Initial post commit i have also added more short codes

.gitignore

@@ -1,4 +1,8 @@
+.hugo_build.lock 
+.DS_Store
+.vscode/
+content/.DS_Store
+content/blog/.DS_Store
 public
 resources
-.hugo_build.lock
-.DS_Store
+serve.sh

README.md

@@ -42,6 +42,21 @@ We have a few shortcodes that you can use:
 * `title` - This is the title and alt text used for the image.
 * `width` - The maximum dimensions of the image, this can be used in a few ways, either defining just the width (`400`), defining scaling to a width `400x`, or a specific width and height (`400x600`). Ideally try to use `400x` to keep image scaling working as expected.
 
+#### side by images
+
+The side-by-side-2-colds short code will put the images in the blog next to each other
+
+the markdown works is as follows
+
+```markdown
+{{< side-by-side-2-cols 
+    "image1" "alt-text-1"
+    "image2" "alt-text-1"
+>}}
+```
+
+this will present 2 images the same size side by side
+
 #### `gallery`
 
 `gallery` surrounds a group of image tags and makes a rotating gallery of the images:

content/blog/2024/defcon-badge-hack-part-one/index.md

@@ -0,0 +1,261 @@
+---
+title: "Covert Swarm Badge Hack"
+subtitle: "John Dips his toes into the world of hardware hacking with the covert swarm Defcon badge - Part One"
+date: 2024-12-31T10:10:10Z
+tags:
+    - defcon
+    - badgelife
+    - hardware-hacking
+    - hacking
+    - electronics
+    - covertswarm
+    - soldering
+    - hackspace
+    - makerspace
+draft: false
+author: John Williams
+author_email: ponix@protonmail.com
+listing_image: images/badge-front.jpeg
+---
+
+## A Little bit about me
+
+I have always loved puzzles since I was little. From my first jigsaw to the CTF challenges on [Hack The Box](https://app.hackthebox.com/login?redirect=%2Fhome) and [Try Hack Me](https://tryhackme.com/).
+So when I saw the puzzles that were built into some of the badges from [#Defcon](https://defcon.org/) 
+and from the [#BadgeLife](https://www.reddit.com/r/badgelife/) community.
+
+I Knew I wanted to get my hands on one so now that I finally managed to get hold of an electronic badge, so I'm super excited to get stuck in trying to find and solve the challenges that are embedded within.
+
+I will attempt to give a rundown of the steps it have taken to find/solve the puzzle(s) and my thought processes behind them.
+
+### Whats on the badge
+
+First things First lets look at the badge and see what we are working with
+
+Below are some images of the badge and whats on it
+
+{{< side-by-side-2-cols 
+    "images/badge-front.jpeg" "Front of the badge"
+    "images/badge-back.jpeg" "Back of the badge"
+>}}
+
+On the front of the badge there is a silkscreen of the CovertSwarm logo with the words "YOU DESERVE TO BE HACKED" in the middle.
+
+There are also 8 Neo-Pixel RGB LEDs in the sides of the 'arrows' of the Covertswarm logo with a couple of capacitors and resistors when the badge is turned on these LEDs are orange, 6 pushable buttons labeled F, G, A on the top left side and D, C, B on the bottom right.
+
+On the bottom left side there is a 23A2XSM Chip and on the top right there is a space for an S.A.O port
+
+There is an Arduino nano in the center and an 23A2XSM chip to the left of it.
+
+Underneath the Arduino there is a piezo speaker and to the right of that there are 8 LEDs with what looks to be a corresponding set of pads for each LED.
+
+----
+
+#### Other areas of interest
+
+Underneath the Arduino there is a 'hidden' message that states "Nothing To See here! Go away!"
+
+There is something under the Battery pack but its not quite visible with the battery pack on.
+
+lets get the iron out and get it off :D
+
+{{< side-by-side-2-cols
+    "images/under-the-batteries.jpeg" "Under the battery pack"
