DISQUS

Returning?

Login

Website
http://www.matasano.com/log
Original page
http://www.matasano.com/log/552/code-release-blackbag-09-binary-protocol-reversing-unix-thingies/
Subscribe
All Comments
Community
Top Commenters
- Press Controls
  3 comments · 2 points
- ChrisMtso
  12 comments · 1 points
- Eric Monti
  11 comments · 1 points
- StatlerAndWaldorf
  12 comments · 3 points
- Dave G.
  7 comments · 1 points
Popular Threads

Matasano Chargen: Code Release: Blackbag 0.9 (Binary Protocol Reversing Unix Thingies)

tom ferris · 3 years ago

hyperlink no workie.. ;^)
Tyler Reguly · 3 years ago

Hey Hey,

I was able to get it to compile on SuSE 10.1. I simply had to change line 44 in tsec.c.

The current line is:
if(setpgrp(0, getpid()) == -1) {
Which I replaced with:
if (setpgrp() == -1 ) {

After that it compiled without a problem.

The product looks great... I did a brief review of your two posts today over on my site... I plan on doing a full review with examples this upcoming weekend... but I'm quite impressed.
Thomas Ptacek · 3 years ago

Thanks for the compliments; I expect the urge to deliver more will, uh, attenuate once you've tried using the code. ;)

I should make it clear that this is not our "product", which you can tell by the fact that this code actually got released.

I will suggest that the library code here is more useful than the programs themselves.
Tyler Reguly · 3 years ago

I didn't mean to imply that I thought it was a Matasano Security product.... my product I just meant the code itself...

I will, however, admin that I'm curious as to why you will most likely not be releasing this code again.
Thomas Ptacek · 3 years ago

Because I'm going to collapse it into "sub" and turn it into a proper filer/record fuzzing tool, and because in my spare time I have something cooler that's going to use the same code.

The library code here is more useful than the actual programs are (although I use the programs every day and would be basically sunk without them).
Jon Myers · 2 years ago

So wheres the announcement about the hiding of blackbag and deezee? (I'm really looking for deezee). I'm guessing you removed them both from your pages for some reason.. and I'm still scouring the internet looking for deezee so I can see how axis fixed thier broken rtsp on the 210 camera, so I can apply the same thing to the 214, which they havnt gotten around to fixing yet.
Thomas Ptacek · 2 years ago

I'll post a link tomorrow morning; we didn't "hide it", we moved servers and they, uh, didn't come along for the ride. =)
Chris · 2 years ago

where be the linky? :) your post today about bkb seems to have peaked my interest. (dave G's post really, May 1st 2007)
Thomas Ptacek · 2 years ago

Grumble grmbl mlmbd dfjmevmr.

I'll get it up this evening, unless I don't, in which case I will allow you to shame me publicly with more comments.
Dave G. · 2 years ago

SHAME! SHAME! SHAME!
Thomas Ptacek · 2 years ago

I am shamed.
gwen · 2 years ago

So where does the code live currently..? macports archives seem to have lost it and matasano.com/tools/
doesnt let strangers like me in :)

thanx in advance
gwen
gwen · 2 years ago

never mind.. dot cache still had the sockpuppet link above..
thanx anyway
gwen
gwen · 2 years ago

oops zero length file.... so any hints about where to find? sounds like a fun tool

gwen
Dave G. · 2 years ago

SHAME! SHAME! SHAME! SHAME!
Thomas Ptacek · 2 years ago

I uploaded a tarball and everything but then I couldn't figure out how to configure Apache so I gave up sorry.
gwen · 2 years ago

well the search engines had it logged at
http://72.14.209.104/search?q=cache:http%3A//ww...
for the .6 version which is now giving forbidden errors , so I will take a stab at this and say make sure the the tools directory is readable/executable by all if not owned by the http user.
and take a look at www/logs/error_log with a tail -f while working at it to determine why it cant be found..

sigh..
gwen
ps or I am sure one of us can post it someplace for you to refer to if emailed ..
pss.. I wont shame u..
gwen · 2 years ago

maybe I ought to rethink the shaming!! :)

gwen
ps.. SHAME SHAME SHAME!!!!
gwen · 2 years ago

gee Thomas.. there is even a macports entry that doesnt function because of no distfile for blackbag-0.9.(and any copys I had from before went with my crashed powerbook harddisk)

any chance soon??(it has been months...)
gwen
Thomas Ptacek · 2 years ago

I GIVE UP!

http://www.sockpuppet.org/blackbag-0.9.tgz
gwen · 2 years ago

yeah!!!!!!!!

thanx thomas
gwen
gwen · 2 years ago

yay!!!!!!!!!!

thanx thomas
gwen
Thomas Ptacek · 2 years ago

Let me know if you have any trouble getting it built, or using it, or making sense of it.
chopstick · 2 years ago

I built it on Ubuntu 7.04 without too much problems. I also had the 'setpgrp' error in tsec.c:44, but replaced 'setpgrp' with 'setpgid' and all was well.

During the make install, the 'sub.macros' file wasn't available. I just used touch to create the file.
mcuelenaere · 2 years ago

Could you also put deezee back up? Cause I really need it
D · 7 months ago

So I notice it comes with unasn, which prints out a shell script which uses the asn1 command which it doesn't seem to come with. So that part doesn't seem very useful.