Updated February 9, 2025

Biography --------- Head of Data Science @ Black Duck Software, recovering academic, former robo-psychiatrist, hackerspace founder, meetup organiser, and player-of-calendar-tetris. Currently Senior R&D Manager (Data Science) at Black Duck Software, using advanced data mining and machine learning to detect, assess and remediate vulnerabilities and malware attacks on cloud infrastructure. Previously a Data Scientist working in the fields of Affective Computing, Wearable Technologies and Cyber Security. Completed PhD Research at The University of Liverpool (formerly at Queen’s University Belfast’s ECIT Institute) investigating Trust and Reputation in Marine Communications for Autonomous Systems of Systems under the joint Anglo-French Defence Research Group, established at the 2010 Anglo-French Summit Founding (former) director of Farset Labs, Northern Ireland’s First Hackerspace, located in Weavers Court Business Park, Belfast, developed while I was finishing off a Masters in Electronics and Software Engineering at QUB. Farset Labs now provides the technical and entrepreneurial community with a place to share resources, knowledge and experience in a relaxed atmosphere, laying the foundation for the next wave of Northern Irish industry-leading technologists and business leaders. Recipient of the 2012 Belfast Business Top 50 for my work at Farset Labs, the QUB T G Christie Award for Most Promising Postgraduate, and The Liggard Prize for Best Communications Engineering Masters Project. Also an IET Excellence Grant recipient and a National Finalist in the IET Present Around the World competition, presenting on information theory of social networks in 2010 A sucker for Doctor Who, Scottish and Japanese Whiskey, Craft Beer, any movies involving Christoph Waltz, Stanley Kubrick, Ridley Scott, or Quentin Tarantino, and heavily caffinated German softdrinks. Current Roles ------------- * Senior R&D Manager (Data Science) @ Black Duck Software * Treasurer @ BSides Belfast CIC * Director @ Northern Ireland Open Government Network ETC --- * My Resume * My Linkedin Profile * PDF version Speaking Engagements / Panels ----------------------------- Press/Publications/Podcasts --------------------------- * 2025 * ChatGPT Search Is Now Free To Use Without An Account—Is It Safe? - Forbes - Commentary * Blackstone defends data centre investment vision amid DeepSeek AI disruption - Techerati - Commentary * DeepSeek and Cybersecurity: What Tech Pros Should Know - Dice - Commentary * DeepSeek rise leads to $1 trillion loss for US tech giants - Techerati - Commentary * What is DeepSeek and what is all the fuss about? - SecurityInfoWatch - Commentary * ChatGPT o1: AI That Thinks, Lies, And Deceives Like A Human - DataDrivenInvestor - Commentary * CISA Launches AI Sharing Playbook - SCMagazine - Commentary * 2024 * ChatGPT Two Years On: Experts Weigh In - ITSecurityGuru - Commentary/Interview * Unmasking the ChatGPT Threat: How AI Raiders are Stealing Cash from Thousands! - Central Recorder - Commentary/Interview * Panic over new ChatGPT that ‘reasons’ as expert warns of terror AI raids that steal cash from ‘huge numbers’ of victims - The Sun - Commentary/Interview * What is WRAP and how can it help train AI more efficiently? \- ITPro - Commentary/Interview * Microsoft Copilot could have serious vulnerabilities after researchers reveal data leak issues in RAG systems - ITPro - Commentary/Interview * Unmasking the ChatGPT Threat: How AI Raiders are Stealing Cash from Thousands! - Central Recorder - Commentary/Interview * AI Scientist LLM goes rogue: Creators warn of “significant risks” and “safety concerns” - The Stack - Commentary/Interview * Hackers are trying to exploit a new critical MOVEit vulnerability – here’s what you need to know - ITPro - Commentary/Interview * Data Privacy Day 2024 - ITSecurityGuru - Commentary/Interview * Zero-Click GenAI Worm Spreads Malware, Poisoning Models - DarkReading - Commentary/Interview * Generative KI hat enorme Auswirkungen auf Softwareentwicklung und Softwaresicherheit \- ManageIt - Guest Publication of Blog Post * Generative AI has a huge impact on software development and software security - Teiss - Guest Publication of Blog Post * 2023 * One Year Anniversary of ChatGPT by Synopsys - Technology Reseller - Author * To improve