+    "images/under-the-hood.jpeg" "Under the battery pack"
+>}}
+
+Printed under the battery pack there is the phrase "TH3FUZZYLLAMA" that might come in handy later.
+
+Also I have found that bridging the pads next to the LEDs on the back of the badge causes them to light up im not sure if this has any other function at this stage.
+
+#### Connecting to the Arduino Nano
+
+The First thing I did after connecting the arduino to my pc was to dump the firmware and create a back up of the "clean" firmware just incase I kill the arduino I can always flash another.
+
+A backup can be found [here](backup-files/firmware.zip)
+
+Using the Serial monitor on the Arduino IDE configured with the baud rate of `115200` we get the following output
+
+{{< padded-center-image 
+    "images/dashboard-image.jpeg" "initial-dashboard-image"
+>}}
+
+On the printout there is line that says `Reading Device configuration` followed by an array of eight 0s `[00000000]`.
+
+Then a message saying:
+
+```text
+[ Welcome To CSCMOD Dashboard ] Your module is not cofigured to access any other functionality. 
+```
+
+This suggests that there may be alternate functions on the Device.
+
+----
+
+#### Commands Available
+
+{{< padded-center-image
+    "images/help-me.jpeg" "Help"
+>}}
+
+From this we can see that there are 4 options and explinations for what they do.
+
+from the `submit <flag>` we know there is something we need to find and submit as a flag.
+
+and `status` shows the status of flags that we have submitted in in our case `0`
+
+{{< padded-center-image
+    "images/0-flags.png" "No Flags"
+>}}
+
+and finally log
+
+{{< padded-center-image
+    "images/log-0.png" "Log entry 0"
+>}}
+
+If want to you can read the full log#0 [Here](txt-files/log-0.txt)
+
+----
+
+#### Cracking the combination
+
+on the underside of the badge there is an array or 8 LEDs and a set of corresponding unpopulated pads to the right of them.
+
+Using a multimeter to check what these pads could be used for it looks like there is a common 5 volt rail on the ouside that once connected to the other side lights up the LED.
+
+By bridging all the connections on unpopulated spaces on the back this has changed the array of `0's` to `1's` in the boot up section, This would suggest that the different configuration on the device is accessed by using a combination these connections.
+
+{{< padded-center-image
+    "images/8-bits-are-enough.jpeg" "all 8 leds bridged"
+>}}
+
+Based on the the range of possible bits from [00000000] to [11111111] is 256 possible combinations.
+
+{{< side-by-side-2-cols
+    "images/half-way-over-the-bridge.jpeg" "half way over the bridge" "images/8-bits-light-up.jpeg" "Many LEDS"
+>}}
+
+Rather that solder and un-solder a bridge every single time I want to check if this has applied any configuration changes I attached a small 8 switch DIP selector. unfortunaltly during this soldering of the wires to the dip selector I knocked one of the LED off the board.
+
+{{< side-by-side-2-cols
+    "images/8-switch-dips.jpg" "dip selector"
+    "images/switches-over-bridges.jpeg" "switches over bridges"
+>}}
+
+Success !
+
+Brute forcing the combination this way will take ages if we use some quick napkin maths.
+
+There are 256 combinations and on average it is going to take 5 mins to change the combination, reset the device and then check the serial monitor output.
+
+```text
+256 * 6 = 2048 mins
+Thats just over 34 straight hours!
+
+```
+
+Thats assuming there are no mistakes and I don't forget which combinations I have already tried.
+
+This wont do. I should be able to automate this using a Raspberry Pi Pico and some basic circuit components.
+
+----
+
+#### Logic is the Key
+
