hacking - Gizmodo

posts about #hacking more →
Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
New Xbox 360 Warranty Stickers Better Guarantee Chastity?
Android Hacking For The Masses
Warning: Not All ATMs at DefCon Are What They Appear to Be
DefCon Badge Hack Fools Facial Recognition Systems With Pulsing Light
Unsecure Electronic Parking Meters Can Be Hacked For Infinite Money
The Official Reason AT&T Blocked 4Chan
Why Did AT&T Block 4Chan?
Hacker Claims iPhone 3GS Encryption is Incredibly, Dangerously Easy to Crack
Phreaking the Phones: Before There Was Hacking

Your version of Internet Explorer is not supported. Please upgrade to the most recent version in order to view comments.

Dsmvwl Admin Promote to frontpage Approve user Ban user ×

craig.esquivel
11/08/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
People are really hyping up this leak way more than it should be hyped. Yes, in theory the leaking of software that is supposed to be heavily restricted to a certain clientele is big news. However, the software itself is pretty useless outside of police use. COFFEE is used to collect volatile information from a suspect's computer during an investigation that would otherwise be lost when the computer is shutdown. In the past, expert computer forensics specialists were needed to gather this info. Now, someone with a VERY limited understanding of computers can plug in a USB drive flashed with COFFEE and pull off all the info automatically to be used later in a reporting capacity. That's it. So if you can find some way to use that to somehow benefit you, then you get a cookie.
Reply

Odin promoted this comment Duckspwn:Loves Approving Reds approved this comment craig.esquivel was starred craig.esquivel was unstarred

Odin
11/09/09

@craig.esquivel:
You do know that the first thing the industrial might of the internet is going to do with this is come up with ways to circumvent it right? I'm pretty sure the police aren't going to be happy when they plug their coffee in and it brings bugger all back with it. #microsoft
Reply

Odin was starred Odin was unstarred

jimbojojo
11/08/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
That's nice of the article to say, however they fail to mention which law one would be breaking via the use of such software.

Could someone please enlighten me on this subject? I use software with similar functionality all the time in my job for legitimate data recovery purposes, is there really a law which specifically names the techniques utilized by such applications? Or is this one of those vague cases were the intent is defined somewhere under law, more so than the technical specifics?

In any case, could somebody please find the law these people are alluding to. Truly, I want to know.
Reply

Chris Jacob promoted this comment Duckspwn:Loves Approving Reds approved this comment jimbojojo was starred jimbojojo was unstarred

Chris Jacob
11/08/09

@jimbojojo: I meant grabbing data without consent. I don't know the specifics of the law, but I'm pretty sure stealing someone's info without permission wouldn't go over too well. #microsoft
Reply

Chris Jacob was starred Chris Jacob was unstarred

Tawnie is saving no daylight
11/08/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
Who needs cofee when you have linux on a thumb drive. #microsoft
Reply

thechansen
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
I have plenty of freeware, open source and legal tools to do the same. Keep in mind I require the consent of the owner, and proof that they own the computer. There are plenty of people outside of the gizmodo bubble that throw away the sheet of paper with all of the passwords they have on it and can't access any of their accounts let alone, their PC. Never under estimate stupidity and lazy ness. Tools like COFEE aren't new or illegal, just cofee itself is because the EULA for it is only for law enforcement. #microsoft
Reply

thechansen was starred thechansen was unstarred

ObiHaiv
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
Wonder if COFEE is Java-based? #microsoft
Reply

Sticks Calhoun approved this comment ObiHaiv was starred ObiHaiv was unstarred

Chris Hansen
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
COFEE is nothing special. It can generate reports of running processes on the target machine and what not. To be honest, the whole "COFEE IS OSSUM DOOD IT HAS LEET HAX INSIDE" was a load of FUD (Fear, Uncertainty, and Doubt) spread by the blogosphere to make people think that something really sneaky could be done with it. The link below says it all.

[gizmodo.com]

It's compiled freeware for dumping data that's hardly useful to anyone not in Law Enforcement. Hell, being on Linux or Mac OS X is already a huge deterrent to computer forensics. And whoever seeded that is asking for men in black coats to show up at their door. 1980's hacker movie style.

COFEE is a load of hot water. #microsoft
Reply

lostarchitect promoted this comment Chris Hansen was starred Chris Hansen was unstarred

DontFeedTheTrolls
11/07/09

@Leonce: How is being on Linux or MAC a "huge deterrent" to computer forensics? Have you ever even done computer forensics or are you not thinking before you type? #microsoft
Reply

DontFeedTheTrolls was starred

Chris Hansen
11/07/09

@@iqlusion:
First of all, the platform is called Mac, not MAC. A MAC is a Medium Access Control address. Maybe you should think before you type.

