Friday, November 16, 2012

How to check if picture photoshopped real or fake?


So I came across 4 pictures that look like they have "ghosts" in them, immediately I want to find out if they are photoshopped or edited in anyway, shape or form.

Original pictures I was given, told they are "unedited" and "right from the camera"






First step: check the metadata.
Looking at the above pictures (download original) you can see that the sizes are extremly small. Which is first suspicious part since most modern cameras have at least 1mb in size. But overlooking this data we can open the properties of the file:
A place where you would have information about which type of camera took this pictures, but sure there's some that might exclude this information.

Second step: find tools to analyse the photo.
First tool I found was web based online tool at www.pskiller.com:
As you can see it indicates that color balance is adjusted and there is no make/model information.
But I want to be sure so I keep looking.

Second tool I found is called jpeg-snoop:
This is probably the best proof so far, there is clear indication that adobe has left a mark on this picture.

The third tool is called Error level analysis but was discontinued "After two years, this image forensics analysis service has been turned off." so I found a secondary site hosting this: 29a.ch/sandbox/2012/imageerrorlevelanalysis/:
I'll be honest, I really don't know much about how this part works so this is not very meaningful to me but hopefully with a little more knowledge (or some expertise) this tool is probably very useful.

Finally: use common sense.
After we analyse it's pretty clear that the pictures are not original photos from a camera of any type. I know that the best experts could fool us pretty easy but these guys were sloppy enough to leave us clues and evidence that this is not real.

Personally I never believed the supernatural but I like to think of myself as very open minded and if there's good proof out there I will reassess my beliefs.
I was critical as soon as I got word of these pictures but I carried out the investigation as it would be anything else and the proof is in the pudding.

------------
What do you think of these pictures? do you have any images you would like me to analyse?
Do you believe in supernatural entities (like poltergeist)?

Put your thoughts in the comments below.

Friday, August 24, 2012

escape single quote javascript sanitize clean encode

found here http://stackoverflow.com/questions/2195568/how-do-i-add-slashes-to-a-string-in-javascript after searching for the solution:
str = str.replace(/'/g, "\\'")

But I went ahead and improved the concept with a simple function:

function backslash(str){
var str = encodeURIComponent(str.replace(/'/g, "\\'"));
return str;
}

Named it backslash for simplicity but it actually will clean up # $ % ^ &() and anything else like single quote ' and doble quote (normally worked already)

Now you just plug this in where you need to clear up, i.e.:
var note = window.document.ordrfrm.note.value;
..."&note="+backslash(note);

or simpler
var note = backslash(window.document.ordrfrm.note.value);

Which ever will work even with getElementById and now it's easy to play with the note, user input taken like a champ nothing is screwed up when encounters strange characters (strange for javascript at least)!

hope it helps someone, if you like it or have questions post a comment.

thanks for visiting Edu Boris blog.

Monday, August 13, 2012

how to fix bad avi image or picture of video in windows movie maker

Great solution for windows xp (pro/home) windows movie maker if your trying to import avi divx (even xvid codec didn't seem to work)

from: http://www.moviecodec.com/solutions/movie-maker-codec-for-avi-41952/

1-open movie maker 
2-go to the tools > options menu. 
3-go to the compatibility at the above of window. 
4- at the filter box, check the "ffdshow mpeg-4 video decoder"

5- push “ok” bottom. 
6-import your .avi video and enjoy it. 


(if you do not have this option to check you can download this codec from “http://www.free-codecs.com/FFDShow_download.htm”)

worked great!

