For those who don’t know what resolution means, it’s actually converting an ID to the IP address it’s being used on. In case of Skype, the person’s ‘Username’ to his ‘IP Address’.
While Skype may be sold for millions to Microsoft, there is one thing that is affecting a lot of people now, and that is the exposure of their IP Addresses. It all started with someone from the web leaking the source code for Skype 5.5 , reverse-engineering it (most likely a Skype employee) and leaking it to the web. That version of Skype he leaked was the deobfuscated version, meaning all the security that was meant to protect the software was gone. Since this version left debug logs everytime it ran and after every action a user performed on Skype, it started getting more interesting when someone found out that the version of Skype leaked people’s IP Addresses, even more, you needn’t be their friends to retrieve their IP Address, which means any stalker lurking on the web has access to your IP Address, and while that doesn’t tell you his name, it imposes a big security risk since you can be DDoS’ed by several jelly people on the internet today for winning a multiplayer game, or even pissing you off.
Technically speaking, in order to get someone’s Skype IP address, all you have to do is get that reverse-engineered program, open someone’s profile by clicking on Add Contact, and then just viewing the profile (no need to add him), then quitting the program and seeing the debug log in the same directory displaying the IP address of the person whose profile you just viewed on skype.
This is the same technique that is being used on Skype Resolvers today, most of which are becoming paid only.
All it requires for a coder is to grab a spare Windows running server, put that reverse-engineered skype in it, write a PHP code to view people’s profile on command, and then return his IP from the debug logs.
Proof of me capturing someone’s IP Address.
While one can always use a packet sniffing program to sniff someone’s IP on skype and other IM networks, having been able to grab someone’s IP address without his permission and without him even knowing it is a big issue. While this is no more possible in the newer skype versions, the old version (5.5) works a treat for such thing. Microsoft can still fix this problem by adding a proxy layer on their servers so no matter who makes a contact with the server, the outbound connections show the same IP address, until then, I’d prefer avoiding skype.
Here is the link to a free skype resolver you can use to check how this works.
Method:
1. Download the deobfuscated 5.5 skype version (Download links below).2. Click on logged-on.reg to enable debug logging.
3. Open up skype, and click on “Add Contact” on the bottom left corner.
4. Enter the person’s username, and wait for his profile pic to appear; Now click it.
5. Wait a couple seconds and exit skype.
6. Search for the keyword “-r” in the debug log and somewhere along some lines you will find his Remote IP, seperated by a keyword “-l” along which his Local IP will be displayed as shown above in the proof image.
7. Remember to clean this directory before and after using the deobfuscated skype’s version:
C:\Users\YourUserName\AppData\Roaming\Skype
Download Links:
Skype 5.5 De-Obfuscated — Mirror 1 | Mirror 2Skype SDK —– Mirror 1 | Mirror 2
Some resources:http://nickfurneaux.blogspot.in/2012/04/skype-ip-addresses-in-clear.html
http://forums.mydigitallife.info/threads/41708-Skype-5-5-5-9-deobfuscated-Used-to-get-IP-of-a-Skype-user
http://techcovered.blogspot.com/2012/07/skype-hacked-source-code-released.html
沒有留言:
張貼留言