+I don't know much about electronics so doing after doing some research it looks like its possible to Achieve my goal by using PNP transistors or perhaps using some relays,
+
+A brief overview of what the relays are doing in the circuit below. I have written some code that will count from 0 to 256 and by using some of the GPIO pins on the Pico to act as The 8 bits once the value of the bit is reached then the pin is set high and the reset signal is sent to the pin on the ICSP port on the Arduino Nano that is attached to the badge and then using the TX pin on the same header to read the output from the serial console.
+
+The Repository for this code is located [here](https://github.com/ponix4k/cs_badge_decode)
+
+----
+
+#### Casualties
+
+It is worth noting that there _IS_ a difference in the voltages from the Arduino Nano (5v) and the Pico (3.3v) and trying to read the serial monitor from the TX bin and killed this pin on the Device. looks like the another casualty of this experiment.
+
+{{< side-by-side-2-cols
+    "images/rip-pico.jpeg" "RIP Pico"
+    "images/casualty-led.jpeg" "Missing LED"
+>}}
+
+----
+
+#### Timing is important
+
+Using the Relay Circuit takes about 15 seconds rather than 5 mins . Again some quick napkin maths to work out the time difference.
+
+```text
+10 * 256 = 2560 Seconds
+2560 / 60 / 60 = 42 mins
+```
+
+This is much faster !
+
+Once the code was working to switch the relays on and off i wrote a few test functions to check the connections are stable to each of the pins.
+
+then set it going on its journey from 0 - 255
+
+I couldnt get the 9th relay to successfully reboot the badge nano but luckily there is a button on the top of the nano to reset it.
+
+So I waited 5 seconds after the LEDs changed to reset it and watch the console output update the dashboard.
+
+I set the output of the serial monitor to goto file and then scrolled through it for the changes in the messages.
+
+There were two combinations that gave different messages on the dashboard that allowed the user access to other functionality.
+
+```text
+BOOT started #CSCMOD A328P v1.1
+Spaceship connection...OK
+EM Reactive Nanocells status...OK
+Reading device configuration...OK [10101001]
+Spaceship Oxigen level...OK
+Location...Unknown
+
+[ Logs & HQ Directives Downloader ]
+A secure delivery method and storage for spaceship logs, HQ directives and new orders.
+
+CS2023{H4rDc0d3d_c0
+insert password > 
+```
+
+----
+
+```text
+BOOT started #CSCMOD A328P v1.1
+Spaceship connection...OK
+EM Reactive Nanocells status...OK
+Reading device configuration...OK [00100111]
+Spaceship Oxigen level...OK
+Location...Unknown
+
+[ Secure Messagging Channel ]
+Do not trust the void, always encrypt your messages.
+
+nF1gUR4t10n!}
+
+Loading...
+type HELP for commands:
+```
+
+At the end of each one of these boot messages are the two parts of the first flag `CS2023{H4rDc0d3d_c0nF1gUR4t10n!}`
+
+Entering this into the flag section of the menu changed the LEDs on the from from Orange to Pink.
+
+{{< padded-center-image
+    "images/pink-badge.jpeg" "New Color LEDs"
+>}}
+
+Now that i know both of the combinations i can use this to create a 2 bit ROM where the user will beable to switch between the two modes to access the other challenges.
+
+After some initial teething issues and consulting some freinds that have had things fabbed before I was able to get some prototype boards created and sent over.
+
+{{< side-by-side-2-cols 
+    "images/circuit-schema.png" "Circuit Layout"
+    "images/3d-image.png" "Finished board"
+>}}
+
+This Design was a bit bigger than Would have liked but it is just a proto type i will refactor this to make it small enough to fit on one of the sides of the badge.
+
+Thanks for coming to my ted talk ! I cant wait to start chapter 2 of this for the second challenge

