Waraxe IT Security Portal
Login or Register
November 1, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 88
Members: 0
Total: 88
Full disclosure
xlibre Xnest security advisory & bugfix releases
APPLE-SA-10-29-2024-1 Safari 18.1
SEC Consult SA-20241030-0 :: Query Filter Injection in Ping Identity PingIDM (formerly known as ForgeRock Identity Management) (CVE-2024-23600)
SEC Consult SA-20241023-0 :: Authenticated Remote Code Execution in Multiple Xerox printers (CVE-2024-6333)
APPLE-SA-10-28-2024-8 visionOS 2.1
APPLE-SA-10-28-2024-7 tvOS 18.1
APPLE-SA-10-28-2024-6 watchOS 11.1
APPLE-SA-10-28-2024-5 macOS Ventura 13.7.1
APPLE-SA-10-28-2024-4 macOS Sonoma 14.7.1
APPLE-SA-10-28-2024-3 macOS Sequoia 15.1
APPLE-SA-10-28-2024-2 iOS 17.7.1 and iPadOS 17.7.1
APPLE-SA-10-28-2024-1 iOS 18.1 and iPadOS 18.1
Open Redirect / Reflected XSS - booked-schedulerv2.8.5
SEC Consult SA-20241024-0 :: Unauthenticated Path Traversal Vulnerability in Lawo AG - vsm LTC Time Sync (vTimeSync) (CVE-2024-6049)
[RESEARCH] DTLS 'ClientHello' Race Conditions in WebRTCImplementations
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PHP script decode requests -> Help with decoding
Post new topicReply to topic View previous topic :: View next topic
Help with decoding
PostPosted: Thu May 15, 2008 2:51 pm Reply with quote
lenny
Valuable expert
Valuable expert
Joined: May 15, 2008
Posts: 275




I have been staring at this piece of code for well over a week now, and i still cant figure out how to decode it.
So far i have only been able to decode the first "step" of code in the header... but the rest is a mystery...
My friend gave it to me, it *should* be for a type of subdomain redirection... or so he claims Wink
Anyway, all i need decoding is this header and i *think* that i can do the rest Smile

Code:
Removed - it screwed up the nice layout :)


Obviously that is just the header... the code shouldn't make too much sense when decoded because there is a chunk of encoded text beneath. By decoding the header i believe that i can decode the rest of the script.


So far i have managed to do this... but unfortunatley by renaming the variables i think i broke it Embarassed
Code:
Removed - it screwed up the nice layout :)



Anyway, all help is greatly appreciated!
Thanks,
lenny


Last edited by lenny on Thu May 22, 2008 5:10 pm; edited 1 time in total
View user's profile Send private message
PostPosted: Thu May 15, 2008 4:31 pm Reply with quote
waraxe
Site admin
Site admin
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




Post full source, then i can decode it.
And instead of "eval($todo);" use "echo $todo;".
Careless use of "eval()" can lead to disasters, be more paranoid Smile
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Thu May 15, 2008 5:26 pm Reply with quote
lenny
Valuable expert
Valuable expert
Joined: May 15, 2008
Posts: 275




Thanks for the quick reply Smile

Here is the full source:
Code:
Removed - it screwed up the nice layout :)


There is also this file which is associated with it.... (scroll right a bit to see it)
Code:
Removed - it screwed up the nice layout :)


Last edited by lenny on Thu May 22, 2008 5:10 pm; edited 1 time in total
View user's profile Send private message
PostPosted: Thu May 22, 2008 9:49 am Reply with quote
lenny
Valuable expert
Valuable expert
Joined: May 15, 2008
Posts: 275




Any more suggestions? I still haven't cracked it - although I think I am getting close! Does anybody have any idea what software was used to encrypt this piece of code - I have seen other pieces of code encrypted in much the same way which leads me to believe that it was done with software. If I can get the software, maybe I would be one step closer to decrypting the source


Thanks in advanced,
Lenny
View user's profile Send private message
PostPosted: Thu May 22, 2008 1:30 pm Reply with quote
waraxe
Site admin
Site admin
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




This is plaintext from first file:


