PSP Exposed: Taking Apart the PlayStation Portable
- Mar 29, 2005
- Exploiting phpMyadmin: How to Get root in 15 Easy Steps
- Building the Ultimate Virtual Lab for Free, for Fun, and for Profit, Part 2
- Building the Ultimate Virtual Lab for Free, for Fun, and for Profit, Part 1
- Security Analysis of a Scan-to-PC Solution
- Turning the OLPC Into a Hacker’s Toolkit - Give One, Get Owned, Part 2
- Turning the OLPC Into a Hacker’s Toolkit - Give One, Get Owned, Part 1
- FlexiSPY Mobile Spyware: Monitoring Solution or Security Nightmare?
- The Eye-Fi: A Case Study in Next-Generation Application Security Issues
- Inside the Eye-Fi: Secrets of the First Wireless SD Card
- Inside the Everex gPC: A Look at How Far $200 and a Trip to Wal-Mart Can Get You
- Virtual Lock Picking of Windows Mobile Password Managers
- Reverse-Tethering the iPhone
- Inside Mobile-spy "Spouseware," Part 2
- iModded My iPhone, Part 2: The Wi-Phone Mod
- Inside Mobile-spy "Spouseware," Part 1
- iModded My iPhone, Part 1: Bling
- Owning the Wireless Camera (and Its User)
- Abusing and Misusing Wireless Cameras
- The Unfinished iPhone: iPhone vs. Windows Mobile
- A Student-Hacker Rematch at the Second Annual Collegiate Cyber Defense Competition
- Dissecting the Micro Mosquito Helicopter: Exposed and Explained
- Adding an External Antenna To Your Wii
- Wii Exposed: Wiinternals, Wii-motes, and a Teardown Wiideo
- The Glowing Logo Laptop Mod: Windows, Apples, and Penguins, Oh My!
- Airscanner Vulnerability Summary: Windows Mobile Security Software Fails the Test
- XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack
- iRobot Scooba Exposed: What's Inside This Robotic Maid
- Nikon Coolpix P1 Wifi Camera: Exposed and Abused
- A Student-Hacker Showdown at the Collegiate Cyber Defense Competition
- Airpwn: Owning the Airwaves
- Video iPod Exposed: Guts to Glory, PSP Style
- The Atari-Xbox 3600: A Retro Mod for Your Next-Gen Gaming System
- PSP vs. iPod: Looking Beyond What's Trendy
- Xbox 360 Exposed
- PSP Emulators and ISOs: Playing Games from Other Consoles and Backing up Your UMDs
- Reduce, Recycle, Refurbish, Reuse: "Free Geek Penn" Rehabilitates Pennsylvania's Outdated Computers
- Score List Hacking: Lessons Learned by Cheating Your Way to Number One, Part 2 of 2
- Score List Hacking: Lessons Learned by Cheating Your Way to Number One, Part 1 of 2
- Adding an External Wi-Fi Antenna to Your PSP
- Web Browsing on the PSP
- First Look: Sony PSP
- PSP Exposed: Taking Apart the PlayStation Portable
- Building a Linux-Driven Digital Picture Frame, Part 2
- Building a Linux-Driven Digital Picture Frame, Part 1
- Securing Your Wireless PDA Connection
- Cracking Wi-Fi Protected Access (WPA), Part 2
- Cracking Wi-Fi Protected Access (WPA), Part 1
- High-Tech Crimes Revealed: An Interview with Stephen Branigan
- Reverse-Engineering the First Pocket PC Trojan, Part 2
- Reverse-Engineering the First Pocket PC Trojan, Part 1
- Details Emerge on the First Windows Mobile Virus (Part 3 of 3)
- Details Emerge on the First Windows Mobile Virus (Part 2 of 3)
- Details Emerge on the First Windows Mobile Virus (Part 1 of 3)
- Summer Brings Mosquito-Borne Malware (Part 3 of 3)
- Summer Brings Mosquito-Borne Malware (Part 2 of 3)
- Summer Brings Mosquito-Borne Malware (Part 1 of 3)
- Security Expert Gary McGraw on Black Hats, the U.S. Government, and Good vs. Evil
- Attack of the Clones: Is Lindows the Real Deal?
- For Wireless Security, First Understand Wireless Programming
- Close Encounters of the Hacker Kind - Part 2 of the Story From the Front Line
- Close Encounters of the Hacker Kind: A Story from the Front Line
- SQL Server Attacks: Hacking, Cracking, and Protection Techniques
- Buy Microsoft, Go to Jail?
- Warez All that Pirated Software Coming From?
- The Ingredients to ARP Poison
- Going on the Defensive: Intrusion-Detection Systems
- Securing Information Internet Server
- Windows XP Wireless Security
- Windows XP Remote Assistance
- The Internet Connection Firewall in Windows XP
- Cracking WEP
- Raw Sockets Revisited: What Happened to the End of the Internet?
