comStar Firewall alert - PhaseThrough

Recommendations

Info

hacker’s handbook . . . . . . . . . . . . . . . . . . . . . . . . . . 94 crow service holds on to the money/goods, eventually returning them if the deal falls through. piracY Cracking copy protection on legally purchased software is covered on p. 228 of SR4 (see the Cracking Copy Protection table for suggested thresholds). Illegal software, however, be it home-coded hacking utilities or a copy of a cracked program, has difficulties all its own. Programs in the Sixth World are constantly changing to keep up with the cutting edge of technology, and periodic patches and updates are the norm rather than the exception. Unfortunately, these patches and updates are only for legal purchasers and licensers of the program—or in the case of hacker software, may not exist at all—and without them a program slowly slides into obsolescence. A hacker can stall this degeneration either by fixing the code herself, finding the patch or update somewhere else on the Matrix, or by simply downloading a newer, updated version of the same program. (See Legal vs. Pirated Software, p. 108.) finding pirate networks A regular Data Search on the open Matrix never reveals where a hacker can download a rated program or its updates patch for free, where a runner might find the detailed AR schematics for the latest wiz tech toy, or where the drivers for that used piece of cyberware are. Within minutes of such information being posted, law enforcement hackers appear in the node to investigate all such claims and trace and arrest whoever is making the claims or offers. However, with a little work a hacker can gain access to the peer-to-peer file sharing networks of the Cracker Underground (see Virtual Private Networks, below), where she can find and download programs for a nominal fee. Finding and getting access to an appropriate network requires an Extended Data Search + Browse (8, 1 day) Test. Once connected to such a network, the character doesn’t need to find another one unless the network gets shut down, or if it doesn’t have the program she’s looking for (both at the gamemaster’s discretion). downloading programs Once a character has made contact with the Cracker Underground, he can start looking for something to download. To find a specific program on the file sharing network, make an Extended Data Search + Browse (Availability + Desired rating, 1 Combat Turn) Test. Downloading the program to your commlink or terminal costs 10 percent of the street price of the program (see Program Costs and Availability, p. 228, SR4). A glitch on the Search Test indicates the program is not on the network, and the hacker must find another network and try again; a critical glitch indicates the character has downloaded a bogus program infected with one or more viruses. cracking copY protection threshold program type (interval 1 hour) Common 9 + Rating Hacking 13 + Rating Agents/IC/Pilot 13 + Rating System 10 + Rating Firewall 13 + Rating Autosoft 12 + Rating Program updates and patches are also available on underground file sharing networks and may be located in the same way. The cost for program patches and updates (which restore the degraded program to its full rating) is 10 percent of the difference in street cost between the program’s current (degraded) rating and its full rating. All programs, updates, etc. from an underground file-sharing network have their copy protection cracked, if they ever had any to begin with. virtUaL private networkS A virtual private network (VPN) is an unrated peer-to-peer program that allows users to communicate and share files and information on a less-than-simsense level, typically no Unwired more than just another window in AR or VR, and as such not counting as a connection to a node in terms of subscription lists unless they are encrypted. Networks of this kind exist for many purposes, from simple mobile social software (MoSoSo) designed to keep members of a social group in touch to pirate networks trading cracked software and liberated data. Security for VPNs varies considerably, from secretive, passcode-protected, and encrypted networks on the one end to completely open networks on the other. Generally, VPNs depend on anonymity as much as anything else to protect them, as their most vulnerable points are the users logged on to them. Spotting a hacker using a VPN requires a Simple Action to Observe in Detail (see Observe in Detail, p. 136, SR4) and a successful Opposed Test, rolling Computer + Analyze against the target’s Firewall + Stealth. If you determine the target is connected to a VPN, you can attempt to Intercept Traffic (see Intercept Traffic, p. 224, SR4). Secure and secretive VPNs are almost always encrypted communications. Rarely, a virtual private network may make use of a node to facilitate real-time face-to-face communications, or as a common dropbox to dump files that other users may access and download or annotate later. Such nodes are usually in out-of-the-way corners of the Matrix and almost always hidden, requiring the user’s VPN passcode to access. A node makes a VPN very vulnerable as it often contains the commcode and passcodes of all members of the network, and networks that make use of them often change nodes on a regular basis. paYdata Street coStS Situation cost adjustment Data is damaged, but mostly salvageable –20% to –50% Data is only available on an obsolete medium –20% Data is publicly available but obscure –10% Data is in a Proprietary File Format +10% Certified data +50% Sole remaining copy of data +100% Unique enchantment formula +200% Nanoschematics +400% Spirit formula +400% Simon Wentworth (order #1132857) 9
