![]() The other, the constructor, just has an invoke-direct call to com/facebook/react/ReactActivity. getMainComponentName is simple enough, returning “RouterSpace”. locals 1 const - string v0, "RouterSpace" return - object v0. method protected getMainComponentName () Ljava / lang / String. line 5 invoke - direct, Lcom / facebook / react / ReactActivity ->() V return - void. ![]() source "MainActivity.java" # direct methods. ![]() super Lcom / facebook / react / ReactActivity. class public Lcom / routerspace / MainActivity. Typically I would be doing to something like JD-GUI for Java reverse engineering, but I’ll take a quick look at the file, and it’s quite short: So “” seems like a good place to start.smali files are kind of like assembly language, still in text, but much lower level than the Java it’s compiled from. To extract the source, I’ll run apktool d RouterSpace.apk: APKs are archive files, which means that they are really just a zip-like container with a bunch of other files in them. Typically they are written in Java, but also support Kotlin. Unpack APKĪn APK is an Android Package file, to be loaded onto Android mobile devices. The install instructions show a manual download and install, but I’m also able to apt install apktool. To look at the application, I’ll use apktool, from ibotpeaches. Shell as paul RouterSpace.apk - Static Install apktool Nothing interesting here, but good to know that -X flag works. ? Regex Filter │ Suspicious activity detected !!! I can filter out these responses using -X, which will remove anything that matches pattern in the response feroxbuster -u -X 'Suspicious activity detected !!!' The “RequestID” seems to change randomly, which I suspect is why feroxbuster is having a hard time filtering it out. On refresh of the same URL, it’s different: It seems that the length of the response is changing for each request. WLD GET 5l 12w 73c Got 200 for (url length: 96) WLD GET 1l 14w 71c Got 200 for (url length: 32) ? Press to use the Scan Management Menu™ ? Wordlist │ /usr/share/seclists/Discovery/Web-Content/raft-medium-directories.txt The site is for a company the sells some kind of mobile feroxbuster -u The HTTP response is returning an odd X-POWERED-BY header, which I’ll look at in a bit. Neither the SSH nor the HTTP server versions are recognized. Nmap done: 1 IP address (1 host up) scanned in 20.07 seconds =NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)= If you know the service/version, please submit the following fingerprints at : |_http-trane-info: Problem with XML parsing of /evox/aboutĢ services unrecognized despite returning data. |_ SSH-2.0-RouterSpace Packet Filtering V1 I'm running VirtualBox 4.3.20r96997 and encountering this same problem on a work Windows 7 圆4 Enterprise Edition laptop.Nmap -p-min-rate 10000 -oA scans/nmap-alltcp 10.10.11.148 Note: the problem appeared right after upgrading from 4.3.6-91406 to 4.3.10-93012, I didn't have this on the older version and downgrading to what it was didn't help. ![]() Interface: IHostNetworkInterface, preserve=falseĠ0:00:08.902467 Power up failed (vrc=VERR_INTNET_FLT_IF_NOT_FOUND, rc=E_FAIL (0X80004005)) When that didn't work I tried deleting and recreating the Host-Only adapter and received this error:įailed to create the host network interface.Īssertion failed: at 'D:\tinderbox\win-4.3\src\VBox\Main\src-server\HostNetworkInterfaceImpl.cpp' (74) in long _cdecl HostNetworkInterface::init(class com::Bstr,class com::Bstr,class com::Guid,enum _MIDL_MIDL_itf_VirtualBox_0000_0000_0034). The Host-Only adapter has defaults of IP: 0.0.0.0, Subnet 0.0.0.0 and will not save any changes (I tried updating to 192.168.56.1 and 255.255.255.0). I upgraded vbox to 4.3 today and now can only start-up the VMs if I have a Bridged Adapter. I have two VMs that worked properly on v4.2.6. ![]()
0 Comments
Leave a Reply. |