Thursday, August 12, 2010

On Dillema on Thinking and Understanding. Post Ihack2010.

  • I'm on holiday that means i have plenty of times improving the arts of "doing nothing".
  • The fact that I'm on holiday means that i can open the "Unread Section in all my clouds mail".
  • Some of the emails makes me felt annoyed/bugs me off and if I if possible i would like to crush these senders ball.
  • 2 noteable email
Q: Do you have CISSP ? we are interested in the game that you designed earlier.....

A: No I only have this one tiny thin low-quality paper printed certificates called ESSSSPPEEEEM.It' a mindblowing Cert that puts your CISSP silent. Your SANS stuttered and of course CEH need i say more?


  • The reason I think why the so call security/hacker scene in .my kinda fuzz up these days. It's because people stop thinking and exploring anything that is explorarable.
  • A hacker challenged,questioned,modified assumption atment rather then waiting for answer. (Called em crazy scientist if u like)
  • The problem lies in the solution. Since solution makes people stop thinking (Referring to awesome tools that exist these days).
  • So why does the solution for that puzzle is like dat? For once i hope u students use your unnecessary brains to think "why " rather then "how" on approaching a problem.
Steps on understanding wtf happen to DTMF

  1. First accoridng to wiki DTMF is actually the sum of High-Low Frequency in a sinosodial signal.
  2. How does a sinosoidal signal look like based on finite time? Since sinosodial is actually a sin wave then the generic equation would be:

    • But since each tone is generated in a specific time frame then then to sample each signal then...
    • That is the generic equation on every sampling signal. But noted that for every signal DTMF is a sum of HIGH and LOW Freq ... From here obviously we should start to thinking "How to discretely analyze each respected frequency in the sinusoidal form" .
    • How do we do it? Think about Rainbow. ou couldn't see rainbow unless you manipulated the refraction index of a glass or water. The concept over here is the same to descretely analyze each sampling signal we can use such technique as DFT (Discrete Fourier Transform ) . To put it simply given a generic DFT Form .where w = normalize radiant freq
    • Now put in Sampling Signal ....
    • We found out that for every computable amplitude in the . frequency can be represented by where A^2 is the signal power.
    • Now if you brain can digest it you simply compute it using octave or matlab for every sampling..
    • Low Freq :
    • High Freq :
    • Base on DTMF Chart: {880,13333} ~= 8 .
    • Calculate for every sampling then u get the answer .
    • Now this is solution....

    Sunday, August 8, 2010

    Ihack 2010..

    Well it's been a while I blog so let's do Chedet Style of blogging

    Difference between previous IHack and this year IHack.
    • Previously i was a participant. This year i am their nightmare. (While suffering mood disorder)
    • Gameplay changed from attacking organizer servers to each other.
    • Unimaginable Forensic Challenge
    • Lot's of All-Girl team and girl participating in this game this year!!!!
    Participants Level ?
    • Just like previous I-Hack, Those who knows, 0wn3d. Those who doesn't, suffer.Don't feel bad about it. That's just how our world works. It's either 1 or 0


    Are you going to give the answers?
    • Yes and No for some Question. But I was asked by a friend of mine Muslim bout Flag6 (Forensic) . So since I'm still on the mood of writing So I 'm going to write it in simple way

    Solution Flag6 (Forensic)
    1. Download dat damn flag. http://www.mediafire.com/?gnzcg06naz5c1cd
    2. base64 decode to a file yield a jpeg
    3. Check exif to of the picture and u get this long meaningless number 1142241512153124434423152334444415434421153211311535114211142433.
    4. Now refer to the Picture. Hint is PoKLEY. Now althught it sounds garbage but PKLEY sounds like POLY ... so the secret here is it's a type of POLY Alphabet cipher . But which one? The anasthetic word in BM is bius. So it's PolyBius . (Noted . when u analyze the Pcap file u defnitely see that this packet contains lot of BM garbage dat itself is a hint!!).
    5. So wiki PolyBius and u this table as reference .
    6. Python your way around or watever speedcoding that u like..
    7. U get ariebelisthehottestfemaleparadin !!!!

    Memorible Comments during the whole event.
    • "Handsomenye budak-budak yang menang hacking tu " - someone behind my sit saying that. What can i say? Long Hair, Weird hats , boots and Rubik cubes are not sexy. Congrats UniKL!!!