comStar Firewall alert - PhaseThrough

Recommendations

Info

hacker’s handbook . . . . . . . . . . . . . . . . . . . . . . . . . . 104 a note on coMManding deviceS There’s more than one way to rig a drone. The same is true for other devices controlled through the Matrix. Here’s a quick and handy reference guide. issue remote commands You may remotely command any device that you have subscribed to your persona (p. 221, SR4) with a Simple Action (see Issuing Commands, p. 221, SR4). You do not need to be in the same node as the device, as long as it is subscribed and your command can reach them. Multiple devices may be controlled as a single subscription, but this means they all receive the same command. Nodes, devices, agents, drones, sprites, etc. may all be commanded this way. In this case, the commanded device acts on the orders independently on its own action. Pilot + autosofts are used for any relevant tests. If the orders are complex, the gamemaster can roll Pilot + Response to see if the device comprehends them (see p. 111). More complicated orders can be issued in the way of scripts (see Agent Scripts, p. 105). remote control Rather than letting the device operate on its own, you may access it directly via AR or VR, using the Command program (see Controlling Devices, p. 220). You must either log in to the device or subscribe it to your persona. The program provides you with a virtual interface, allowing you to control the device like a video game. Most devices have built-in Command programs, which you can run if you lack your own. A remote-controlled device acts on your Initiative. All tests are made by you, using Command + an appropriate skill. For example, to fire a gun emplacement, you would roll Command + Automatics. To maneuver a rotordrone around a tree, you would use Command + Pilot Aircraft +/– Handling. Devices, agents, and drones may all be remote controlled this way. Jump in Your final, and most direct, option is to “jump into” the device with a Simple Action via full-immersion VR (see Jumping Into Drones, p. 239, SR4). This is only possible with devices that have rigger adaptation (p. 341, SR4), typically drones and vehicles. In rare occasions, other devices will feature rigger adaptation. Devices rigged this way act on the rigger’s Initiative, and tests are made using the rigger’s skill + appropriate vehicle attribute (see Common Rigger/Drone Tests, p. 105). multiple levels of access, linked passcodes or nanotech passkeys, encryption, data bombs set to activate during off-hours, and proactive IC. If a hacker does manage to access a nanofax or nanoforge, they’re limited to producing items that the nanomanufacturing device that they have the correct feedstocks to produce, and has nanoschematics for. Nanofaxes are further limited in that they can only create a specific type of gear, such as personal microtronics or pistols. If a nanofax or desktop nanoforge is compromised (an Active Alert) instead of shutting down it will self-destruct. Stolen nanofaxes and desktop nanoforges are typically ordered to self-destruct wirelessly, or do so Unwired automatically when they leave the range of the wifi network of the building they are in. Nanoschematics are kept in high-level security nodes, and legitimate users download them by logging onto the node with their passcodes and then verify their log-on by sending a valid license number that is hard-coded into the nanofax processor. The nanoschematics are encrypted when downloaded from the secure node. Provided the character has access to a nanofax, finding the license number requires a Hardware + Logic (4) Test. A nanofax license number only works with the appropriate matching account. Nanoschematics cost serious nuyen, and few show up on peer-to-peer file sharing networks (see Piracy, p. 94) proxy Servers A “proxy server” is a program routine that acts as a go-between, transferring data from a user (the “client”) to another user or node. The advantage to proxies is that they act as an intermediary, so the data seems to be coming from the proxy rather than the client. Hackers and shadowrunners find proxies very useful both as anonymous remailers (obfuscating the original message source) and to foil tracking