pypush VS nacserver

It’s written in Go and hasn’t been opened yet but it’s heavily based around this project: https://github.com/JJTech0130/pypush

neither this nor search is very much a hard problem as it’s been solved many times over already. The harder part is that beeper never reverse engineered anything, they bought the POC from a high school kid that did it as a project: https://github.com/JJTech0130/pypush meaning they never had the ability to do it in the first place

This should have been obvious to anyone who saw the code where it simply contained the raw literal string `FAIRPLAY_PRIVATE_KEY = b64decode(“…”)`. I suppose now we’ll see how accurate the commenter’s claim “if this becomes a problem, I know how to generate new keys” is.

https://github.com/JJTech0130/pypush/blob/main/albert.py#L16

I had copied it from JJ’s official GitHub website https://github.com/JJTech0130/pypush

Beeper open-sourced their reverse engineering effort, which means that there will now be a significant ongoing community effort to maintain the solution. It would be very difficult to stop the Beeper solution from working without also breaking iMessage clients running on older versions of MacOS or iOS. Apple may be able to keep new iMessage features locked up, but it would probably only be a matter of time before the community manages to reverse engineer those features, as well.

Here's the code that Beeper bought for this: https://github.com/JJTech0130/pypush

He also has to fake being an apple device using real device identifiers. https://github.com/JJTech0130/pypush/blob/main/emulated/data.plist

The kid who put this together is using apple binaries from macos to make it work. Even hosts them on his github account (dumb) https://github.com/JJTech0130/nacserver

To me, the more concerning paragraph is the next one:

> Note: The binary that generates this “validation data” is highly obfuscated. pypush sidesteps this issue by using a custom mach-o loader and the Unicorn Engine to emulate an obfuscated binary. pypush also bundles device properties such as the serial number in a file called data.plist, which it feeds to the emulated binary.

The binary being emulated was extracted from an old macOS version and is hosted on GitHub: https://github.com/JJTech0130/nacserver. Apple obviously holds the copyright on this binary, and issuing a takedown would be the easiest way to sink this project. I wonder if the Beeper Android app also includes the file, that would be legally problematic.