feat: initial

Author: ViRb3

.github/dependabot.yml

@@ -0,0 +1,9 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"
+    commit-message:
+      prefix: "fix"
+      include: "scope"

.github/workflows/release.yml

@@ -0,0 +1,41 @@
+name: Release
+
+on:
+  push:
+    branches: [master, develop]
+  pull_request:
+    branches: [master, develop]
+
+jobs:
+  build:
+    runs-on: windows-latest
+
+    steps:
+      - name: Checkout with token
+        if: github.event_name != 'pull_request'
+        uses: actions/checkout@v2.3.4
+        with:
+          token: ${{ secrets.API_GITHUB_TOKEN }}
+          submodules: true
+
+      - name: Checkout without token
+        if: github.event_name == 'pull_request'
+        uses: actions/checkout@v2.3.4
+        with:
+          submodules: true
+
+      - name: Build
+        run: |
+          $env:Path = "C:\msys64\mingw32\bin;$env:Path"
+          mkdir build
+          cd build
+          cmake .. -DCMAKE_BUILD_TYPE=Release -G "MinGW Makefiles"
+          cmake --build .
+
+      - name: Version
+        if: github.event_name != 'pull_request'
+        uses: cycjimmy/semantic-release-action@v2.5.4
+        with:
+          semantic_version: 17.4
+        env:
+          GITHUB_TOKEN: ${{ secrets.API_GITHUB_TOKEN }}

.gitignore

@@ -0,0 +1,165 @@
+
+# Created by https://www.toptal.com/developers/gitignore/api/clion+all,cmake,c
+# Edit at https://www.toptal.com/developers/gitignore?templates=clion+all,cmake,c
+
+### C ###
+# Prerequisites
+*.d
+
+# Object files
+*.o
+*.ko
+*.obj
+*.elf
+
+# Linker output
+*.ilk
+*.map
+*.exp
+
+# Precompiled Headers
+*.gch
+*.pch
+
+# Libraries
+*.lib
+*.a
+*.la
+*.lo
+
+# Shared objects (inc. Windows DLLs)
+*.dll
+*.so
+*.so.*
+*.dylib
+
+# Executables
+*.exe
+*.out
+*.app
+*.i*86
+*.x86_64
+*.hex
+
+# Debug files
+*.dSYM/
+*.su
+*.idb
+*.pdb
+
+# Kernel Module Compile Results
+*.mod*
+*.cmd
+.tmp_versions/
+modules.order
+Module.symvers
+Mkfile.old
+dkms.conf
+
+### CLion+all ###
+# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio, WebStorm and Rider
+# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839
+
+# User-specific stuff
+.idea/**/workspace.xml
+.idea/**/tasks.xml
+.idea/**/usage.statistics.xml
+.idea/**/dictionaries
+.idea/**/shelf
+
+# Generated files
+.idea/**/contentModel.xml
+
+# Sensitive or high-churn files
+.idea/**/dataSources/
+.idea/**/dataSources.ids
+.idea/**/dataSources.local.xml
+.idea/**/sqlDataSources.xml
+.idea/**/dynamic.xml
+.idea/**/uiDesigner.xml
+.idea/**/dbnavigator.xml
+
+# Gradle
+.idea/**/gradle.xml
+.idea/**/libraries
+
+# Gradle and Maven with auto-import
+# When using Gradle or Maven with auto-import, you should exclude module files,
+# since they will be recreated, and may cause churn.  Uncomment if using
+# auto-import.
+# .idea/artifacts
+# .idea/compiler.xml
+# .idea/jarRepositories.xml
+# .idea/modules.xml
+# .idea/*.iml
+# .idea/modules
+# *.iml
+# *.ipr
+
+# CMake
+cmake-build-*/
+
+# Mongo Explorer plugin
+.idea/**/mongoSettings.xml
+
+# File-based project format
+*.iws
+
+# IntelliJ
+out/
+
+# mpeltonen/sbt-idea plugin
+.idea_modules/
+
+# JIRA plugin
+atlassian-ide-plugin.xml
+
+# Cursive Clojure plugin
+.idea/replstate.xml
+
+# Crashlytics plugin (for Android Studio and IntelliJ)
+com_crashlytics_export_strings.xml
+crashlytics.properties
+crashlytics-build.properties
+fabric.properties
+
+# Editor-based Rest Client
+.idea/httpRequests
+
+# Android studio 3.1+ serialized cache file
+.idea/caches/build_file_checksums.ser
+
+### CLion+all Patch ###
+# Ignores the whole .idea folder and all .iml files
+# See https://github.com/joeblau/gitignore.io/issues/186 and https://github.com/joeblau/gitignore.io/issues/360
+
+.idea/
+
+# Reason: https://github.com/joeblau/gitignore.io/issues/186#issuecomment-249601023
+
+*.iml
+modules.xml
+.idea/misc.xml
+*.ipr
+
+# Sonarlint plugin
+.idea/sonarlint
+
+### CMake ###
+CMakeLists.txt.user
+CMakeCache.txt
+CMakeFiles
+CMakeScripts
+Testing
+Makefile
+cmake_install.cmake
+install_manifest.txt
+compile_commands.json
+CTestTestfile.cmake
+_deps
+
+### CMake Patch ###
+# External projects
+*-prefix/
+
+# End of https://www.toptal.com/developers/gitignore/api/clion+all,cmake,c