attempts. Almost any node can be configured to act as a proxy server, though this typically requires admin access and a Computer + Edit (10, 1 Initiative Pass) Test to set-up (use Hacking in place of Computer if you do not have admin privileges). Once set up, messages that are sent from a client through the proxy server node will seem to have originated from the proxy node. In order to determine the source of a message, a hacker would need to trace the message back to the proxy server node and then hack that node’s access log (or request it from the admin/owner of the node, if they are cooperating). Anonymizing proxy servers are often set to not keep or to delete message transfer logs. A hacker can also route his connection through a proxy server as a means of hindering traces. This increases the threshold by +4 for Tracking Tests for each proxy server used. The drawback, however, is that each proxy server reduces the hacker’s Response by 1. Spotting traces It can be advantageous to know when someone is trying to track your datatrail (see Track, p. 219, SR4), so that you can redirect the trace or otherwise make haste. In order to spot a trace, you must be in the same node that the track attempt is launched in (if someone is attempting to track your datatrail from the access log of a node you are no longer in, for example, you will not know). Spotting the trace requires a simple Matrix Perception Test (1) Test. However, if the tracker is trying to keep the trace discreet, you must beat them in an Opposed Test pitting your Analyze + Computer versus their Track + Stealth. Simon Wentworth (order #1132857) 9
igger trickS Like hackers, riggers have their own bag of tricks. The following rules expand on the options presented in SR4 and other Shadowrun products on rigging, with an eye to answering lingering questions on cyberware, jamming, biodrones, and cyborgs. Jacking Biodrones and cyborgs A biodrone’s control ‘ware (see Biodrone Control ‘Ware, p. 152, Augmentation) has a Device rating (see Device Rating, p. 213, SR4) that serves as its firewall, but players may wonder if the lack of a Pilot program (except for biodrones including a stirrup interface) makes them easier to hack or spoof. The answer: yes it does. A biodrone only rolls its Device rating when resisting spoofed commands or hacking. Cyborgs may also be jacked, but in this case the rigger is setting their skills against a skilled hacker. The obvious point of entry is the cyborg’s integral commlink—perfect for sending spoofed commands or to hack the cyborg’s drone body wirelessly, which you can be damn sure the cyborg is going to resist, probably through cybercombat (see Hacking, p. 161, Augmentation). If the cyborg feels sufficiently threatened to shut off its commlink, the rigger has no option but to get in close and physically jack in—and face the prospect of a pissed-off cyborg in meat-space. A safer bet is to try and jack a cyborg body during its maintenance downtime. For the brief period when the cranial containment unit isn’t attached to it, the drone body can be jacked as normal (treat it as a regular drone with a Pilot of 0), though most require the rigger to physically jack in to the drone body. Jamming on the fly More than almost any other character, riggers are dependent on wireless signals in order to use their specialty, which means that few riggers are strangers to electronic warfare. Sometimes you need to shut down another rigger or hacker and don’t have a jammer available; in such circumstances you do the best that you can with whatever radio or wireless transmitter you have on hand, spitting static into whatever channels or bands the opposition is using. Jamming on the fly tends to be a noisy and difficult affair, but it can work—and that’s the important thing. Jamming on the fly is a Complex Action and requires some device with a Signal rating (such as a commlink, radio, or drone) to act as an impromptu jammer. Make an Opposed Test between the rigger’s Electronic Warfare skill + Signal rating and the target’s Electronic Warfare + Signal rating; the target adds the rating of any coMMon rigger/drone teStS Action Jumped-In Rigger Dice Pool Autonomous Drone Dice Pool Remote-Controlled Dice Pool