tinyapps.org / blog

Windows 7 ESU for truly small businesses #

Despite dire warnings and headlines like these:

• Wired: Now It's Really, Truly Time to Give Up Windows 7 - "After Tuesday, Microsoft will no longer issue security updates for the operating system, leaving users who don't upgrade vulnerable to malware."

• Gizmodo: Windows 7 Is Officially Dead, So You Really Need to Upgrade - "As of today, Microsoft is no longer supporting Windows 7. That means no more software updates, security fixes or patches, or technical support. It is dead, an ex-operating system if you will."

• PCMag: Windows 7 Is Dead: Upgrade Now - "As of today, if a major bug hits Windows, those on Windows 7 won't get the patch when Microsoft rolls it out. Upgrade now or pay the price."

• Computerworld: Saying goodbye to Windows 7 isn’t easy, but you must - "One in five Windows users is still using Windows 7. That’s one too many. It’s time to move on."

• How-To Geek: Windows 7 Dies Today: Here’s What You Need to Know - "Windows 7 support hasn’t ended completely. Microsoft will still offer 'extended security updates' for it, but only to organizations like businesses and governments—and only if those organizations pay an ever-increasing fee. That fee is designed to encourage organizations to upgrade."

it is trivial (on the order of a few minutes) and inexpensive ($63.75 per computer for the first year with no minimum order) for small business running Windows 7 Pro or Ultimate to enroll in Microsoft's Extended Security Updates program thanks to Ted and Amy at Harbor Computer Services.

Simply fill out the order form (as mentioned in Ed Bott's updated You want to keep running Windows 7? Good luck with that, small businesses) and run the 3 simple slmgr commands provided by Ted in your order confirmation email.

Deepest thanks to Ted and Amy for helping truly small businesses access critical security updates for legacy systems.

/windows | Jan 22, 2020

On Wisdom #

• "The soul that lodges philosophy, ought to be of such a constitution of health, as to render the body in like manner healthful too; she ought to make her tranquillity and satisfaction shine so as to appear without, and her contentment ought to fashion the outward behaviour to her own mould, and consequently to fortify it with a graceful confidence, an active and joyous carriage, and a serene and contented countenance. The most manifest sign of wisdom is a continual cheerfulness; her state is like that of things in the regions above the moon, always clear and serene."
  —Michel de Montaigne in Book I, Chapter XXV of The Essays of Montaigne, Complete

• "We must be willing to get rid of the life we've planned, so as to have the life that is waiting for us."
  —Joseph Campbell quoted in A Joseph Campbell Companion: Reflections on the Art of Living

• "Reading after a certain age diverts the mind too much from its creative pursuits. Any man who reads too much and uses his own brain too little falls into lazy habits of thinking, just as the man who spends too much time in the theater is tempted to be content with living vicariously instead of living his own life."
  —Albert Einstein quoted in What Life Means to Einstein, an interview with George Sylvester Viereck from the October 26, 1929 issue of The Saturday Evening Post

/misc | Jan 01, 2020

Save ​.ORG #

Help stop the sale of Public Interest Registry to a Private Equity Firm:

• Take action to save .org and prosecute those who sold out the internet (original HN comment)
• Save .ORG | HN comments
• .ORGanized Takeover – a timeline of the ISOC, PIR & Ethos Capital Deal
• HN comments on "Why I Voted to Sell .ORG"
• A private equity firm is buying all of the .org domains. Here's what that means
• ISOC CEO Releases Statement on .Org Sale
• Internet Society's Vint 'father of the 'net' Cerf dodges dot-org sell-off during public Q&A
• Tim Berners-Lee: "I'm very concerned about the sale of .org to a private company. If the Public Interest Registry ends up not being required to act in the public interest, it would be a travesty. We need an urgent explanation. #SaveDotOrg"
• Well That was a Surprise! Why ISOC's domain is Not Worth Giving Up.
• ICANN Races Towards Regulatory Capture: The Great .ORG Heist

/misc | Nov 22, 2019

Crack Mac user password #

Environment

• Target and attack Macs both running macOS Mojave 10.14.6
• FileVault not enabled on target (see Cracking FileVault 2 (HFS+ or APFS) for cracking FileVault-encrypted volumes)
• Target Mac connected to attack Mac via Target Disk Mode

Extract hash

sudo ./plist2hashcat.py /Volumes/Target/var/db/dslocal/nodes/Default/users/username.plist

user:$ml$28328$7215a1faa91e6196fb53884c4320970d9705ae6f19e5b50e0a24243708629a9b$8e0588decbdb347e0b909a7a1b1bc9470fe7dd37e09a64f9d02b82cfba91116b13d7c172b5a65683ac8d2c873324b8d82255a51ced0792656e766fa1a9c23994

Save the output without the leading "user:" (otherwise you'll need to specify --username when running hashcat) to hash.txt

Start cracking

hashcat -a 0 -m 7100 --status -o found.txt hash.txt wordlist.txt

More

Additional scripts and a program that accomplish the same goal as plist2hashcat.py (i.e., extracting hashcat-compatible hashes from binary plist shadow files generated by OS X 10.8 and up (SALTED-SHA512-PBKDF2)):

• mac2john.py (formerly "ml2john.py")
• Empire/lib/modules/python/collection/osx/hashdump.py
• osx_hashdump.py
• macOS-HashExtractor
• DaveGrohl

The process can also be done manually:

• Detailed walkthru by klanomath
• How to Extract OS X Mavericks Password Hash for Cracking With Hashcat

See also Recovering saved macOS user passwords.

