Profile

Cover photo
Shawn C
Lives in Cyberworld
211 followers|254,964 views
AboutPostsPhotosYouTube

Stream

Shawn C

Shared publicly  - 
 
http://blog.thinkst.com/p/if-nsa-has-been-hacking-everything-how.html

This is a great writing. I've been always warning my customers should mind their threat model...........

Cyber Defense - Military Training for Cyber Warfare, Full Length Documentary
https://www.youtube.com/watch?v=HnnvVnsDCGw

Bragging Rights: Cyber Defense 2012
https://www.youtube.com/watch?v=aoG1XzUk7sU

Guess, those 0ld good hacking days are long gone..now only left "This is cyber, sir".
As the Snowden leaks continue to dribble out, it has become increasingly obvious that most nations  planning for "cyber-war" have been merely sharpening knives for what looks like an almighty gunfight. We have to ask ourselve...
1
Add a comment...
 
I think "BIG JIM"  would be fine with his wife's story if he learn something from this office;-)r:
https://www.youtube.com/watch?v=8XFBUM8dMqw
1
Add a comment...

Shawn C

Shared publicly  - 
 
Some customers thinks my argument about "OSINT is the key to the enterprise security defense" was a joke...here it is: https://www.eff.org/document/20150204-intercept-open-source-cyber-defence-progress
1
Add a comment...

Shawn C

Shared publicly  - 
 
We received another paper for DNFWAH Issue 4: DIY your own Android emulator https://raw.githubusercontent.com/citypw/DNFWAH/master/4/d4_0x0b_DNFWAH_diy_your_own_android_emu.txt
[ D O N O T F U C K W I T H A H A C K E R ]=-----=| |=-----------------------------------------------------------------=| |=------------------------[ #4 File 0x0a ]-------------------------=| |=-----------------------------------------------------------------=| |=------------------=[ DIY ...
2
1
Bamvor Zhang's profile photo
Add a comment...

Shawn C

Shared publicly  - 
 
I can't believe some self-claimed "professional consultant" just jump to the conclusion so quick without brain-killing process. You can't made a conclusion just by your imagination. I haven't found any known-vulns can causes kernel crash by tcp syncookie. Shame!

Some customers may be not that intelligent to understand everything you say but that doesn't mean you can treat them like a fool. On the other hands, that's why they fuc*ing pay you to help them solve the issues and educate them. Show some respects, suckers!
1
Add a comment...

Shawn C

Shared publicly  - 
 
Johnny Cash - Hurt
https://www.youtube.com/watch?v=vt1Pwfnh5pc

masterpiece...the best songs can reach and awaken your deepest soul.  But the problem is are you fuc*ing sure the soul is still belong to you?
 ·  Translate
1
Add a comment...

Shawn C

Shared publicly  - 
 
https://www.youtube.com/watch?v=0SgGMj3Mf88

This is the most fuc*ing awesome presentation I've seen in 2014 since I watched Jacob's free speech on last C3 conference. Yes..what I've been trying to tell people( friends & customers) that only a few things we may rely on: OTR, PGP, SSL/TLS with PFS... This is a very positive message that not everything is being fucked. Well...I'm thinking  only taking crypto itself into account is not enough.  Kernel hardening should be a must-need stuff more than ever before. A lot of 0ld sch00l guys are complaining about people are still not taking serious about system-lvl security after EFF released the security guideline. Even the Information Security for Journalists focuses on crypto in the most part......damn...I think there are a lot of interesting stuff we could try in 2015..............

btw: I'm not sure what's the current status of TLS 1.2, let me know your thought.

May the L0rd's hacking spirit guides us in 2015!!!
2
Add a comment...

Shawn C

Shared publicly  - 
 
It was so glad to met some 0ld sch00l guys in Pussy...oh, s0rry, it's Puxi in SH;-) An effective approach of defense in depth is a must-need daily bread in these days. Those 0ld g00d hack1ng days are long gone..."Evil is near & Winter is coming".
3
Wes H's profile photoToby Huang's profile photo
2 comments
 
Winter is coming
Add a comment...
In his circles
251 people
Have him in circles
211 people
yorkng zhuo's profile photo
Guoqing Li's profile photo
Ashwin Bhat Kumta's profile photo
Sean Soong's profile photo
Ryan Houseman's profile photo
范亚聃's profile photo
André Altmüller's profile photo
Daniel wong's profile photo
Charles Wei's profile photo

