I'm looking to replicate qa particular form of obfuscation handled by sabnzbd

Get help with all aspects of SABnzbd
Forum rules
Help us help you:
  • Are you using the latest stable version of SABnzbd? Downloads page.
  • Tell us what system you run SABnzbd on.
  • Adhere to the forum rules.
  • Do you experience problems during downloading?
    Check your connection in Status and Interface settings window.
    Use Test Server in Config > Servers.
    We will probably ask you to do a test using only basic settings.
  • Do you experience problems during repair or unpacking?
    Enable +Debug logging in the Status and Interface settings window and share the relevant parts of the log here using [ code ] sections.
Post Reply
terminaltrip421
Newbie
Newbie
Posts: 1
Joined: January 21st, 2018, 3:13 am

I'm looking to replicate qa particular form of obfuscation handled by sabnzbd

Post by terminaltrip421 »

I hope it's alright to ask this here. I've exhausted my other avenues uincluding asking at places where such files were found. a particular form of obfuscation has recently become familiar to me and when I first came across it I was using newshosting's own leecher which couldn't handle the files and that's when I came to use sabnzbd. this particular obfuscation always seems to take the form of rar names randomized into letters and digits with no uniformity and lacking a file extension. sabnzbd will actually rename them as they're downloaded, which is pretty neat, but anyway they're always(?) named yay.rar, yay.r01 etc after being renamed. the pars generally share a file name uniformity. also it would seem that the need for a password with these is negated as they're never passworded. lastly if someone is familiar perhaps they could answer whether or not these require the nzb in order to decrypted / renamed or just the pars? either way I've tried searching to for files based on the names found in the nzb - both par names and obfuscated file names- and been unable to find them on usenet search engines which I found interesting.

so I was hoping someone might be able to point me towards how to replicate it if they are indeed familiar as it seems like a great tool to have. any and all help would be greatly appreciated, thank you! oh, and sabnzbd is very nice software so thank you for that too =)
User avatar
shypike
Administrator
Administrator
Posts: 19774
Joined: January 18th, 2008, 12:49 pm

Re: I'm looking to replicate qa particular form of obfuscation handled by sabnzbd

Post by shypike »

Can you email an example NZB file to [email protected] ?
(Please include the URL of this message.)
User avatar
safihre
Administrator
Administrator
Posts: 5338
Joined: April 30th, 2015, 7:35 am
Contact:

Re: I'm looking to replicate qa particular form of obfuscation handled by sabnzbd

Post by safihre »

I don't know which tool they use to make this kind of obfuscation, but indeed it's the most recent one.
So since articles are scrambled so intensely, we do really need an NZB. Otherwise we don't know the order of the articles within files.
Within this NZB the files can still be named rubbish, because SABnzbd will inspect the first bytes of each file to see if it's maybe a par2 file.
As soon as one of these is detected, the information from it is used to identify the filenames of all the other files.
Par2 files contain the MD5-hash of the whole file, but also the MD5 hash of the first 16k bytes of a file. So we only need the first article of each file to know the real filename of the file. Pretty neat!
From SABnzbd 2.3.2 this is exactly what happens, we download the first article of all files to identify first the names of all files in 1 go. This way we can start Direct Unpack with the right first file, since the order of the files is also random within NZB's nowadays.

All this stuff is mostly coded here:
https://github.com/sabnzbd/sabnzbd/blob ... ar2file.py

(Sorry for slow response, I was moving homes)
If you like our support, check our special newsserver deal or donate at: https://sabnzbd.org/donate
Post Reply