Avvryt: 2020

Tuesday, September 22, 2020

Suzy Cube Update: June 1, 2018

#SuzyCube #gamedev #indiedev #madewithunity @NoodlecakeGames

What a week!! We are continuing to work hard to wrap things up in time for *redacted*.

28Mm WW1 Mesopotamia Cavalry - The Irregular Option

A few weeks ago I posted on a few of the wargames sites asking for suggestions for options to cover Cavalry options for the Mesopotamia Campaign of WW1. I have some Great War Miniatures with head swaps for the British and some figures from the Minifigs East Ablaze for the Turkish but wanted some more options especially for Indian Cavalry.

A number of options were suggested, sadly Brigade Games aren't avaliable direct in the UK and importing from the US at the moment is just massively prohibitive.

One company that was suggested was Irregular Miniatures who to be honest I wasn't aware did WW1 figures. I visited the website and ordered 6 figures of three different types as a sample. I've painted them up and now it's time to compare them to my existing collections.

First up are the British Cavalry these have the 1903 ammo bandoliers that prevent the use of earlier figures (like Afgan War) but have Colonial Helmets rather than the Wolesley style more common in Mesopotamia. I do have some pics of troops in theatre with them but these figs look more Boer War to me.

The next two pics show them against a base of my existing Great War Miniatures Cavalry, the GWM are bigger by a visible amount, but the two aren't incompatible on the same table. They have painted up quite well but I'm just not sure about the hat. Undecided.

Next up are some Indian Cavalry with Lance, these are probably the best of the three types of figures I bought. Other than the faces being a bit awkward from some angles I like these. For purists I improvised on the lance pennants, as far as I can tell they weren't used in the field so I guessed 👍

Here they are size wise against the GWM British, these look a lot closer than the Brits do, smaller yes, but only a bit. I like these and may end up getting at least one unit. My alternative to these are some Artizan Afgan War Indian Cavalry, I am looking at the possibility of someone 3d printing the bandoliers but I've no idea if it will work.

Finally are a couple of Turkish Lancers, these are more toy soldier like in their appearance but once painted up they look pretty good.

Finally the size comparison, these are next to the Minifigs East Ablaze figures (The horses for which are huge !). There is a big difference in size here, although the figures themselves are pretty similar the Irregular horses look like pit ponies. Again I'm undecided on these, they are fine as figures but the size comparison makes it difficult to justify them in the same unit.

They are well priced at £2.64 each or 8 for £17.60 (2.20 each) compared to around £3.50 a figure for the other two. Website link for the figures below.

http://www.irregularminiatures.co.uk

DE: New FAQ And Updated Lists!

New FAQ and updated lists.

Ho ho ho, a day after I blog about competitive play and Dark Eldar's place in the meta, GW drops a huge FAQ that extends to all armies and changes the way we play the game.

You can find all the good jazz right here, but I'll sum up the main highlights of how this changes the way I build my armies going forward. Funny enough, DE didn't change all that much and it was really those other armies out there that got a big calibration.

Here are the big highlights from the FAQ:

Smite spam is now harder to cast
Character targeting changed so other characters can't block targeting
Battalions and Brigades now generate +5 CPs and +12 CPs!
You only get one kind of Ignore save wounds
Various point changes (increase to CW units and Dark Reapers)
You cannot have more than 3 datasheets in a 2K game except troops and transports
Soups got hit so you can't mix as hard, you just have to read it
Reserves also changed so first turn alphas are not as devastating

There's a lot of changes here the directly affects competitive play, but my favorite change of all is probably the rule of 3. Not being able to spam is really awesome of the game's health. The soup changes also make it so you can't just bring the most powerful units of all different books into a single detachment and that's awesome. The only one I'm not too sure about is the fact that Battalions and Brigades generate so much CP now. While I can understand GW's intention here to fix the more elite armies limited CPs, this benefits everyone. This means that IG CP batteries with their cheap ass Brigades are in season.. even more so than they were before. Lastly, the changes to Reserves alpha striking is not created equal with all the armies out there. Some are much more effective than others, but other armies are made better when these kind of assaults are part of their strategic repertoire.

With that said, the only thing I'm really bummed out about is the fact that the Farseer, Warlock, and Spiritseer went up in price. I was actually in the middle of writing out a list last night, but now that the FAQ has dropped, I'm going to update all the lists I'm using in one go!

