Menu
?retcarahc "rorrim" edocinu eht htiw detaicossa ytilibarenluv fo tros emos ereht sI
?ksir yna ereht erA ?rof ti si tahW
775
Inserting Unicode characters To insert a Unicode character, type the character code, press ALT, and then press X. For example, to type a dollar symbol ($), type 0024, press ALT, and then press X. For more Unicode character codes, see Unicode character code charts by script.
A mirror character is essentially on your main character's side. Although he may push the hero, argue with him, irritate him – he is not the antagonist. He is there to show your hero who he really is.
Unicode covers all the characters for all the writing systems of the world, modern and ancient. It also includes technical symbols, punctuations, and many other characters used in writing text.
Unicode is the universal character encoding used to process, store and facilitate the interchange of text data in any language while ASCII is used for the representation of text such as symbols, letters, digits, etc. in computers. ASCII : It is a character encoding standard for electronic communication.
We've talked about attacks using the RLO (U+202E RIGHT TO LEFT OVERRIDE) character in the past, which shifts the 'visual' display of a string from the position it's placed inside that string. So for example:
document[U+202E]fdp.exe visually looks like documentexe.pdf
I talked about these and other attacks of this sort here http://www.casaba.com/products/UCAPI/. In fact we're starting to hear of real world attacks using these techniques to bypass spam and other filters. Firefox closed a bug in their file download dialog box.
I see a big difference between attacks leveraging BIDI text and the playful sort of 'mirror' effects you get from tools like http://txtn.us/mirror-words-flip-text-reverse-words-upside-down-words-and-text.
!luʇmɿɒʜ ƨɒ mɘɘƨ ƚ'nƨɘob ƚxɘƚ bɘɿoɿɿim ɘʜƚ
62
Well, you can abuse it for pishing attacks. Take this URL for example:
http://www.example.com?site/moc.elgoog.www//:ptth It looks like if you click it it will take you to google.com, where in reality it will take you to example.com. Not all browsers support it, though.
22
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
