reverse engineering – How to analyze a USB device with possibly malicious capacities?

So I recently ordered a Chinese external USB card and I would like to know if it has hidden features, which could become malicious. It has built-in buttons so that Linux uses libusb -vv displays it to have HID capabilities, which has already alerted me because it could be used to inject keys.

  • How to continue my analysis?
  • Can I dump more information about its capabilities using libusb?
  • How to dump firmware for reverse engineering purposes? According to [this], this is only possible with a JTAG / UART connection?
  • Is there something like
    Wireshark but for USB?

Bonus points if you also add a sample libusb code.

Connect an Android device simultaneously to Wifi for Internet and Ethernet

I have a Samsung tablet on which I want to use wifi for Internet and Ethernet connection to communicate simultaneously with other network devices such as the fieldbus coupler, etc.
Right now, once I connected the LAN with an Android device, it disconnected from the wifi.

Why cloning the memory of a device ignores the private key

Take the example of someone who copies all the data from his mobile device to a new one, why does his HD wallet not remember all his information, and how does the HD wallet could you remember if they had not been saved in memory before?

Apple Script – How to check if an iCloud Drive file has been updated from another device?

I need to embed code in an AppleScript script I'm working on that is waiting for the update of a specific file, and then, when it has been updated, does XYZ . How can I do this?

php – I use a public device vs keep me connected

I know this might be an obvious question, but it escapes me. When connecting to websites, I saw checkboxes for things like "I'm using a public device" and "Keep me connected."

I know that keeping me connected would be the traditional login function that would aim to keep the user always connected. But I am stuck on the function "I'm using a public device", what does it actually do? Does this simply limit the duration of the login period?

I do not use session IDs, I use a token cookie with a 24-hour expiration that is associated in a database table to the user and subsequently to his cart .

linux – Ubuntu VM failed to upgrade the package due to lack of space on the device: troubleshooting for the root cause and solutions?

After an unsuccessful attempt to upgrade the MySQL server on an Ubuntu virtual machine, it seems to have eaten all the remaining partition space

reading /usr/share/mecab/dic/ipadic/Noun.csv ... 60477
reading /usr/share/mecab/dic/ipadic/Filler.csv ... 19
reading /usr/share/mecab/dic/ipadic/Noun.nai.csv ... 42
reading /usr/share/mecab/dic/ipadic/Noun.adverbal.csv ... 795
reading /usr/share/mecab/dic/ipadic/Interjection.csv ... 252
reading /usr/share/mecab/dic/ipadic/ ... 16668
emitting double-array: 100% |###########################################|
reading /usr/share/mecab/dic/ipadic/matrix.def ... 1316x1316
emitting matrix      : 100% |###########################################|

sed: couldn't flush stdout: No space left on device
dpkg: error processing package mecab-ipadic-utf8 (--configure):
 subprocess installed post-installation script returned error exit status 4
Processing triggers for libc-bin (2.23-0ubuntu11) ...
dpkg: unrecoverable fatal error, aborting:
 unable to fill /var/lib/dpkg/updates/tmp.i with padding: No space left on device
E: Sub-process /usr/bin/dpkg returned an error code (2)


(base) ubuntu@db-server-2:~$ sudo du -sh /
du: cannot access '/proc/22686/task/22686/fd/4': No such file or directory
du: cannot access '/proc/22686/task/22686/fdinfo/4': No such file or directory
du: cannot access '/proc/22686/fd/3': No such file or directory
du: cannot access '/proc/22686/fdinfo/3': No such file or directory
2.9G    /
(base) ubuntu@db-server-2:~$ sudo df -h
Filesystem      Size  Used Avail Use% Mounted on
udev            3.9G     0  3.9G   0% /dev
tmpfs           799M  8.6M  790M   2% /run
/dev/vda1       2.9G  2.9G     0 100% /
tmpfs           3.9G     0  3.9G   0% /dev/shm
tmpfs           5.0M     0  5.0M   0% /run/lock
tmpfs           3.9G     0  3.9G   0% /sys/fs/cgroup
tmpfs           799M     0  799M   0% /run/user/1000
(base) ubuntu@db-server-2:~$ sudo df -i /
Filesystem     Inodes  IUsed  IFree IUse% Mounted on
/dev/vda1      384000 152311 231689   40% /

It seems that / dev / vda1 is full.

I am a Linux newbie, I have some questions here:

  1. How to free up space? Do I have to go to the root directory and -hs each directory? If yes, what am I looking for?

  2. Why is the vda1 partition so small when I have allocated 80 GB of virtual disk space to the virtual machine? If this is a problem, how can I increase its size?

Thanks in advance!