Shawn C

Shared publicly  - 
 
http://arstechnica.com/security/2015/02/how-omnipotent-hackers-tied-to-the-nsa-hid-for-14-years-and-were-found-at-last/

https://securelist.com/blog/research/68750/equation-the-death-star-of-malware-galaxy/

Full report of Equation Group by Kaspersky Lab:
https://securelist.com/files/2015/02/Equation_group_questions_and_answers.pdf

x86_64 sample for Windows( be careful while reversing):
https://github.com/citypw/citypw-SCFE/raw/master/security/Documentation/tmp_sam/Equation_x86_x64.zip

YARA rules:
http://pastebin.com/P0Fb9DPb

This is an incredible work by a group of 1337 people. Highly skilled with seemed-like-unlimited-bugdet. If Equation malwares are more sophisticated than Stuxnet/Flame, I'd be wondering what will disclosure next;-)
"Equation Group" ran the most advanced hacking operation ever uncovered.
1
Add a comment...

Shawn C

Shared publicly  - 
 
I've been exhausted in the past week. I went to some data centers and tried to convinced them to upgrade the latest security fix, including GHOST( glibc) and iBADRET( kernel). The fuc*ing weirdo thing is that some customers wouldn't upgrade their GNU/Linux for the security issues until some public poc is being disclosured. That's silly..."shit happens, as always" is always true.  One customer was going to upgrade glibc only, then I told them there are a bunch of NDAY( known) vulns in kernel, because their kernel never update for two years. They didn't mean to upgrade the kernel in the 1st place. Then I saw Rafal Wojtczuk wrote a great analysis about ibadret vuln:
http://labs.bromium.com/2015/02/02/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/

I was surprised about "no one" discuss this dangerous vuln publicly and I didn't know any of public poc. Wait..poc, there was one released  a couple of weeks ago:
https://rdot.org/forum/showthread.php?t=3341

We've discussed why we all missed this very important information. Maybe resulted in some reasons. Firstly, this is not-that-famous website with self-signed SSL cert. More importantly, it's an Russian community. Is this a sort of failure of OSINT? Yes. Since we are living in post-prism era.We should be more carefully to put more "invisible" risks into the threat model.

 Well, I wrote the 1st report on solidot( slashdot-like site in China):
http://www.solidot.org/story?sid=42951

Then I translated Rafal's article into Chinese:
https://raw.githubusercontent.com/citypw/citypw-SCFE/master/security/Documentation/exp_badiret_CVE-2014-9322.txt

Fortunately, some customers upgraded the infrastructure packages to the latest version, finally. Probably I should thank both Rafal Wojtczuk and those Russian guys....I owe you guys a beer or two;-)
6
1
Alexander Bergmann's profile photo
Add a comment...

Shawn C

Shared publicly  - 
 
My wife watched Jacob Appelbaum's 31C3 free speech. Then she want a EFF t-shirt. This is it...........
2
Shawn C's profile photoShlomi Fish's profile photo
3 comments
 
You're welcome , Shawn.
Add a comment...
 
Happy New Year 2015
Time is running on and brings us to another new year. Does this fuc*ing mean another fight? I've been sitting on my butt and watching a lot of presentations of 31C3. Unfortunately, I couldn't be there physically. I'm fuc*ing jealous you guys who were there;...
1
Bernhard Wiedemann's profile photoShawn C's profile photo
6 comments
Shawn C
 
Sounds great..I've heard a lot from +Wes H about how OpenQA is helpful to the Factory & current releases when I visit BJ last time. Well done, dude.
Add a comment...
People
In his circles
251 people
Have him in circles
211 people
yorkng zhuo's profile photo
Guoqing Li's profile photo
Ashwin Bhat Kumta's profile photo
Sean Soong's profile photo
Ryan Houseman's profile photo
范亚聃's profile photo
André Altmüller's profile photo
Daniel wong's profile photo
Charles Wei's profile photo
Basic Information
Gender
Male
Other names
Shawn the R0ck
Story
Tagline
Our future depend on our philosophy! Find your faith and position in this era, and go through with your sacred vision into the secular world.
Introduction
A punk rock spirit guy;-) I do what I like.I like what I do. I've been eating the red pill, as always........
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Cyberworld
Previously
China