Tuesday, July 3, 2012

WEP wifi hack windows 7 comments user input discussion


Read the instructions here: http://eduboris.blogspot.com/2010/10/wep-wifi-hack-windows-7.html

unix_que at hotmai dot  com said...
after step 6 play button is still grayed out.. when i close the app i got a runtime error 216 at 00403FBA
eduboris said...
been a while since I done this but I think the error is normal, try it again. sometimes it took a few tries but your system might not work with the drivers provided which is an issue I had with one of my laptops
Ibni Kamil said...
here's my problem. i hope you can help me. iv tried a lot of program to crack a wifi password and non has suceded. why?. because the all use aircrack/airdump/all air shits imaginable.. the problem is that i cant get these 'air pragrams' to work. iv downloaded them of all versions and from 12 sites and still get the same prob. - once i click the program a cmd window comes out and just closes in a split second. try opening the program using cmd it self, it worked but u cant put any commands to continue the program. its not the problem with commonview for wifi of drivers because i have no prob using commonview. it captures packets like a net. but what can u do with the packes of data collected?. is there any way to crack it without using the "air shit" programs of can u provide me with a sollution on how to make these air programs to work... im using windows 7 64bit. if anyone wants to say its about compatibility, well iv changed it to all of the privious windws ver. and still the problem is there..plz help.
theborisedu said...
@Ibni Kamil Yes once you capture the packets you can crack it. you need a lot of them (took me 20 hours of capture) but yours could take less... read the post or view the video to see how to do this.
Anonymous said...
hi!!here is my problem from the start i dl the zip file from megaupload and after the instalation of setup.exe i went to copy paste the crack but the file is empty!can anyone sent the crack?
eduboris said...
hmm maybe your anti virus removed it?
try the alternative download maybe?
let us know how it goes
Anonymous said...
I choose .cap and then when try launch aircrack-ng GUI and it says access denied. can i know why?
eduboris  said...
hmm I am not sure it either folder or file permissions screwed up? maybe someone else can help
Rough said...
I have the same Atheros AR9285 Wireless Network Adapter as you do, but I can't find drivers for it in the NewDrivers folder// Why? Is there some trick?
theborisedu said...
if you don't see the files it might be some system file settings or something but you should be able to install using the instructions.
Rough said...
I see drivers but when I try to install them I have a message:
Windows found driver software for your device but encountered an error while attempting to install it. ((

Another message:
Windows has determined the driver software for your device is up to date.
Did someone have such a problem?
eduboris  said...
@Rough I would suggest to try using the browse and not type in the path when you do the "Search for drivers" as I noticed there's a strange issue there and maybe this is what you have been doing... let me know if this helps
Eddy Azlan Mohd Tajuddin said...
@theborisedu,
i get same problem with @rough. there is no error msg but play button still in gray mode. When i update the wifi driver its appear "Windows has determined the driver software for your device is up to date."

My adapter = Atheros AR9285 802.11b/g/n
Need help here....
Reza Hekmati said...
Hi
Thanks for your nice program and nice learning.
Actually my laptop wireless adapter is Intel WiFi Link 5100 AGN and i think that it is Incompatible.
Is the anyway that i can hack WEP keys?!
Thanks
theborisedu said...
@Reza Hekmati
Thanks, I'm not sure if there's other possible ways to hack WEP but you can try to use backtrack linux there's several tutorials online although I didn't master it to make one myself.

@Eddy Azlan Mohd Tajuddin
does your driver say [Commview] in square brackets like so?
If not maybe there was an issue installing the drivers as they are not compatible with all wifi cards... Sorry if couldn't help better
Kleine.G said...
stenymiHi,
thanks for great learning, you save me lot of time and trouble with my Win 7/64
zul said...
hye, i had already install it. but i dont understand the crack process. after step 7 just leave the software run for 4-20 hours?
how i can open the log. i didnt understand. is it we need to save the log or what
eduboris said...
@zul that's correct you leave it running, there's settings for auto-saving and you will need to find the directory where it auto-saves the logs, you can take those logs and convert, and finally crack them.
Let me know if you have questions
Anonymous said...
I choose .cap and then when try launch aircrack-ng GUI and it says access denied. can i know why?

i have the same problem. PLEASE HELP!!!!
Lee said...
Hi ,

Thanks..good stuff you have here ..