Specifications on Openstack VM

linux – Why after creating an ISO file on an entire USB flash device, only the first partition corresponds to the ISO checksum?

I use dd to "burn" an ISO file to a USB stick:

dd bs=4M if=/mnt/media/ISO/Fedora-Workstation-Live-x86_64-31-1.9.iso   of=/dev/sdd conv=fdatasync  status=progress

Now, I can see that several partitions have been created:

sdd      8:48   1   1.9G  0 disk 
├─sdd1   8:49   1   1.8G  0 part /run/media/alex/Fedora-WS-Live-31-1-9
├─sdd2   8:50   1  10.6M  0 part 
└─sdd3   8:51   1  22.2M  0 part 

Why only sdd1 corresponds to the ISO checksum, not an entire drive? I've checked the files on other partitions, they contain these ISO related files.

firmware of the device – Oppo Reno 5g, PCH1919 print and seen as Find X PAFM00

I would like to ask all of you for help regarding a strange problem with an Oppo smartphone.

A week ago, I bought for my son (11 years old) a second hand Oppo Reno 5G smartphone on an online marketplace here in the UK. He is more proactive than me with smartphones and he said that the phone can not be updated and that he can not download from Google Play reference apps like Antutu or 3D Mark. All other games or device information applications can be installed without any problem. The phone displays in the file manager 0 B an unused space but I can copy files, take pictures and install games without any problem.

The phone was supposed to be an Oppo Reno 5G and looks identical to Reno 10X. On the side of the body is written tiny letters "Model: CPH1919 Made in China" The verified online imei on a few sites returns Oppo CPH1921.

Specifications as shown in all device information applications: Snapdragon 845, Andreno 640, 8GB RAM, 256GB, 12Mp or 48Mp camera.

Model presented in the phone PAFM00. In the software update menu is written "This is already the latest version ColorOS 6 PAFM00EE_11_A.01".

I have studied this issue during the last 2 days during my free time. Oppo adb drivers installed and traded with adb android drivers. Here is the result.

With the phone turned off, when I press the Volume Down and Power On / Off buttons, it flashes an image for a quarter of a second with a blinking head icon with headphones and Chinese text that I'm using. I translated: "Entered Fastboot Press and hold the power button for 6 ~ 10 seconds or reinstall the battery and quit". As long as I hold down these buttons, it flashes every 3 seconds. If I release them, the phone restarts and the Oppo logo returns to normal.

Using the ADB tools (different version, Studio), only the "adb devices" return the model number and the "device" afterwards. All other adb commands (reboot adb, usb, reboot-bootloader and adb restart recovery, etc., have tried most of them) have returned "error: closed", for "fastboot devices" ", nothing is displayed," fastboot flashing unlock "i get" waiting for the device ".

I have tried to install the Rom stock. By using the volume and power up buttons with QPST, I sometimes get Qualcomm and sometimes "Q / QCP-XXX (Sahara Download)" because the phone restarts from a way or another just after releasing those buttons and lost the connection.
Any advice to update this device and have it displayed correctly the correct model will be great.

About the phone, quick start, specifications

Specifications 2, specifications 3, reference

USB on the go – How to prevent the Android host from suspending a USB OTG device?

I often try to use USB devices with Android otg, and find that the device goes to sleep (the screen turns off, turning off the screen is acceptable as long as the USB device does not turn off) and after waking up via its power button the USB device will be blocked until it is physically unplugged and plugged back in again .

How can I inform the Android operating system not to go to not suspend the USB device and therefore not go to sleep until the USB device remains connected?

updates – How to install opkg from sources in an Android device noArt?

You will find below information to obtain information about the distribution and architecture of the Android device noArt.

cat exit # / proc / version:

Linux Version 4.4.22+ ( (version 4.8 of GCC (GCC)) #xx SMP PREEMPT day date timestamp

exit from & # 39; / uname -a:

Linux localhost 4.4.22+ #xx SMP PREEMPT day date timestamp armv7l

Here's what I've already tried:

  1. I've tried to build dpkg (the first to have been tested with dpkg because opkg is based on this one) from the sources of my amd64 Ubuntu system and to push the executable dpkg to the device. As I guessed, it would not work because the device is 32 bit and of course it did not.
  2. I've tried to configure dpkg with the options –build = amd64 and –target = armv7l, but that failed with the msg error:

configure: CAUTION: x86_64 not found in memory

architecture name check dpkg … configure: error: impossible to determine the host architecture of dpkg

  1. Abandoned on dpkg and tried to build opkg from the source. Get below the error:

opkg_archive.c: 758: undefined reference to `archive_write_set_format_raw & # 39;