I am Efim Bushmanov skype reverse engineer with first publish of original work on reversing skype client at June of 2011. And i almost done work on create open source version of "Skype Network Compatible" client.
And now I need some help from community. Thats why i do donate call.
Feel free to ask question about current state and any tech question. But, i will be prefer, if possible, not disclosure much, for reason ms-skype dont ruin my work too early by do some changing protocol again.
But you feel free to ask some technical details or general question at all of how skype work.
This is a great idea, and I bet you could raise a lot more than 3000! Why not just put this on indiegogo or kickstarter or some other similar trusted platform instead of asking people to just paypal you money? I figure many people would feel much more comfortable that way, and you'd probably get a bunch of publicity from just being on the site.
I don't understand the point of the semi-secrecy. There's almost certainly hundreds of MS employees on this site which means you've lost that advantage already, and anyway you're going to have the same problem after you release the software.
Are there public code hosting (gitlab?) in other countries, where the dmca does not apply? maybe something in Europe, where reverse engineering might be less strict?
I'm going to echo the sentiment about PayPal: they are notorious for freezing accounts and never releasing funds. They've even done this to people trying to raise funds to help natural disaster victims.
It might help to have multiple popular avenues for donation.
Wow, you got an actual person on the phone? You got further than me when I tried to get back the $200 they stole from me due to "suspicious activity". I gave up trying to collect it after spending a bunch of time on it.
They did eventually return it, more than a year later, with no explanation. Just suddenly my account balance increased. No interest payments for the time it was stolen though.
So, I'd love to help but... there's nothing to show after initial work in 2011. And I found no plans to provide any updates.
Besides, this reverse engineering work should be simpler now that Skype was bought by Microsoft. For example, Microsoft no longer encrypts/destroys the executable's import table. And it seems they dumped the anti-debugger code too.
Let's also not forget Microsoft is pushing out new variants that should lend themselves to reverse engineering (e.g. web/plugin-free [0] and Universal Windows Platform [1] apps).
I've been working on a JavaScript API for Skype, https://github.com/oskarer/skype-js, utilizing the same endpoints as web.skype.com. Features currently working are login, receive and send messages. I have little time to work on it but it definitely shows potential.
This project sounds interesting!
Would you consider reverse engineering the Chrome plugin to add calling? (https://chrome.google.com/webstore/detail/skype-calling/blak...) Not sure if the plugin uses native code, but it should be possible to grab the mic / play audio from terminal.
The web gateway is somewhat unreliable, and for IM purposes 'useless' compared to the MSNP gateway, which seems to be the main one used by official clients nowadays.
It has less documentation, but still is plaintext-over-TLS, unlike the legacy (and, arguably, less reliable as well) supernode protocol the poster has been reverse engineering for the past years.
The problem is, as you reverse-engineer Skype and release source code that is meant to be liberally licensed, it still could be that the code would be practically unusable, due to possible legal issues.
IANAL, but from my understanding of the law, this is even a gray area in Russia (local RE laws restrict on what you can do with the obtained knowledge, and the law's wording feels pretty vague to me), and even if legal here, an US or EU court may have a different idea.
Maybe that's not true and I'm just over-cautious, but... well... there's clean-room reverse engineering (where one engineer analyzes the product and writes comprehensive documentation suite and another, completely unrelated person, reads the documentation and writes actual code) for a reason.
IANAL either, but as far as I know a clean-room reverse engineering (like the Samba guys did) should be pretty safe. Of course, other reverse engineering techniques (e.g. disassembling or decompiling) are pretty illegal.
Also, the ToS for Skype may forbid the use of inofficial clients, and users using these might be locked out of the service if Skype finds out and cares.
This looks like a really neat project that could really benefit me (Skype is a buggy piece of garbage but it's the place where 90% of my online friends congregate).
However, one big issue I forsee is issues with Skype changing their API/protocol and completely breaking the open source alternative. Updating would require a constant stream of development work which, if past projects of this type are anything to judge by, may be difficult or impossible to supply.
Skype currently has 3+ main gateways for connecting to the service - the poster is using the initial pre-Microsoft protocol which is mainly retained for devices that can not/will not get an update (like Skype phones, the original Linux client, ...).
"decompiled code" its hard to proof for DMCA.
No, situation was simple, i upload hacked skype binaries in repo for easy distribution. And this is no-no clear case for DMCA takedown. So, it happens.
If you violate their license and use what you learned to make a profit, you're commiting commercial copyright violation. Which is a criminal offense. I don't agree with the law on this matter, but I'd seriously consider getting a lawyer before offering illegal services online.
Also, why not just work on a free software replacement for Skype? That way people could use your code without being threatened by patent suits and other legal arsenal wielded by Microsoft.
I am not. Problem was in different case. I should not post patched skype binaries, needed for reverse engineering. And its okay, what i will be shotdown for use it.
You're currently asking for money to be able to do something which is illegal. I'd consider that "making a profit". You may not be selling it directly, but crowd funding is a type of sale.
"...An objective of this exception is to make it possible to connect all components of a computer system, including those of different manufacturers, so that they can work together."
And the US:
Sec. 103(f) of the DMCA (17 U.S.C. § 1201 (f)) says that a person who is in legal possession of a program, is permitted to reverse-engineer and circumvent its protection if this is necessary in order to achieve "interoperability" - a term broadly covering other devices and programs being able to interact with it, make use of it, and to use and transfer data to and from it, in useful ways. A limited exemption exists that allows the knowledge thus gained to be shared and used for interoperability purposes.
I am Efim Bushmanov skype reverse engineer with first publish of original work on reversing skype client at June of 2011. And i almost done work on create open source version of "Skype Network Compatible" client.
Some info about me: https://nakedsecurity.sophos.com/2011/06/03/skype-protocol-c... https://news.ycombinator.com/item?id=2611299 http://github.com/skypeopensource/
And now I need some help from community. Thats why i do donate call.
Feel free to ask question about current state and any tech question. But, i will be prefer, if possible, not disclosure much, for reason ms-skype dont ruin my work too early by do some changing protocol again. But you feel free to ask some technical details or general question at all of how skype work.
You can read more at: http://skype-open-source2.blogspot.ru/2016/03/call-to-donate...