S E A R C H |
Robin Hood's how to search ~ Lessons Fravia's Nofrill Web design (1998) |
Updated 28 January 1998 |
A letter by Robin Hood (which is interesting per se, exspecially if you don't know what line bombs are) My own public answer to Robin Hood (since he used an anonym remailer) Robin Hood's lessons: ZERO, an overview ONE, search engine attacks TWO, special engine attacks |
---|
Hello Fravia, I've been working on a present for you, yes, more lessons for your pages of reverse engineering. Though they are not about cracking applications, they involve some "cracking" of sorts. I appreciate all the work you have put into your site both in the things you have written and the administration of the +HCU essays. With no disrespect meant to you, I found a section of your site that could use a little improvement, namely the "searching" pages, so I've picked up the gauntlet to "work well" and have started building a set of "Hunting Lessons" for your site. Everyone has his skills, talents and strong set. Considering your vast reverse engineering skills, your time seems better spent with real cracking issues rather than searching. I'm not a cracker of code, well at least not yet, but I can hunt the net fairly well. I've kept the pages in line with ideas; small, fast loading with a few tiny gifs for spice. I don't have the HTML skill to do them all in edit.com but I'm not using a WYSIWYG program either. I chose WebEdit Pro (a glorified text editor with a viewer and HTML reference) so I could actually lean all the various tags. There is an irony to contend with here; I see no reason to waste time writing the lessons unless they are something you actually want but you'll have no idea if you want them until you see them. To resolve this I've sent along the rough drafts of the first three pages. They are unfinished but should give you an idea of my work and the out line will show you where things are headed... ...Cheers, ->>>--Robin-Hood---->And the following part is also EXTREMELY INTERESTING for all those among you that never learned the 'repairing' techniques needed in order to reconstruct maimed base64 files:
Lastly the narrow character format is necessary to sucessfully pass files through the "Cracker" remailers. You will have to open the message as text and edit the bombs that the remailer has installed. There are five "Content-" lines repace the string "=3D3D" and with "=3D" (without the the quotes). Since the remailer will alter the exaples above, I'll put them in text; search for "equals three capital-D" and replace with just the "equals" character, no spaces or quotes. There should be two equal signs at the end of the "Content-MD5" line. Also search for line bombs, they are really simple to find and repair. Search for "=3D" (the "equal" char) in the main body of the encoded message. If you find one it will be followed by two numbers which represent the hex value for the character that belongs in that position. Replace the equal sign and the numbers with the corresponding letter and look for a second equal sign after (at the end of the line) and delete it. The remailer tends to go after "F" Hex46 for some reason so you'll probably find an "equals"46 at the start of a few lines. Replace them with F and delete the second equals sign at the end of the line. We're not supposed to be able to pass any files through this remailer, that's the purpose of all this maiming, but every thing is crackable even the "Georgia Cracker."Here you have some examples:
Content-MD5: uC1pqPUTQ9F00UpHDb1UWA=3D=3D BilKDH4aBo10ruN0QuxTyhUF183Ck5wnpbhhKQNHAHKh9/RFnm3o+kn31dGGw74yL++XJeS1 =46LyZn5/7itGX6rzAqv8waXpD7t9Ztr7nYCUJmRzBJ7GPplVKwb3lS+uUFrc8frd87R3WPJF= 0 ul67VG+QchErzAl1bMgfyKRL8gbiYHMx7IqrY74sHRKoUIV9aqLLUJmq+BusTIp6zSpdOBBh 0PHATcUpX18nUPPBzS8CXjmlggI90FGH4eSJ0ZDHoCOVWgnSFy6vSXh2dpDvrCc8CVbm053NNote the =46 at the beginning of the line. You just substitute "F" to it and eliminate the = sign at the end of the line, obtaining:
BilKDH4aBo10ruN0QuxTyhUF183Ck5wnpbhhKQNHAHKh9/RFnm3o+kn31dGGw74yL++XJeS1 FLyZn5/7itGX6rzAqv8waXpD7t9Ztr7nYCUJmRzBJ7GPplVKwb3lS+uUFrc8frd87R3WPJF0 ul67VG+QchErzAl1bMgfyKRL8gbiYHMx7IqrY74sHRKoUIV9aqLLUJmq+BusTIp6zSpdOBBh 0PHATcUpX18nUPPBzS8CXjmlggI90FGH4eSJ0ZDHoCOVWgnSFy6vSXh2dpDvrCc8CVbm053NRemailers seem to maim files choosing a letter randomly, every time the encoded file has a line starting with that letter, it will be maimed.