paYdata General rules for fencing paydata are found on p. 303 of SR4. Additional modifiers that apply to paydata can be found on the Paydata Street Costs table. proprietary file format Megacorporations and some national military and research institutions make use of proprietary file formats (PFF) to safeguard data not meant for release to the general public. The programs and files in PFF are for internal release only and typically are only compatible with that megacorporation’s specific software or operating systems, meaning a character can only open PFF files or run PFF programs from the same corporation that made their OS. Specialist emulator programs (or cobbled-together hacker variants of the same) can be used to open or run PFF files or programs on other OSs, with minimal data loss. Treat this program as a patch in terms of cost or difficulty of acquisition. While a company-specific OS is enough to read a PFF file, hackers need to activate the correct software modules in the OS to create or edit a PFF file. If the character has a valid corporate SIN that matches the maker of the OS, this requires a successful Logic + Software Test; a character without a valid corporate SIN requires a successful Hacking + Edit (3) Test. Pistons has downloaded a PFF datafile from a Renraku system. Unfortunately, Pistons is running Novatech Navi as her OS and can’t read the file directly. Normally she would have to find and download a Renraku PFF reader program, or else write her own. Thankfully, Pistons still has an older commlink running Renraku Ichi—she can just send the file over to that commlink and read it from there. Of course, if she wants to edit a few details and save it, she’ll have to activate the software modules first. certified data Matrix users can choose to certify any file by burning it to a certified datachip; all other copies of the file Unwired on the user’s system are deleted automatically during this process. Certified datachips include an integral log of when a file is created, accessed, copied, and edited. This log is carried over to any copy of the data made from the certified datachip. Attempting to edit the log typically corrupts the data irreparably. The log on a certified datachip can be wiped without corrupting the data with a successful Hacking + Edit (4) Test. tHe forger’S art Since nuyen in circulation are constantly being tracked and monitored, the only way to counterfeit nuyen is to copy an existing certified credstick. This requires a certified credstick with a positive balance, an empty certified credstick (called a blank) of the same type in which to place the illicit cred and an Extended Forgery + Edit Test (see the Forgery Table for Interval and Threshold). For every 5,000 nuyen or part thereof the character is attempting to counterfeit, apply a 1 die penalty to the Forging Test. Kat o’ Nine Tales has a certified credstick for 6,000¥ and decides to copy it. A visit to her local and above-board bank gets her a blank, and she connects the two credsticks to her commlink and gets to work. Kat has Forgery 3 (Credstick Forgery +2) and a Rating 4 Edit program, and she receives a 2 dice penalty for the amount of nuyen on the credstick, so she rolls seven dice. She decides that the rating of her forgery will be 2, making the threshold 48. In twenty days, Kat manages to accumulate the hits she needs and now has two certified credsticks: one with 6,000¥ in real nuyen, and a Rating 2 forgery with 6,000¥ in fake nuyen. When the character attempts to transfer the counterfeit nuyen (either to an online bank account or when making a purchase), make an Opposed Test between the rating of the counterfeit nuyen and the rating of the verification system (typically 1–6). If the counterfeit wins, the system accepts it as genuine; if not, it is immediately flagged as counterfeit, the transaction aborts, and local authorities are alerted. Ties are ruled in favor of the verification system. Kat uses her fake credstick to pay her 300¥ bar tab at Aces. The rating of the forgery is 2, and Aces has a Rating 2 verification system. Rolling for her character, Kat’s player scores a 3 and a 6; the gamemaster rolls a 2 and 4 for the verification system. Looks like Kat’s faux cred passes … this time. forgerY taBLe forgery threshold interval Fake Corpscrip (Rating x 20) 1 day Fake Game Credits (Rating x 16) 1 hour Fake License (Rating x 16) 1 hour Fake National Currency (Rating x 18) 1 day Fake Nuyen (Rating x 24) 1 day Fake SIN (Rating x 32) 1 week Simon Wentworth (order #1132857) 9 95 hacker’s handbook . . . . . . . . . . . . . . . . . . . . . . . . . .
