Cover photo
Dragos Ruiu
Works at inc.
Attended University of Alberta
Lived in Saskatchewan


Dragos Ruiu

Shared publicly  - 
bettercap - portable MITM meter cap replacement
A complete, modular, portable and easily extensible MITM framework.
Daniel Stutz's profile photoJürgen Christoffel's profile photo
Add a comment...

Dragos Ruiu

Shared publicly  - 
Happy Canada Day. (Or what's left of it and our rights after our current governing party get done with it.)
In other news the newest 801.11n WiFi standard has some seriously broken bits in the standard. They introduced a new packet coalescing and aggregation protocol that leaves the chipsets vulnerable to Packet-in-Packet injection. I.e. You can abuse the protocol to include spoofed low level MAC packets in HTTP frames from any web server and other similar fun. An attacker can leverage this technique to deauthenticate clients, inject malicious beacon frames, perform host and port scans, bypass firewall rules, and conduct Address Resolution Protocol (ARP) spoofing. So, not so good, especially since this is a chipset level issue and the chipsets are just behaving as the ill-conceived standard specifies for Aggregated-MAC Protocol Data Units (A-MPDU) handling. Being hardware/firmware, it's not easily changed.
Paper and PoC at link below.
Alexandre Keledjian's profile photoCaptain_ Hook (CaptainHook)'s profile photoJohn Chronister's profile photoMatthew J. Harmon's profile photo
Was your image for this post laced with aggr-inject frames? :-)
Add a comment...

Dragos Ruiu

Shared publicly  - 
Seems to me that lot of fun could be had with a little pattern of small "donuts" that makes a document unprintable and uncopyable. But I've always had a weird sense of "fun."
How often have you looked at the cash in your wallet? Look closer: it’s riddled with hidden patterns designed to deter counterfeiters. Chris Baraniuk investigates.
Bert Knabe's profile photoMathias Hablützel's profile photoAutumn Ginkgo Leaves™'s profile photoJürgen Christoffel's profile photo
I'm in the US, I need to find me some cash to check this out. Hey anyone willing to make a copy for me? :D
Add a comment...

Dragos Ruiu

Shared publicly  - 
This web page contains an overview of, and Q&A about, our recent results published in a technical paper (PDF, 2.1MB), archived as IACR ePrint 2015/170. It will be presented at the Workshop on Cryptographic Hardware and Embedded Systems (CHES) 2015 in September 2015.
Markus Breitenbach's profile photoMario Gastegger's profile photoEnrico Piccini's profile photoBruno Santos's profile photo

Add a comment...

Dragos Ruiu

Shared publicly  - 
Sleep mode end run on EFI protections on all pre mid2014 MacBooks leaves EFI vulnerable to unremovable bios rootkits.
I wouldn't bet that EFI is untouchable from user land on later model MacBooks either, though not necessarily with this bug. Apple might someday learn more eyes on security is better than their silent march of obscurity and planned obsolescence.
Wish there was some nonEFI dependent way to verify EFI - the architecture is broken.

Bert Knabe's profile photoMatias Brutti's profile photo
Add a comment...

Dragos Ruiu

Shared publicly  - 
Good enumeration of Windows persistence methods. 
TL;DR: Are you into red teaming? Need persistence? This post is not that long, read it ;) Are you into blue teaming? Have to find those pesky backdoors? This post is not that long, read it ;) In the previous post I listed...
Vincent Longo's profile photoElias Pinto's profile photoAli-Reza Anghaie's profile photoBogdan Donici's profile photo
Haven´t touch that OS for so long. Now you brought all the bad memories back.
Thx a lot +Dragos Ruiu.
Add a comment...

Dragos Ruiu

Shared publicly  - 
analyzing uncommon firmware
Let us define what common reverse engineering tasks look like. Given an executable file for Windows (or Linux, MacOS or any other widely-used operating system). We can run it, watch it in a debugger, and twist it in virtual environments in any way possible. File format is known.
Estella Madl's profile photoAlexandre Keledjian's profile photoCaptain_ Hook (CaptainHook)'s profile photoEnteroctopus dofleini's profile photo
Yeee! IDA!!! )))
Add a comment...

