#Hack5Stelle

Questo post doveva essere pubblicato verso giugno 2019, l’ho scritto in quel periodo, poi si sa, è facile procrastinare, gli imprevisti sono dietro l’angolo, le scalette personali mutano, capitano settimane impegnative, e le bozze rimangono salvate a prendere polvere. Ci tengo molto a ringraziare le persone - tante - che mi hanno fatto sentire il proprio sostegno, in vari modi, durante tutta la vicenda che mi ha coinvolto. Quindi rispolvero questa bozza, riprendo da dove avevo lasciato e la pubblico con colpevole ritardo. ...

August 13, 2019 · 6 min · 1071 words · Luigi Gubello

About Iran and IRA Twitter datasets (for fun) – Part II

In this post I will move forward on the analysis of Twitter datasets, that I have started in December. You can read the previous post, “About Iran and IRA Twitter datasets (for fun) – Part I”. This time I have focused on the potential Russian propaganda in Europe, so I have decided to analyse the tweets written in German, Italian, Spanish, French, Dutch and Danish. I have left out English tweets because it would have been difficult to separate the propaganda in the United Kingdom from the propaganda in the United States. In my own Python code, in order to read data I have mainly used these packages: pandas, langid, emoji, matplotlib and wordcloud. The module langid has been useful to classify the languages used in the users’ descriptions, it is not always correct, but it allowed me to make a comparison between the descriptions’ languages and the tweets’ languages. You can find a list of Python module to recognize the language of a text in this topic on StackOverflow. The module wordcloud allows to do awesome plots with words (thanks to Python-Graph-Gallery for the shared code). ...

May 20, 2019 · 26 min · 5419 words · Luigi Gubello

Router D-Link DVA-5592 – Authentication Bypass

Info Vendor: D-Link Italia Product: Router DVA-5592 Firmware: DVA-5592_A1_WI_20180823 CVE: 2018-17777 Shodan: ADB Broadband HTTP Server" title:“D-Link” Description In the router D-Link DVA-5592 it is possible to bypass the web authentication form. The problem is the path /ui/cbpc/login, because it is accessible without authentication. If the router’s owner has not changed the Parental Control PIN, it is possible to access to the Parental Control area, by using the default PIN code. Now, by editing the path of the cookie sid, the login form can be bypassed. ...

December 16, 2018 · 2 min · 230 words · Luigi Gubello

About Iran and IRA Twitter datasets (for fun) – Part I

On 17 October 2018 Twitter released two datasets about the propaganda accounts of the Internet Research Agency (IRA) and Iran. Each dataset has three parts: a CSV file with the user list, a CSV file with all* the tweets of said users and a dataset of the shared images and memes. For fun I tried to use pandas and matplotlib to read the data. To read the file ira_tweets_csv_hashed.csv (5,4 GB) I split it into 91 parts, with 100.000 rows each, by using the awesome split command. I used a lot of code posted on the site Python-Graph-Gallery (❤️) to draw the plots. ...

December 7, 2018 · 5 min · 1040 words · Luigi Gubello

Configurare un Pi-Hole portatile

Poco tempo fa ho scoperto un progetto open source chiamato Pi-Hole, piuttosto conosciuto e apprezzato. Il compito di Pi-Hole è quello di “ripulire” la nostra navigazione su Internet da pubblicità e siti malevoli (semplificando: funge da ad-block), creando un piccolo server DNS sul Raspberry. Uno dei principali punti di forza è che, una volta configurato, ripulisce dalle pubblicità ogni dispositivo connesso alla rete, senza bisogno di ulteriori programmi o plug-in. ...

November 2, 2018 · 8 min · 1598 words · Luigi Gubello