wsgup (pronounced "what's up") is a bundle of command line console programs for testing Wireless@SG credential decryption and recovery upon account registration as a user of the free public hotspot network. These programs are functionally identical except rewritten in different programmming languages.
Each program demonstrates:
- string manipulation (e.g. formatting, interpolation, concatenation)
- file reading
- JSON parsing
- data encoding and conversion (binary, hex and UTF-8)
- AES-CCM decryption
They are available in various programming languages as short programs in 100 to 200 lines. Implementation languages include: C, C#, Dart, Go, Java, JavaScript (Node.js), Kotlin, Perl, PHP, Python, Ruby, Rust, Swift and Visual Basic.NET.
The purpose of wsgup is simply to explore the ease, challenges and differences in implementing an identical program in different programming languages. Whenever possible, I have tried to do a line-by-line porting to mostly keep these implementations identical and easier for tracing and comparison, except when the different language syntax or library APIs do not permit I may write with an extra line or two with greater verbosity.
This is treated as a personal hobby project to learn new programming languages.
Thus, we should note the followings:
Note
- Nothing should be assumed to be working or suitable for real-world production use
- I am not accepting pull requests to integrate any enhancements or bugfixes
As a matter of fact, it is the first time experience with writing a working program in Go, Rust and Ruby. So I may miss out on language constructs or shorthands that could have kept the code more concise.
Wireless@SG is a free nation-wide Wi-Fi hotspot network in Singapore, offering public access to Wi-Fi network since 2005. Users wanting to use this free Wi-Fi hotspot network are required to register using their identity and mobile phone number. This is done via the officially provided Wireless@SGx App.
A (possibly cybersecurity professional) zerotypic has analyzed it including the network traffic from the user registration API. He/she has also described his/her findings in a blog post. In it, he/she describes the sequence of network requests, data sent/received, and the cryptographic algorithm and settings.
Based on the information provided in his blog post, and after studying his/her
wasg-register.py tool, a very small subset of codes relevant
to the decryption process is then extracted and re-implemented in wsgup.
Tip
The official Wireless@SGx App from Infocomm Media Development Authority (IMDA) is widely used and supported. Thus, it is the recommended tool for users looking to register (or re-register) for an account to connect to Wireless@SG public hotspots for free Wi-Fi access in public places across Singapore. Supported platforms are Windows, MacOS, iOS and Android (Google Play and Huawei App Gallery).
On unsupported platforms like Linux, users can turn to the zerotypic's Python implementation. It is the one widely adopted and used by Linux users.
In fact, there is no reason to use wsgup ever.
The sole purpose is to try out credentials decryption and recovery from AES-CCM encrypted data as returned by the Wireless@SG account registration API in various popular programming languages, runtimes and libraries.
These programs focus solely on the AES-CCM decryption of the generated credentials. Encryption done by the API in the backend is not covered.
Simplicity is the core tenet for these small console CLI programs. They are not designed to facilitate the entire user account registration process; they only simulate the decryption of generated credentials based on the cryptographic information known thus far.
What these programs do is to simply read in test data saved in 2 JSON files:
shared/register.jsonshared/testdata.json
These two required files are NOT available out-of-the-box.
A Node.js-based tool is provided in shared folder which must be run to
generate these 2 files sample containing random test data.
$ cd shared
$ ls
README.md main.js
$ node main.js
$ ls
README.md main.js register.json testdata.json
$ cd ..
You may also verify the programs against real-world data. For this, you have to intercept and capture their own test data using a Man-in-the-Middle HTTPS proxy or network sniffing tools like Wireshark.
You can then invoke the various test programs. For example:
$ cd bin/c
$ ./wsgup
$ cd ../dart
$ ./wsgup
$ cd ../go
$ ./wsgup
$ cd ../rust
$ ./wsgup
Note
Some of these programs require some installation of dependencies before use,
especially those in interpreted scripting languages.
Read their respective README.md for specific instructions on how to install
their required libraries and components.