Initiative as rigger Pilot + Response as rigger Attack Sensor + Gunnery Pilot + Targeting Command + Gunnery Melee Defense Response + Melee skill Pilot + Defense Command + Melee skill Ranged Defense Response Response Command Full Defense as above + Dodge as above + Defense as above + Dodge Damage Resistance Body + Armor Body + Armor Body + Armor Infiltration Response + Infiltration Pilot + Covert Ops Command + Infiltration Maneuvering Response + Vehicle skill Pilot + Maneuver Command + Vehicle skill Perception Sensor + Perception Sensor + Clearsight Sensor + Perception Unwired ECCM program she has running to her dice pool for the test. If the Opposed Test is successful, the signal is jammed; otherwise it is unaffected. Jamming on the fly is area jamming and affects a spherical area—the impromptu jammer’s Signal rating is reduced by 1 for every five meters from the centre. A device being used as an impromptu jammer cannot use its wireless capability for anything else. A commlink, for example, could not connect to the Matrix at the same time it is being used as an impromptu jammer. eMp An electromagnetic pulse (EMP) is detrimental, if not destructive, to the operation of electronics. An EMP erases standard RFID tags but not optical-based storage media like datachips. Any non-optical and non-hardened electronic circuits within the area of effect will also be disrupted or damaged. Most “electronics” in 2070 are optical-based, but interfaces, power systems, and the like may still be vulnerable, especially on archaic systems. Affected systems may suffer data loss, power outages, or burn out entirely at the gamemaster’s discretion. Wireless reception and radio communication will also be disrupted for a brief instant, which affects any wireless-only nodes, commlinks, and technomancers in the area. EMPs have a rating that determines their intensity and area of effect. To determine the damage to a specific device, make an Opposed Test between the EMP’s rating and the Device rating (see Device Rating, p. 213, SR4) of the vulnerable electronic device. If a character is aiming the EMP at a specific device, add the character’s Electronic Warfare skill to the EMP’s rating when making the Opposed Test. Use the number of hits garnered to gauge the damage done to the device. Compare the EMP’s rating to the Signal Rating Table on p. 212 of SR4 to determine the area of effect. Flying drones and vehicles affected by an EMP may also crash (see Crashing, p. 161, SR4). The moment of wireless disruption is not sufficient to drop an icon from the Matrix; it lasts less than a second in real-time. However, the affected icons cannot act (or be affected) during the Combat Turn that the pulse hits. Many older cyberware implants and vehicles are vulnerable to EMPs and should test for damage. Individuals and devices within a Faraday cage (a metal box or wire mesh that completely surrounds the character or device) are completely protected from an electromagnetic pulse; a cyborg’s CCU is thus completely protected, but the drone body it drives may not be. If an individual or device is in a volume surrounded by wireless-inhibiting paint or wallpaper, add dice equal to their rating to the Device rating on the Opposed Test. Simon Wentworth (order #1132857) 9 105 hacker’s handbook . . . . . . . . . . . . . . . . . . . . . . . . . .
Page 1 and 2:
TM Simon Wentworth (order #1132857
Page 3 and 4:
Simon Wentworth (order #1132857) 9
Page 5 and 6:
Malware 86 Agents 87 Botnets 88 the
Page 7 and 8:
JackPoint StatS___ 57 users current
Page 9 and 10:
Page 11 and 12:
AR transmissions are so easy to eav
Page 13 and 14:
And I’m even happier when I can i
Page 15 and 16:
tHe aUgMented worLd The augmented w
Page 17 and 18:
people started cobbling together re
Page 19 and 20:
While the cheaper commlinks are onl
Page 21 and 22:
Matrix criMeS > I’ve downloaded a
Page 23 and 24:
“protection rackets” against vi
Page 25 and 26:
a general agreement that in order t
Page 27 and 28:
Now, to operate in the sprawl, you
Page 29 and 30:
capabilities and resources to do it
Page 31 and 32:
popULar SoUSveiLLance videoS knight
Page 33 and 34:
drug treatments during incarceratio
Page 35 and 36:
Page 37 and 38:
of more than one sprite at a time.
