https://www.youtube.com/user/struc001/videos?view=0&sort=dd&shelf_id=0

Some short videos around North Korea

Looks like cooks.org.kp is broken. Seeing a lot of references to 192.168.245.3

Been finding some posts on different sites for Dandong Chunkyung Trading  offering access to manufacturing in North Korea. I’m still digging into it some more. They’re older posts but it’s interesting that it’s an msn email address for the contact

http://www.baekdunet.com/bbs/board.php?bo_table=n3_4&wr_id=417

http://zosenzo.com/public/info.php?id=4811

https://life.moyiza.kr/?mid=bizinfo&document_srl=1763734&page=412

https://114.moyiza.com/290848/단동춘경무역

Trying to track down a new piece of software from KCC. Found this link this morning, never seen anything else posted about Wipe File before: https://www.advanceduninstaller.com/Wipe-File-v1_00-4e084c4d308aef8863e95add2824618c-application.htm

At this point it’s well known that North Korea offers cheaper outsourcing. Digging through Linkedin I found two profiles of people claiming to be part of the KCC in India which is interesting. Up until this point I hadn’t seen anything suggesting that they were operating there.

Digging into Red Star server more, looks like another way you can really break things. No idea where to even start looking to see what happened here. I’m open to suggestions…

Found a xss vulnerability in the rssmon software that allows you to steal session information

Found this to be pretty interesting: https://translate.google.com/translate?sl=auto&tl=en&u=https%3A%2F%2Flektsii.com%2F3-50937.html

Looks like a Russian website for posting resumes. Found one for Pyongyang Gwanmen Information Technology Corporation. The one thing to note is the reverse engineering skill where they specifically mention a vaccine program.

There’s been a lot written about the desktop version of Red Star OS but not much on the server version. I finally have been able to get full root access on the VM. One of the interesting things is that there is a program for managing SELinux. Although you do login as root you don’t have full access to everything. Finally have full access and able to dig in more and see what I can find.

Video can be found here: https://www.facebook.com/Mikareport/videos/1101522316553215/