Get the commmview to run...export the file...but when i run the aircrack this message came out
Not sure what i did wrong ..am running winxp
"
Opening C:\Documents and Settings\user\Desktop\LEE\WEPhack\1.CAP
cygwin warning:
MS-DOS style path detected: C:\Documents and Settings\user\Desktop\LEE\WEPhack
\1.CAP
Preferred POSIX equivalent is: /1.CAP
CYGWIN environment variable option "nodosfilewarning" turns off this warning.
Consult the user's guide for more details about POSIX paths:
http://cygwin.com/cygwin-ug-net/using.html#using-pathnames
This file is not a regular 802.11 (wireless) capture.
Opening C:\Documents and Settings\user\Desktop\LEE\WEPhack\1.CAP
This file is not a regular 802.11 (wireless) capture.
Read 0 packets.

No networks found, exiting.


Quitting aircrack-ng...

C:\Documents and Settings\user\Desktop\LEE\WEPhack\aircrack>
eduboris  said...
@Lee These instructions are for windows 7 so not sure how XP works but I think it should be easier since commview is designed for XP (not for windows 7)
Lee said...
Hi,
Finally manage to crack the wep keys..
1. What i did i just use the evaluation version of the commview 6.3.

2. Most important is to get the driver working...this one i manually update the driver using the list of newdrivers in your package.

3. The aircrack gui works greats...thanks a lot.. manage to crack after collecting about 19000 iv from 1 ssid.( to get this i manually inject in the packet using commview at the rate of 1000 continuosly.

Would this aircrack crack the wpa keys as well?????

Thanks

Lee
eduboris  said...
@Lee thanks for the update! glad it worked out.

I haven't done any research on WPA but I heard you need something like 10GB of data to crack it (which is why it's considered so secure).

If you find any info I would love to hear it!

Thanks again :)
Anonymous said...
Hi please help. I have been trying to understand all these different programs and i think i have a little better understanding. I finally go to unstall and my anti virus removed the threat which i believe was the crack file!! It says try alternative download but I dont see a link for that?? I am ofcourse worried to stop the cracked file from being removed as i have heard horror stories of virus' with these downloads? Please help. Would be much appreciated. Thanx
eduboris  said...
The truth is anti virus will tell you it's a virus but they are really just trying to protect the software maker from losing profits, you can either use the crack and ignore the warnings or buy the software. the choice is up to you, if you think they deserve money by all means this would help them improve and develop future projects that's how they get paid as well
Anonymous said...
I cant even open commveiw!
Anonymous said...
A short tut

1. run ubuntu 11.10 on vm ware

2. open terminal

sudo apt-get update

3. go to software center and download

python
python-qt4
macchanger
aircrack-ng
xterm
subversion

4. open terminal

wget http://fern-wifi-cracker.googlecode.com/files/Fern-Wifi-Cracker_1.2_all.deb

5. after download complete use in terminal

sudo sh
su

dpkg -i Fern-Wifi-Cracker_1.2_all.deb

6. run the application in terminal after

sudo sh
su

sudo python /usr/local/bin/Fern-Wifi-Cracker/execute.py

7. update to latest version
8. reboot ubuntu
9. run the application in terminal after

