Nick Roy
@superducktoes.bsky.social
š¤ 31
š„ 19
š 7
nkinternet.wordpress.com
part 2 of digging into north koreas vpn
loading . . .
Hangro: Investigating North Korean VPN Infrastructure PartĀ 2
If you havenāt seen part 1, it provides an overview of the service as well as the domains and IPs supporting the infrastructure. Continuing my analysis of the Hangro VPN IPs and service I started querying the IPs directly as well as started taking some first steps towards reversing an older sample of the Hangro VPN client. Using OpenSSL as well as a few other tools provided some additional details on how the VPN functions.
https://nkinternet.wordpress.com/2025/07/16/hangro-investigating-north-korean-vpn-infrastructure-part-2/
4 months ago
1
0
0
North Korea Offline With Invalid Routes forĀ AS131279 On March 18, 2025, at around 9:38 AM UTC, connectivity to AS131279 dropped. Shortly after, at 9:50 AM UTC, a change in the Start of Authority (SOA) record and an update to the Route Origin Authorization (ROA) were detected. The update introducedā¦
loading . . .
North Korea Offline With Invalid Routes forĀ AS131279
On March 18, 2025, at around 9:38 AM UTC, connectivity to AS131279 dropped. Shortly after, at 9:50 AM UTC, a change in the Start of Authority (SOA) record and an update to the Route Origin Authorization (ROA) were detected. The update introduced a new ROA for 175.45.176.0/22, authorizing AS131279 as the origin but setting a maximum prefix length of /22. Previously, AS131279 had been announcing four /24s (175.45.176.0/24, 175.45.177.0/24, etc.), which had not been marked as invalid.
https://nkinternet.wordpress.com/2025/03/18/north-korea-offline-with-invalid-routes-for-as131279/
8 months ago
0
0
0
North Korea whois records hijacked?
loading . . .
North Korea whois records hijacked?
https://nkinternet.wordpress.com/2025/02/23/north-korea-whois-records-hijacked/
9 months ago
0
0
0
Someone having a bad day in North Korea. Whois records just changed
9 months ago
0
0
0
Hangro: Investigating North Korean VPN Infrastructure PartĀ 1 In a post from a now-deleted user on the webdev subreddit, someone asked about how to acquire a .kp TLD. While there were a few decent responses, the original poster shared an update: they successfully obtained a domain but noted that aā¦
loading . . .
Hangro: Investigating North Korean VPN Infrastructure PartĀ 1
In a post from a now-deleted user on the webdev subreddit, someone asked about how to acquire a .kp TLD. While there were a few decent responses, the original poster shared an update: they successfully obtained a domain but noted that a VPN is required to access the website. This raised intriguing questions about VPN usage in North Korea. While several VPN providers claim to operate from North Korea, most merely offer false IP geolocation.
https://nkinternet.wordpress.com/2025/01/06/hangro-north-korean-vpn-infrastructure/
11 months ago
0
2
0
you reached the end!!
feeds!
log in