content/blog/2024/defcon-badge-hack-part-one/txt-files/code1.txt

@@ -0,0 +1,12 @@
+BOOT started #CSCMOD A328P v1.1
+Spaceship connection...OK
+EM Reactive Nanocells status...OK
+Reading device configuration...OK [10101001]
+Spaceship Oxigen level...OK
+Location...Unknown
+
+[ Logs & HQ Directives Downloader ]
+A secure delivery method and storage for spaceship logs, HQ directives and new orders.
+
+CS2023{H4rDc0d3d_c0
+insert password > 

content/blog/2024/defcon-badge-hack-part-one/txt-files/code2.txt

@@ -0,0 +1,14 @@
+BOOT started #CSCMOD A328P v1.1
+Spaceship connection...OK
+EM Reactive Nanocells status...OK
+Reading device configuration...OK [00100111]
+Spaceship Oxigen level...OK
+Location...Unknown
+
+[ Secure Messagging Channel ]
+Do not trust the void, always encrypt your messages.
+
+nF1gUR4t10n!}
+
+Loading...
+type HELP for commands:

content/blog/2024/defcon-badge-hack-part-one/txt-files/log-0.txt

@@ -0,0 +1,33 @@
+
+--- THE ADVENTURE BEGINS--- 
+[Space Lo<4C><6F><EFBFBD> - Log Date - 08102023]
+[TRA<52><41><EFBFBD>ITTING]
+[Inc<6E><63><EFBFBD> Cross Link Message from Buke:]
+
+
+Slanders, I h<><68><EFBFBD>n you read this?
+
+  IT WORKED! AM DOING THE JUMP RN! You cannot belive what I see
+
+
+......
+ ..䕕.[WARNING LOW LINK SIGNAL - REESTABLISHING TRANSMISSION]...
+....
+
+^..隆袈
+ving this might actually help me, well us.
+I’m <20><><EFBFBD> in here. 
+
+Fix the ....ceship comm module to make the ship working again and escape from this nightmare ...... again. Not everything is linked up, start by gaining access to all controls...Slanders!! we are lo<6C><6F><EFBFBD>ng the connect葵....[WARNING].葧ሴ...
+[SIGNAL LOST]
+
+  
+<EOF>
+
+- No No No No!!, Damn It!....... Great. Looks like going through the wormhole corrupted the communication module's settings. SHIT! We knew this could've happened during jumps but that's why we had added EM reactive nano-cells on the module surface!!.
+
+ Now I'm alone in space 2.537 million lightyears away. I must fix this...somehow..
+
+> 
+OK
+> 

serve.sh

@@ -0,0 +1,2 @@
+#!/bin/sh
+hugo serve -D --gc -w --bind 0.0.0.0 -F

themes/lhs-retro/layouts/shortcodes/block_separator.html

@@ -0,0 +1,9 @@
+{{ $blocks := split .Inner "<!-- block_separator -->" }}
+{{ range $index, $block := $blocks }}
+    <div class="block">
+        {{ $block | markdownify | safeHTML }}
+    </div>
+    {{ if ne (add $index 1) (len $blocks) }}
+        <hr class="separator" />
+    {{ end }}
+{{ end }}

themes/lhs/assets/sass/bulma/helpers/float.sass

@@ -7,4 +7,4 @@
   float: left !important
 
 .is-pulled-right
-  float: right !important
+  float: right !important

themes/lhs/assets/sass/leighhack.scss

@@ -384,4 +384,97 @@ background-image: linear-gradient(red, orange);
 	border-radius: 5px;;
 	padding: 2rem 0;
 	margin-bottom: 2rem;
+.center-image {
+		margin-left: 45%;
+	}
+}
+.center-block-90 {
+	width: auto;
+	margin: 0 2.5%;
+	padding: 10px;
+	word-wrap: break-word;
+}
+
+.center-block-80 {
+	margin: 0 10%;
+	padding: 0 5px;
+}
+
+.highlighted {
+	outline: 1px solid red;
+}
+
+// Custom image CSS added by john
+figure {
+    margin: 0;
+    text-align: center;
+}
+
+figcaption {
+    font-size: 0.9rem;
+    color: #666;
+    margin-top: 5px;
+}
+
+.side-by-side-2-cols {
+    display: flex;
+    gap: 15px;
+	margin-bottom: 20px;
+}
+
+.side-by-side-2-cols figure {
+    flex: 1;
+}
+
+.side-by-side-2-cols img {
+    width: 50%;
+	height: auto;
+	border-radius: 10px;
+}
+
+.side-by-side-3-cols {
+    display: flex;
+    gap: 10px;
+	padding: 10px;
+}
+
+.side-by-side-3-cols img {
+    width: 33%;
+}
+
+.padded-center-image img {
+    display: block;
+    margin: 10px auto;
+	width: 90%;
+	border-radius: 15px;
+}
+
+.image-left, .image-right {
+    display: flex;
+    align-items: center;
+    gap: 10px;
+}
+
+.image-left img, .image-right img {
+    width: 40%;
+}
+
+.image-left .text, .image-right .text {
+    flex: 1;
+}
+
+.image-right {
+    flex-direction: row-reverse;
+}
+
+/* Mobile-specific styles */
+@media (max-width: 768px) {
+    .side-by-side, .image-left, .image-right {
+        flex-direction: column;
+        text-align: center;
+    }
+    .side-by-side img, .image-left img, .image-right img {
+        width: 100%;
+        padding: 10px;
+	}
 }

