Chatsubo [(in)Security Dark] Labs

"... A consensual hallucination experienced daily by billions of legitimate operators, in every nation, by children being taught mathematical concepts... A graphic representation of data abstracted from banks of every computer in the human system. Unthinkable complexity. Lines of light ranged in the nonspace of the mind, clusters and constellations of data. Like city lights, receding into the distance... "
William Gibson.

viernes, 30 de abril de 2010

c155p... my next challenge ! 4 phun & pr0fit

Hi all, a couple of days ago, I bought the "CISSP All-in-one Exam Guide, 5th Edition (Hardcover)" by Shon Harris , yes, the *NEW* edition (2010). So, i'll have a lot of fun reading 1216 pages about "5ecur1ty" in the next months, and then, I'll try to obtain the certificate jeje ... just for phuck1ng phun ! B-) yeahh !!! xDD

jueves, 22 de abril de 2010

XOR Swap Algorithm

20 minutes before I got to work, I was tackling against a couple of Mexico City's traffic jams !! and then, I recalled a simple but pretty cool algorithm I used like 5 years ago to swap 2 different variables without using a temporary one. If you're new at programming, there exist a variety of such algorithms, more commonly referred as Sorting Algorithms, and most of them use a temporary variable in order to swap the values they have, so, if u want to optimize your c0de and n1nj4 skillz ;) take a look at this !..

This is the XOR Swap Algorithm, and instead I explain it... A picture is worth a thousand words ;) ...

As you can see, it's mathematically simple, and below you can see the c0de & screensh0t I took a few minutes before ...

Keep h4cking !!

sábado, 17 de abril de 2010

31337 order at Cinépolis

Yes! that'z right, more than a year ago, I received the order number 31337 !!! just imagine the number of posibilities, thousands of people buyin' shit at the cinema, hundres of malls within a movie theater, thousands of orders !!! pfff, and yes, teh fate, my fate, did the work !! B-D !...

Who one else better than me would receive "teh number" jajaj none !! that's right xDDD.. just kidding !!! ... someday, u'll have one too ... just fucking kidding again jajajajajja !!!! xDDDDD ..

Afterall, I still have the voucher in my wallet =D !

lunes, 12 de abril de 2010

Exploiting apps replacing _init through shared libraries

Yes, an old topic, but this time, with a different and interesting approach. This time, Rh0 found a new attack vector, taking advantage of Glibc's shared library.

It reminds me the old LD_PRELOAD technique ;). Anyway, this time, everything is on dlopen(3), so, let's take a look into the man-page:

"The four functions dlopen(), dlsym(), dlclose(), dlerror() implement the interface to the dynamic linking loader... The function dlopen() loads the dynamic library file named by the null-terminated string filename and returns an opaque "handle" for the dynamic library."

Independently the binary was compiled with RTLD_LAZY (Lazy Binding) or RTLD_NOW, the dynamic linker always execute the content of _init, which in a C programm it's defined by the function with the attribute __attribute__((constructor)) assigned.

So, I tested this in my leasure time and the results are displayed in the next screensh0t.


domingo, 11 de abril de 2010

From Hacker to C-Level

This is the latest speech I gave. It was given in the Master of Business Administration at Universidad Anáhuac, a couple of months ago.


Any comments, suggestions, or anything ... send them 2 me !

jueves, 8 de abril de 2010


Hi all,

Welcome 2 my bl0g, yes, I'll retake it 'cause I removed the last I had (~4 years ago).. Anyway, I'll write in english 'cause I've to improve it ...

In this little internet corner, you'll find some things I've found interesting, voodoo, hilarious, complex, weird, cool, etc etc, and all about hacking, research, c0ding, security, inse-fucking-curity, voodoo coding shits, presentations, projectz, blah blah !!..

Hope u enj0y it !!

Kind regards madafakaz !!