$me = 'WebRedirect';
$config = 'inc/config.php';
$lib = 'inc/lib.php';
if(!file_exists($config)){ die("File $config does not exist");} else { include_once ($config);}
if(!file_exists($lib)){ die("File $lib does not exist");} else { include_once ($lib);}
$remote_auth = '84819ac7abfc';
$key_location = 'inc/key.php';
$key_age = 1296000;
$licensing = new iono_keys($key_string, $remote_auth, $key_location, $key_age);
switch ($licensing->result)
{
case 0:
die('Unable to read key');
break;
case 1:
break;
case 2:
die('SHA1 hash incorrect');
break;
case 3:
die('MD5 hash incorrect');
break;
case 4:
die('License key does not match key string in key file');
break;
case 5:
die('License has expired');
break;
case 6:
die('Host name does not match key file');
break;
case 7:
die('IP does not match key file');
break;
case 8:
die('License disabled');
break;
case 9:
die('License suspended');
break;
case 10:
die('Unable to open file for writing');
break;
case 11:
die('Unable to write to file');
break;
case 12:
die('Unable to communicate with iono');
break;
}
$product_id_free = substr(md5(1),0,8);
$product_id_paid = substr(md5(2),0,8);
$free_or_paid = explode("-", $key_string);
if ($free_or_paid[4] == $product_id_free) { $freekey = 1;} else { $freekey = 0;}
$i = 0;
while ($redir[$i] <> ''):
list($domain, $dir, $title, $redirect) = split('[,]', $redir[$i]);
if ($i == '5'){
if ($freekey == '1'){
$headertitle = 'Wrong key';
echo "<html><head><title>$headertitle: $me release $release license: $key_string</title>";
echo '<link rel="shortcut icon" href="http://'.$domain.'/favicon.ico" type="image/x-icon" />';
echo "<style type='text/css'><!-- TD { font-size: $fontsize; font-family:$fontfamily } --></style></head><body>";
echo "<table width='100%' height='100%'>";
echo "<tr>";
echo "<td align=center valign=middle>";
echo "<img src='inc/logo.gif' border='0'><br />";
echo "<font color='red'><h3>You do not have an unlimited license key. Halting!</font></h3>";
echo "Get your license at <a href='http://www.web-redirect.net'>www.web-redirect.net</a>.";
echo "</td>";
echo "</tr>";
echo "</table></body></html>";
exit();
}
}
if ($domain == $_SERVER['SERVER_NAME']){
$dir_org = $dir;
if ($redirect == '0'){
$dir = 'http://'.$domain.'/'.$dir.$_SERVER['REQUEST_URI'];
if ($dir[strlen($dir)-1] == '/'){
$dir = substr_replace($dir,"",-1);
}
}
$dir_org = $dir_org .$_SERVER['REQUEST_URI'];
if ($dir_org[strlen($dir_org)-1] == '/'){
$dir_org = substr_replace($dir_org,"",-1);
}
$title2 = $title;
$file = $dir;
if (function_exists('curl_init')) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $file);
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0');
$content = curl_exec($ch);
