Road to Statistics

FOCA: Deeper Mining of Particular File Types

Published on February 21, 2010 in Information Security. 0 Comments Tags: CSRF, FOCA, Google Hacking, information security, Meta.

FOCA (Fingerprinting Organizations with Collected Archives), is a free tool by informatica64 of Spain, which is intended for extracting and analyzing the hidden info of some particular file types. DEFCON 17 released a descriptive presentation called Tactical Fingerprinting using metadata, hidden info and lost data using FOCA. Audio, Slides, White Paper Here.

Some related tools, such as Libextractor/Metagoofil/OOMetaExtractor, were also referred in the slides, with solutions and useful defending tips discussed.

Functions

Search for documents in Google and Bing
Automatic file downloading
Capable of extracting Metadata, hidden info and lost data
Cluster information
Analyzes the info to fingerprint the network.

Target File Types

*.doc, *.docx, *.ppt, *.pptx, *.pps, *.ppsx, *.xls, *.xlsx, *.odp, *.odt, *.ods, *.odg, *.pdf, *.wpd, *.sxw, etc.

What FOCA extract

Metadata: Information stored to give information about the document. (Creator, Organization, etc.)
Hidden information: Information internally stored by programs and not editable. (Template paths, Printers, database structure, etc.)
Lost data: Information which is in documents due to human mistakes or negligence, because it was not intended to be there. (Links to internal servers, data hidden by format, etc.)

Continue reading ‘FOCA: Deeper Mining of Particular File Types’

Faraway Town

Published on February 21, 2010 in Pics&Movies. 0 Comments Tags: faraway, peace, Spring Festival, town.

A very small town near Qiqihar, North China. Where I spent my spring festival in (surely and unfortunately, without Internet). Some heavy industries there but, very peaceful and quiet.

Continue reading ‘Faraway Town’

In god we trust, or in love?

Published on February 9, 2010 in Mathematics. 0 Comments Tags: 3D, Cardioid, heart, love, MATLAB, Visualization.

You don’t have to believe in God, but you should believe in The Book.

——P. Erdos

The first half of title is contained in The Holy Bible; the latter part is related to this article. The great mathematician P.Erdos didn’t believe in god much; however, he believed there exists The Book, which may include the most concise, beautiful and elegant proofs for all the mathematical theorems. What’s more, his highest praise for a proof is:

It is from The Book!

So, I guess love has its own mathematical formulation. I plotted it with MatLab.

Original equation:

MatLab source code:

^?View Code SCILAB

[x,y,z]=meshgrid(linspace(-3,3,120));
f=(x.^2+(9*y.^2)./4+z.^2-1).^3-((9*y.^2).*(z.^3))./80-(x.^2).*(z.^3);
p=patch(isosurface(x,y,z,f,0));
set(p, 'FaceColor', 'r', 'EdgeColor', 'n');
daspect([1 1 1]);view(3);camlight('right');lighting phong

Even though some great people like P.Erdos have passed away, their thought will last eternally.

Spring Festival Eve

Snowing Night, Harbin