Here they are:

Kabal of the Black Rose

1999 // 10 CP

Obsidian Rose Bat +5 CP

HQ:

Archon, Agonizer, Blaster, PGL = 94

TROOP:

10x Warriors, 2x Blaster, SC = 104

+++

Black Heart Spear +1 CP

HQ:

Archon, Agonizer, Blaster = 91

Warlord: Cunning, Living Muse

TROOP:

7x Warriors, Blaster, BP = 69

PARTY BUS:

Raider, Dark Lance = 85

HEAVY:

Ravager, 3x Dissies = 125

+++

Black Heart Wing +1 CP

FLYER:

Razorwing, 2x Dark Lance = 145

>>>

Firepower:

11 Dark Lances at BS3+

9 Dissies at BS3+

9 Blasters at BS3+

3 Blasters at BS2+

3 Razorwing Missiles at BS3+

4 Splinter Cannons at BS3+

40 Splinter Rifles at BS3+

This my pure DE Kabal list combining the range power that is Obsidian Rose with the resilience of Black Heart. I call this my Kabal of the Black Rose and it has been undefeated since the Codex came out. A lot of firepower, a lot of pain.

Alaitoc Black Spear

2000 // 10 CP

Alaitoc Bat +5 CP

HQ:

Farseer Skyrunner = 135

Doom, Mind War

Warlock = 55
Protect/Jinx

TROOP:

5x Rangers = 60

+++

Alaitoc Wing +1 CP

FLYER:

Hemlock Wraithfighter = 210

Jinx

Hemlock Wraithfighter = 210

Jinx

Crimson Hunter Exarch, 2x Bright Lance = 175

+++

Black Heart Spear +1 CP

HQ:

Archon, Huskblade, Blaster = 93

Cunning, Living Muse

TROOP:

10x Warriors, 2x Blasters, SC = 104

Raider, Dark Lance = 85

189

10x Warriors, 2x Blasters, SC = 104

Raider, Dark Lance = 85

189

10x Warriors, 2x Blasters, SC = 104

Raider, Dark Lance = 85

189

HEAVY:

Ravager, 3x Dissies = 125

>>>

Firepower:

9 Disintegrators at BS3+

3 Dark Lances at BS3+

2 Bright Lances at BS2+

1 Pulse Laser at BS2+

6 Blasters at BS3+

1 Blaster at BS2+

3 Splinter Cannons at BS3+

4 Heavy D-Sycthes at Auto

21 Splinter Rifles at BS3+

15 Ranger Long Rifle at BS3+

This is my current DE + CW list and I think it's actually pretty decent. I used it once so far and the combination of Doom/Jinx with DE firepower is just insane. With the loss of so many lances, having the Crimson Hunter in the army actually helps a lot.

Black Skull Strife

2000 // 14 CP

Flayed Skull Bat +5 CP

HQ:

Archon, Agonizer, Blaster = 91

PARTY BOATS:

Raider, Dark Lance = 85

TROOP:

10x Warriors, 2x Blaster, SCannon = 104

FLYER:

Razorwing, 2x Dark Lance = 145

+++

Black Heart Spear +1 CP

HQ:

Archon, Huskblade, Blaster = 93

Warlord: Hatred Eternal, Djin Blade

HEAVY:

Ravager, 3x Dinsintegrator = 125

+++

Strife Bat +5 CP

HQ:

Succubus, Agonizer = 54

Blood Dancer, Whip

Succubus, Agonizer = 54

TROOP:

8x Wyches, Agonizer, Shardnet, BP = 83

5x Wyches, Agonizer, Shardnet = 49

>>>

Firepower:

9 Disintegrators at BS3+

9 Dark Lances at BS3+

6 Blasters at BS3+

3 Blasters at BS2+

2 Razorwing Missiles at BS3+

3 Splinter Cannons at BS3+

25 Splinter Rifles at BS3+

This is my close-combat list with double Bats and a Black Heart Spear. This list gives me some great killy units with my Blood Dancer Succubus and Hatred Eternal Archon. I can also choose to go with more re-rolls with Living Muse and Cunning, but I think I'm going to use this for now because I want to be able to play CC armies occasionally. I still stand by what I said before in previous posts: Cults are our best CP battery (especially now with the Bat CP buffs). Gotta go fast!