Page 39 and 40:
intuitive Hacking Cost: 5 BP A char
Page 41 and 42:
tweaking tHe rULeS Gamemasters and
Page 43 and 44:
Page 45 and 46:
‘link will s-l-o-w d-o-w-n, big t
Page 47 and 48:
gram and a massive amount of time (
Page 49 and 50:
. . . Matrix topoloGy . . . Hex was
Page 51 and 52:
Page 53 and 54:
track programs are not able to dete
Page 55 and 56: node attributes like a metaphor or
Page 57 and 58: datatrail Every interaction on the
Page 59 and 60: a castle could represent a control
Page 61 and 62: Simsense can also be used for exper
Page 63 and 64: Simon Wentworth (order #1132857) 9
Page 65 and 66: with their image links is an expens
Page 67 and 68: To avoid detection, the hacker can
Page 69 and 70: aLertS Another important line of de
Page 71 and 72: B A R S C I L W ESS 3 2 3 2 3 4 4 3
Page 73 and 74: encryption on the access log of the
Page 75 and 76: filled with a high-rating Data Bomb
Page 77 and 78: You also need to choose the Matrix
Page 79 and 80: Sculpting: The node looks a lot lik
Page 81 and 82: Hardware: Saeder-Krupp Schwermetall
Page 85 and 86: Don’t call me a script kid Don’
Page 87 and 88: ight commands to bring those things
Page 89 and 90: drivers on my commlink before I tur
Page 91 and 92: what it sounds like: two or more ha
Page 93 and 94: Yep. You can also stick malware int
Page 95 and 96: gaMe inforMation The Hacker’s Han
Page 97 and 98: paYdata General rules for fencing p
Page 99 and 100: Pistons is researching the NeoNET A
Page 101 and 102: Spoofing commands from a user with
Page 103 and 104: to Mook or not to Mook? For some ch
Page 105: Issuing commands to a smartgun thro
Page 111 and 112: Server-Side prograMS Server-side pr
Page 113 and 114: cess (even if the agent tries to ha
Page 115 and 116: worms). To match the opposition, ho
Page 117 and 118: Mute Program Types: Common, Hacking
Page 119 and 120: temporary degradation can be restor
Page 121 and 122: advanced prograMMing taBLe Software
Page 123 and 124: prone to degradation. This is in pa
Page 125 and 126: dataworms Dataworms are a stealth t
Page 127 and 128: military and police units, professi
Page 129 and 130: them and plot them on a three-dimen
Page 131 and 132: . . . technoMancers . . . The secur
Page 135 and 136: attuning to a particular part of th
Page 137 and 138: advanced tecHnoMancer rULeS The rec
Page 139 and 140: Streams are still evolving and are
Page 141 and 142: info Savants Fading: Intuition + Re
Page 143 and 144: experience, induced by unfiltered e
Page 145 and 146: don’t have to be strictly technom
Page 147 and 148: new ecHoeS The following section ex
Page 149 and 150: Sift Technomancers who possess this
Page 151 and 152: Neuroleptic: This widget creates a
Page 153 and 154: make are geared towards someone wit
Page 157 and 158:
Pilot Response Firewall Matrix INIT
Page 159 and 160:
traceroUte taBLe Subject Interacts
Page 161 and 162:
• It may raise one complex form i
Page 163 and 164:
. . . Matrix phenoMena . . . It’s
Page 165 and 166:
Page 167 and 168:
gaMe inforMation This section provi
Page 169 and 170:
(plus an additional box if the AI h
Page 171 and 172:
known aiS These are but a few examp
Page 173 and 174:
Uv nodeS—at tHe edge of reaLitY I
Page 175 and 176:
is something larger beyond the curt
Page 177 and 178:
the realm where the source code was
Page 179 and 180:
infektors The Infektors’ ultimate
Page 181 and 182:
corrupting it into a temporary diss
Page 183 and 184:
Pilot Response Firewall Matrix INIT
Page 185 and 186:
Page 187 and 188:
former prematurely and leave them o
Page 189 and 190:
playback gear On the most basic lev
Page 191 and 192:
y default can be used repeatedly an
Page 193 and 194:
to explain the missing time. Also,
Page 195 and 196:
compartmentalized pieces of informa
Page 197 and 198:
. . . Matrix Gear . . . Glitch was
Page 199 and 200:
Page 201 and 202:
eLectronicS Electronics follow all
Page 203 and 204:
Hacker ServiceS See Buying a Better
Page 205 and 206:
Software Suites Availability Cost H
Page 207 and 208:
SaMpLe nodeS (cont.) . . . . . . .
Page 209 and 210:
SaMpLe SpiderS (cont.) Security tec
show all

comStar Firewall alert - PhaseThrough

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?