Suspicious Code Repository for Job Seeker (Part 3)

This is the third part of dissecting the obfuscated NodeJS code. Just in case you missed1. Part 1, you can read it here: https://tintinnya.com/2024/09/suspicious-code-repository-for-job-seeker-part-1/ and 2. Part 2 here: https://tintinnya.com/2024/10/suspicious-code-repository-for-job-seeker-part-2/ Function P(), ot(), rt() are called if the victim is using ‘linux’ platform. Section 3.1.2 function P()Let’s see what is this function do At glance,… Read More »

Suspicious Code Repository for Job Seeker (Part 2)

This is the second part of dissecting the obfuscated NodeJS code. Just in case you missed the Part 1, you can read it here: https://tintinnya.com/2024/09/suspicious-code-repository-for-job-seeker-part-1/ From the first dropper discussed in the Part 1, I found another obfuscated NodeJS file named test.js which was downloaded from the IP address and port number hiding in the… Read More »

Spicing Up The oh-my-zsh for AWS CLI

I am working with awscli and gcloud a lot. Sometimes I need to know whether I’m currently working on my lecturing account, or my work account. I’m thinking of a good indicator on which profile account and region I’m working right now. And oh-my-zsh already have that, since I installed it last year ?. This post only discuss on how to prepare the oh-my-zsh to have indicator with AWS Profile.

Key to the sea – CTF Write Up

It takes 14 minutes to read this blog.Updated May 2nd, 2021: adding some clarity on several parts. It’s been a long time since I played my last CTF. Most of the CTFs I played were on the weekend and it was only 24 hours. But this CTF is special because it runs internally. Kinda fun,… Read More »

netdiscover on Kali 2020.3 Could Not See Any MAC Addresses

You might be accidentally updating your apt source list and type apt update. But you might not realize that upgrading your installed module will cause one of your favorite tools not working: netdiscover. In my case above, I’m running Kali Linux 2020.3, with netdiscover version 0.5.1 and libpcap0.8 version 1.10.0-2. I encountered this problem earlier… Read More »

Hide Your Identity While Online

When I’m on my MacBook Pro, I use command line a lot. Either for casual task, or work related task. Sometimes, I need to access website to detect things while I’m doing my task in Terminal.app. Using curl or wget is inevitable. But some websites are reluctant to show me the proper result, due to… Read More »