Page 1 and 2:
TM Simon Wentworth (order #1132857
Page 3 and 4:
Simon Wentworth (order #1132857) 9
Page 5 and 6:
Malware 86 Agents 87 Botnets 88 the
Page 7 and 8:
JackPoint StatS___ 57 users current
Page 9 and 10:
Page 11 and 12:
AR transmissions are so easy to eav
Page 13 and 14:
And I’m even happier when I can i
Page 15 and 16:
tHe aUgMented worLd The augmented w
Page 17 and 18:
people started cobbling together re
Page 19 and 20:
While the cheaper commlinks are onl
Page 21 and 22:
Matrix criMeS > I’ve downloaded a
Page 23 and 24:
“protection rackets” against vi
Page 25 and 26:
a general agreement that in order t
Page 27 and 28:
Now, to operate in the sprawl, you
Page 29 and 30:
capabilities and resources to do it
Page 31 and 32:
popULar SoUSveiLLance videoS knight
Page 33 and 34:
drug treatments during incarceratio
Page 35 and 36:
Page 37 and 38:
of more than one sprite at a time.
Page 39 and 40:
intuitive Hacking Cost: 5 BP A char
Page 41 and 42:
tweaking tHe rULeS Gamemasters and
Page 43 and 44:
Page 45 and 46: ‘link will s-l-o-w d-o-w-n, big t
Page 47 and 48: gram and a massive amount of time (
Page 49 and 50: . . . Matrix topoloGy . . . Hex was
Page 51 and 52: Simon Wentworth (order #1132857) 9
Page 53 and 54: track programs are not able to dete
Page 55 and 56: node attributes like a metaphor or
Page 57 and 58: datatrail Every interaction on the
Page 59 and 60: a castle could represent a control
Page 61 and 62: Simsense can also be used for exper
Page 65 and 66: with their image links is an expens
Page 67 and 68: To avoid detection, the hacker can
Page 69 and 70: aLertS Another important line of de
Page 71 and 72: B A R S C I L W ESS 3 2 3 2 3 4 4 3
Page 73 and 74: encryption on the access log of the
Page 75 and 76: filled with a high-rating Data Bomb
Page 77 and 78: You also need to choose the Matrix
Page 79 and 80: Sculpting: The node looks a lot lik
Page 81 and 82: Hardware: Saeder-Krupp Schwermetall
Page 85 and 86: Don’t call me a script kid Don’
Page 87 and 88: ight commands to bring those things
Page 89 and 90: drivers on my commlink before I tur
Page 91 and 92: what it sounds like: two or more ha
Page 93 and 94: Yep. You can also stick malware int
Page 95: gaMe inforMation The Hacker’s Han
Page 99 and 100: Pistons is researching the NeoNET A
Page 101 and 102: Spoofing commands from a user with
Page 103 and 104: to Mook or not to Mook? For some ch
Page 105 and 106: Issuing commands to a smartgun thro
Page 107 and 108: igger trickS Like hackers, riggers
Page 111 and 112: Server-Side prograMS Server-side pr
Page 113 and 114: cess (even if the agent tries to ha
Page 115 and 116: worms). To match the opposition, ho
Page 117 and 118: Mute Program Types: Common, Hacking
Page 119 and 120: temporary degradation can be restor
Page 121 and 122: advanced prograMMing taBLe Software
Page 123 and 124: prone to degradation. This is in pa
Page 125 and 126: dataworms Dataworms are a stealth t
Page 127 and 128: military and police units, professi
Page 129 and 130: them and plot them on a three-dimen
Page 131 and 132: . . . technoMancers . . . The secur
Page 135 and 136: attuning to a particular part of th
Page 137 and 138: advanced tecHnoMancer rULeS The rec
Page 139 and 140: Streams are still evolving and are
Page 141 and 142: info Savants Fading: Intuition + Re
Page 143 and 144: experience, induced by unfiltered e
Page 145 and 146: don’t have to be strictly technom
Page 147 and 148:
new ecHoeS The following section ex
Page 149 and 150:
Sift Technomancers who possess this
Page 151 and 152:
Neuroleptic: This widget creates a
Page 153 and 154:
make are geared towards someone wit
Page 155 and 156:
Page 157 and 158:
Pilot Response Firewall Matrix INIT
Page 159 and 160:
traceroUte taBLe Subject Interacts
Page 161 and 162:
• It may raise one complex form i
Page 163 and 164:
. . . Matrix phenoMena . . . It’s
Page 165 and 166:
Page 167 and 168:
gaMe inforMation This section provi
Page 169 and 170:
(plus an additional box if the AI h
Page 171 and 172:
known aiS These are but a few examp
Page 173 and 174:
Uv nodeS—at tHe edge of reaLitY I
Page 175 and 176:
is something larger beyond the curt
Page 177 and 178:
the realm where the source code was
Page 179 and 180:
infektors The Infektors’ ultimate
Page 181 and 182:
corrupting it into a temporary diss
Page 183 and 184:
Pilot Response Firewall Matrix INIT
Page 185 and 186:
Page 187 and 188:
former prematurely and leave them o
Page 189 and 190:
playback gear On the most basic lev
Page 191 and 192:
y default can be used repeatedly an
Page 193 and 194:
to explain the missing time. Also,
Page 195 and 196:
compartmentalized pieces of informa
Page 197 and 198:
. . . Matrix Gear . . . Glitch was
Page 199 and 200:
Page 201 and 202:
eLectronicS Electronics follow all
Page 203 and 204:
Hacker ServiceS See Buying a Better
Page 205 and 206:
Software Suites Availability Cost H
Page 207 and 208:
SaMpLe nodeS (cont.) . . . . . . .
Page 209 and 210:
SaMpLe SpiderS (cont.) Security tec
show all

comStar Firewall alert - PhaseThrough

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?