVER again.

Garbage File (1)

MoldySpore (1280634) | more than 3 years ago | (#37067834)

Joey. I need you to drop your viruses, go after the worm. You're the closest. It's root slash period workspace slash period garbage period.

Shatner Was Right (0)

Anonymous Coward | more than 3 years ago | (#37067966)

Shatner predicted this next well have drugs on microchip, ah Tekwar

Getting closer every day (1)

squidflakes (905524) | more than 3 years ago | (#37068490)

Corporations having as much power as national governments, able to hire their own police forces.

Implants that are making steps to improving biological abilities.

3D visual hacking.

Shadowrun seems closer and closer every day.

Re:Getting closer every day (1)

Opportunist (166417) | more than 3 years ago | (#37069908)

Come to think of it, the guy on the subway yesterday sure looked like a troll...

Uhhh, this was already invented in 1994... (1)

bdabautcb (1040566) | more than 3 years ago | (#37068686)

Jurassic Park, anyone? THE DOORLOCKS TESS!!!... I know this, its a Unix system!

Re:Uhhh, this was already invented in 1994... (1)

_0xd0ad (1974778) | more than 3 years ago | (#37069960)

TRON (1982) [imdb.com]

Add some EEG... (1)

wjousts (1529427) | more than 3 years ago | (#37068796)

...and we'll finally have Neuromancer!

Sorry, I'll stick with CLI (1)

Opportunist (166417) | more than 3 years ago | (#37070024)

In all seriousness, "3D input", i.e. flailing limbs and gyrating in front of your computer, is a cool toy, a nice pastime and maybe even some kind of workout for kids who wouldn't think about actually going outside and move a limb, but for hacking, they just fail. Why? Because we are still far from the ability to never misunderstand a gesture. Hell, we, as humans, trained and raised as creatures to understand each other, sometimes misjudge and misunderstand each other. The very last thing I need when dealing with a trigger-happy firewall is my hacking tool mistake a -T0 for a -T5 when assembling the options for nmap. In some cases you only have one attempt, and that should be a good one. The very last thing I need then is that my tool misunderstands me.

It's also usually not faster than a CLI. Yes, most people probably gesture better and faster than they type. But, seriously, by the time you are good enough as a "hacker" to actually do something sensible with your skills, like conducting an audit, you CAN type faster than you can gesture. Your fingers are most likely the fastest part of your body (especially if they're the only thing that got any kind of workout for a few years ... *sigh*).

The only real advantage body movement had over manual input is that you can use your reflexes to your advantage. But then, they have to be very precise, very well timed and you must not flinch at the wrong moments, something that's very hard to do with reflexes because, being reflexes, they are not exactly under your command.

Speaking as a security consultant... (1)

stixn (1881538) | more than 3 years ago | (#37070294)

I'll use that lame 3D UI for pen testing right after they pry Backtrack 5 out of my cold, dead hands. Try and make sqlmap a better tool by giving it a flashy ui. Go ahead, make my day.

But hey, the script kiddies will love it.

So Hackers (the movie) wasn't far off after all (1)

xyourfacekillerx (939258) | more than 3 years ago | (#37072122)

We all used to laugh about the ridiculous OS interface to the file system (flying through a 3D world of towers and things), the one they used to conduct their hacks.

And now it looks like it was not far-fetched after all. Why is our future being so... regressive ... ?
Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?