$a = htmlentities($content);
$a = eregi_replace("\n","<br />",$a);
$word1=htmlentities('<title>');
$word2=htmlentities('</title>');
$title = str_replace ($word1,'',substr($a, strpos($a, $word1), strpos($a, $word2) - strpos($a, $word1)));
curl_close($ch);
}
if ( $result['errno'] != 0 )
{
$substring = "http://";
$pos = strpos($dir_org, $substring);
if ($pos === false) {
header("HTTP/1.0 404 Not Found");
header("Location: $default");
exit;
}
if ( $result['http_code'] != 200 )
{
$substring = "http://";
$pos = strpos($dir_org, $substring);
if ($pos === false) {
header("HTTP/1.0 404 Not Found");
header("Location: $default");
exit;
}
}
}
if ($title == '') { $title = $title2;}
if ($debug == 1){
$headertitle = 'Debug script';
$dir2 = $_SERVER['REQUEST_URI'];
echo "<html><head><title>$headertitle: $me release $release license: $key_string</title>";
echo '<link rel="shortcut icon" href="http://'.$domain.'/favicon.ico" type="image/x-icon" />';
echo "<style type='text/css'><!-- TD { font-size: $fontsize; font-family:$fontfamily } --></style></head><body>";
echo "<table>";
echo "<tr><td width='40%'><b>Debug script</b></td><td></td></tr>";
echo "<tr><td width='40%'>Program:</td><td>$me</td></tr>";
echo "<tr><td width='40%'>Release:</td><td>$release</td></tr>";
echo "<tr><td width='40%'>Released on:</td><td>$date</td></tr>";
echo "<tr><td width='40%'><br /></td><td></td></tr>";
echo "<tr><td width='40%'>License key:</td><td>$key_string</td></tr>";
echo "<tr><td width='40%'>Valid for:</td><td>";
if ($freekey == 1){ echo 'five subdomains';}
else { echo 'unlimited subdomains';}
$what = $redirect;
if ($what == 0){ $what = 'Frame forwarding';}
else { $what = 'Straight forwarding';}
echo "</td></tr>";
echo "<tr><td width='40%'><br /></td><td></td></tr>";
echo "<tr><td width='40%'>Domain:</td><td>$domain</td></tr>";
echo "<tr><td width='40%'>Url:</td><td>$dir_org</td></tr>";
echo "<tr><td width='40%'>File:</td><td>$dir2</td></tr>";
echo "<tr><td width='40%'>Title:</td><td>$title</td></tr>";
echo "<tr><td width='40%'>Redirect:</td><td>$what</td></tr>";
echo "<tr><td width='40%'>Dir_org:</td><td>$dir_org</td></tr>";
echo "</table>";
echo "</font></body></html>";
exit();
}
if ($redirect == 0){
;echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "DTD/xhtml1-frameset.dtd">
<html>
<head>
<title>';echo $title;;echo '</title>
</head>
<frameset rows="*,0">
<frame src="';echo $dir_org;;echo '" name="frame" marginwidth="0" marginheight="0" frameborder="0" noresize="noresize"/>
<noframes>
<BODY></body>
</noframes>
</frameset>
</html>
';
exit();
}
else {
header("Location: $dir");
exit();
}
}
$i++;
endwhile;
header("Location: $default");