- Getting Owned for Fun and Experience
Over the last week, Paul and Larry from Pauldotcom.com joined forces with White Wolf Security to provide a 'unique, fun, and educational exercise' at SANS in Vegas.Specifically, Paul led up the 'bad guys' and Larry led the 'good guys' in an all out cyber war. The results? Lot's of getting owned, getting locked out, but the most valuable lesson had nothing to do with computers.
- Political Hack Jobs - Literally...
OK. So, most of the world knows that Sarah Palin had her Yahoo! account 'hacked'. Now, http://www.billoreilly.com/ has also been hacked. Why? How? Details? Read on...
- Get Your Hack On - The Value of Cyber Excercises
- I recently joined up with White Wolf Security, a company dedicated to security training and cyber exercises. To facilitate this, they have created a collection of systems that include everything you would expect to find out in the real world - including SCADA. Anyone who connects into the exercise network has an instant playground in which someone can either play attacker or defender, or just perform research in a safe environment.
- Cloud AV vs. Malware
A recent study and presentation at USENIX is making some waves in the AV world as the researchers claim their CloudAV is 35% more effective than tradition AV (note the slight abuse of statistical data there - 35% more effective means AV is at 73% and CloudAV is at 88%). I don't dispute their stats, but my question is...so?
- Mobile Malware - The Facts
- Mobile Malware is a serious problem that has yet to be really understood or defined. Is it really an issue that we as IT professionals need to deal with proactively. However, where can you really turn? Well, here at InformIT we have some answers with out own Mobile Platform Malware Threat Overview.
- Kaminsky DNS Forgery Attack Public - PATCH NOW!
In case you missed it, Dan Kaminsky, DNS and security guru discovered a MAJOR bug in DNS that is...well, no one really knew! However, it was bad enough for all DNS experts around the world and DNS software vendors to fix the problem in what has to be the biggest collective patch ever - without a single leak. Well, hackers being hackers don't need a leak to figure out a problem. They just need a rough idea to fuel the possibilities...
- Confessions of IT Staffer - Spying On Management
With great power comes great responsibility - and this is no more truer than in IT. Just think about it, they have the access and abilities to snoop into anything on the network, including you email, documents, web traffic, chat sessions and more. But what happens when this power is misappropriated? Well, for better or worse, we have our own confessional - with a surprise ending!
- Firefox 3 - Still possible to steal user credentials....
The Password Manager in Firefox is still broken. Using a bit of Javascript, it is relatively easy to steal a victims user/pass right out from under their noses. All it takes is a bit of XSS and a you can not only grab the user/pass, but you can also change the forms action value to one of your own - or just location.href the results to another site, and use the referrer to bounce back to the original site.
- The Eye-Fi LoJack
The Eye-Fi is a memory card with embedded wireless technology that allows it to connect up to an 802.11 network and transmit pictures back to a listening computer or website. We did a write up on it a while back that detailed a few ways such a solution could be abused. Ironically, the very same concerns we had actually worked out for the good!
- WarGames - Redux
Many people in the security field have fond memories of the movie WarGames. This movie not only highlighted the value of war-dialing, but also went on to influence the term war-driving. Well, it has been years (decades?) since I have watched this film and my perspective on all things comsec has changed...
- Fired for 'whistle blowing' on security issues - right or wrong?
ha.ckers.org has a thought provoking post on a young man who posted about some sad security realities at TJX. Basically, the firewall was installed by someone who apparently didn't know what they were doing, password policies are horrible, etc. TJX figured out who he was and fired him...but for what?
- MI5 vs. Security Researcher
So, imagine you are on the way to present at a security conference and some 'inspectors' come over to talk with you. They know your name, purpose for being there, what you are speaking on, etc. Then they take your phone,SIM card, and software radio, in what appears to be an effort to prevent you from demonstrating a flaw in GSM that allows anyone to capture and decrypt cell phone conversations.
- The Comcast Paranioa
I happen to host a few websites for friends/family members on a server I maintain. This server is VERY limited as to what these members can do. No relaying, no shell access, no web applications - just plain old web server services. Yet, every few days Comcast decides to block all incoming emails originating from my server...and every few days I go through the process to get unblocked. Is it me, or has Comcast really become a poorly managed provider?
- Hacker Swag for Charity
We all love swag. In fact, if you attend most any significant security conference, you will see it everywhere. However, thanks to Johnny Long's Hackers For Charity organization, you can now also see that same swag you enjoy so much on someone who actually needs it - Uganda kids!
