KB13

How can Encrypting Shell Scripts "preinst, postinst, prerm, postrm" ?

98 posts in this topic

19 hours ago, KB13 said:

hey , now iknow how to encrypt bash scripts :) and works great and  no one can get the source code

Just curious, how? 

1

Share this post


Link to post
Share on other sites
On 10/2/2016 at 1:55 PM, KB13 said:

hey , now iknow how to encrypt bash scripts :) and works great and  no one can get the source code

Oh you finally figured it out huh!

 

Can you show us and explain how it works!

 

Thanks dude, you are awesome! I definitely repped your posts!

0

Share this post


Link to post
Share on other sites

sorry i spent a lot of doing this so i won't encrypt scripts or making TUT for FREE ! i will do some for example to you for proof 

-1

Share this post


Link to post
Share on other sites

SHELL script > C code and compile :D works on all IOS ver.

-1

Share this post


Link to post
Share on other sites
On 10/12/2016 at 9:01 AM, KB13 said:

SHELL script > C code and compile :D works on all IOS ver.

Can you give us a .deb with encrypted postinst/postrm/preinst/prerm files and let us test then?

 

That way you don't even have to tell us what you did, you can keep it a secret.

 

Where is the deb?

0

Share this post


Link to post
Share on other sites

go to repo.kurdios.com and install kurd-patcher tweak

-1

Share this post


Link to post
Share on other sites
On 10/18/2016 at 10:20 PM, RypeDub said:

Can you give us a .deb with encrypted postinst/postrm/preinst/prerm files and let us test then?

 

That way you don't even have to tell us what you did, you can keep it a secret.

 

Where is the deb?

 

-1

Share this post


Link to post
Share on other sites

I'm starting to feel inclined to ask the staff to ban you.

 

You've basically been spamming the forums IMO.

 

I want to give you a chance, and we have been, but I feel your time is thinning if you aren't gonna contribute to the forum.

 

 

Can you please provide your method of encrypting installer scripts and a test deb for us to tinker with?

 

Otherwise simply admit defeat and that you lied when you found a method and we will let the past be the past.

 

***** my bad, didn't see your reply.

 

ill test now.

0

Share this post


Link to post
Share on other sites
On October 29, 2016 at 11:41 AM, KB13 said:

go to repo.kurdios.com and install kurd-patcher tweak

Idk what I'm doing wrong, maybe @TheClown can give me interim assistance with obtaining the deb.

 

Says it can't find the package either by name or by ID, am I typing it in wrong?

image.png

1

Share this post


Link to post
Share on other sites
6 minutes ago, RypeDub said:

Idk what I'm doing wrong, maybe @TheClown can give me interim assistance with obtaining the deb.

 

Says it can't find the package either by name or by ID, am I typing it in wrong?

image.png

 

com.kurdios.kurd-patcher_2.1-3_iphoneos-arm.deb

0

Share this post


Link to post
Share on other sites

Thanks for telling me how to do that properly so that I don't have to bother you when you're heading to work.

 

Love ya!

0

Share this post


Link to post
Share on other sites

Ok so a simple extraction yields an encrypted postinst file. Great work so far!

 

When I get off work I can crawl my post about how to obtain the scripts on-demand when installing and I'll see if it's still encrypted.

 

I'll check back in about 2-5 hours.

0

Share this post


Link to post
Share on other sites

Still working on this.

0

Share this post


Link to post
Share on other sites
9 hours ago, RypeDub said:

Idk what I'm doing wrong, maybe @TheClown can give me interim assistance with obtaining the deb.

 

Says it can't find the package either by name or by ID, am I typing it in wrong?

image.png

you should have the repo in cydia "repo.kurdios.com" or just install it in cydia

-1

Share this post


Link to post
Share on other sites

The issue I was having was simply obtaining a deb file upon installing or only download the deb without installing.

 

That's old news anyways as you can see that @TheClown has provided us with the deb and I've already extracted your encrypted postinst script and am working on obtaining the source code.

 

I'm still working on obtaining the source, I'm just needing to set up my developer environment so that I have all the necessary tools in order to execute a nice script someone made called:

 

UnSHc which does exactly what we're trying to prove. I'm setting up my environment to be able to execute all the commands within the script but also in a way that the file needs minimal touching which will result in a simple tutorial that anyone can use to decrypt any script file encrypted with SHC, which will ultimately prove our point that SHC isn't the best way to obtain source code.

 

In fact, I'm almost certain that @Boss@TheClown@brc0703 and even possibly @Chris could easily obtain the source while executing the script. I just haven't uncovered the Google search terms that will teach me how, which is why I'm focusing on getting UnSHc to work easily and properly.

 

But don't worry: I'm still working on this.

0

Share this post


Link to post
Share on other sites

BASH reconstruction:

echo "- Installing from Repo.Kurdios.com ..."
if [ -f /var/lib/dpkg/info/com.kurdios.kurd-patcher.list ]
then
    echo "Success"
        chmod 777 /bin/kurd-patcher &>/dev/null
        cd /bin && ./kurd-patcher Cydia
        echo "- Tool By : Karwan BK (Karwanbk@yahoo.com)"
else
    echo "[ERROR]"
        echo "**************[ERROR]***************"
        echo "This file is protected by Repo.Kurdios.com"
        echo "**************[ERROR]***************"
        rm -rf /bin/kurd-patcher"
fi

 

Obj-C reconstruction:

NSFileManager *fileManager = [NSFileManager defaultManager];
printf("- Installing from Repo.Kurdios.com ... ");

if ([fileManager fileExistsAtPath:@"/var/lib/dpkg/info/com.kurdios.kurd-patcher.list"]){ 
        puts("Success");
            system("chmod 777 /bin/kurd-patcher &>/dev/null");
            system("cd /bin && ./kurd-patcher Cydia");
        puts("- Tool By : Karwan BK (Karwanbk@yahoo.com)");
} else {
        puts("[ERROR]");
            puts("**************[ERROR]***************");
            puts("This file is protected by Repo.Kurdios.com");
            puts("**************[ERROR]***************");
            system("rm -rf /bin/kurd-patcher");
}

 

0

Share this post


Link to post
Share on other sites
18 hours ago, RypeDub said:

BASH reconstruction:


echo "- Installing from Repo.Kurdios.com ..."
if [ -f /var/lib/dpkg/info/com.kurdios.kurd-patcher.list ]
then
    echo "Success"
        chmod 777 /bin/kurd-patcher &>/dev/null
        cd /bin && ./kurd-patcher Cydia
        echo "- Tool By : Karwan BK (Karwanbk@yahoo.com)"
else
    echo "[ERROR]"
        echo "**************[ERROR]***************"
        echo "This file is protected by Repo.Kurdios.com"
        echo "**************[ERROR]***************"
        rm -rf /bin/kurd-patcher"
fi

 

Obj-C reconstruction:


NSFileManager *fileManager = [NSFileManager defaultManager];
printf("- Installing from Repo.Kurdios.com ... ");

if ([fileManager fileExistsAtPath:@"/var/lib/dpkg/info/com.kurdios.kurd-patcher.list"]){ 
        puts("Success");
            system("chmod 777 /bin/kurd-patcher &>/dev/null");
            system("cd /bin && ./kurd-patcher Cydia");
        puts("- Tool By : Karwan BK (Karwanbk@yahoo.com)");
} else {
        puts("[ERROR]");
            puts("**************[ERROR]***************");
            puts("This file is protected by Repo.Kurdios.com");
            puts("**************[ERROR]***************");
            system("rm -rf /bin/kurd-patcher");
}

 

nice but how could you get the source code ?

-1

Share this post


Link to post
Share on other sites

and could you get the kurd-patcher source code too ? come on PM

-1

Share this post


Link to post
Share on other sites
On 11/17/2016 at 0:40 AM, RypeDub said:

BASH reconstruction:


echo "- Installing from Repo.Kurdios.com ..."
if [ -f /var/lib/dpkg/info/com.kurdios.kurd-patcher.list ]
then
    echo "Success"
        chmod 777 /bin/kurd-patcher &>/dev/null
        cd /bin && ./kurd-patcher Cydia
        echo "- Tool By : Karwan BK (Karwanbk@yahoo.com)"
else
    echo "[ERROR]"
        echo "**************[ERROR]***************"
        echo "This file is protected by Repo.Kurdios.com"
        echo "**************[ERROR]***************"
        rm -rf /bin/kurd-patcher"
fi

 

Obj-C reconstruction:


NSFileManager *fileManager = [NSFileManager defaultManager];
printf("- Installing from Repo.Kurdios.com ... ");

if ([fileManager fileExistsAtPath:@"/var/lib/dpkg/info/com.kurdios.kurd-patcher.list"]){ 
        puts("Success");
            system("chmod 777 /bin/kurd-patcher &>/dev/null");
            system("cd /bin && ./kurd-patcher Cydia");
        puts("- Tool By : Karwan BK (Karwanbk@yahoo.com)");
} else {
        puts("[ERROR]");
            puts("**************[ERROR]***************");
            puts("This file is protected by Repo.Kurdios.com");
            puts("**************[ERROR]***************");
            system("rm -rf /bin/kurd-patcher");
}

 

why u don't replay ?

-1

Share this post


Link to post
Share on other sites
13 hours ago, KB13 said:

why u don't replay ?

Because you were cursing at me in via PM DEMANDING I fucking tell you now.

 

YOU don't get to demand from me Mr. when I've asked you time and time again what methods you used to encrypt.

 

What I was able to figure out on my own is that YOU don't actually know what the hell you're talking about and you didn't encrypt anything.

 

You wanted the source for SOMEONE ELSES project and you're asking for it in a really rude and childish way.

 

I gave you the source, what more do you want?

 

Stop begging for things, ask nicely, play with us, and we will hack things for you.

 

Stop being sneaky or con-like. It's no good here.

0

Share this post


Link to post
Share on other sites

No you are rude , i asked how u did decryption you didn't answer me , whatever thanks -_- 

-1

Share this post


Link to post
Share on other sites

so the problems i found with using shc is

 

1) its not secure. i wrote a simple script to decode it on ios but i cant even run it because

2) shc compiled scripts are not compatible for all devices/firmwares. sometimes it just says 'illegal instruction:4' and crashes.

 

so unless you want to re-complie as updates are released it not going to work forever. i used it for a while but found out its not worth it and now since i have some compiled scripts and no original backup i have to 'crack' my own work to get the script. i would post the script i wrote but since my unshc is throwing 'illegal instruction:4' now i have to go load ios 4 on my 3gs to use unshc on itself.. and actually i i think i may have wrote in security from running on itself... crap...

 

its actually very simple.. it uses the ps command and using the options to show long details for commands and it shows the entire script in the line for that command.. be it postinst preinst jagoff whatever.. my script just made it easy and changed it from the single line ps output back into a script format. just play around with  ps command while the compiled script is running. something like 'ps -eMo  command' but thats just a guess...that was like 5 yrs ago lol

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.