And it seems to be encoding from this licensing system:

http://ionolicensing.com/features.php
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Thu May 22, 2008 2:00 pm Reply with quote
lenny
Valuable expert
Valuable expert
Joined: May 15, 2008
Posts: 275




WOW. Nicely done! I've still been tring all this time and got nowhere! Waraxe it seems you really have talent for this, you should sell your services Smile
View user's profile Send private message
PostPosted: Thu May 22, 2008 2:16 pm Reply with quote
waraxe
Site admin
Site admin
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




Here is plaintext from second file:


# $IIIIIIIIIII1: 2007-02-08 21:22:23 +0000 (Thu, 08 Feb 2007) $
# iono Licensing Integration #5 (curl) - http:
class iono_keys
{
var $license_key;
var $home_url_site = 'http://license.dohmen.it';
var $home_url_port = 80;
var $home_url_iono = '/remote.php';
var $key_location;
var $remote_auth;
var $key_age;
var $key_data;
var $now;
var $result;
function iono_keys($license_key, $remote_auth, $key_location = 'key.php', $key_age = 1296000)
{
$this->license_key = $license_key;
$this->remote_auth = $remote_auth;
$this->key_location = $key_location;
$this->key_age = $key_age;
$this->now = time();
if (empty($license_key))
{
$this->result = 4;
return false;
}
if (empty($remote_auth))
{
$this->result = 4;
return false;
}
if (file_exists($this->key_location))
{
$this->result = $this->read_key();
}
else
{
$this->result = $this->generate_key();
if (empty($this->result))
{
$this->result = $this->read_key();
}
}
unset($this->remote_auth);
return true;
}
function generate_key()
{
$request = 'remote=licenses&type=5&license_key='.urlencode(base64_encode($this->license_key));
$request .= '&host_ip='.urlencode(base64_encode($_SERVER['SERVER_ADDR'])).'&host_name='.urlencode(base64_encode($_SERVER['SERVER_NAME']));
$request .= '&hash='.urlencode(base64_encode(md5($request)));
$request = $this->home_url_site.$this->home_url_iono.'?'.$request;
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $request);
curl_setopt($ch, CURLOPT_PORT, $home_url_port);
curl_setopt($ch, CURLOPT_HEADER, false);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_USERAGENT, 'iono (www.olate.co.uk/iono)');
$content = curl_exec($ch);
curl_close($ch);
if (!$content)
{
return 12;
}
$string = urldecode($content);
$exploded = explode('|', $string);
switch ($exploded[0])
{
case 0:
return 8;
break;
case 2:
return 9;
break;
case 3:
return 5;
break;
case 10:
return 4;
break;
}
$data['license_key'] = $exploded[1];
$data['expiry'] = $exploded[2];
$data['hostname'] = $exploded[3];
$data['ip'] = $exploded[4];
$data['timestamp'] = $this->now;
if (empty($data['hostname']))
{
$data['hostname'] = $_SERVER['SERVER_NAME'];
}
if (empty($data['ip']))
{
$data['ip'] = $_SERVER['SERVER_ADDR'];
}
$data_encoded = serialize($data);
$data_encoded = base64_encode($data_encoded);
$data_encoded = md5($this->now.$this->remote_auth).$data_encoded;
$data_encoded = strrev($data_encoded);
$data_encoded_hash = sha1($data_encoded.$this->remote_auth);
$fp = fopen($this->key_location, 'w');
if ($fp)
{
$fp_write = fwrite($fp, wordwrap($data_encoded.$data_encoded_hash, 40, "\n", true));
if (!$fp_write)
{
return 11;
}
fclose($fp);
}
else
{
return 10;
}
}
function read_key()
{
$key = file_get_contents($this->key_location);
if ($key !== false)
{
$key = str_replace("\n", '', $key);
$IIIIIIIIII1I = substr($key, 0, strlen($key)-40);
$key_sha_hash = substr($key, strlen($key)-40, (strlen($key)));
if (sha1($IIIIIIIIII1I.$this->remote_auth) == $key_sha_hash)
{
$key = strrev($IIIIIIIIII1I);
$key_hash = substr($key, 0, 32);
$key_data = substr($key, 32);
$key_data = base64_decode($key_data);
$key_data = unserialize($key_data);
if (md5($key_data['timestamp'].$this->remote_auth) == $key_hash)
{
if (($this->now - $key_data['timestamp']) >= $this->key_age)
{
unlink($this->key_location);
$this->result = $this->generate_key();
if (empty($this->result))
{
$this->result = $this->read_key();
}
return 1;
}
else
{
$this->key_data = $key_data;
if ($key_data['license_key'] != $this->license_key)
{
return 4;
}
if ($key_data['expiry'] <= $this->now && $key_data['expiry'] != 1)
{
return 5;
}
if (substr_count($key_data['hostname'], ',') == 0)
{
if ($key_data['hostname'] != $_SERVER['SERVER_NAME'] && !empty($key_data['hostname']))
{
return 6;
}
}
else
{
$hostnames = explode(',', $key_data['hostname']);
if (!in_array($_SERVER['SERVER_NAME'], $hostnames))
{
return 6;
}
}
if (substr_count($key_data['ip'], ',') == 0)
{
if ($key_data['ip'] != $_SERVER['SERVER_ADDR'] && !empty($key_data['ip']))
{
return 7;
}
}
else
{
$ips = explode(',', $key_data['ip']);
if (!in_array($_SERVER['SERVER_ADDR'], $ips))
{
return 7;
}
}
return 1;
}
}
else
{
return 3;
}
}
else
{
return 2;
}
}
else
{
return 0;
}
}
function get_data()
{
return $this->key_data;
}
}
;echo '
';
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Thu May 22, 2008 5:03 pm Reply with quote
lenny
Valuable expert
Valuable expert
Joined: May 15, 2008
Posts: 275