cybersecurity, is an annual one-month awareness pep rally enough? - NerdForTech - Commentary * Over 800k Flagstar Bank Customers Impacted by Third Data Breach Since 2021 - itsecurityguru - Commentary * TP-Link Smart Bulb Users at Risk of WiFi Password Theft - HackRead - Commentary * TP-Link Smart Bulb Spills Wi-Fi Passwords - Infosecurity Magazine - Commentary * We’re getting poisoned by bad software. Why not talk about it that way? - NerdForTech - Commentary * Is your smart light bulb giving passwords to hackers? - Cult of Mac - Commentary * Officials Point To Russia After Electoral Commission Hack - Silicon.co.uk - Commentary * Cyber-attack hits the UK’s electoral registers - itsecurityguru - Commentary * Unraveling the EC Data Breach: Cybersecurity Experts Weigh In on the Implications - Infosecurity Magazine - Commentary * UK Electoral Commission systems breached for over a year - BetaNews - Commentary * 2021 * WhyNI - Enzo Recruitment - Podcast Guest * Unattested Pod - Podcast Guest * Dr StrangeBot: or how I learned to stop worrying and trust machine learning * 2020 * Is Your AI Ethical? - RTInsights - Author * The Importance of Active Learning in Data Science and Engineering - Cybersecurity Insider - Author * 2018 * Moving to Belfast? Here are 10 people you need to know - SiliconRepublic - Listee * 2017 * Best In Class: Our Pick of Northern Ireland’s Tech Educators #1 - SyncNI - Listee * Ethical hacker turned off heating 300 miles away - Newsletter - Interviewee * Dynamic Model of Athletes’ Emotions Based on Wearable Devices - International Conference on Applied Human Factors and Ergonomics - Author * 2016 * Analytical Metric Weight Generation for Multi-Domain Trust in Autonomous Underwater MANETs - Invited paper for Underwater Communications Security session at IEEE UComms 2016, Lerici, Italy - Author * Pending: Physical Behaviours for Trust Assessment in Autonomous Underwater MANETs - Submitted to The 13th IEEE International Conference on Mobile Ad hoc and Sensor Systems (MASS), Brasilia, Brasil - Author * 2015 * Single and Multi-metric Trust Management Frameworks for Use in Underwater Autonomous Networks. In Trustcom/BigDataSE/ISPA, 2015 IEEE, Helsinki, Finland - Author * How The Future Gigabit Internet Is Likely To Play Out - MakeUseOf - Author * Raspberry Pi Farset Labs ‘jams’ teach kids how to code computers - BBC - Interview * Big Data Is Big Business In Northern Ireland - TechWatch - Interview * 2014 * Analysis of Trust Interfaces in Autonomous and Semi-Autonomous Collaborative MHPC Operations, The Technical Cooperation Program, Technical Report TR-C3I-06-2014, May 14, 2014, Portsmouth, UK _not publically available_ - Author * A Multi-Vector Trust Framework for Autonomous Systems, AAAI Spring Symposium Series, Palo Alto CA, USA - Author * How to Optical and Quantum Computers work? - MakeUseOf - Author * GPS III: Where Are We? And Where Are We Going? - MakeUseOf - Author * Becoming an Expert Andrew Bolster on Suspicious Submarines - University of Liverpool - Appearance * A Multi-Vector Trust Framework for Autonomous Systems - Association for the Advancement of Artificial Intelligence Spring Symposium - Author * 2013 * Experimenting with ICT in Belfast \- AgendaNI - Appearance * Tech Britain Coverage - TechBritain - Interview * Global Game Jam Hits Belfast \- Following The Nerd - Appearance *  Global Game Jam: Belfast to take part for first time - BBC News - Interview * Belfast Hub for Global Games Jam - Newsletter - Appearance * Weekend hackathon set for Belfast - Ulster Business * Global Game Jam hackathon set for Belfast this month - Silicon Republic - Appearance * 2012 * Imagining a Digital Future \- Ulster Business - Appearance * Northern Ireland economy needs to make space for technological innovation and creativity - BusinessFirstOnline - Interview * The Tech Show (Podcast) - iChrisTaylor - Guest * Top entrepreneurs inspire next generation - Appearance * Farset Labs makes it into Belfast Business Top 50 - Belfast Media Group - Appearance * Belfast one of 16 UK cities to get 4G mobile services in 2012 - BBC News - Interview / Co-Author * Andrew Bolster from Farset Labs talking to Linzi Corr at ITE Belfast - Brightwater Recruitment - Interview * Muckraker Partners with Farset Labs (Blog) - Muckraker - Appearance * A Different Road - New Scientist - Interview