themes/lhs/layouts/shortcodes/block_separator.html

@@ -0,0 +1,9 @@
+{{ $blocks := split .Inner "<!-- block_separator -->" }}
+{{ range $index, $block := $blocks }}
+    <div class="block">
+        {{ $block | markdownify | safeHTML }}
+    </div>
+    {{ if ne (add $index 1) (len $blocks) }}
+        <hr class="separator" />
+    {{ end }}
+{{ end }}

themes/lhs/layouts/shortcodes/center-block-90.html

@@ -0,0 +1,3 @@
+<div class="center-block-90">
+    {{ .Inner | .Page.RenderString  }}
+</div>

themes/lhs/layouts/shortcodes/image-left.html

@@ -0,0 +1,4 @@
+<div class="image-left">
+    <img src="{{ .Get "src" }}" alt="{{ .Get "alt" }}">
+    <div>{{ .Inner }}</div>
+</div>

themes/lhs/layouts/shortcodes/image-right.html

@@ -0,0 +1,4 @@
+<div class="image-right">
+    <div>{{ .Inner }}</div>
+    <img src="{{ .Get "src" }}" alt="{{ .Get "alt" }}">
+</div>

themes/lhs/layouts/shortcodes/image2.html

@@ -0,0 +1,22 @@
+{{ $img := .Page.Resources.GetMatch (printf "*%s*" (.Get "src")) }}
+{{ $width := .Get "width" }}
+{{ $img = $img.Resize (print (default "1264x" $width) " webp") }}
+{{ $title := .Get "title" }}
+{{ $class := .Get "class" }}
+{{- with .Parent -}}
+<div>
+{{ end }}
+<figure class="image{{ if $class }} {{ $class }}{{ end }}">
+  <img src="{{ $img.RelPermalink }}" width="{{ $img.Width }}" height="{{ $img.Height }}" {{ if $title }}
+    alt="{{ $title }}" {{ end }}>
+  {{ if $title }}
+  <figcaption class="is-size-6">
+    <small>
+      {{ $title }}
+    </small>
+  </figcaption>
+  {{ end }}
+</figure>
+{{- with .Parent -}}
+</div>
+{{ end }}

themes/lhs/layouts/shortcodes/padded-center-image.html

@@ -0,0 +1,3 @@
+<div class="padded-center-image">
+    <img src="{{ .Get 0 }}" alt="{{ .Get 1 }}" />
+</div>

themes/lhs/layouts/shortcodes/side-by-side-2-cols.html

@@ -0,0 +1,4 @@
+<div class="side-by-side-2-cols">
+    <img src="{{ .Get 0 }}" alt="{{ .Get 1 }}" />
+    <img src="{{ .Get 2 }}" alt="{{ .Get 3 }}" />
+</div>

themes/lhs/layouts/shortcodes/side-by-side-3-cols.html

@@ -0,0 +1,5 @@
+<div class="side-by-side-3-cols">
+    <img src="{{ .Get "src1" }}" alt="{{ .Get "alt1" }}">
+    <img src="{{ .Get "src2" }}" alt="{{ .Get "alt2" }}">
+    <img src="{{ .Get "src3" }}" alt="{{ .Get "alt3" }}">
+</div>