Theming and first 2 posts.

Author: thelumberjhack

.gitignore

@@ -1,4 +1,4 @@
-_site/
-.sass-cache/
-.jekyll-cache/
+_site
+.sass-cache
 .jekyll-metadata
+*.lock

404.html

@@ -0,0 +1,24 @@
+---
+layout: default
+---
+
+<style type="text/css" media="screen">
+  .container {
+    margin: 10px auto;
+    max-width: 600px;
+    text-align: center;
+  }
+  h1 {
+    margin: 30px 0;
+    font-size: 4em;
+    line-height: 1;
+    letter-spacing: -1px;
+  }
+</style>
+
+<div class="container">
+  <h1>404</h1>
+
+  <p><strong>Page not found :(</strong></p>
+  <p>The requested page could not be found.</p>
+</div>

Gemfile

@@ -0,0 +1,28 @@
+source "https://rubygems.org"
+
+# Hello! This is where you manage which Jekyll version is used to run.
+# When you want to use a different version, change it below, save the
+# file and run `bundle install`. Run Jekyll with `bundle exec`, like so:
+#
+#     bundle exec jekyll serve
+#
+# This will help ensure the proper Jekyll version is running.
+# Happy Jekylling!
+gem "jekyll", "~> 3.8.7"
+
+# This is the default theme for new Jekyll sites. You may change this to anything you like.
+# gem "minima", "~> 2.0"
+gem "jekyll-remote-theme"
+
+# If you want to use GitHub Pages, remove the "gem "jekyll"" above and
+# uncomment the line below. To upgrade, run `bundle update github-pages`.
+# gem "github-pages", group: :jekyll_plugins
+
+# If you have any plugins, put them here!
+group :jekyll_plugins do
+  gem "jekyll-feed", "~> 0.6"
+  gem "jekyll-paginate"
+  gem "jekyll-sitemap"
+end
+
+

README.md

@@ -3,4 +3,4 @@
 Source code of [thelumberjhack.github.io](https://thelumberjhack.github.io)
 
 
-Built with [Jekyll](https://jekyllrb.com) and 
+Built with [Jekyll](https://jekyllrb.com) and [beautiful-jekyll](https://beautifuljekyll.com/) theme.

_config.yml

@@ -0,0 +1,51 @@
+title: TheLumberJ(h)ack
+description: >-
+  Trials and tribulations of a lumberj(h)ack in the infosec world.
+  Breaking and sometimes building stuff, Reverse-engineering, malware
+  analysis, fuzzing all the things...
+baseurl: "" 
+url: "https://thelumberjhack.github.io" # the base hostname & protocol for your site, e.g. http://example.com
+author: thelumberjhack
+
+avatar: "/assets/images/site/logo.png"
+
+# TODO: personalize colors
+# navbar-col: "#F5F5F5"
+# navbar-text-col: "#404040"
+# navbar-border-col: "#EAEAEA"
+# page-col: "#FFFFFF"
+# link-col: "#008AFF"
+# hover-col: "#0085A1"
+# footer-col: "#F5F5F5"
+# footer-text-col: "#777777"
+# footer-link-col: "#404040"
+
+navbar-links:
+  About me: "about"
+
+social-network-links:
+  twitter: thelumberjhack
+  github:  thelumberjhack
+  linkedin: yannickformaggio
+  email: thelumberjhack@[del-me]pm.me
+  rss: true
+
+link-tags: false # TODO
+title-separator: " | "
+
+timezone: "America/Vancouver"
+markdown: kramdown
+highlighter: rouge
+remote_theme: daattali/[email protected]
+permalink: /:year-:month-:day-:title/
+paginate: 5
+plugins:
+  - jekyll-feed
+  - jekyll-remote-theme
+  - jekyll-paginate
+  - jekyll-sitemap
+
+exclude:
+  - Gemfile
+  - Gemfile.lock
+  - README.md

_posts/2015-22-15-VxWorks-from-stone-age-to-interstellar.md

@@ -0,0 +1,32 @@
+---
+layout: post
+title:  "Attacking VxWorks: From stone age to interstellar"
+date:   2015-10-22 10:00:00 -0800
+tags:
+    - talk
+    - security
+    - research
+    - vxworks
+    - vulnerability
+readtime: true
+cover-img: {"assets/images/posts/rover.jpg" : "Curiosity Mars Rover"}
+---
+Presented first at [44Con London][44con-london] in September 2015 then at [Syscan 360][syscan-360] in Beijing in October 2015.
+
+## Introduction
+
+VxWorks is the world’s most widely-used real-time operating system deployed in embedded systems. Its market reach spans across all safety critical fields, including the Mars Curiosity rover, Boeing 787 Dreamliner, network routers to name a few. The safety critical nature of these applications make VxWorks security a major concern.
+
+Our team has conducted a thorough security analysis on VxWorks, including its supported network protocols and OS security mechanism. We will present the tool we developed for VxWorks assessment. The main goal of our tool is to provide effective penetration testing by implementing the WdbRPC protocol in python. To show its effectiveness, we are going to reveal some of the bugs we discovered along the way.
+
+Finally, we will wrap up by demonstrating the vulnerability we found that allows remote code execution on most VxWorks based devices. A quick Internet scan shows that at least 100k devices running VxWorks are connected to the Internet. Considering the popularity of VxWorks in the age of IoT, this issue will have a widespread impact.
+
+## Material
+
+- Slides > [Syscan 360][slides-syscan]
+- Fuzzer > [VxFuzz][code]
+
+[44con-london]: https://44con.com/
+[syscan-360]: https://www.syscan360.org/en/
+[slides-syscan]: https://speakerdeck.com/yformaggio/attacking-vxworks-from-stone-age-to-interstellar
+[code]: https://github.com/thelumberjhack/VxFuzz

_posts/2017-03-12-All-your-dr0nes-are-belong-to-me.md

@@ -0,0 +1,27 @@
+---
+layout: post
+title:  "Reverse engineering & hijacking toy quadcopters – All ur dr0nz r belong 2 me"
+date:   2017-03-14 00:00:00
+tags:
+    - talk
+    - security
+    - research
+    - sdr
+    - drone
+    - cx10wd
+readtime: true
+---
+
+Presented at [BSides Vancouver][bsides-vancouver] in March 2017.
+
+## Introduction
+
+From looking for OSINT about the target to reversing SPI dumped bytes and decoding RF signals with the final goal to detect and hijack the targeted drone!
+
+## Material
+- Slides > [All ur dr0nz r belong 2 me][slides]
+- Code > [all-your-cx10wd-belong-to-me][code]
+
+[bsides-vancouver]: https://www.bsidesvancouver.com/
+[slides]: https://speakerdeck.com/yformaggio/reverse-engineering-and-hijacking-toy-quadcopters-all-ur-dr0nz-r-belong-2-me
+[code]: https://github.com/thelumberjhack/all-your-cx10wd-belong-to-me

about.md

@@ -0,0 +1,7 @@
+---
+layout: page
+title: About
+permalink: /about/
+---
+
+To be done...