- Winamp Remote
If you have a music library over 10gig, it can get annoying constantly juggling the files around from device to device. New songs have to be uploaded to my iPod, USB stick, etc. Well, NO MORE. Winamp just released a Beta of an awesome idea. You can now store your data in one location and listen to it from any device with a browser no matter where you are.
- The price of a successful security plan
So, lets say your job is to prevent policy violations at ACME. While you do this, you get bonuses for each person you catch. So, you install a monitoring system to catch people in the act. At first your software catches hundreds of people and the bonuses are HUGE, but then everyone at ACME realizes you mean business and they just STOP violating policies, which means no more bonuses...what do you do?
- RFID Vulnerability Affects One Billion Users
Move over Microsoft. RFID might just be a juicier target! With over a billion of these chips in use in building access cards, payment systems and more, the attractiveness of this might catch the attention of the criminal world.
- All Your Hearts Are Belong To Us
If you haven't heard, it is now possible to hack hearts. The NYT covered this, but to summarize, heart defibrillator's are embedded in the heart and controlled remotely via wireless signals. That should be enough to make you go...ohhhhhhh. However, what are the ramifications?
- CCDC3 - Skewling college students on getting pwned
We just got back from CCDC3 (Collegiate Cyber Defense Competition) and wanted to share our experience. This year we moved from observer to 'hacker', and discovered just how much fun it can be to
mess withhelp educated college students. Read on for more details, pictures and more!
- Can you remain anonymous for a day? How about a week?
If you were to ask me, anonymous living in the US is impossible. You simply can't do it. Think about it for a moment. Would it be possible to walk into a town, obtain a dwelling, find employment, and do it without anyone really knowing who you are? Well, Popular Science tried to do it for a week...and learned some interesting lessons.
- Can you be forced to hand over your password if the encrypted data incriminates you?
I received this question via an email from an acquaintance. The actual question revolves around a kiddie porn case where all the kiddie porn is stored in an encrypted file. The government is trying to force the suspect to give up his password, which he is obviously not inclined to do. Can he be forced to turn it over?
- BSA's Naughty List: Adobe and MS users beware!!!
I noticed an article that outlined the BSA's bad boy list and had to take a look. As an anti-fan of the BSA, I might have had a bit of a biased opinion going into the article...which didn't do anything to change my opinion. Why? Well, when something like 8 of the 10 companies were fined for using Adobe and 9 of the 10 were fined for using MS, one has to wonder who is behind the BSA?
- How can you get Digg'd to the top? Buy votes!
rsnake recently posted a story about Subvert and Profit, a website that links people who want their article to come to the top of Digg, YouTube, or StumbleUpon with others who are willing to sell their votes. Sound fishy? Well, it isn't and it probably isn't illegal either. Read on for details on how to sell your soul..err..vote!
- Apple Brigade Is At IT Again
- You know, I like OS X. I like the iPhone (thought I like my WM Phone better---though less and less). I like good commercials.
I DONT LIKE STRONG HANDED TACTICS - AND THIS IS WHY I HESITATE TO BUY APPLE!!!!!
If you have never read http://fakesteve.blogspot.com/ then go now...or read on for a summary.
- The Internet Gets Punk'd Again! Kid disciplined for using Firefox story is not true...
Got to love it when a story makes headlines, and then turns out to be false. This is exactly the case in the 'Student Given Detention for Using Firefox (foxfire.exe) over IE' story. The student altered the discipline notice that was sent home to the parents - and then somehow it got online...no one seems to know how that happened.
- Windows XP Network Recovery
As with many of our readers, I tend to find myself called upon to fix computers for those I know. While most of these are 10 minute fixes, there are several that really confuse me! So, in this case, a case of a network stack that would not work, I went searching for an answer...and I found it.
- The Symantec Virus That Eats Computers
- As with many of you, I am tasked with fixing the computers of friends and family members. No biggie. I enjoy helping people out. As a result, I get to see what the normal user gets to deal with on a regular basis. The most common problem? AV software. Yep. And for an example of why, just click through...
- I Sold My First Vulnerability/Exploit
I enjoy looking for security bugs in programs. However, it is really hard to justify the time it takes to test for, locate, and analyze any bug that I might find - especially when that time could be better spent doing something more tangibly productive. There is no denying that the research would be worth something to the vendor, but at this time there really is no system in place that compensates free-lance researchers for their efforts. So, how do I turn my findings into something I can support my family with?
- Security Professional / CTO / Musician
- If you were to take a poll, we would bet that the most popular hobby for security professionals would be related to martial arts. So, when we noticed Gary McGraw's expertise in the area of music, it caught our attention. Read on for links and details...
- CIA agents use iPhones - because the bad guys don't know how to use them.
I was watching Bionic Woman and happened to notice that the CIA agent had an iPhone - that the bad guy was using. As I was thinking about the security ramifications of an actual CIA agent using such an insecure device, I glanced at the screen and saw that the bad guy had flipped the iPhone over and was talking into the wrong end - silly bad guy (click through for pictures).