Most computer forensics people don't have tools for prying information out of Linux or OS X because not a lot of people use either compared to Windows. Seriously, it's been said on forums discussing COFEE and other tools in it's nature. I never said it couldn't be done, but it's going to be a lot harder doing so on another platform. If you don't believe me, ask someone that does computer forensics for yourself and find out. #microsoft
Reply

Chris Hansen was starred Chris Hansen was unstarred

applesaucejx
11/07/09

@Leonce: so you haven't done computer forensics? btw, loved how your rebuttal began by pointing out capitalization errors. #microsoft
Reply

@iqlusion promoted this comment applesaucejx was starred applesaucejx was unstarred

Chris Hansen
11/07/09

@applesaucejx: It annoyed me because so many people on the internet say MAC instead of Mac and I have no clue why. #microsoft
Reply

Chris Hansen was starred Chris Hansen was unstarred

commentotron
11/07/09

@Leonce: "Most computer forensics people don't have tools for prying information out of Linux or OS X "

Keep tellin' yerself that Einstein. It won't hide your kiddie pr0n. #microsoft
Reply

@iqlusion promoted this comment commentotron was starred commentotron was unstarred

DontFeedTheTrolls
11/07/09

@applesaucejx: He obviously hasn't. He tries to save face with sad CAPS nazi rants and thinks anything but Windows is a hardship on forensic experts. Rofl!! Oh wait, ROFL. Don't want him barking that Rofl "actually stands for..." :P #microsoft
Reply

DontFeedTheTrolls was starred

DontFeedTheTrolls
11/07/09

@commentotron: I think by "Most computer forensics people" he means anyone who doesn't actually do computer forensics. #microsoft
Reply

DontFeedTheTrolls was starred

Chris Hansen
11/08/09

@commentotron: Don't go there. I wasn't personally attacking anyone and now this is becoming stupid. If you can't keep it civil, keep it shut. #microsoft
Reply

Chris Hansen was starred Chris Hansen was unstarred

SecUnder
11/08/09

@@iqlusion: Wow, just wow. He made a very valid point, and you attack him with the "How do you know if you aren't one!" arguement. He then makes another valid point, that the entire discussion has already played out before on forums discussing this exact software, while also making a remark about your "capitalization error". The fact that you attacked him for no clear reason, then got your buddy yes men to join the raid, is sad.
Yes, I am defending his statement, because that is all it is. He did not make any claims of being the formost gizmodo comments expert on computer forensic science, and you shouldn't claim that he did. #microsoft
Reply

@iqlusion promoted this comment SecUnder was starred SecUnder was unstarred

emcdannell09
11/08/09

@Leonce: probably b/c it actually makes no difference and in trying to make a defense statement you grasped at straws and came out looking very dumb #microsoft
Reply

@iqlusion promoted this comment emcdannell09 was starred emcdannell09 was unstarred

DontFeedTheTrolls
11/08/09

@SecUnder: You're absolutely right, Dr. Phil. I see the error of my ways. I shouldn't discuss technical topics with people stuck on the 'for Dummies' series. Gotcha... #microsoft
Reply

DontFeedTheTrolls was starred

DontFeedTheTrolls
11/08/09

@emcdannell09: But it was discussed on internet forums! And we all know internet threads are the standard resource guide for the entire field of computer forensics! #microsoft
Reply

DontFeedTheTrolls was starred

Chris Hansen
11/08/09

@@iqlusion: Like I said, if you don't believe me go ahead and ask a computer forensics expert for yourself. Just ask them what they're gonna have to go through if the suspect machine is a Mac or Linux box. Or even better, BSD. By all means, don't take my word for it. I'm just some ignorant 16 year old, right? I implore you to find out for yourself.