Friday, September 4, 2020

UCLan Games Design Experience Of WIG Conference 2019

Two of our lovely Games Design students, Catarina Martins and Stacey Satchell were at the Women in Games Conference 2019 last week.
Here's what they had to say about the experience :)

Catarina:

"Can't put into words how inspiring and amazing those couple of days were in London at the European Women in Games Conference. The gaming industry is filled with strong and talented people and I had the absolute pleasure of meeting some of them. Also managed to make really good contacts with very helpful and super nice people which I hope to see again soon!
Now is time to take all the knowledge and inspiration I received and start applying for jobs. Let the new adventure begin!"

Stacey:

"Women in Games was such a wonderful event full of uplifting and talented people from a large variety of backgrounds and roles. From Keynotes that inspired me as a women in the community to panels that taught me so much about the industry as a professional. I left with amazing advice, a positive attitude and plenty of new friends.

Looking forward to it again next year!"

And here's some of the photos they took at the event.
Thanks for sharing, Girls!

Monday, August 31, 2020

DSploit

After playing with the applications installed on the Pwn Pad, I found that the most important application (at least for me) was missing from the pre-installed apps. Namely, DSploit. Although DSploit has tons of features, I really liked the multiprotocol password sniffing (same as dsniff) and the session hijacking functionality.

The DSploit APK in the Play Store was not working for me, but the latest nightly on http://dsploit.net worked like a charm.

Most features require that you and your target uses the same WiFi network, and that's it. It can be Open, WEP, WPA/WPA2 Personal. On all of these networks, DSploit will sniff the passwords - because of the active attacks. E.g. a lot of email clients still use IMAP with clear text passwords, or some webmails, etc.

First, DSploit lists the AP and the known devices on the network. In this case, I chose one victim client.

In the following submenu, there are tons of options, but the best features are in the MITM section.

Stealthiness warning: in some cases, I received the following popup on the victim Windows:

This is what we have under the MITM submenu:

Password sniffing

For example, let's start with the Password Sniffer. It is the same as EvilAP and DSniff in my previous post. With the same results for the popular Hungarian webmail with the default secure login checkbox turned off. Don't forget, this is not an Open WiFi network, but one with WPA2 protection!

Session hijack

Now let's assume that the victim is very security-aware and he checks the secure login checkbox. Another cause can be that the victim already logged in, long before we started to attack. The session hijacking function is similar to the Firesheep tool, but it works with every website where the session cookies are sent in clear text, and there is no need for any additional support.

In a session hijacking attack (also called "sidejacking"), after the victim browser sends the authentication cookies in clear text, DSploit copies these cookies into its own browser, and opens the website with the same cookies, which results in successful login most of the time. Let's see session hijacking in action!

Here, we can see that the session cookies have been sniffed from the air:

Let's select that session, and be amazed that we logged into the user's webmail session.

Redirect traffic

This feature can be used both for fun or profit. For fun, you can redirect all the victim traffic to http://www.kittenwar.com/. For-profit, you can redirect your victim to phishing pages.

Replace images, videos

I think this is just for fun here. Endless Rick Rolling possibilities.

Script injection

This is mostly for profit. client-side injection, drive-by-exploits, endless possibilities.

Custom filter

If you are familiar with ettercap, this has similar functionalities (but dumber), with string or regex replacements. E.g. you can replace the news, stock prices, which pizza the victim ordered, etc. If you know more fun stuff here, please leave a comment (only HTTP scenario - e.g. attacking Facebook won't work).

Additional fun (not in DSploit) - SSLStrip

From the MITM section of DSploit, I really miss the SSLStrip functionality. Luckily, it is built into the Pwn Pad. With the help of SSLStrip, we can remove the references to HTTPS links in the clear text HTTP traffic, and replace those with HTTP. So even if the user checks the secure login checkbox at freemail.hu, the password will be sent in clear text - thus it can be sniffed with DSniff.

HTML source on the client-side without SSLstrip:

HTML source on the client-side with SSL strip:

With EvilAP, SSLStrip, and DSniff, the password can be stolen. No hacking skillz needed.

Lessons learned here

If you are a website operator where you allow your users to login, always:

Use HTTPS with a trusted certificate, and redirect all unencrypted traffic to HTTPS ASAP
Mark the session cookies with the secure flag
Use HSTS to prevent SSLStrip attacks

If you are a user:

Don't trust sites with your confidential data if the above points are not fixed. Choose a more secure alternative
Use HTTPS everywhere plugin
For improved security, use VPN

Because hacking has never been so easy before.
And last but not least, if you like the DSploit project, don't forget to donate them!

