SirGod's blog

DefCamp

Long time, no post. Laziness.

As you may know, I have attended the first Romanian IT security conference, DefCamp. I was a speaker, along with my brother and a few others. The conference was held in Bran, Brasov. But enough with the details, you can read more about it on its official website, www.defcamp.ro. Unfortunately, the content is in Romanian, but you can always use Google Translate. 

My presentation:

Analiza si evolutia vulnerabilitatilor web  

Again, this one is in Romanian, too. I might translate it sometime, but now I am too lazy to do it. And I can even say that I don’t have the necessary time or motivation (yet).

Here is a picture of myself, while presenting:

If you want to see more pictures, take a look on my Facebook profile or on DefCamp’s Facebook page.

Everything went very good, even better than expected. Everyone and everything was OK. It was a great experience where we got to know each other better, to collaborate, to share ideas and to have fun. 

I am eagerly waiting for DefCamp 2!

Spammer fail

Sometimes I look through my Spam folder, not only because a legit email may accidentally have slipped in there, but also to see how stupid some spammers are. 

Take a look at the message (incomplete, I had to scroll to see it full size):

And here we have an interesting thing:

Great, so we got an IP address. Maybe it’s a hacked server. It must have been a really poor configured server if you got access. Or maybe you bought it. Whatever, let’s move forward and see what’s interesting. That /pp/ tells me something. You have more scams, this is only the PayPal folder. If we click the link, it redirects us to:

hxxp://limited.paypal.us.to/access/account/src/Cgi-bin/login.php

With this extension, you might trick some people. But there’s no HTTPS, you could have done something.

Another interesting thing:

You are not even able to write a scam page? You used an automated tool for this. You are a robot, following some steps (that someone taught/told you) you don’t understand.

Dude, you are not smart. You are not even close. Go get a job and stop stealing from gullible people. You will eventually get caught and spend your youth somewhere you don’t want to be. 

In the end, here are the reasons I won’t believe it’s a legit email:

• it arrived in my spam folder
• at the top of the message, there is a little notice (in fact, a warning) standing out (written with white on a red background) which says that the message is suspicious
• some punctuation/grammar mistakes
• it is now blocked by Firefox (reported web forgery)
• the HTML code is in plain text 
• the unknown IP address
• Website Copier
• I am smart

Perhaps there are more things to say about this, but I am tired and I am not going to check thoroughly your scam. This is just a brief analysis.

However, send me more of these!

Finally, at a loose end

After a long period of time of being stressed and messed up as hell, I am finally at a loose end. I have been waiting for this for a long time. Now that I’m done with my two exams (one failed, one passed), I am free, I am happy. 

Marines are cool

I’m leaving…

I am leaving town for a couple of days (a week, maximum two weeks), so expect absolutely no activity on my blog. Why am I leaving? Because I am going to take my exams.

Wish me luck.