.gitmodules

@@ -0,0 +1,3 @@
+[submodule "minhook"]
+	path = minhook
+	url = https://github.com/TsudaKageyu/minhook

.releaserc.yml

@@ -0,0 +1,12 @@
+---
+branches:
+  - master
+plugins:
+  - "@semantic-release/commit-analyzer"
+  - "@semantic-release/release-notes-generator"
+  - #
+    - "@semantic-release/github"
+    - successComment: false
+      failComment: false
+      assets:
+        - path: build/zlib1.dll

CMakeLists.txt

@@ -0,0 +1,20 @@
+cmake_minimum_required(VERSION 3.16)
+project(zlib1 C)
+
+set(CMAKE_C_STANDARD 99)
+
+set(CMAKE_CXX_FLAGS_DEBUG "-g")
+set(CMAKE_CXX_FLAGS_RELEASE "-O3")
+
+set(CMAKE_SHARED_LIBRARY_PREFIX "")
+set(CMAKE_STATIC_LIBRARY_PREFIX "")
+
+# https://stackoverflow.com/questions/18138635/mingw-exe-requires-a-few-gcc-dlls-regardless-of-the-code
+add_link_options(-static -static-libgcc -static-libstdc++)
+
+add_library(zlib1 SHARED proxy.h library.def hook.c)
+link_libraries(ws2_32)
+
+add_subdirectory(minhook)
+target_compile_options(minhook PUBLIC -w)
+target_link_libraries(zlib1 minhook)

README.md

@@ -0,0 +1,40 @@
+# AltServer Dump Proxy
+
+> A proxy DLL for Windows to dump your developer account certificate from AltServer.
+
+There is no official way to obtain your developer account's certificate in Windows. AltServer does this under the hood, but for (security?) reasons, the certificate never touches your disk unprotected.
+
+This project is a simple patch that will hook into AltServer and dump your certificate and password to your Desktop as AltStore processes them. The patch is completely transparent and will cause no side effects whatsoever.
+
+## Usage
+
+### Installing
+
+1. Download the proxy `zlib1.dll` from the [releases](https://github.com/SignTools/altserver-cert-dumper/releases)
+2. Go to your AltServer's installation folder. By default, this is: `C:\Program Files (x86)\AltServer`
+3. Inside AltServer's folder, rename the original `zlib1.dll` to `zlib2.dll`
+4. Move the proxy `zlib1.dll` that you downloaded from this website inside AltServer's folder. You should end up with both `zlib1.dll` and `zlib2.dll` next to each other, and nothing should have been replaced.
+
+### Dumping
+
+1. Run AltServer as normal
+2. You should immediately see a message box saying: `Hooks initialized`. If you don't see this, then you didn't install the proxy correctly.
+3. Proceed to install AltStore on your phone as normal. If you already have it installed, you will have to reinstall it.
+4. At the end of the process, you will see a message box saying: `Certificate successfully saved to Desktop`. Then, on your desktop, you will find two new files: `AltServer-Cert.p12` and `AltServer-Cert-Pass.txt`. These are your certificate and password, respectively.
+
+### Uninstalling
+
+1. Go to your AltServer's installation folder. By default, this is: `C:\Program Files (x86)\AltServer`
+2. Delete the proxy `zlib1.dll`
+3. Rename the original `zlib2.dll` back to `zlib1.dll`
+
+## Building
+
+Tested and working is the following setup:
+
+- mingw-w64 7.0.0+ (32-bit)
+- CMake 3.16+
+
+## References
+
+Based on [PerfectProxyDLL](https://github.com/ViRb3/PerfectProxyDLL).

