Cracking the Chinese code - Infosec websites

WHY ~~CRYPTO~~ CHINESE IS HARD

Chinese doesn’t have an alphabet (rather than memorizing 26 letters you should memorize thousands of characters in order to be able to read and write. A Chinese person is considered illiterate if he doesn’t know at least 5000 characters).

English alphabet –> 3000 most common Chinese characters

Pronunciation is hard. Well, it may get better with time and speaking Chinese is surely easier than writing Chinese, anyway there are some sounds that don’t exist in other languages. There is a limited number of phonemes, but there are 4 different tones + a neutral tone.

Tones in Mandarin Chinese

Although some characters can be decomposed in a semantic component and a phonetic component that may be the same for multiple characters and the meaning of some characters may be guessed by their morphology, most of times it isn’t possible or at least not easy to infer the meaning and the pronunciation of a character without having studied it before. Often there isn’t a direct correspondence between the morphology and the pronunciation so it is necessary to study separately the shape, the meaning and the pronunciation of a character.

Semantic – phonetic compounds

Chinese sentences have no spaces. Did you know that? So a reader must be able to do a segmentation of the text and understand (in real time) if the word is formed by 1,2,3 or more characters. Making a mistake in this phase would lead to a shift that alters the meaning of the whole sentence.

Chinese words interpretation

CHINESE AND INFORMATION SECURITY – 中文和信息安全

Nowadays there are many Chinese hackers and security professionals. We often hear about Chinese malware, APT, Cyber espionage and Exploits. Many people heard about them, but only a few actually witnessed in first person the skills of Chinese hackers. We know they are there, we sometimes see them through the Apache logs or the hardcoded IPs in some malware that we reverse engineer for fun at weekend when we don’t know what to do or again trying to escape the jail of our honeypot. But what do we really know about them? Most of people don’t know where they meet and discuss about their attacks and their exploits, the tools they code and use and so on. Why? Simply because of the LANGUAGE BARRIER.

I’ve been studying Chinese for a few years and I can speak Chinese at intermediate level (yeah, it’s cool but you don’t know how many efforts it requires unless you try :P) so I thought: why not to explore Chinese websites looking for something interesting? Today I decided to share some links with you so I’ve been digging the web, performing manual searches of Chinese infosec keywords and collecting links of Chinese websites and personal blogs about ethical hacking and pentesting. This is the result of my efforts:

I created a github repo with the list of websites I found so far. No matter if you are Chinese or a foreigner you are free to contribute in multiple ways:

making pull requests for adding new links
reporting broken links (as of today 23/10/15 you shouldn’t find any 404 error, I manually browsed and selected each and every website)
recommending a web scraping tool and the workflow that could help me to collect more websites in an efficient way

A NON-EXHAUSTIVE LIST OF CHINESE WEBSITES ABOUT ETHICAL HACKING AND PENTESTING

http://www.8090sec.com

http://www.hack80.com

http://www.hackdig.com

http://cheatsheets.hackdig.com

http://www.moonsec.com

https://www.mrxn.net

http://www.cnseay.com

http://wzjc.chinacycc.com

http://www.soojoy.net

http://www.hackqing.com

http://www.sh3llc0de.com/

http://blog.d99net.net

http://www.fbisb.com

http://bbs.chinabaiker.com

http://ha.cker.in

http://www.codesec.net

http://www.ihonker.org/

http://www.hack1412.com

http://www.qxzxp.com

http://www.moonsos.com

http://www.ccav8.cn

http://www.unhonker.com

http://www.1937cn.net

http://www.hacker8.cn

http://www.arvinhk.com

http://www.backlion.org

http://hongkediguo.com

http://www.isafe.cc (contains also private toolsi)

http://www.netfairy.net

http://www.0xreg.com

http://www.sec-wiki.com

http://www.xmd5.com

http://www.youxia.org

http://www.secbox.cn

http://www.china-antivirus.com

http://www.secpulse.com

https://www.i1ii.cn

https://www.chinabaiker.com/

http://www.milw0rm.cn

http://www.waitalone.cn

http://www.cn-hack.cn

http://www.caimima.net

http://insight-labs.org

http://www.linux520.com

http://www.sougaoqing.com

http://www.ourren.com

http://secdr.github.io

http://wcf1987.iteye.com

https://185.es

http://www.heimao.org

http://www.bgeteam.com/

http://www.hac-ked.cn

http://www.zghack.com

http://c.c-c-c-c-c.cc

http://www.cqhacker.cn

http://www.nmap.pw

http://www.oday.pw

https://www.70sec.com

http://fuzzzz.net

http://www.zoyzo.cn/

http://www.yu1u.org

http://www.fucksec.com

http://www.mgweb.cn

http://www.m4sk.net

http://www.52wa.net

http://www.leesec.com hacking tools

http://anqyunwei.blog.51cto.com

http://bbs.isilic.org/

http://www.any3ite.com

http://www.blackstxz.com/

http://www.l0s4r.com

http://www.wki.cc

http://www.qiaocui.net

http://www.hmsem.com

http://ver007.com

http://ver007.com/tools/APTnotes/ APT notes [HOT]

http://wolvez.club

http://www.lanbo.hk

http://www.hacksec.cn

http://www.catssec.com:8090/exploit/

http://www.hackhp.com

https://www.t00ls.net

http://www.0749orz.com

http://www.shack2.org

http://www.webshell.cc

http://www.08sec.com/

http://www.secoff.net

http://www.hugtion.com

https://imlonghao.com

http://www.wwwer.net

http://www.nxadmin.com

http://dllk.ctshare.com

http://twi1ight.org

http://www.nigesb.com

http://www.03sec.com

http://phpinfo.me

https://www.bugscan.net/

http://www.ybhacker.com

http://www.yunsec.net

http://www.myzhenai.com.cn

http://www.iisuser.com

http://www.shellsec.com

http://www.tiejiang.org

http://www.jeehsu.com

http://www.nnbbxx.net

http://p2j.cn

http://ha.cker.nu

http://www.t00ts.net

http://little-zero.lofter.com

http://blog.hack-gov.com

http://www.seoby.cn

http://www.myth007.com

http://www.zc520.cc

http://www.okadwin.com

http://www.opsers.com

http://bbs.jyhack.com

http://www.maxiaohao.cc

http://www.90sa.cn

http://blog.javahk.com

http://cve.scap.org.cn

http://www.freebuf.com

http://www.aptno1.com

http://blog.tears.black

http://www.cnnetsec.com

http://bug.zerobox.org

http://www.secye.com

http://bbs.sssie.com

http://www.sco4x0.com

http://www.binvul.com/

http://www.pkav.net

http://www.sniffer.pro

https://www.91ri.org

http://kevaxe.com

https://www.leavesongs.com

http://fei.0day5.com

http://www.0xmh.com

http://translate.wooyun.io

http://tdifg.com

http://justhaifei1.blogspot.in/

A FEW CONSIDERATIONS

If you were to look for Chinese websites you would probably restrict the search to .cn domains, but as you can see there are many non .cn domains that are actually used. Let’s think about the possible reasons:

avoiding the Chinese censorship
giving a more international name for increasing the audience
the Chinese person may be an expat and live in a foreign country

Another thing to notice about the domain names is that many contain the word “hack” or “sec” in it and sometimes “cn” that stands for China. A few others instead use the abbreviation of their personal name or a fantasy name.

Chinese love numbers. Usually most of websites registered by people coming from other countries tend to contain letters rather than numbers or at least in a minor quantity, instead Chinese people seem to particularly like them. P.S. the number 520 that you see in a few URLs means “I love you”.

Author: Fabio Baroni Date: 2015-10-23 03:08:23

Comments 11

Noname
October 23, 2015 at 1:53 pm

Good job! but it’s not complete~

1. Post
  Author
  
  Fabio Baroni
  October 23, 2015 at 10:17 pm
  
  Thanks, are you Chinese? 🙂
  Anyway I believe it’s the most comprehensive list on the web (created by a foreigner at least)
  
  1. Noname
    October 25, 2015 at 7:42 am
    
    yes;)
    you also can try the weibo and tencent QQ
    sorry my english;D
    
    1. Post
      Author
      
      Fabio Baroni
      October 25, 2015 at 9:54 am
      
      Ahah..do you know how I recognized that you are Chinese? Because you used “~” 😀
      I have weibo, my account is: -小猪小猪-
      哈哈哈 I used QQ in the past but it’s long time that I don’t use it. I also have 微信 anyway.
      
      1. Noname
        October 26, 2015 at 2:49 am
        
        wtf! 竟然被”～”出卖了，用这么多made in china，严重怀疑你是不是个中国人 uhahahha 加我的QQ群456300339 weibo已粉
      2. Post
        Author
        
        Fabio Baroni
        October 27, 2015 at 7:16 pm
        
        哈哈哈。好的。我要加你。
nobody
October 28, 2015 at 7:30 am

哈哈很多人都因为博客没有上榜而伤心呢

John Adams
February 17, 2016 at 10:51 pm

I wish I could speak Chinese like you. Chinese hackers are great but their language is hard to understand for me. Thanks for this article. I follow your blog with pleasure. Keep up the good work!

1. Post
  Author
  
  Fabio Baroni
  February 21, 2016 at 5:05 am
  
  eheh Chinese is hard, anyway it’s not impossible to learn. I have been studying Chinese for a few years as autodidact. I can give you some suggestions if you want. Anyway yeah, Chinese hackers are great and many sophisticated attacks come from China so it’s very important to monitor the Chinese cyberspace.
  
2. lifeand
  February 15, 2017 at 7:08 pm
  
  I think Russian hackers are the best.
  
网路游侠
February 15, 2017 at 2:50 pm

thanks 😉 my website is http://www.youxia.org , i am the webmaster .my sina weibo @网路游侠

Cracking the Chinese code – Infosec websites

A FEW CONSIDERATIONS

Comments 11

Leave a Reply Cancel reply

A FEW CONSIDERATIONS

Comments 11

Leave a Reply Cancel reply

A FEW CONSIDERATIONS