Monday, May 14, 2007

Hitb 2007 is back



The hottest stuff in Malaysia is back!! This is an event that you shouldn`t miss at all. Learn with your heart all about network security from professional network admins to the underground blackat community. Based on my experience in the past HITB, this is a conference that you shouldn't miss especially if your job/works/studies is related to the IT Market.

Unfortunely , the price for the conference may be a little deep for normal Malaysian students, well you can go out and volunteer yourself! (some skills are required) and you can get to know the guys better :)

Well what interest me is the CTF game!!.Capture the Flag

Last year , as a winner of the Uitm I-Hack Competition 2006 me and my team managed to get a free seat for the HiTB CTF. Little does we know it really surprise us! Basically it's all about
reverse engineering / binary hacking / exploit writing

Non of these is related to any web hacking like th Uitm. I knew we are considered as f*** n00bs that always being tapau from that moment. Never less what surprise me is that most of the participants from Malaysia also don`t have a clue on wat's goin on .

Well a year have pass.
This time i think i`m quite confident on howto debug and detect the exploits. But seems like the competiton is getting tougher each year! Will my team managed to at least get some respectable place?

Strategies on winning.
1. Analysis of each services running on the box.
2. Scan for available listening port. (on localhost no need for nmap and blax3)
3. Analysize binary for exploitation
4. Write exploits.

Things to read on.

1. Izis paper on randomize va space attack.
2. Shellcoding operand.
3. Overwriting heap/stack
4. Assemble , Dissasemble and Fun with C :)

Anymore suggestion?

Bad Feebs and Rubik on the Rails

I finally took the LPI exam but not without extreme bad karma. I forgot my LPI Examination ID number T_T. And what worst it's not in my email either. Luckily aizatto have become my hero for the day.. With is Nokia n61 + gprs. I re-registered myself get my number code and fuuh it all ends well.

Aizatto took us to a mamak stall somewhere around PJ, I'm not familliar with that area myself but so far the food is good. We went to the IT Mall . Aizatto was looking for his LCD cleaner while Kage is querying around the price for his new box.

After that we split off . i lurking around the heart of Kuala Lumpur lurking for Rubik on the roads. Unfortunately it seems like the damn cube is the hottest item in the city.. Spending almost 6 hours searching for the cube and also Toys raus. in the end i only managed to buy few cubes at Sungei Wang Plaza.

Well luckily it turns out to be a good cube. Wish i could also bought the statmat T_T

Thursday, May 10, 2007

Police Raid University, Dismantle P2P Network

News taken from here

I pray God it will never happen over here in my beloved campus. I quote from the site:

Items seized in the raid include one main PC running the DC++ hub server software, 10 laptops and 60 hard drives. A total of 35,000GB of movies, music and software was reportedly available to download from the network.

A fictional scenario (pray to God it won't happen ) somewhere in Teronto,Malaysia

Item seized in the raid include 4 main PC running the DC++ hub software. almost 1000 various of computer peripherals, more then 1000 hard drives. A net total of well around 20,000 GB of movies,music and software was reportedly available to download from the network.

Well however after a heat debate between the owner of each DC++ hub server with the police. They were drop of all charges as the files that is believed to be copyright infringement is not hosted on the server itself. Morever the server is running on a Linux Operating System which didn't violate any software patents or the GPL license itself.

The rector of the University **** , says this is an embarrassing moment for us as we found out only a few bunch of student (20-30 people) is following the law while others tarnished it.

The rector said " They will be expelled, i can assure u that. If these bunch of kids can choose to make good use of computer software wihthout involving in the piracy section, why can't the other kids folow them, perhaps it's time we teach our kids what law is all about".

Dipetik dari Bernama....

Monday, May 7, 2007

Fixing ATI SB450 on Feisty Fawn

I nearly cried!! One of my old machine used the ATI SB450 Integrated Sound card. It work fines since the day i start using FC5 . but when i migrate to Feisty it sucks.. it seems there seem to be . My first hint is to try update the kernel but later found out that the bug is cause by the alsa library. It seems the the current driver in Feisty kinda buggy. So what i did is compile it from source and got my sound bacl here's the link.

Hopefully the Master of the Universe will do something bout this :)
Links

Sunday, May 6, 2007

6,000 IPT students will get their pants wet!!!1

It`s like a dream comes true :). Novell (M) had just announced , for the next two years 6000 IPT students will wet their pants with Linux stuff:)

For me this is a great news to encounter Microsoft Educational Training Program. 6000 students is a hell lot .We only got around 30 students who use Linux freely.

Well it's a small step towards a great future.

Links

Thursday, May 3, 2007

Setting vssync and hsync on Xorg.conf

A friend of mine had just purchase a new monitor recently 17 inch wide screen with max resolution at 1440*900. Man i'm quite jealous with his monitor damn you. The colour is crisp the picture is sharp. However when i run a movie it hurst a lot!! I think there must be soethin wrong with the settin of vsync and hsync. To solve this issuse we use this gtf to calculate the VESA Mode lines. (it works for all cards).
For example let say i wan a dispaly with 1440x900 with refresh rate 60Hz. So what i did was

hub@Hub:~$ gtf 1440 900 60

# 1440x900 @ 60.00 Hz (GTF) hsync: 55.92 kHz; pclk: 106.47 MHz
Modeline "1440x900_60.00" 106.47 1440 1520 1672 1904 900 901 904 932 -HSync +Vsync


Now paste the entire line under the section [Monitor] on your xorg.conf

Section "Monitor"
Identifier "SyncMaster"
Option "DPMS"
# 1440x900 @ 60.00 Hz (GTF) hsync: 55.92 kHz; pclk: 106.47 MHz
Modeline "1440x900_60.00" 106.47 1440 1520 1672 1904 900 901 904 932 -HSync +Vsync
EndSection



Now got to screen at the Subsection of Display put the 1440x900 right after the Modes

SubSection "Display"
Depth 24
Modes "1440x900" "1240x800" "1024x768
"

Press Ctrl + Alt + Backspace to kill your current X.. :)

Wednesday, May 2, 2007

Goin etch

Fuu it took me sometimes to backup my data properly. Now my ubuntu on my lappy is dead! However i resurrect it with the latest debian etch, At first i got stuck for a while non of my old laptop configuration works.!!!! the cpu-freq didn`t work the fn key the touchpad .. and i begin to wonder what went wrong. Since my knowledge on debugging is merely RM1.50 i list out all the packages available and found this cool packages call education-laptop.. I install it and puff it works . Can someoen unshed the mystery for me?