sudo sh
su

sudo python /usr/local/bin/Fern-Wifi-Cracker/execute.py
Sarthak Dixit said...
m nt able to do anythng i hv tries many softwares bt didnt succeed please help me how to hack a network password
Alibek said...
HI! Can anybody explain? How do i know that a i have to stop capturing packets and start to use AirCrack?
eduboris  said...
if you read the instructions, the way I did it was to continue capture on the wireless laptop while every few hours copy the logs and crack on my desktop. that way I kept the collection going until finally got cracked. if you don't have two pcs and want to be on the safe side go with 24 or more hours and that way you will be sure you should have enough data.
Anonymous said...
i did evrything bt still the play button is gray
i have an atheros ar9285 adapter n it says commview in square brackets
Anonymous said...
thanks ,i could find wep key. so thankyou verymuch
eduboris said...
your welcome! glad it worked out. feel free to donate if you'd like
Anonymous said...
I am also using atheros 9285 like you. But windows cant find the drivers in the folder new drives.
drmuzmy said...
its nice...and working..thanks for a post
Anonymous said...
hi... i do ever step at a time, but when i try to turn the commview on, it doesn't start it says"sorry,this product version doesn't support windows vista.an new version woll be available soon after the official windows visa release."and am using windows7 :( please help me!
eduboris said...
you must have missed step number 3 in 'data gathering', reads:
"right click the file cv.exe and click properties, compatabilities and select windows xp sp3 and run as administrator"
Anonymous said...
i did what u told me to do.... but still the same error i have... please help me!! i really love this program and ill be so mad if i cant turn it on anymore...i still have the same error... :(
eduboris said...
I don't have much to go on to diagnose the problem... try to remove/uninstall and start the whole process again.

not sure how else to help
Anonymous said...
i did what u told me to do... but i still have the same error, i really need ur help, is there a new version or something, that may help...
please help me, :( , ill be so mad if i don't turn this program on again...
eduboris said...
there might be a new version as they were promising to work with windows 7 but I didn't do much research. looking at their website they might have a new version but looks pretty expensive....
logan perkins said...
ok so i went ahead and i tried to do this i get to about step five or six, whichever one has me update the driver, i went ahead and tried to update it however after i get the warning message (i accept it) and after that the grayed out portion of commview is still grayed out and i do not have any kind of connections availabel so i went ahead and rolled back to my current driver which is a

Atheros AR9285 802.11b/g/n WiFi Adapter

i do not have any kind of other wireless adapters that i actually have to plug into my computer, this one came with my computer, so i guess my question is will this version of driver work with the steps that you have shown us.

i noticed that you and i have similar drivers
(the differences being
mine is a
Atheros AR9285 802.11b/g/n WiFi Adapter
and yours (in your instructional video) is a
atheros AR9285 wireless network adapter

so will mine be able to support it and is there just something that i have done wrong is it the fact that i do not have a "wireless network adapter" and only have a "wifi adapter"

thanks and im sorry but i didnt have the time to go all through the comments looking for my exact driver.

the things that i get after running the updated "version" of commview driver is a notification of my computer possibly never working the same again. (which is normal because windows likes to scare people into believing that their product is the best)
however i cannot get after that, there is also a little yellow "attention looking sign" next to the driver known. and is also giving a "code 10" when i try to install the driver (after i install the driver it says that my computer can no longer use the wifi)

sorry this comment is so long i just wanted to give you the full problem statement so maybe it will help you more to help me get this straight :)

thank you
eduboris  said...
@logan perkins
doing a quick browser search for "AR9285" will show you that there seems to be a few comments on here that are also unable to install those drivers. To be honest I have no idea why that is or how to fix it, I guess sometimes it works and sometimes it doesn't. I didn't make any of this software I just tried to use it so I have no idea how to fix/maintain/support it.... sorry but thanks for visiting and commenting
logan perkins said...
ok so i went ahead and did some further research on my laptop last night after work about the problem i had been having before about the Atheros card? and i went directly to the commview site, they have a "evaluation"or 30 day free version and it worked perfectly fine with it and first thing i did after that was start builind packets, 6 hours later (with a bad wireless signal) and bam i am now connected to my wep which was locked :)

thanks for the cracks and this site, never would have been able to be able to do this without this blog :) google should publish you

thanks
logan perkins

also just a side note the evaluation one is called CV.6 and is about 15mb in download size then just use that cv.6 along with the aircrack-ng.GUI that we got from you. with a bit of reconfiguring its very easy
eduboris  said...
I added those newer drivers as well to the zip (left the name Driver as it was in the install folder) and updated instructions to look at both folders when updating. hope this works!

Thanks logan perkins!