[conversation ended]
Reply

@iqlusion promoted this comment Edited by Chris Hansen at 11/08/09 2:18 PM Chris Hansen was starred Chris Hansen was unstarred

Chris Hansen
11/08/09

@emcdannell09: Arguing is grasping at straws? Yeah, whatever you say buddy. #microsoft
Reply

Chris Hansen was starred Chris Hansen was unstarred

DontFeedTheTrolls
11/08/09

@Leonce: I don't think your [ended] tag worked, it still let me reply. And if you couldn't figure it out by now, i work in the computer security field and work with people who do forensics. I've worked with NCIS federal agents on forensics cases. Doesn't matter the process, your original statement was linux/MAC/Mac/MaC/mAc were a "huge deterrent" to forensics and you are wrong... #microsoft
Reply

DontFeedTheTrolls was starred

Chris Hansen
11/08/09

@DontFeedTheTrolls: Do I have to keep repeating myself or are you just messing with me? For a star commenter, you're acting like a douchebag. Tel me, how many Macs, Linux or BSD machines do your co-workers have to get info from? How long does it usually take them? Does it require more than one person? For a guy that freaking works with people in this field, I'd guess that you could give me more insight into the process, but I guess not. Until I can get more than mockery and failed attempts at arguing out of you, the conversation is over and I'll go back to listening to Eraser. You're messing my song up. #microsoft
Reply

Chris Hansen was starred Chris Hansen was unstarred

DontFeedTheTrolls
11/08/09

@Leonce: douchebag? verrrry creative. And again we circle back to, it doesn't matter the process. I can tell you how many of my co-workers were deterred by having to pull data from a non-windows box: zero, because no matter what they have to do they will do it with ease. And there goes your whole "huge deterrent" theory, and the rest of your drivel goes with it. #microsoft
Reply

DontFeedTheTrolls was starred

Chris Hansen
11/08/09

@DontFeedTheTrolls: Yes, but do you know that they do it with ease? Do YOU work in the Computer Forensics field? Exactly. And neither do I. So let's just end the argument completely. Working with people in the same field isn't a good enough excuse for knowing something. I worked with engineers and architects for a summer job, but I don't know what it takes to build a house or keep the entire structure stable. See what I'm getting at now?

So let's just leave it at that. Because I'm tired of getting replies to this comment thread. I didn't become a commenter to start arguing with people trying to attack me. I did it to express my opinions. For the last time, conversation over. #microsoft
Reply

Chris Hansen was starred Chris Hansen was unstarred

Andham
11/08/09

@DontFeedTheTrolls: When he said douchebag, I don't think he was attempting to be creative. I think he was conveying how much of an annoying prick you are. #microsoft
Reply

DontFeedTheTrolls promoted this comment Andham was starred Andham was unstarred

DontFeedTheTrolls
11/09/09

@Leonce: Actually my field is closely related and I often do initial forensics sooooo, faced. Nice to know you don't work in the field though, I totally couldn't tell from your previous posts. #microsoft
Reply

DontFeedTheTrolls was starred

DontFeedTheTrolls
11/09/09

@Andham: Ouch! Straight through the heart... aackkk!!! #microsoft
Reply

DontFeedTheTrolls was starred

tzaken
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
According to the person who leaked this, every function of COFEE was already available as freeware. So, not a big deal, really. #microsoft
Reply

tzaken was starred tzaken was unstarred

Ian Grams
11/07/09

@tzaken: you're not being clever, you're being an idiot. private sites are called -private- for a reason. #microsoft
Reply

Ian Grams was starred Ian Grams was unstarred

tzaken
11/07/09

@Ian Grams: Whose comment is more conspicuous, yours or mine? Thanks for jumping straight to name calling, though.
Reply

@iqlusion promoted this comment Edited by tzaken at 11/07/09 5:22 PM tzaken was starred tzaken was unstarred

DontFeedTheTrolls
11/07/09

@tzaken: Your comment was obviously more awesome. I mean I almost missed the bold letters entirely. You must be some sort of super crypto ninja, hiding messages in messages. My head almost asplode with all that coolness... #microsoft
Reply

DontFeedTheTrolls was starred

drinkingkismet
11/07/09

@@iqlusion: You lose on the civility front.
@tzaken: you must've caught these blokes after a bad night's sleep.
@Ian Grams: name calling? Perhaps tzaken was simply making a logical argument, not advertising some dastardly penchant. #microsoft
Reply

@iqlusion promoted this comment drinkingkismet was starred drinkingkismet was unstarred