John The Ripper

"A powerful, flexible, and fast multi-platform password hash cracker John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types which are most commonly found on various Unix flavors, as well as Kerberos AFS and Windows NT/2000/XP LM hashes. Several other hash types are added with contributed patches. You will want to start with some wordlists, which you can find here or here. " read more...

Website: http://www.openwall.com/john

Sunday, August 30, 2020

Top 5 Most Useful Linux Tools For Programmers

Linux is a free and open-source software operating systems built around the Linux kernel. It typically packaged in a form known as a Linux distribution for both desktop and server use. It is a great development environment for programmers and developers. However, without the development tools, that would be impossible. Fortunately, plenty of Linux tools are available. Here are the top 5 most useful Linux tools for programmers.

Also Read;- How To Clone One Android To Another

5 Most Useful Linux tools for Programmers

1. VIM

VIM is a free and open source software written by Bram Moolenaar in 1991. It is designed for use both from a command-line interface and as a standalone application in a graphical user interface. It comes standard with almost every Linux distribution and is also known as "the programmer's editor". VIM is great for coding and can also be used for editing things like configuration files and XML documents.

Vim has been developed to be a cross-platform that supports many other platforms. In 2006, it was voted as the most popular editor amongst Linux Journal readers. In 2015, Stack Overflow developer survey found it to be the third most popular text editor while in 2016, the Stack Overflow developer survey found it to be the fourth most popular development environment.

Read more;- How To Use WhatsApp without Mobile No

2. Zsh

Zsh is written in C and initially released in 1990. It is a Unix shell that can be used as an interactive login shell and as a powerful command interpreter for shell scripting. Zsh is an extended version of Bourne shell (BASH) with a large number of improvements, including some features of Bash, ksh, and tcsh. Zsh gives a user-friendly experience on the command line. It also gives better auto-completion, Vim key bindings, and smart guesses when you write a command wrong.

Its features include (but not limited to):

Programmable command-line completion,
Sharing of command history among all running shells
Extended file globbing
Improved variable/array handling
Editing of multi-line commands in a single buffer
Spelling correction
Various compatibility modes,
Themeable prompts, and
Loadable modules.

3. Byobu

It was initially released in 2009 written in Sh and Python. Byobu can be used to provide on-screen notification or status and tabbed multi-window management. Thus, it is intended to improve terminal sessions when users connect to remote servers with an operating system Linux and Unix-like. It is is an enhancement for the GNU Screen terminal multiplexer or tmux used with the GNU/Linux computer operating system.

4. GIT

Git was initially released on April 7, 2005. It is a version control system to track changes in computer files and to coordinate work on those files among multiple people. It is primarily used for source code management in software development and can be used to keep track of changes in any set of files available in the English language. It is aimed at speed, data integrity, and support for distributed, non-linear workflows. It is free and open source software distributed under the terms of the GNU General Public License version 2.

Moreover, Linus Torvalds was the creator of GIT for the development of the Linux kernel. On the other hand, its current maintainer since then is Junio Hamano. Thus, every Git directory on every computer is a full-fledged repository with complete history and full version tracking abilities, independent of network access or a central server.

Read more;- How To change Facebook Default Theme

5. Docker

Written by Solomon Hykes in 2013, it is a computer program that performs operating-system-level virtualization, the containerization, which is developed by Docker, Inc. Primarily, Docker was developed for Linux to use as the resource isolation features of the Linux kernel. It is a tool that can package an application and its dependencies in a virtual container that can run on any Linux server. This helps enable the flexibility and portability on where the application can run, whether on premises, public cloud, private cloud, bare metal, etc. Moreover, it accesses the Linux kernel's virtualization features either directly using the libcontainer library.

Avvryt

Tuesday, September 22, 2020

Suzy Cube Update: June 1, 2018

Sunday, September 13, 2020

28Mm WW1 Mesopotamia Cavalry - The Irregular Option

DE: New FAQ And Updated Lists!

Friday, September 4, 2020

UCLan Games Design Experience Of WIG Conference 2019

Monday, August 31, 2020

DSploit

DSploit

Password sniffing

Session hijack

Redirect traffic

Replace images, videos

Script injection

Custom filter

Additional fun (not in DSploit) - SSLStrip

Lessons learned here

Related news

John The Ripper

More articles

Sunday, August 30, 2020

Top 5 Most Useful Linux Tools For Programmers

5 Most Useful Linux tools for Programmers

1. VIM

2. Zsh

3. Byobu

4. GIT

5. Docker

More info