Re: Does anybody know about encrypting algorithm of Everest Icode?

[Shreyas Zare <shreyas () technitium com>]

Hi,

If the cipher is of 128bit then it would not be asymmetric. So, the
key may be hidden somewhere in DLL.

Regards,

On Fri, Jan 23, 2009 at 3:22 AM, Волк <v0l4arrr () gmail com> wrote:
> Hi,
> it's all OK now. The encrypting algorithm is in the eshoppingCart.dll
> So there is one way to reverse it.
>
>
>
>
> On Thu, Jan 22, 2009 at 08:59:53AM +0100, christopher.riley () r-it at wrote:
> > Can you expand a little on your thinking here. It's easy to say what it
> > is/isn't but the reasoning behind that conclusion is what's really helpful
> > to people.
> >
> > Chris John Riley
> >
> > listbounce () securityfocus com@inet wrote on 21.01.2009 19:30:58:
> >
> > > No. It's not a hash.
> > >
> > > On Wed, Jan 21, 2009 at 02:08:00PM +0530, Shreyas Zare wrote:
> > > > Hi,
> > > >
> > > > It looks like a md5 hash of some related parameters.
> > > >
> > > > Regards,
> > > >
> > > > On Mon, Jan 19, 2009 at 4:29 PM, Волк <v0l4arrr () gmail com> wrote:
> > > > > I'm pentesting some servers for my clients. There is encrypted field
> >
> > in
> > > > > msssql database.
> > > > > REF_NO -> 1E682975FA1988662A742C830720946F
> > > > >
> > > > > In asp script the line is vData =
> >
> > objShoppingCartUpd.CreateOrderFromCart(sConnectionString,sCartId,vChoice,
> > > sCCresult,rsOrder,iResult)
> > > > > where rsOrder("REF_NO") is a normal string.
> > > > > Does anybody know about encrypting algorithm of Everest Icode system?
> >
> > Or
> > > > > where can i get it?
> > > > >
> > > > >
> > > > > -----BEGIN PGP SIGNATURE-----
> > > > > Version: GnuPG v1.4.6 (GNU/Linux)
> > > > >
> > > > > iD8DBQFJdFz18yGpcDYh0swRAnySAJ9FCWigoQ0+QfIdQMRxoVVmuXn5dACggWHc
> > > > > mMAflrD0qqqjr1Xbr6tZol4=
> > > > > =WJXq
> > > > > -----END PGP SIGNATURE-----
> > > >
> > > >
> > > >
> > > > -- >("Computers have a strange habit of doing what you say, not what you
> > > > mean." - SANS Top 25 Most Dangerous Programming Errors)
> > > >
> > > > Shreyas Zare
> > > > Co-Founder, Technitium
> > > > eMail: shreyas () technitium com
> > > >
> > > > ..::< The Technitium Team >::..
> > > > Visit us at www.technitium.com
> > > > Contact us at theteam () technitium com
> > > >
> > > > Join Sci-Tech News group and get the latest science & technology news
> > > > in your inbox. Visit http://tech.groups.yahoo.com/group/sci-tech-news
> > > > to join.
> > > [attachment "signature.asc" deleted by Christopher RILEY/R-IT/RAIVIE/AT]
> >
> >
> > ----------------------------------------
> > Raiffeisen Informatik GmbH, Firmenbuchnr. 88239p, Handelsgericht Wien, DVR
> > 0486809, UID ATU 16351908
> >
> > Der Austausch von Nachrichten mit oben angefuehrtem Absender via E-Mail
> > dient ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen
> > duerfen ueber dieses Medium nicht ausgetauscht werden. Correspondence with
> > above mentioned sender via e-mail is only for information purposes. This
> > medium may not be used for exchange of legally-binding communications.
> > ----------------------------------------
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
>
> iD8DBQFJeOqB8yGpcDYh0swRAs3JAJ0eRcH4vVzD7fPf8hHodUwa4Jj7wACfeaxz
> AEi2XEv9sBM1ezfLAll9+8I=
> =wj0j
> -----END PGP SIGNATURE-----



-- 
("Computers have a strange habit of doing what you say, not what you
mean." - SANS Top 25 Most Dangerous Programming Errors)

Shreyas Zare
Co-Founder, Technitium
eMail: shreyas () technitium com

..::< The Technitium Team >::..
Visit us at www.technitium.com
Contact us at theteam () technitium com

Join Sci-Tech News group and get the latest science & technology news
in your inbox. Visit http://tech.groups.yahoo.com/group/sci-tech-news
to join.