Painless restart to windows with Alfred/Shell script V2

some time ago, I wrote a script for quickly restarting to windows. in first version, you had to add your partition to the script. in the new version, that is not necessary anymore.

image

Download Restart to Windows workflow V2


This workflow asks for your password each time. In order to get around this inconvenience, you need to edit sudoers file.

sudo nano /etc/sudoers

just after %admin  ALL=(ALL) ALL add this line (replace Username with your username)

Username ALL = NOPASSWD: /usr/sbin/bless
Username ALL = NOPASSWD: /usr/bin/osascript

Remember Username is your mac username.

that is it! you’re done. Happy restarting my lazy friends :)

in case you don’t have Alfred, you can save this Apple Script on your desktop. it works the same way

tell application “Finder”

set iconPath to (get name of startup disk) & “:Applications:Utilities:Boot Camp Assistant.app:Contents:Resources:DA.icns” as alias

end tell

 

do shell script “bless -mount /Volumes/BOOTCAMP/ -legacy -setBoot -nextonly; shutdown -r now” with administrator privileges

HTML link tag hack sends you to the wrong place

[shared via Google Reader from Hack a Day]

hacking-html-a-tag

We consider ourselves fairly cautions Internet warriors. We know when to watch out for malicious links and tread lightly during those times. But this hack will still bite even the most cautions of link followers. It’s a hack that changes where a link is sending you after you click on it.

The concept is driven home right away by a link in the post which lists PayPal as the target when you hover over it with your mouse. Clicking on it will give you a warning that it could have been a malicious page you were redirected to. Of course the address line of the page shows that you were sent somewhere else, but it’s still an interesting issue. The hack is accomplished with just a few lines of JavaScript. In fact, the original example was 100 characters but a revision boils that down to just 67.

So who’s vulnerable to this kind of thing? It sounds like everyone that’s not using the Opera browser, which has been patched against the exploit. There are also some updates at the bottom of the post which mention that Firefox has been notified about it and Chrome is working on a patch.

[via Reddit]


Filed under: security hacks

The tools entrepreneurs need to make a great pitch to potential investors.


image

Last week was a momentous week for the whole team in the London Wayra Academy - it was our Demo Day on Wednesday.

I am hugely proud that all the teams did a brilliant job of pitching their unique businesses to an amazing group of over 100 investors with the objective of securing future funding.

A while ago I started drafting a brief post on what makes a great pitch - initially I felt really strongly that two important ingredients are fundamental to a good investor pitch:

  • Passion
  • Practice

Passion, because the challenge of being a successful entrepreneur is nuts - it’s like waking up and saying you’re going to climb Everest. And so if anyone is equally nuts enough to invest their hard cash into your endeavour, they’ve got to believe that you’ve got what it takes to reach the summit.

Practice, because, one of the privileges of working at Wayra is that I get to hear pitches from entrepreneurs from all over the world. While some of the newest teams pitch brilliantly, it is an indisputable fact that the teams that joined Wayra at the beginning present more powerfully as direct consequence of literally having pitched many more times. There is no short-cut to pitching 1,000 times.

Two vital ingredients, both more important than the microphone and a clicker suggested by my photo. But now the presentations are completed, I think that success in pitching for investment requires much more. My broader thoughts are:

Preparation. It is so important that entrepreneurs obtain quality input from experts into crafting their pitch-deck. For example, feedback from experienced entrepreneurs and investors. And most importantly, entrepreneurs should actively seek and exchange constructive feedback with their peers. Which is why I believe the ‘Wayra-family’ is arguably the most valuable component of the acceleration programme. And why I’m also a fan of ‘Don’t Pitch Me Bro’.

Talent. Sounds obvious really - it also sounds uninfluenceable - but it is: practice helps; but more effective is who you choose to pitch. I find it remarkable that entrepreneurs often feel it is both their right and privilege to lead the pitch whether or not they are the best presenter. It is not incumbent on the founder to pitch, it is incumbent on the founder to ensure that the best pitch is delivered.

Authenticity. Never confuse talent with ‘slickness’ - slickness can actually camouflage talent. What investors want to see and hear is authenticity.

A good story. Your pitch needs a clear ‘beginning’, ‘middle’ and ‘end’. Fundamentally, the context - why are you doing this. It’s about demonstrating why your business is a good idea, and why you are overwhelmingly driven to pursue it. The combination of which needs to leave the unmistakable confidence that despite your ambition being (possibly) ridiculously impossible, there is real belief that you are actually going to conquer this mountain.

Evidence that you will harness the power of digital:

  • To acquire customers in volume, and at pace - contagiously via viral marketing; effective use of social-media; and/or search/SEO compatability
  • To use the accumulation of customer data effectively for the customers’ advantage

A willing audience. Take responsibility for driving attendees. And your behaviour will determine how ‘willing’ they are. Smile; use humour appropriately; establish rapport. 

Know your numbers. Opinion is divided on the validity of financial projections in pitches. However, know your numbers (inside out and backwards).

Up-and-to-the-right-graph” - feedback from one of the investors advised that this is currently hot in the US - a slide/graph that evidences demonstrable quantifiable momentum - whether that is financial; registrations; downloads etc etc. It not only evidences traction, it also clearly illustrates the key focus of the CEO. It doesn’t matter if the stats are ‘usage’ related (and not financial) - if there is traction then investors will believe the revenue will follow.

Talk about your team, but not for too long. In one sentence, what makes you special.

Make the right request - especially if you’re asking for investment. The amount of money that you are looking to raise is an especially important issue - and so I will write a separate post on this specifically.

Congratulations to teams who did such a brilliant job pitching. Congratulations also to Ashley Stockwell and Alex Hawkes who have done a remarkable job of managing the London Wayra Academy.

Sincere thanks to Wayra’s expert coaches and mentors who helped the entrepreneurs to refine and finesse their pitches - especially the immensely talented Dale Murray.

Thanks also Ash for taking the photo of my hands, charged and loaded with two tools of our trade: microphone and clicker - moments before the investors took their seats for our introduction to a full day of pitches. What a great day.

Source: Simon Devonshire’s blog



Rogue Pi: A RPi Pentesting Dropbox

[shared via Google Reader from Hack a Day]

Rogue Pi

A pentesting dropbox is used to allow a pentester to remotely access and audit a network. The device is dropped onto a network, and then sets up a connection which allows remote access. As a final project, [Kalen] built the Rogue Pi, a pentesting dropbox based on the Raspberry Pi.

The Rogue Pi has a few features that make it helpful for pentesting. First off, it has a power on test that verifies that the installation onto the target network was successful. Since the install of a dropbox needs to be inconspicuous, this helps with getting the device setup without being detected. A LCD allows the user to see if the installation was successful without an additional computer or external display.

Once powered on, the device creates a reverse SSH tunnel, which provides remote access to the device. Using a reverse tunnel allows the device to get around the network’s firewall. Aircrack-ng has been included on the device to allow for wireless attacks, and a hidden SSID allows for wireless access if the wired network has issues. There is a long list of pentesting tools that have been built to run on the Pi.

Check out a video demonstration of the dropbox after the break.


Filed under: Raspberry Pi, security hacks