Poking the Deep Web Part 1
Hello. This one is about the deep web. What is the deep web? I think most people reading this may already know what it is, but I will explain in case someone doesn’t. It is the 90% of the Internet that is not accessible by regular browsers including sites that you must be logged in to view and small subnets that require services like Tor to connect to. The part I am looking at it is visible to Tor, however, the deep web is much more than what is accessible by Tor. Since Tor keeps users anonymous on the deep web by jumping from server to server it is very slow. A way to speed up connections is to connect to a bridge, which I did. However, my connection was still really slow and I could only log into some sites, probably because some were taken down or because of networking problems. Anyways, I logged in on Tuesday night for the first time using Tor and Tor browser on Parrot OS Linux. I found many blogs and sites by open-source software organizations and universities about the value of privacy, forums for programmers and hackers, and many others. There are some sites that were listed on the hidden wiki that was obviously illegal, such as some labeled “hire a hitman”, “hire a hacker”, “buy fake ids”, and “buy drugs”, which I did not click on. If you plan on going on the Deep Web be careful where you click as some sites are given bizarre names that don’t explain what is on the site. I accidentally clicked on one of these and it lead to a horrible and illegal site that I wish I hadn’t seen. Anyways, I am only going to talk about sites that were interesting to me, none of which contain illegal material. There were 2 facebook clones that kept all of the users anonymous and a Reddit clone named “Dreaddit” that was completely anonymous. All three of those sites seemed dead and only had a few users on them so I left them to look for more interesting stuff.
One hypnotic site labelled “:3” was a bunch of spinning “:3” symbols/emojis:
Another labelled itself as a site for “crypto-anarchists”:
One was an ethical hacktivist site:
But the site that really caught my eye was labelled “Sophie says HIIIIIIIE!” Initially, this site scared me because it played eerie audio suddenly and it was 1 am at night. The hex on the site is
“Sophie welcomes you.
Patience is a virtue, especially in the Tor network.
So is Perseverance as there are decoys. Sophie loves making things difficult for others ;)
Let’s begin.
Good luck.” Then there is an image labelled XOR.png (what do I xor it with the binary?) that contains “Sophie will give you the other half…You don’t need to ask her even.” in its metadata
and then there is binary(which I haven’t cracked and is not ASCII) underneath: “10011111 10100111 10111110 10111101 11011111 11111101 11011111 11011010 11111111 10010100 11001110 11011110 11111111 11111110 11101100 10111100 11110001 10011100 11001111 11111110 10010000 11111110”.
Also in the source code of the page is a url at the bottom to a user on blackhatworld.com (presumably sophie or the site’s creator) but it can only be accessed with an account on the site.
Furthermore, when I checked to /server-status there was mention of another page queenkxfax3izzer.onion:80 containing a strange image (shown below) that decodes to the message “Wonderland”. Entering the code word into the box below the image takes you to a site labeled “Huh?” which is a dead end(I think?) containing an image of a cat and a queen.
Another site related to “Sophie says hi” is one labeled key.png which is simply an image of Napolean:
I searched everywhere I could for more information about this mysterious site and all I could find were a few Reddit posts. There are no solutions anywhere so I decided to make this post. From these Reddit posts, I found URLs to several other deep web puzzle sites, but I was only able to connect to two of them-one that contained a code and greeted you with “how deep can you go” and another with a painting and a bizarre encoded message(the creator of this site can be connected with on Reddit as he posted the link).
If you would like to help me with these challenges or just see the sites the URLs to them are in the screenshots. You can connect to them using Tor. Additionally, the website source, images, and audio files for the three puzzle sites (that I have collected so far, obviously there will be more on later levels) are here.
Future post topics(depending on readers’ interest):
- rambling about GNU, Privacy, Linux, and the Open Source/Free(not in price but in personal rights) Software Movement
- The rest of this site if I can solve the challenges
- Eisner nominee list came out recently so comic book review?
- What is my summer job
- Cybersecurity/hacking challenges-mainly reversing and binary exploits