hook.c

@@ -0,0 +1,89 @@
+#include <Windows.h>
+#include <Shlobj.h>
+#include "proxy.h"
+#include "minhook/include/MinHook.h"
+#include <stdio.h>
+
+BOOL passwordSaved = FALSE;
+BOOL certSaved = FALSE;
+char password[1024];
+char certSuffix[] = "\\AltServer-Cert.p12";
+char passSuffix[] = "\\AltServer-Cert-Pass.txt";
+
+typedef char *(*sig_PKCS12_create)(char *pass, char *name, char *pkey, char *cert,
+								   char *ca, int nid_key, int nid_cert, int iter,
+								   int mac_iter, int keytype);
+typedef size_t (*sig_fwrite)(const void *buffer, size_t size, size_t count, void *stream);
+
+sig_PKCS12_create orig_PKCS12_create = NULL;
+sig_fwrite orig_fwrite = NULL;
+
+char *detour_PKCS12_create(char *pass, char *name, char *pkey, char *cert,
+						   char *ca, int nid_key, int nid_cert, int iter,
+						   int mac_iter, int keytype) {
+	if (!passwordSaved && strlen(pass) > 0) {
+		passwordSaved = TRUE;
+		strcpy_s(password, sizeof(password), pass);
+	}
+	return orig_PKCS12_create(pass, name, pkey, cert, ca, nid_key, nid_cert, iter, mac_iter, keytype);
+}
+size_t detour_fwrite(const char *buffer, size_t size, size_t count, void *stream) {
+	// match P12 magic header bytes
+	if (passwordSaved && !certSaved && count > 2 && buffer[0] == (char)0x30 && buffer[1] == (char)0x82) {
+		certSaved = TRUE;
+		if (MH_DisableHook(MH_ALL_HOOKS) == MH_OK) {
+			char certPath[1024];
+			if (SHGetSpecialFolderPathA(HWND_DESKTOP, certPath, CSIDL_DESKTOP, FALSE)) {
+				char passPath[1024];
+				strcpy_s(passPath, sizeof(passPath), certPath);
+				strcat_s(certPath, sizeof(certPath), certSuffix);
+				strcat_s(passPath, sizeof(passPath), passSuffix);
+				FILE *pFile;
+				pFile = fopen(certPath, "wb");
+				fwrite(buffer, size, count, pFile);
+				fclose(pFile);
+				pFile = fopen(passPath, "wb");
+				fwrite(password, sizeof(char), strlen(password), pFile);
+				fclose(pFile);
+				MessageBox(NULL, "Certificate successfully saved to Desktop.", "Success", MB_OK);
+			} else {
+				MessageBox(NULL, "Error getting path to Desktop.", "Error", MB_OK);
+			}
+		} else {
+			MessageBox(NULL, "Error disabling hooks.", "Error", MB_OK);
+		}
+	}
+	return orig_fwrite(buffer, size, count, stream);
+}
+
+BOOL doHook() {
+	if (MH_Initialize() != MH_OK) {
+		return FALSE;
+	}
+	if (MH_CreateHookApi(L"libeay32.dll", "PKCS12_create",
+						 (LPVOID)(detour_PKCS12_create),
+						 (LPVOID *)(&orig_PKCS12_create)) != MH_OK) {
+		return FALSE;
+	}
+	if (MH_CreateHookApi(L"ucrtbase.dll", "fwrite",
+						 (LPVOID)(detour_fwrite),
+						 (LPVOID *)(&orig_fwrite)) != MH_OK) {
+		return FALSE;
+	}
+	if (MH_EnableHook(MH_ALL_HOOKS) != MH_OK) {
+		return FALSE;
+	}
+	return TRUE;
+}
+
+BOOL WINAPI DllMain(HMODULE hinstDLL, DWORD fdwReason, LPVOID lpvReserved) {
+	if (fdwReason == DLL_PROCESS_ATTACH) {
+		SourceInit();
+		if (doHook()) {
+			MessageBox(NULL, "Hooks initialized.", "Success", MB_OK);
+		} else {
+			MessageBox(NULL, "Something went wrong.", "Error", MB_OK);
+		}
+	}
+	return TRUE;
+}