406 Not Acceptable

It looks like the N900 may become a network security/hackers dream phone! First aircrack, now Nmap; hopefully, we can get kismet, metasploit, air-pwn, and friends up and running on the device in the near future.

Installing Nmap is a breeze, the program is located in the extras-testing repository. I believe it is under ‘network’ in the application manager, but it’s faster to simply search for the program. To run this program, you will have to use the X terminal and simply type nmap – the application will then report a LOT of options! It’s best not to try and crash out of a scan on the N900 using CTRL+C as the x terminal will no longer accept any keyboard commands until you close it. I guess that is one reason why Nmap is still in extras-testing!

Here is the result of a basic scan, you don’t need to be root for this one; but you do for a number of options. For a basic scan you simply need to type nmap <target ip> . In the example, I had to use option -PN to find the machine; this treats all hosts as online and doesn’t bother checking if it is alive.

Nmap is typically used to find available ports/machines and the operating system (option -O) before running other tools to attempt to exploit the open ports. It’s also a nice way to check your router is doing what it should be!

For a comphrensive list of the options and more information on how to use Nmap, please see the official manual pages.

Yes, that does sound confusing, but you can hide a .rar achive ‘inside’ a jpeg picture file. You can use this to stash away some files you don’t want other users on your computer from seeing. Alternatively you could just use encryption, but this is a quick and easy way to do things, that lets you hide files effectively from normal users. Be warned that it is possible to find the files with tools such as enCase… Thanks to Helpero for this nice tip.

I’d love to toss in some demonstration pictures, but my computer is currently running Ubuntu and I would need to install Windows to do so!

Basically, with this method you can open the file as either a picture or a rar archive. So a normal user will just double click the file and it will open as a picture, whilst you can drag it into Winrar (or any alternative) and it will open as an archive.

Here we go:

1. Find your .rar archive and put it in the same directory as a jpeg picture (I will use C:\ as it is easy to work from there. You can then just copy and paste the file to a better directory.)
2. Open a command prompt by clicking Start, then clicking Run, and typing ‘cmd’  in the Run box and click ok.
3. In the Command window (CMD window) that has appeared, type your directory should already be in the C drive other wise you will need to navigate their. If your CMD window starts in a different directory you can either direct the window their using DOS style commands, or just use that directory for the process (simply move the picture and jpeg to that folder.)
4. Enter ‘copy /b input.jpg + secret.rar ouput.jpg’ without quotes in the CMD window and press Enter.

Remember input.jpg is the picture you are cloning and secret.rar is the file you are hiding. Output.jpg will be the file that has the winrar archive hidden inside.

Open the archive in Winrar to make sure you got everything working correctly.