I created this post to show people the progress of Anonymous in their so called Operation Hungary (basically they are trying to bring down some websites of my country). This blog only tries to raise awareness of their achievements, so appropriate countermeasures could be taken. If any updates come along I will try to update this post too.
Â UPDATE #1: I just found some stuff in the official worklog, which basically says “not many people now about Anonymous in Hungary, so we need to change this and make people know us”. I just want to ask, since when does Anonymous know about Hungary? I guess without this huge media-coverage we are getting these days they would not even now on which continent they should search for Hungary…meaning they just doing this operation without knowing anything else but what the media told them.
Some asked me in my previous post to send them my code, so I decided to keep it easier and better I am going ot provide you a GIT-repo, so you can see, modify and easily download my code.
Before I paste in the link to my code I need to say thank you for some people:
-My dear friend GÃ¡bor, who kept helping me with various Ruby issues and kept me going even when I felt like a useless piece of wood
-Applidium for creating Cracking-Siri
-plamoni for using Cracking-Siri to create SiriProxy
-stantheripper for creating SiriAuth and AuthGrabber
Please, if you make some money from using this software, or just like my work consider donating!
If you have a nice Linux server and access to an iPhone 4S I would encourage you to run a SpireProxy server and make some money. The good part of it is that it doesn’t require any interaction (none from the 4S user and none from the 4 user) and it lets you use the internet and Siri all together.
If you need an awesome VPS-host which is compatible with SpireProxy, check out http://www.host1plus.com/vps-hosting/
I use them too, and for the first month they only charge you with 0.13 USD (=13 cents) which is I guess a nice price. Also they give you VNC-access so it is easy to run multiple programs and let them running (starting something via VNC and then closing the VNC connection doesn’t make it terminate the process – a lot easier then using nohup ssh).
So I have really been working my @ss off to get this done as fast as possible, and now here it is: a SiriProxy server program which you can install on a cheap VPS or your own server and let it go! It does everything automatically: reads the key from a 4S every time it changes, and uses it when a 4, 3GS or iPod touch 4G makes a request
-Applidium’s Cracking Siri files, especially: eventmachineGuzzoni.rb (modified of course)
-StanTheRipper’s SiriAuth (modified a little bit)
How does it work?
Well, first we need to install our root certificate on the 4S, then set it up to use our DNS server. The big advantagr of McGrew’s fakeDNS server is that it passes through every request to a realDNS-server and alters only the requests you want, which means you can still use the 4S for everything (browse the web, check emails) because it does get valid DNS responses from our fakeDNS server.
Of course Siri wouldn’t work yet.
But I have found this awesome file called eventmachineGuzzoni.rb amongst Applidium’s Cracking-Siri files and it is good for one thing: get data from a 4S and pass it directly to Apple’s server.
I just needed to alter it a little bit so it interprets parts of the data before sending it to Apple, so I will be able to get the session validation key before talking to Apple.
So right now we have a setup that doesn’t change anything in the life of the 4S user but still gives us 4S keys to use.
Next I needed to alter the SiriAuth file to read the session validation data from the file my eventmachineGuzzoni server created. Once this was done my server-platform was ready.
To achieve the goal (no maintenance at all) I changed the SiriAuth’s port to something different than 443 so both eventMachineGuzzoni and SiriAuth can run on the same machine.
After a 4S makes a request the program reads the key and compares it with the stored one. If they match it doesn’t do anything, if they don’t match it writes out the captured 4S key to the file.
SiriAuth reads this file every time a request is made from a non-4S device, making it possible to always use the latest key without the need to change the server or restart anything.
It was a fun project to do, maybe I will add one more feature I miss: if the 4S key you use expires than I might send back Siri a response, so she will say: “your key has been expired, please get a new one to use Siri” or something like that.
If anybody needs the modified server files please leave a comment below and I will upload it somewhere for you.