I was researching about Android Malware and their features, compare them. I’ve found that most of them (actually all) do not support live video stream from Android camera, aka Spy Camera, and one that supports live camera, needs an activity. Therefore, I’ve started a hidden spy camera project to live stream video from Android camera to an Rtmp server without activity, named Live Hidden Camera.
OnionFarm was one of the challenges in UUTCTF which was held in 25-28 April 2019 by Urmia University of Technology. The challenge has been solved by 4 teams. Following, the challenge details and the write up is discussed.
Continue reading OnionFarm WriteUp
I just saw a post in TOR stack exchange titled “Is it recommended that we use a VPN along with Tor?” and wanted to post about using VPN and TOR alongside. Previously, I’ve posted Socks Rocks! The Good, The Bad and The Ugly and Socks Rocks Again! and this post is conclusion of the posts.
Continue reading VPN or TOR? This is the Problem
My project as Onion Harvester is accepted in OFFSECONF 2019. Onion Harvester is one of the projects I’m working on it partly. I give a brief presentation about working mechanism of TOR Network and talked about hidden services.
After that, I talked about computations and resources needed in order to find all the addresses.
I uploaded the video to my Youtube channel and here are some of the photos.
The video is here:
I notified that the exit node IP address in the TOR browser is not the real exit node IP. Then I started to drive the mystery machine for investigating the case. Real IP! Where are you?
Continue reading Scooby Tor! Where Are You?
K-9 is an attractive, open-source email client for Android with support of IMAP, POP3, SMTP, and exchange protocols. Hence, this client does not support proxy feature. This problem is referenced in #704 #980 #2619. In this post I will talk about my contribution in K-9 project by adding SOCKs proxy feature, which can be used for connecting hidden mail services.
In previous post, I described about connecting Thunderbird, an open source email client for PC, to a hidden mail service. In this post I will talk about modifying K-9 mail and connecting Android client to the hidden mail service.
Continue reading Connecting to Hidden Mail Server using Android
In the previous post, I’ve talked about configuring a hidden email server using hMailServer. In this post I will talk about how to access this hidden Email server. I’m using ThunderBird as email client, tajbakhsh.fake as the fake domain of email server (and accounts), two users (saman@tajbakhsh.fake and test@tajbakhsh.fake).
During all the processes, I assume that the email server is configured as previous post and client has access to the TOR network.
Continue reading Connecting to Hidden Mail Server
In this post, I will talk about configuring an Email server which is accessible using TOR. Using TOR will make its IP to be hidden, also accessible if it is behind NAT (inside a home computer without a public IP). But the main question is why one should use this kind of scenario?
Many people may not trust messaging services such as Telegram or WhatsApp but want to have their own private communication system. In this tutorial, you can run your own mail server in your home LAN and access it through Internet without spending money for public IP or VPS.
For the email server part, I will use hMailServer, an open source email server developed for windows.
Continue reading Configuring a Hidden Email Server
In a previous post, I wrote about configuring OpenVPN, TOR and Proxifier in order to hide the real IP and use web sites such as Google which do not allow lots of services for TOR exit nodes.
Literally, the ugly is removed from the previous post and openvpn directly connects to socks.
Continue reading Socks Rocks Again!
I recently had a talk about BitCoin and mainly BlockChain technology at
Application of New Generation Technologies Session which was held on 7 Dec 2018 in Urmia.