- Hushmail Rolls Over for Feds
Wired has a nice report on the (in)famous Hushmail encrypted email service provider that illustrates why you should never trust any third party company to keep you secure. Click through for link.
- Forensically Invisible Images of Hot Chicks
When you view an image online, that file is first downloaded to the local PC, where it is cached. Most people are aware of this, which is many keep their cache cleaned out - especially if those images are potentially embarrassing or illegal. Unfortunately, these files are not truly delete, which is why many people get busted with thousands of files once a forensics team gets to the drive.
So, what if it was possible for someone to create a site full of images that you could view in a browser without ever having to worry about left over data on your drive?
- Anarchist Cookbook = Jail Time
- This story is making its rounds, so sorry if you have already seen it. However, if you haven't then check out the BBC's report on how a UK teen is facing jail time for owning the infamous Anarchist Cookbook. Wow...just wow. This has me a bit concerned for several reasons. Read on for my thoughts...
- They call it 'natural selection' - I call it fuzzing.
The Economist is running an article on innovation and how "The inventor’s trial-and-error approach can be automated by software that mimics natural selection." This originally caught my attention because one person used this approach to build an...
- How to write insecure code
- The security community has been trying to get the publics attention for years with explanations, illustrations, and demonstrations of how to write secure code - but it just ain't working fast enough! So, OWASP has decided to take a different approach...with a wiki on how to write insecure code! I guess if you can't beat um...join up?
- Snake Oil Salesmen vs. Your Sensitive Data
I just got back from IT Security World where I delivered a presentation on Windows Mobile security. One part of this talk includes a close look at how many so called 'secure' programs have some vulnerability that renders them insecure. In fact, we sat down just yesterday with an untested program and it only took us about 15 minutes to complete bypass the protection. Read on for more...
- XSIO - Cross-site Image Overlay: A discussion and examples
A name has finally been given to an attack vector that has been around for some time. Using this method, an attacker can overlay their own image on top of an existing one on a webpage. Dangerous? Read on to see for yourself...
- EC-Council Ethical Hacking Practice Test
- Tests are not all created equally. There are good tests, and then there are bad tests - the difference between the two is the quality of the question. We took a look at the EC-Council Ethical Hacking Practice test and found it amusing in some ways, but confusing in others...
- Full-Disclosure Wins Again
- The full-disclosure debate is a polarizing one. However, no one can argue that disclosing a vulnerability publicly often results in a patch - and we just proved it again. In March we found the problem and reported it, and nothing was done. In August we posted the problem to FD, Bugtraq, and InformIT - and several days later a patch appears. Coincidence? I think not...
- Hacking CVS - House Wife Style
- When most people think of hacking, they automatically assume computers are involved. Well, there are many so called 'hackers' out there that don't use computers or social engineering tricks - these are the house wife hackers. Instead of using technology, they use pre-established systems and find loopholes or just use them to their full advantage.
Like this article? We recommend
2005 Gamer's Almanac: Your Daily Dose of Tricks, Cheats, and Fascinating Facts
The PSP has redefined handheld gaming. Inside this rather small device you can find a movie player, game system, music player, and even a JPG image viewer. In addition to this, the PSP also supports a cut-down version of web browsing, and I suspect more will come in the following months. However, if you are like me you might want to know what is on the inside! For example, can you make the PSP screen bend up so you can lay it on your desk and still view movies? Or what about an external Wi-fi antenna to get that extra signal strength? Questions like these can only be answered by opening up the cover of the PSP and poking around on the inside.
Now, please note that this can result in many bad things. One small slip and your PSP will be a $200 paper weight. And if you are thinking, "well I'll just take it back," think again. There is really no easy way to get inside without voiding the warranty. In other words, this is a one way trip...there is no turning back. If your PSP suddenly develops problems in a couple weeks, you can forget about getting help from Sony!
The following is a step-by-step guide on how to take your PSP apart. I documented the entire process and was able to remove all the major components, from top to bottom. With this little guide in hand, you too should be able to disassemble and reassemble the PSP in about one hour. In all honesty, once you know how to get around some tricky parts, the rest is easy. Again, we offer no guarantee that your PSP will not be fragged by attempting this.
The Gear
Before attempting to take apart any electronic device, make sure you have the right gear and location. You don't want to lose screws or other parts to kids, dogs, or a sudden blast of air. For the PSP you really only need one small flat head screwdriver that you can use for prying, and a Philips head screwdriver to remove the screws. A pen/paper might also be useful for remembering where the screws go. If you are a professional, then you might want to ground yourself using a static strap to prevent any sudden static discharges from killing your PSP.
Account Sign In
View your cart