DontFeedTheTrolls
11/08/09

@drinkingkismet: don't carpet bomb half liners, it's sad... #microsoft
Reply

DontFeedTheTrolls was starred

drinkingkismet
11/08/09

@@iqlusion: Wait. I get it. You're one of those silly have-to-have-the-last-word blokes, aren't you? You come out pointlessly strong, alienate people for no reason whatsoever with one-liners riddled with pot-calling-the-kettle-black nonsense, then you finish 'em off with a healthy dose of equally pointless, ambiguous typey-do-da-day vomit. Right? Am I right? For you, a malediction: learn thy lessons soon, else may Lifehacker banish you. #microsoft
Reply

drinkingkismet was starred drinkingkismet was unstarred

DontFeedTheTrolls
11/08/09

@drinkingkismet: zomg, he found me out! Oh, and s/Lifehacker/Giz/. PS, if people didn't feed the trolls I wouldn't have so much fun... and bans are almost pointless in today's internet. hth... #microsoft
Reply

DontFeedTheTrolls was starred

Ian Grams
11/14/09

@tzaken: Sorry. It was a type first, think later thing. It just irks me when people put things out in the open that are specifically not meant to be out in the open... #microsoft
Reply

Ian Grams was starred Ian Grams was unstarred

Tugsie
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
I keep all the super critical things in my pocket - a thumb drive. Why rely on fancy encryptions and so forth when they can all be broken. Just keeping the physical storage on you works so much better. #microsoft
Reply

thechansen promoted this comment Tugsie was starred Tugsie was unstarred

thechansen
11/07/09

@Tugsie: so hackers present less of a risk of data loss than washing machines? #microsoft
Reply

thechansen was starred thechansen was unstarred

Tugsie
11/07/09

@thechansen: No, but then I can't get mad at anyone else for compromising my data. #microsoft
Reply

Tugsie was starred Tugsie was unstarred

dragon:ONE
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
Also, why didn't Microsoft just take a page out of the hackers' books?

U3/USB Switchblade does a LOT more than this dinky little COFEE can.

Such as dump useful info and not network statistics and running processes. Y'know, like IM passwords (being able to see their list of criminal friends), email account information, and so on. And it's fully customizable.

Might I mention the fact that if they gather this info when the machine was on at the scene of the crime and they shut it down, what happens if the password is unknown? This also grabs password hashes for the logon so the investigators can brute-force their way in, if need be. #microsoft
Reply

dragon:ONE was starred dragon:ONE was unstarred

Pretzels
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
Hmmm, the software was stolen?

I guess you could call it...

HOT COFEE.

YEAHHHH! #microsoft
Reply

Software_Goddess promoted this comment Pretzels was starred Pretzels was unstarred

10pound
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
So............being a M$ product, is it only useful in situations where the "bad guys" are using a M$ product? What happens when Johnny Law-Dog plugs his USB stick into my laptop and a Beasty little BSD Daemon wags his red little finger at him?

"Law don't go round here, Law-Dog" #microsoft
Reply

dragon:ONE promoted this comment 10pound was starred 10pound was unstarred

dragon:ONE
11/07/09

@10pound: Yep. It's just an autorunning USB drive. And for machines that don't autorun? They have to open the flash drive folder and double click an .exe for the gamut of 'intelligence' they gather to be obtained. #microsoft
Reply

dragon:ONE was starred dragon:ONE was unstarred

AqueousBeef
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
Child porn for one... #microsoft
Reply

AqueousBeef was starred AqueousBeef was unstarred

clR3vv
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
I think downloading it is still worse. [3.bp.blogspot.com] That proves it.
Reply

Nathan Obbards promoted this comment Edited by clR3vv at 11/07/09 2:35 PM clR3vv was starred clR3vv was unstarred

dragon:ONE
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
Holy hell, best way to do it is Linux: shut down the machine, freeze the RAM, stick it in another machine and dump it (so memory etc is preserved), and then DD the drive to read-only image. There's the evidence you need, people.

ALSO: If you somehow 'obtain' a copy of COFEE, look towards the back where they show the log from a machine in IE - the file is in a folder called "Who Cares".
Reply

Edited by dragon:ONE at 11/07/09 2:35 PM dragon:ONE was starred dragon:ONE was unstarred

HJTravels
11/07/09

In reply to Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
How much is it to buy a legal copy? #microsoft
Reply

dragon:ONE promoted this comment HJTravels was starred HJTravels was unstarred

dragon:ONE
11/07/09

@HJTravels: Not buyable by the average Joe, let alone buying a 'legal' copy of it.

Otherwise, I'd bet a cool few thousand they'd upsell you for some basic skiddie tools. #microsoft
Reply

dragon:ONE was starred dragon:ONE was unstarred

Earlier discussions Other discussions Show all discussions Show featured discussions only Start a new discussion

Gizmodo Team

SUBSCRIBE TO Gizmodo

Login

Reset Password

Register

Submit Your Comment