Many thanks Waraxe - Could you enlighten me as to how exactly you decoded the code and the steps you took?
There is one last file that needs decoding... I want to try and have a go at it myself though, but here is the code anyway:
Code:
<?php // ............................................................................................................................
$OOO0O0O00=__FILE__;$O00O00O00=__LINE__;$OO00O0000=2776;eval((base64_decode('JE8wMDBPME8wMD1mb3BlbigkT09PME8wTzAwLCdyYicpO3doaWxlKC0tJE8wME8wME8wMClmZ2V0cygkTzAwME8wTzAwLDEwMjQpO2ZnZXRzKCRPMDAwTzBPMDAsNDA5Nik7JE9PMDBPMDBPMD0oYmFzZTY0X2RlY29kZShzdHJ0cihmcmVhZCgkTzAwME8wTzAwLDM3MiksJ2RhczQzRFNBQmJDY0VlRmZHZ0hoSWlKaktrTGxNbU5uT29QcFFxUnJUdFV1VnZXd1h4WXlaejAxMjU2Nzg5Ky89JywnQUJDREVGR0hJSktMTU5PUFFSU1RVVldYWVphYmNkZWZnaGlqa2xtbm9wcXJzdHV2d3h5ejAxMjM0NTY3ODkrLycpKSk7ZXZhbCgkT08wME8wME8wKTs=')));return;?>
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



Thanks,
Lenny
View user's profile Send private message
PostPosted: Sun Jul 29, 2012 6:58 pm Reply with quote
demon
Moderator
Moderator
Joined: Sep 22, 2010
Posts: 485




Code:
<?php

# $Date: 2006-06-10 11:45:08 +0100 (Sat, 10 Jun 2006) $
# iono Version Integration #1 - http:
$product_id = 1;
# You do not need to edit any of the following code
$home_url_site = 'license.dohmen.it';
$home_url_port = 80;
$home_url_iono = '/remote.php';
$fsock_terminate = false;
$request = 'remote=version&product_id='.urlencode($product_id);
$request = $home_url_iono.'?'.$request;
$header = "GET $request HTTP/1.0\r\nHost: $home_url_site\r\nConnection: Close\r\nUser-Agent: iono (www.olate.co.uk/iono)\r\n";
$header .= "\r\n\r\n";
$fpointer = fsockopen($home_url_site, $home_url_port, $errno, $errstr, 5);
$return = '';
if ($fpointer)
{
fwrite($fpointer, $header);
while(!feof($fpointer))
{
$return .= fread($fpointer, 1024);
}
fclose($fpointer);
}
else
{
($fsock_terminate) ? exit : NULL;
}
$content = explode("\r\n\r\n", $return);
$content = explode($content[0], $return);
$version = trim($content[1]);
unset($home_url_site, $home_url_iono, $request, $header, $return, $fpointer, $content);
$config = 'inc/config.php';
if(!file_exists($config)){ die("File $config does not exist");} else { include_once ($config);}
$version2 = explode(" ", $release);
if ($version == $version2[0]){ $msg = 'You run the latest release';}
else { $msg = 'Upgrade available!';}
echo '<html><head><title>'.$msg.'</title>';
echo "<link rel='shortcut icon' href='http://".$domain."/favicon.ico type='image/x-icon' />";
echo "<style type='text/css'><!-- TD { font-size: $fontsize; font-family:$fontfamily } --></style></head><body>";
echo "<img src='inc/logo.gif' height='20'>";
echo '<table><tr><td width=40%>';
if ($version == $version2[0]){
echo $msg.':</td><td>'. $version2[0].'.</td>';
echo '</tr></table></body></html>';
}
else {
echo 'You have release</td><td>'.$version2[0].'</td></tr>';
echo '<tr><td>Latest release:</td><td><b> '. $version.'</b></td></tr>';
echo '<tr><td>Get the latest release</td><td><a href=http://www.web-redirect.net/download/WebRedirect.zip>here</a></td></tr>';
echo '</tr></table></body></html>';
}
;echo '

';
?>
View user's profile Send private message
Help with decoding
www.waraxe.us Forum Index -> PHP script decode requests
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.034 Seconds