Updated February 10, 2025

**Last updated:** 10 Feb, 2025 This is a /now page, listing out the stuff that's going on with me at the moment. If you have your own site, you should make one too. What I’m listening to: ---------------------- * **The Beach Boys** - _The Pet Sounds Sessions_ · Managed to snag a copy from a lovely record shop this weekend for ten quid. Had a lovely afternoon listening to Brian Wilson trying to figure out _exactly_ where to place the honking bicycle horn. Much recommended. * **Teleman** - _Good Time/Hard Time_ * **Prince** - _Controversy_ * **Dusty Springfield** - _Dusty In Memphis_ * **Talking Heads** - _True Stories_ What I’m reading: ----------------- I maintain an archive of the books I read over on The Storygraph. Here's my current selection: * **The Fraud** by Zadie Smith * **Private Eye** What I’m watching: ------------------ * **Severance** * **Mad Men** * **Boyzone: No Matter What** * **We Are Lady Parts** * **Bob's Burgers** Other things I’m enjoying: -------------------------- * Continuing to get the new house into shape * Finding loads of bargains in old record shops * Playing (and finishing) **Indiana Jones And The Great Circle** Current status: ---------------

Updated February 4, 2025

* A service to generate a podcast from a RSS feed using text-to-speech. * A version of Buffer for Mastodon. * Instapaper * Chrome Extension to add “Add to Instapaper” links to lobste.rs. * Chrome Extension to add “Add to Instapaper” links to feedly. Fitness / Health ---------------- * Self hosted version of MyFitnessPal. Others’ Ideas Pages ------------------- * Jonathan Borichevskiy * Alexey Guzey * Gwern * James McMurray (Updated February 4, 2025 )

Updated February 9, 2025

Hello! My name is Daryl Sun. I use she/her pronouns. I play with software and videogames. Sometimes I write things. Do you want to send me a message? Please sign my guestbook! Daryl Sun's Journal (c) 2023-2025 by Daryl Sun is licensed under Creative Commons Attribution-ShareAlike 4.0 International Cool URIs don't change · This Page is Designed to Last The People Pledge · Fight Fascism * About * Colophon * Awards & Clubs * What I Use * Who I Support * Wishlist * Shoebox * Feeds Return to Top

Updated February 9, 2025

* 🇨🇦 Living in Ottawa, Canada * 🛠 Working on LLM-augmented developer tooling at Shopify Last updated on Feb 9th, 2025. Inspired by nownownow.

Updated February 6, 2025

I write speculative fiction that’s drawn from the darkness: brooding fantasy, dystopian science fiction, horrors both terrestrial and cosmic. Briarcliff ---------- `Working title // Work in progress` A moody horror short about one man’s desperate sacrifice to a prehistoric supernatural force. This piece is an experiment in narrative by elision, drawing inspiration from video games’ heavy use of environmental storytelling. The Deep -------- `Working title // Work in progress` A cosmic horror short about a deep sea salvage dive that encounters a threat beyond human understanding, and a secret organization that will do anything to keep that threat hidden. This piece is a claustrophobic katabasis into the deep, filled with interpersonal tension, existential dread, and even (somehow) malevolent mathematics.

Updated January 27, 2025

Ideas ----- _Ideas, concepts, planned projects._ Last updated: January 27, 2025 My brain is really good in producing new ideas and sometimes obsessing over them for a short while. Usually though, the ideas will never come to fruition, so this page documents at least some of them for later. If you look through this list and one of the ideas stands out to you, please push my motivation by telling me about it. Even more so if you want to collaborate! Create/Build/Implement a/an... ------------------------------ * Fetching bookmarks from Linkding via API key on every build of this page * Events page for Vuejs events, similar to events.vuejs.org, but with a focus on discoverability * Integrations for (imho) essential services into Vimb. This would be mainly bookmarks via Linkding, passwords via Bitwarden and tab/history sync (via FFSync). * Fediverse enabled Event hub, like Mobilizon, but with an UI similar to Luma. Try out... ---------- * Kagi Websearch - but I don't like that they are yet another Silicon Valley startup * Bridgy Fed to bridge all my social media together

