Cracking the Chinese code – Infosec websites

WHY CRYPTO CHINESE IS HARD

  • Chinese doesn’t have an alphabet (rather than memorizing 26 letters you should memorize thousands of characters in order to be able to read and write. A Chinese person is considered illiterate if he doesn’t know at least 5000 characters).
English alphabet

English alphabet  –> 3000 most common Chinese characters

  • Pronunciation is hard. Well, it may get better with time and speaking Chinese is surely easier than writing Chinese, anyway there are some sounds that don’t exist in other languages. There is a limited number of phonemes, but there are 4 different tones + a neutral tone.
Tones in Mandarin Chinese

Tones in Mandarin Chinese

  • Although some characters can be decomposed in a semantic component and a phonetic component that may be the same for multiple characters and the meaning of some characters may be guessed by their morphology, most of times it isn’t possible or at least not easy to infer the meaning and the pronunciation of a character without having studied it before. Often there isn’t a direct correspondence between the morphology and the pronunciation so it is necessary to study separately the shape, the meaning and the pronunciation of a character.
Semantic - phonetic compounds

Semantic – phonetic compounds

  • Chinese sentences have no spaces. Did you know that? So a reader must be able to do a segmentation of the text and understand (in real time) if the word is formed by 1,2,3 or more characters. Making a mistake in this phase would lead to a shift that alters the meaning of the whole sentence.
chinese words interpretation

Chinese words interpretation

CHINESE AND INFORMATION SECURITY – 中文和信息安全

Nowadays there are many Chinese hackers and security professionals. We often hear about Chinese malware, APT, Cyber espionage and Exploits. Many people heard about them, but only a few actually witnessed in first person the skills of Chinese hackers. We know they are there, we sometimes see them through the Apache logs or the hardcoded IPs in some malware that we reverse engineer for fun at weekend when we don’t know what to do or again  trying to escape the jail of our honeypot. But what do we really know about them? Most of people don’t know where they meet and discuss about their attacks and their exploits, the tools they code and use and so on. Why? Simply because of the LANGUAGE BARRIER.

I’ve been studying Chinese for a few years and I can speak Chinese at intermediate level (yeah, it’s cool but you don’t know how many efforts it requires unless you try :P) so I thought: why not to explore Chinese websites looking for something interesting? Today I decided to share some links with you so I’ve been digging the web, performing manual searches of Chinese infosec keywords and collecting links of Chinese websites and personal blogs about ethical hacking and pentesting. This is the result of my efforts:

I created a github repo with the list of websites I found so far. No matter if you are Chinese or a foreigner you are free to contribute in multiple ways:

  • making pull requests for adding new links
  • reporting broken links (as of today 23/10/15 you shouldn’t find any 404 error, I manually browsed and selected each and every website)
  • recommending a web scraping tool and the workflow that could help me to collect more websites in an efficient way

A NON-EXHAUSTIVE LIST OF CHINESE WEBSITES ABOUT ETHICAL HACKING AND PENTESTING

http://www.8090sec.com

http://www.hack80.com

http://www.hackdig.com

http://cheatsheets.hackdig.com

http://www.moonsec.com

https://www.mrxn.net

http://www.cnseay.com

http://wzjc.chinacycc.com

http://www.soojoy.net

http://www.hackqing.com

http://www.sh3llc0de.com/

http://blog.d99net.net

http://www.fbisb.com

http://bbs.chinabaiker.com

http://ha.cker.in

http://www.codesec.net

http://www.ihonker.org/

http://www.hack1412.com

http://www.qxzxp.com

http://www.moonsos.com

http://www.ccav8.cn

http://www.unhonker.com

http://www.1937cn.net

http://www.hkphp.cn

http://www.cnit.pro

http://www.t00ts.net

http://x14hack.com

http://cracer.com

http://www.hacker8.cn

http://www.arvinhk.com

http://www.backlion.org

http://hongkediguo.com

http://www.isafe.cc (contains also private toolsi)

