https://github.com/eidge/encrypted_torrent_cheat
Proof-of-concept: Encrypting the torrent protocol is not a viable way of guaranteeing that a user can not cheat his racio.
https://github.com/eidge/encrypted_torrent_cheat
Last synced: 14 days ago
JSON representation
Proof-of-concept: Encrypting the torrent protocol is not a viable way of guaranteeing that a user can not cheat his racio.
- Host: GitHub
- URL: https://github.com/eidge/encrypted_torrent_cheat
- Owner: eidge
- Created: 2014-01-19T18:38:58.000Z (over 12 years ago)
- Default Branch: master
- Last Pushed: 2014-01-27T12:27:59.000Z (over 12 years ago)
- Last Synced: 2025-10-24T08:13:00.503Z (8 months ago)
- Language: C++
- Size: 48.5 MB
- Stars: 0
- Watchers: 0
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
encrypted_torrent_cheat
=======================
Encrypting the torrent protocol is not a viable way of guaranteeing that a user can not cheat his racio.
This proof-of-concept let's you save and intercept requests from your bittorrent client to the tracker and vice-versa.
# How to cheat the tracker?
0- In your hosts file, route all connections from the trackers domain to localhost.
1- Open up your bittorrent program.
2- Add a new torrent.
3- Save the first outcoming request to the tracker (Even though the data is encrypted you know it will tell the tracker you haven't downloaded any parts yet - because you haven't)
4- Each time the bittorrent program wants to send data to the tracker drop it and send the first request you saved.
5- The tracker will never know how much data you've downloaded.
# Why is this program not automatic?
This is a proof-of-concept. If you want to use bittorrent, seed!
The sole purpose of this application is demonstrate that security by obscurity is not a good solution.
# This doesn't work
Well this is a proof-of-concept. It's incomplete as it is not supposed to be a cheating tool, I don't like cheaters, no one likes cheaters.
It should ring a bell though.
# Motivation behind this application
I used a portuguese bittorrent comunity that used a lazy closed source bittorrent application with no version for linux.
I offered to port the thing. They said no because it was a security hazard that might bring potential cheaters.
**Well there's no need to have the source code to cheat when the underlying protocol wasn't meant to be secure.**