Updated December 29, 2024

### ⭐ favorites 2024-12-29 2024-12-02 2024-08-30 2024-07-16 2024-06-17 2023-12-12 2023-11-30 2023-11-28 2023-07-10 2023-06-16 2023-02-06 2022-08-09 2022-06-22 2022-04-11 2022-02-02 2021-12-28 2020-09-08 ### #movies 2024-12-02 ### #libros 2024-01-22 2023-09-18 2023-01-16 2022-07-12 2022-02-07 2021-10-12 2021-06-01 2021-03-15 2020-09-15 2020-08-28 ### #distopías 2023-07-10 2023-05-02 2021-12-28 2021-03-15 ### #memorias 2024-11-19 2024-01-01 2023-12-23 2023-02-06 2022-02-07 2021-03-15 2020-10-14 2020-09-29 2020-08-28 ### #fútbol 2023-02-06 ### #tldr 2025-01-23 2023-01-16 2020-09-15 ### #projects 2025-01-13 2024-07-16 2024-07-06 2024-06-07 2024-02-28 2024-02-22 2023-12-12 2022-07-12 2022-02-02 ### #fiction 2024-12-02 ### #poesía 2023-12-23 2023-05-02 ### #ai 2024-03-14 2023-07-10 ### #web 2025-01-11 2024-08-19 2024-06-07 2024-02-22 2024-01-11 2023-12-12 2023-08-30 ### #software 2025-01-23 2025-01-22 2024-12-29 2024-12-02 2024-09-05 2024-08-30 2024-08-19 2024-06-17 2024-04-01 2024-02-28 2023-12-12 2023-11-30 2023-11-23 2023-10-12 2023-09-12 2023-08-30 2023-07-10 2023-06-29 2023-05-19 2023-02-22 2023-01-16 2022-11-28 2022-08-09 2022-07-12 2022-04-11 2021-12-28 2021-12-04 2021-10-12 2021-09-22 2021-04-12 2021-02-01 2020-09-15 2020-08-31 2020-08-28 2020-05-07 ### #literatura 2025-01-11 2024-07-01 2024-01-22 2023-07-10 2023-06-29 2023-06-16 2023-02-06 2022-06-22 2022-02-07 2021-06-01 2021-03-15 2021-02-01 2020-09-08 ### #meta 2024-11-24 2024-01-11 2020-09-04 ### #videojuegos 2024-11-19 2024-01-01 2023-11-01 2023-09-18 2023-06-16 2023-04-27 2022-11-22 2022-09-26 2022-08-09 2021-10-12 2020-10-14 2020-09-29 2020-08-28 ### #utopías 2023-11-23 2023-09-12 2023-08-30 ### #literature 2021-09-22 ### #programación 2021-12-04 2021-04-12 2021-02-01 2020-10-14 2020-09-29 2020-09-22 2020-08-31 ### #cine 2022-09-26 2022-08-09 2022-06-22 2021-12-28 ### #ideas 2025-01-13 2024-07-16 2024-07-06 2024-02-22 2024-01-11 2023-09-12 2020-09-22 ### #books 2025-01-23 2024-08-30 2024-07-06 ### #videogames 2024-12-02 2024-07-16 2022-02-02 ### #ficción 2024-02-01 2023-11-28 2023-05-03 2021-12-28 2021-12-09 2021-05-26 2021-03-15 2020-09-08 ### #borges 2025-01-11 2024-07-01 2024-01-22 2023-07-10 2023-06-29 2023-06-16 ### #programming 2025-01-22 2024-06-07 2024-04-01 2022-02-02 2021-09-22 2020-05-07 ### #memoirs 2024-08-30

Updated February 11, 2025

Last modified: Feb 11, 2025 What is a now page? ------------------- A now page contains the activities that a person is currently focused on. More information about now pages can be found at nownownow.com. ### My current activities * **Learning 2D animation**: Stories mean a lot to people. Animation and art is incredibly valuable. * **Reading**: Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne. * **Self-discovery**: Questioning my own values remains a lifelong goal. ### Weekly plan Most timeblocks have some margin. Today * 07:00-17:00 - Work: Test automation work at Dover Fueling Solutions * 17:00-19:00 - Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne * 18:00-22:00 - Boxing Tomorrow * 07:00-17:00 - Work: Test automation work at Dover Fueling Solutions * 17:00-20:00 - Animating (2D) digitally: Make progress on animation video course * 20:00-20:30 - Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne Thursday * 07:00-17:00 - Work: Test automation work at Dover Fueling Solutions * 17:00-17:30 - Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne * 18:00-22:00 - German course * Workout: Minor exercises before I go to sleep Friday * 07:00-17:00 - Work: Test automation work at Dover Fueling Solutions * 17:00-17:30 - Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne * 18:00-22:00 - Traditional drawing course: second year out of ten years * Workout: Minor exercises before I go to sleep Saturday * 09:00-11:00 - Website: Update weekly plan content & improve managing it * 17:00-20:00 - Animating (2D) digitally: Make progress on animation video course * 20:00-20:30 - Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne * 20:30-20:45 - Workout: Minor exercises before I go to sleep Sunday * 11:00-20:00 - Raphaël exhibition in Lille * FreeTube: Staying up to date on a few YouTube channels * Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne Monday * 07:00-17:00 - Work: Test automation work at Dover Fueling Solutions * 17:00-20:00 - Animating (2D) digitally: Create story & concept art for own project * 20:00-20:30 - Reading: "The Life and Opinions of Tristram Shandy, Gentleman" by Laurence Sterne * 20:30-20:45 - Workout: Minor exercises before I go to sleep

Updated February 10, 2025

Visit our contact page for information on business contacts. ### **Our Policies and Standards** Visit our policies and standards page. ### Comment section policies Visit our comment section policies page. ### Bylaws Read our bylaws. ### Masthead and Board of Directors Visit our leadership page. ### Publishing The Stanford Daily publishes Monday through Friday during the academic year and maintains a circulation of 4,000 to more than 200 locations on and around the main Stanford main campus. The Daily publishes several special issues every year, including a New Student Orientation issue, a Big Game issue and a Commencement issue. ### The Corporation The Stanford Daily newspaper is the primary holding of The Stanford Daily Publishing Corporation. Founded in 1973, The Stanford Daily Publishing Corporation operates as a California non-profit corporation headed by the paper’s editor-in-chief and business manager. ### History of The Daily The Stanford Daily is the independent, student-run newspaper of Stanford University. The Daily was originally founded as a small pamphlet known as The Daily Palo Alto in 1892 and has been a campus fixture ever since. The Daily strives to serve the Stanford community with relevant, unbiased journalism and provides its editorial, tech and business staffs with unparalleled educational opportunities. The Daily became independent of Stanford University in 1973 after a years-long clash with the administration spurred in part by disagreements over The Daily’s coverage of anti-Vietnam War protests. In particular, a strongly worded 1970 op-ed in the newspaper entitled “Snitches and Oppression,” penned by Diarmuid McGuire M.A. ’73, drew concerns from University administrators that the school might be held liable for any violence incited by the article. Independence for The Daily was thus a logical conclusion for both sides: The Daily’s disentanglement from the University would make it impossible for the University to attempt to influence reporting through financial withholding or other means, and the University’s disentanglement from The Daily would release it of any potential liability for content published in the newspaper. Thus, in 1973, The Stanford Daily Publishing Corporation was incorporated in Santa Clara County as a 501(c)(3) nonprofit organization. Independence wasn’t the only consequence of The Daily’s coverage of campus antiwar protests; the publication also drew national attention when it sued James Zurcher, the chief of the Palo Alto Police Department, following a surprise search of The Daily’s offices for photographic evidence of protestors that the student-journalists and legal counsel deemed to be in violation of the First and Fourth Amendments. After a district court and court of appeals ruled in favor of The Daily, the case, _Zurcher v. Stanford Daily_, was brought to the Supreme Court of the United States in 1978, with the nation’s highest court ruling 5-3 in favor of Zurcher. The ensuing outcry among journalists and the public led to Congress’s passage of the Privacy Protection Act of 1980, which established the requirement of a subpoena to search newsrooms for unpublished materials. With the launch of its website in 1995, The Daily became one of the first college newspapers publishing on the Internet. The site is live and continuously updated throughout the year. It features content from the print edition, along with special Web-only content often including live blogs of sporting events and major campus events. The Daily moved out of its old offices in the Storke Publications Building to its new home at the Lorry I. Lokey Stanford Daily Building in 2007, thanks to the generosity of Lorry I. Lokey ’49 and hundreds of other benefactors, which would not have been possible without the titanic effort of Arthur Charles Hoffman ’73 MBA ’76.