http://www.netfairy.net

http://www.0xreg.com

http://www.sec-wiki.com

http://www.xmd5.com

http://www.youxia.org

http://www.secbox.cn

http://www.china-antivirus.com

http://www.secpulse.com

https://www.i1ii.cn

https://www.chinabaiker.com/

http://www.milw0rm.cn

http://www.waitalone.cn

http://www.cn-hack.cn

http://www.caimima.net

http://insight-labs.org

http://www.linux520.com

http://www.sougaoqing.com

http://www.ourren.com

http://secdr.github.io

http://wcf1987.iteye.com

https://185.es

http://www.heimao.org

http://www.bgeteam.com/

http://www.hac-ked.cn

http://www.zghack.com

http://c.c-c-c-c-c.cc

http://www.cqhacker.cn

http://www.nmap.pw

http://www.oday.pw

https://www.70sec.com

http://fuzzzz.net

http://www.zoyzo.cn/

http://www.yu1u.org

http://www.fucksec.com

http://www.mgweb.cn

http://www.m4sk.net

http://www.52wa.net

http://www.leesec.com hacking tools

http://anqyunwei.blog.51cto.com

http://www.ihack.cc

http://www.xcn.one

http://defcon.cn

http://www.wniu.net

http://navisec.it

http://bbs.isilic.org/

http://www.any3ite.com

http://www.blackstxz.com/

http://www.l0s4r.com

http://www.wki.cc

http://www.qiaocui.net

http://www.hmsem.com

http://ver007.com

http://ver007.com/tools/APTnotes/ APT notes [HOT]

http://wolvez.club

http://www.lanbo.hk

http://www.hacksec.cn

http://www.catssec.com:8090/exploit/

http://www.hackhp.com

https://www.t00ls.net

http://www.0749orz.com

http://www.shack2.org

http://www.webshell.cc

http://www.08sec.com/

http://www.secoff.net

http://www.hugtion.com

https://imlonghao.com

http://www.wwwer.net

http://www.nxadmin.com

http://dllk.ctshare.com

http://twi1ight.org

http://www.nigesb.com

http://www.03sec.com

http://phpinfo.me

https://www.bugscan.net/

http://www.ybhacker.com

http://www.yunsec.net

http://www.myzhenai.com.cn

http://www.iisuser.com

http://www.shellsec.com

http://www.tiejiang.org

http://www.afeng.org

http://www.iswin.org

http://lcx.cc

http://bbs.pediy.com

http://3389.in

http://x95.org

http://www.itkuo.cn

http://www.nmap.cc

http://www.jeehsu.com

http://www.nnbbxx.net

http://p2j.cn

http://ha.cker.nu

http://www.t00ts.net

http://little-zero.lofter.com

http://blog.hack-gov.com

http://www.seoby.cn

http://www.myth007.com

http://www.zc520.cc

http://www.okadwin.com

http://www.opsers.com

http://bbs.jyhack.com

http://www.maxiaohao.cc

http://www.90sa.cn

http://blog.javahk.com

http://cve.scap.org.cn

http://www.freebuf.com

http://www.aptno1.com

http://blog.tears.black

http://www.cnnetsec.com

http://bug.zerobox.org

http://www.secye.com

http://bbs.sssie.com

http://www.sco4x0.com

http://www.binvul.com/

http://www.pkav.net

http://www.sniffer.pro

https://www.91ri.org

http://kevaxe.com

https://www.leavesongs.com

http://fei.0day5.com

http://www.0xmh.com

http://translate.wooyun.io

http://tdifg.com

http://justhaifei1.blogspot.in/

A FEW CONSIDERATIONS

If you were to look for Chinese websites you would probably restrict the search to .cn domains, but as you can see there are many non .cn domains that are actually used. Let’s think about the possible reasons:

  • avoiding the Chinese censorship
  • giving a more international name for increasing the audience
  • the Chinese person may be an expat and live in a foreign country

Another thing to notice about the domain names is that many contain the word “hack” or “sec” in it and sometimes “cn” that stands for China. A few others instead use the abbreviation of their personal name or a fantasy name.

Chinese love numbers. Usually most of websites registered by people coming from other countries tend to contain letters rather than numbers or at least in a minor quantity, instead Chinese people seem to particularly like them.  P.S. the number 520 that you see in a few URLs means “I love you”.

 

 

Did you enjoy this article?
Signup today and receive free updates straight in your inbox. We will never share or sell your email address.
I agree to have my personal information transfered to MailChimp ( more information )

Author: Fabio Baroni   Date: 2015-10-23 03:08:23

Comments 11

    1. Post
      Author
        1. Post
          Author

          Ahah..do you know how I recognized that you are Chinese? Because you used “~” 😀
          I have weibo, my account is: -小猪小猪-
          哈哈哈 I used QQ in the past but it’s long time that I don’t use it. I also have 微信 anyway.

          Reply

          1. wtf! 竟然被”~”出卖了,用这么多made in china,严重怀疑你是不是个中国人 uhahahha 加我的QQ群456300339 weibo已粉

          2. Post
            Author

  3. I wish I could speak Chinese like you. Chinese hackers are great but their language is hard to understand for me. Thanks for this article. I follow your blog with pleasure. Keep up the good work!

    Reply
    1. Post
      Author

      eheh Chinese is hard, anyway it’s not impossible to learn. I have been studying Chinese for a few years as autodidact. I can give you some suggestions if you want. Anyway yeah, Chinese hackers are great and many sophisticated attacks come from China so it’s very important to monitor the Chinese cyberspace.

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *