Try   HackMD

Reverse Engineering Project - Uniken Security

Introduction

Uniken Security is an Indian company used by many banks and financial firms to protect their end-user applications by a product called REL-ID.

There is unfortunately very little research literature available about the product or data about how it works.

REL-ID

REL-ID is a end-user security product that does end-device data collection to detect malicious activity to slow down attackers.

Among it's various claims:

The following links explain a bit about how it works:

Available Applications

Android

iOS

Windows

Documentation

Project Details

Uniken uses multiple methods to evade detection and reverse-engineering of APIs, the primary of which is a custom TLS implementation. The project is to reverse-engineer this implementation to get cleartext transmissions for any of the above apps. An explanation of the protocol is needed as well, and a Wireshark plugin that decodes the same will be a bonus.

While the above apps might be easier to work on if you have an account with the corresponding bank, all of them use the network even before you login. This gives an opportunity to understand the protocol even if you can't login to the app. As an example, here is a network capture from the Windows MahaSecure app before it reaches the login screen.

Deliverables

Breaking this into sections so it's easier.

Checkpoint 1

  1. A working disassembly of the application.
  2. With bypasses for any root detections or SSL Pinnings.

Checkpoint 2

  1. An explanation of the Uniken TLS protocol, in markdown format.

Checkpoint 3

  1. A re-implementation of the application in any programming language which successfully logs in.
  2. A Wireshark plugin that automatically decodes Uniken packet dumps.
  • I will setup a Signal group for anyone working on the project.
  • I'm reachable at me@captnemo.in for any queries.
  • In case any vulnerabilities are identified during this work, they will be reported to the appropriate authorities before any publication.
  • While this is totally legal as legitimite security research, publishing reverse-engineered code, or re-implementations of the codebase (deliverable 3) might result in legal action (DMCA or more). As such, publishing working re-implementations is not advised.

Rewards

  1. 10k INR for each of the checkpoints, total across your team.
  2. If the result of Checkpoint 2 is good enough, or if you clear Checkpoint 3, I will help you polish your work to a research paper and help you apply to various security conferences (non-academic, the hacker-y kind).

Timeline

No timelines for the project, you can do this at your own pace. I expect Checkpoint 1 to be quick to reach, but (2) to be much harder.

Last changed by 
nemo
0
337

Read more

Finding Sites hosted on GitHub Pages

What? There have been several reports of sites that are hosted on GitHub Pages being blocked by Airtel. These are mostly sites that have been fronted with CloudFlare Flexible SSL, since that means Airtel (as CloudFlare's network vendor) can MITM the CloudFlare<>GitHub Pages connectwion and block the site. To validate this hypothesis, I want a dataset of all sites hosted on GitHub Pages. With this in hand, it becomes much easier to find what's hosted on CloudFlare, what's hosted directly on GitHub, where's the SSL termination happening, and whether it is blocked. But to get there, I need a dataset of ~almost all sites powered by GitHub Pages using a Custom Domain. I came up with several approaches, but haven't found anything that works. Search using GitHub API

Dec 9, 2021
100 din mein paisa double

Introduction Last time we met, I said "Skills > Learning". And skills of all kinds count, no matter what they are. I said "Financial Independence" should be your north star, but I didn't do a good enough job explaining what I meant. So, this is me putting my money behind this and getting you to learn some money-making skills in the next 3 months. What You try to earn some money in the next 100 days. You get a bonus payout (from me) of $x^2/25000$ INR where x=money you earn within 100 days of accepting this challenge. Here's a nice table (first column is money you earn on your own, and second column is money I put in): The closer you get to 25,000, the closer you get to "doubling your money".

Nov 9, 2021
AWS gameday - Harshil/Nemo

Ideas: Figure out a way to automate the changes to DynamoDB table

Aug 7, 2020
10: Katamari Damaci

On one of my recent livestreams, this topic came up. (By the way, we do livestreams now—though ironically for this topic, they do not involve me playing video games. Instead, they’re full of exciting things like me signing books. Find the past ones on my YouTube channel.) My goal with this section of the newsletter is to let you get to know me better. I thought it would be a fun experiment for me to talk about my favorite video games. You shouldn’t consider this a “best of all time” list, though I do recommend these games. I’m not saying these are the best; merely they are my favorites. Think of this list more as an insight into who I am and the things I like. Since picking favorites is generally tough, I decided to weight the list toward a few factors. First, if the game is part of a series, I decided I should generally like the whole series to include it here. I’ll mention my personal favorite game for each item, but in general, this is a “favorite franchise” list as much as it is a favorite game list. Second, the game or franchise should be one I’ve gone back to multiple times throughout my life, rather than being just something I loved when I was young. Nostalgia will play a part in the list, but I want it to be more than just “teenage Brandon’s greatest hits.” Finally, I’m eliminating games I or my friends made—so no Infinity Blade, for example. I should also note to some of my younger readers that some of these may not be appropriate for all ages. There are a couple that even I played with a few mods to tone down some of the graphic content. (I really don’t need to see that many head explosions, Fallout. Really, I’m good.)

Jul 7, 2020
Read more from nemo
Published on HackMD