Updated February 8, 2025

**About the author** Computer art by AVA 2.0 Technollama is the online persona of Dr Andrés Guadamuz. If you wish to contact me, write to anduin13 at outlook dot com or using the contact form offered. **About the blog** TechnoLlama covers several Cyberlaw topics, with emphasis on artificial intelligence, internet regulation, and cryptocurrencies. While the blog tackles these issues in a light-hearted manner, some serious points filter through from time to time. Needless to say, the blog is strictly personal, all views are my own. Nothing on this website is intended as legal advice. **Other information** This site is released under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License. You can find comprehensive definition of what constitutes commercial information here. If in doubt, just email me, I’m always open to allow commercial uses. No llamas were harmed during the creation of this blog. If you are also a llama enthusiast, join the British Llama Society. **I support these causes and sites:** **Contact Form:**

Updated February 8, 2025

Default Wi-Fi passwords ----------------------- Back in 2022 I was speaking at BSides Sofia about hacking set-top boxes and decrypting IPTV streams. After the talk I met Alex Stanev who told me about the wpa-sec project he was running. The project is about collecting WPA handshakes and cracking them in distributed manner. I got interested and Alex was kind enough to share a lot of his research with me. It turns out that a lot of routers are using some crappy algorithms for generating pseudo-random default Wi-Fi passwords. Reversing MAGic Remote ---------------------- If you have a MAG set-top box, you may know there is a mobile app called “MAGic Remote” which turns your phone into a remote controller. It looks like this: Allowing remote control over the network is great but there is no public information on the protocol being used. MAGic Remote is also paid and I don’t quite understand why people should be giving money for something so simple. That was my motivation to reverse engineer the protocol and create an open-source client. Making a Chromecast receiver ---------------------------- I made a Chromecast receiver which works on Linux. It is called Shanocast and it can mirror a Chrome tab or the entire desktop. Here is a demo: Your browser does not support the video tag. The implementation is based on Openscreen which is an open-source implementation of the Chromecast protocol. The tricky part is the receiver authentication. Google Chrome authenticates the receiver and refuses to stream to it if the authentication fails. Hyundai Head Unit Hacking ------------------------- In the previous post I have shown how to crack the official firmware for Hyundai Tucson 2020 and reverse engineer it. At the end I was thinking that I can simply modify the update package, zip it again with the same password and push it to the car. But it turned out it is not that simple. The update package is signed with an RSA key which corresponds to the daudio. Hacking Hyundai Tucson 2020 --------------------------- I bought Hyundai Tucson 2020 two years ago and recently I found great series of blog posts on how to hack Hyundai Ioniq 2021 by greenluigi1. Unfortunately, the methods described there didn’t work for me. My car is running the previous generation of D-Audio which is quite different from D-Audio 2V described by greenluigi1. For reference, these are the exact versions of the firmware/software which I have: I also found the password protected Engineering Mode which appears by tapping 5 times on the left from the Update button and 2 times on the right: Reversing 2.4GHz remote control ------------------------------- I have an old project on Github called rf-car for controlling a radio car with HackRF. A few months ago, my daughter received a new RC car made by Dickie Toys: This car was faster than the previous one and it was more fun to play with. I thought it’d be great if I can add support for it in the rf-car project and the fun began. FCC docs The car works on 2. Receiving SSTV from ISS ----------------------- Today I have successfully received and decoded an SSTV transmission from ISS. This is the result: In this post I will give a quick summary of what I have been using and how it worked for me. Hardware: USRP B200 - this is a high-end SDR but RTL-SDR dongle should also be fine Dipole antenna - I bought this from the RTL-SDR store; each side of the dipole should be around 50cm to make it resonant to 145. SoftHSMv2 internals ------------------- SoftHSMv2 is a software implementation of the PCKS#11 interface. It is often used as replacement for real HSM devices in test environments where protecting key material is not a strong requirement. In this post I will explain how the state of SoftHSMv2 is persisted, the security behind it and what can be improved. Tokens and objects Token is the PKCS#11 term for something that stores cryptographic objects and performs cryptographic operations. How many people are around -------------------------- There is a nice open-source project howmanypeoplearearound that counts the number of people around by sniffing WiFi probe requests sent from mobile phones. Well, now we have another method to do the same by exploiting the contact tracing functionality which is being added to iOS and Android. Cell phones are using Bluetooth Low Energy to transmit ephemeral IDs to nearby devices in order to discover encounters with other people. These IDs and the Bluetooth MAC changes every 15-20 minutes to prevent tracking of users. Signing files with Solo ----------------------- Solo is FIDO2 security key with open hardware and firmware. I have been following the project and using the key for quite a while now. It shares my believe that security solutions must be open. Solo is not only open but it also have developer edition, called Solo Hacker, which allows firmware modifications. I’ve been dealing with digital signatures a lot lately, so I thought why not use my Solo key to sign files?