/mac | Oct 30, 2019

Run Aperture, iPhoto, or iTunes on macOS Catalina #

Retroactive "is an app that lets you run Aperture, iPhoto, and iTunes on macOS Catalina." The author's exhaustive Technical Deep Dive: How does Retroactive work? answers the question in full, but also highlights a number of limitations:

• Importing new videos will fail in both iPhoto and Aperture.
• Playing an already-imported video in Aperture will silently fail.
• Playing an already-imported video in iPhoto will cause iPhoto to crash.
• Exporting slideshows will fail in both iPhoto and Aperture.

The list differs somewhat in the readme:

• All Aperture features should be available except for playing videos and exporting slideshows.
• All iPhoto features should be available except for playing videos and exporting slideshows. (iPhoto may automatically quit when playing video.)
• All features should work for iTunes 12.9.5 and iTunes 12.6.5. If you use iTunes 12.6.5 to download iOS apps, thumbnails may appear distorted.
• iTunes 10.7 may prompt “A required iTunes component is not installed. Please reinstall iTunes (-42401).” There is no need to reinstall iTunes.

/mac | Oct 30, 2019

Dedupe massive wordlists without changing order #

"The duplicut tool finds and removes duplicate entries from a wordlist, without changing the order, and without getting OOM on huge wordlists whose size exceeds available memory. ... [W]ritten in C, and optimized to be as fast and memory frugal as possible."

Refreshingly simple installation and syntax:

make release
./duplicut <WORDLIST_WITH_DUPLICATES> -o <NEW_CLEAN_WORDLIST>

UPDATE: Royce Williams kindly alerted me to possible issues around longer line lengths and non-ASCII characters, and the author of duplicut, nil0x42, was kind enough to set me straight: just needed to specify --line-max-size 254 to avoid truncation under that threshold.

/nix | Oct 30, 2019

Cracking hashes in the cloud with hashcat #

posted to the docs section.

/nix | Oct 29, 2019

Firefox: Enable Night Mode for desktop OSes #

Firefox for iOS offers an "Enable Night Mode" toggle which not only darkens the Firefox interface, but websites as well.

While not available for desktop OSes yet, you can achieve a similar result with ShadowFox (macOS users can install via Homebrew or MacPorts) and Dark Reader. ShadowFox correctly darkens every UI element, including ones that other themes can have trouble with, like the address bar, context menu, and history page.

/misc | Oct 23, 2019

Download webpage to .webarchive in Terminal #

Webarchiver "allows you to create Safari .webarchive files from the command line":

webarchiver -url https://tinyapps.org -output tinyapps.webarchive

With a bash function, we can automate creating the filename from the page's title tag and include the URL in the "Where from" metadata:

function dl() {
  ADDRESS="$1"
  TITLE=`curl -s "$ADDRESS" | grep -o "<title>[^<]*" -m 1 | tail -c+8`
  /Applications/network/webarchiver -url "$ADDRESS" -output "$TITLE.webarchive"
  xattr -w "com.apple.metadata:kMDItemWhereFroms" "$ADDRESS" "$TITLE.webarchive"
}

Add the above to your .bash_profile, reload with source ~/.bash_profile, and use like so:

$ dl https://tinyapps.org/docs/nvme-sanitize.html

Title tags can be tricky to parse correctly, here are some other approaches:

• How do I get a websites title using command line?
• Wget page title
• How can I download a page of reddit and extract the titles?

as well as another version wherein you manually supply the title/filename:

function dl() {
  ADDRESS="$1"
  FILENAME="$2"
  /Applications/network/webarchiver -url "$ADDRESS" -output "$FILENAME.webarchive"
  xattr -w "com.apple.metadata:kMDItemWhereFroms" "$ADDRESS" "$FILENAME.webarchive"
}

calling like so:

$ dl https://tinyapps.org/docs/nvme-sanitize.html "NVMe Sanitize"

Acquire webarchiver 0.9 via homebrew (brew install webarchiver) or MacPorts (sudo port install webarchiver), or build easily from source with Xcode.

Thanks to kenorb for his simple title regex; I only had to add -m 1 after running across a page containing multiple title tags (which apparently isn't that rare, in spite of the spec).

/mac | Oct 21, 2019

Catalina: Restore Classic Layout in Mail #

If you have the misfortune to be stuck on Catalina, you can restore Mail.app's classic layout via View > "Use Column Layout" and View > uncheck "Show Side Preview"; the previous option (Mail > Preferences > Viewing > Use classic layout) is gone.

/mac | Oct 21, 2019

Subscribe or visit the archives.