Would you mind making a PR on https://github.com/BenBE/kompromat ? TIA. Anonymous submissions accepted too ;-)
-
-
Replying to @BenBE1987 @hanno and
I've got 175 APKs with non-bouncycastle-sample private key files in them. Will have to sift through them to determine best plan of action.
1 reply 2 retweets 2 likes -
Replying to @wdormann @BenBE1987 and
so you should definitely check them against CT. check spki hash via crt.sh, if you need help ping me.
1 reply 0 retweets 1 like -
Replying to @hanno @BenBE1987 and
I'll need an OpenSSL (or other?) cmdline to get the spki hash from a private key. My google-fu is failing me.
1 reply 0 retweets 0 likes -
Replying to @wdormann @BenBE1987 and
openssl pkey -in keyfile -pubout -outform der|sha256sum
2 replies 0 retweets 2 likes -
Replying to @hanno @BenBE1987 and
None of the 53 uniques are in crt.sh. Pass-protected result in a prompt from openssl, so I don't think this cmd works for them. Alternative?
2 replies 0 retweets 0 likes -
Replying to @wdormann @BenBE1987 and
if they're password protected you may wanna do strings and try to bruteforce the password with it
3 replies 0 retweets 0 likes -
For plain encrypted keys: https://github.com/robertdavidgraham/pemcrack …
1 reply 0 retweets 0 likes -
Replying to @BenBE1987 @hanno and
Only tried one private key so far: 1. apktool on apk 2. grep for const-string in smali code 3. sort | uniq 4. use that for dict for pemcrackpic.twitter.com/xSXrNvXpQ9
1 reply 1 retweet 2 likes -
Replying to @wdormann @BenBE1987 and
Only one mystery key (uncrackable + no cert) out of the whole lot. None of remaining are in crt.sh. One is an expired Apple developer key.
1 reply 0 retweets 1 like
Expanding my grep, I now see a "www_<COMPANY>_com.key" private key in an app. I suppose I should maybe download the Google Play store again.
-
-
Looking forward to the new data set.
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.