Dragos Ruiu

Shared publicly  - 
Brit boffins' test of 14 prominent privacy tunnels finds leaks galore thanks to IPv6 mess
Antti Vainiola's profile photoAlexandre Keledjian's profile photoCaptain_ Hook (CaptainHook)'s profile photoMario Vilas's profile photo
+Howard C. Shaw III I think the problem is that some providers are running traffic across both IPv4 and IPv6 simultaneously. When that happens, you're vulnerable.
Add a comment...

Dragos Ruiu

Shared publicly  - 
5 axis CNC less than 5k 
The PocketNC CNC Mill comes in at under $5,000 and delivers 5 axis of movement.
Brett Coburn's profile photoTheodore Stauffer's profile photo
Add a comment...

Dragos Ruiu

Shared publicly  - 
Keychain cracked on OSX and IOS. Ruh-Roh.
Paul Atwal's profile photoKevin Partridge's profile photo
Add a comment...

Dragos Ruiu

Shared publicly  - 
Nice Windows Kernel Exploitation tutorial
Windows Kernel Exploitation Humla Mumbai was conducted to introduce participants to Windows Kernel Exploitation.
Bogdan Donici's profile photoTerry Sanderson's profile photoMikko Rantalainen's profile photoAlexander Oberhuber's profile photo
Would be interesting to see someone have a look at ReactOS's kernel and subsystems for bugs like these.
It is an NT like OS, so...
Add a comment...

Dragos Ruiu

Shared publicly  - 
HD firmware hacking (part3): reversing the boot loader
Before we get started with part 3, I have a few updates regarding part 1 & 2. I've found that the reset pad on the JTAG header is not actually a system reset (SRST) but a TAP reset (TRST), which isn't very useful for debuggin...
Luís Filipe Gonzaga's profile photoBogdan Donici's profile photo
Add a comment...
Stop, Think, Pwn.
Systems Rationalizer
Bragging rights
Can hover inverted. ;-)
  • University of Alberta
Basic Information
Other names
  • inc.
    engineer, 1997 - present
  • HP
  • Myrias
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Contributor to
Dragos Ruiu's +1's are the things they like, agree with, or want to recommend.
Waze Social GPS Maps & Traffic

Waze is a fun, community based mapping, traffic & navigation app. With millions of drivers from across the globe joining forces to outsmart


Threema ist eine Kurznachrichten-App mit einem besonderen Fokus auf Sicherheit. Echte Ende-zu-Ende-Verschlüsselung garantiert, dass niemand


Android version of the popular CPU identification tool for PC/Windows., CPU-Z is a free application that reports information about your devi

Demand answers and real consequences for robocall election fraud

Elections Canada just traced misleading phone calls made during the 2011 federal election to a company that worked for the Conservative Part

KB14320-How to maximize battery life and free memory on the BlackBerry s...

Maximizing Battery Power. Application Management. Multitasking - Close any running BlackBerry® smartphone applications that are not being ac

Play VOB,MKV,MTS,FLV RM,RMVB on Windows RT (Surface 8 RT included) » AMV...

Overview Micrsoft has made an important step to support the playback of MPEG-4 on Windows 8 RT and Windows 8 Pro. Windows RT has excellent s

Locus Pro

MULTI-FUNCTION TOURIST NAVIGATION Irreplaceable application for hiking, geocaching and your everyday life. Locus offers many useful features

A free and open world depends on a free and open web. | Google

A free and open world depends on a free and open Internet. Governments alone, working behind closed doors, should not direct its future. The

There's a New Way to Own a Piece of Facebook Before Its IPO

If you're looking to invest in Facebook before its IPO but not privy to the secondary markets where shares of the company have been trad


Off-road GPS navigator with offline maps support, compass and track recording. Use offline maps and GPS even without an internet connection.

Vancouver Riot: Psychology (Not Hooligans) Is Responsibile for the Chaos...

As I sat at home watching the Vancouver riots unfold in front of me, I was amazed at how ill-informed the newscasters and on-site reporters