..and perhaps at some stage they will suddenly become a bit more serious and mention that ‘but Matrix did show NMAP<\/a> in action’.<\/p>\n Luckily, there are actually movies out there that beat all the above mentioned productions in terms of technical accuracy, and show a relatively realistic representation of\u00a0 IT security work.<\/p>\n This post is about one of them.<\/p>\n A while ago I happened to stumble upon a Korean TV Drama called “Phantom<\/a>” (also know as “Ghost<\/a>“) that made my jaws drop. The drama was produced by a Korean Network SBS<\/a>.<\/p>\n The plot of the drama is simple – The Hades<\/a> haz you \ud83d\ude42<\/p>\n Copyright notice: The picture of Hades logo was taken from the clip on Youtube. The copyright belongs to SBS.<\/span><\/p>\n Okay, the plot<\/a> is a bit more complicated – it’s a “Face off” meet “Jason Bourne” meet CSI.<\/p>\n Or<\/p>\n Evil Hackers from Korea and Hong Kong vs. Forensic guys from Korean Police.<\/p>\n Since it’s not IMDB, just a short note on the movie – I have already described bits of the plot; I don’t want to spoil it so I won’t add more information here. The music is all right. The acting is so so (the lead characters are a little bit too stiff and rarely smile). There are gaps in the story as well, but it’s a TV Drama after all, and it’s Korean so there is lots of melodrama ‘by default’. There is also a very strong product placement, but if this the only way to get funds to make TV dramas then so be it.<\/p>\n Okay, back to ‘technical’ stuff.<\/p>\n What makes this particular TV Drama stand out is the attention to details. While they didn’t completely escape typical Hollywood\u00a0clich\u00e9 (computers with the evidence are thrown out of the window, logic bombs with a progress bar, etc.) the makers really did their homework and put quite an effort to demonstrate how a typical hacking works. And how forensic guys investigate it.<\/p>\n Lots of scenes are taken in the forensic lab, or on the crime scene – in internet coffee shops, data centers, etc.. We also witness the actual data acquisition, evidence analysis (HDD, mobile, CCTV footage, video manipulation analysis, social media, Event Logs) and most importantly – lots of popular DFIR\/RCE software is used to ‘understand’ the data and code. This is really not just a single random tool or a hand made HTML page that is supposed to look like ‘analysis results’. Quite the opposite – many of the most common tools from the DFIR\/RCE\/pentesting arsenal somehow found its way to the drama.<\/p>\n The software I remember seeing includes:<\/p>\n and lots more (I wish I took notes!).<\/p>\n Last, but not least – there are also realistic attacks being used as a part of the plot including, but not limited to:<\/p>\n and lo and behold – even STUXNET is mentioned!<\/p>\n Thumbs up South Korea!!!<\/p>\n","protected":false},"excerpt":{"rendered":" The way the movies portray hacking, forensics, security research and coding is obviously metaphoric and usually made as visually rich as possible to ensure the audience ‘gets it’ and as a bonus can see how cool the process is. Anyone … Continue reading ![\"hades\"](\"https:\/\/www.hexacorn.com\/blog\/wp-content\/uploads\/2013\/05\/hades.png\")
<\/a><\/p>\n\n
\n