Find out the #IP address through a call to #Telegram

https://medium.com/@ibederov_en/find-out-the-ip-address-through-a-call-to-telegram-a899441b1bac

Github: https://github.com/n0a/telegram-get-remote-ip

#tg

How to trace IP of someone's id in telegram using Golang!

Code:
package mai

import (
"fmt"
"log"
"os"
"os/exec"
"strings"
)

func main() {
const CAP_PATH = "/tmp/tg_cap.pcap" // Temporary path for pcap capture file
const CAP_TEXT = "/tmp/tg_text.txt" // Temporary path for text file with information
const CAP_DURATION = "5" // Capture duration in seconds

// Get the external IP address of the device
ipCmd := exec.Command("curl", "-s", "icanhazip.com")
ipOutput, err := ipCmd.Output()
if err != nil {
log.Fatal("Failed to get IP address:", err)
}
MY_IP := strings.TrimSpace(string(ipOutput))

// Check if Wireshark is installed
_, err = exec.LookPath("tshark")
if err != nil {
log.Println("[-] Wireshark not found. Try installing Wireshark first.")
log.Println("[+] Debian-based: sudo apt-get install -y tshark")
log.Println("[+] RedHat-based: sudo yum install -y tshark")
os.Exit(1)
}

fmt.Println("[+] Discovering User's IP Address on Telegram using Golang")
fmt.Println("[+] Starting traffic capture. Please wait for", CAP_DURATION, "seconds...")

// Start traffic capture with Wireshark
captureCmd := exec.Command("tshark", "-w", CAP_PATH, "-a", "duration:"+CAP_DURATION)
captureOutput, err := captureCmd.CombinedOutput()
if err != nil {
log.Fatal("Traffic capture error:", err)
}

fmt.Println("[+] Traffic captured.")

// Convert pcap file to readable text file
convertCmd := exec.Command("tshark", "-r", CAP_PATH)
convertOutput, err := convertCmd.Output()
if err != nil {
log.Fatal("Error converting pcap file to text:", err)
}

err = os.WriteFile(CAP_TEXT, convertOutput, 0644)
if err != nil {
log.Fatal("Error writing text file:", err)
}

fmt.Println("[+] Pcap file successfully converted to text.")

// Check if Telegram traffic is present in the text file
if strings.Contains(string(convertOutput), "STUN 106") {
fmt.Println("[+] Telegram traffic found.")

// Extract the IP address from the text
extractCmd := exec.Command("cat", CAP_TEXT, "|", "grep", "STUN 106", "|", "sed", "'s/^.*XOR-MAPPED-ADDRESS: //'", "|", "awk", "'{match($0,/[0-9]+\\.[0-9]+\\.[0-9]+\\.[0-9]+/); ip = substr($0,RSTART,RLENGTH); print ip}' | awk '!seen[$0]++'")
extractOutput, err := extractCmd.Output()
if err != nil {
log.Fatal("Error extracting IP address:", err)
}

TG_OUT := strings.TrimSpace(string(extractOutput))
IP_1 := strings.Fields(TG_OUT)[0]
IP_2 := strings.Fields(TG_OUT)[1]

var IP string

// Check if the IP address is ours or the recipient's
if MY_IP == IP_1 {
IP = IP_2
} else if MY_IP == IP_2 {
IP = IP_1
} else {
IP = "[-] Sorry. IP address not found."
os.Exit(1)
}

// Get host information for the IP address
hostCmd := exec.Command("host", IP)
hostOutput, err := hostCmd.Output()
if err != nil {
log.Fatal("Error getting host information:", err)
}

fmt.Println("[+]")
fmt.Println("[+] IP Address:", IP)
fmt.Println("[+] Host:", strings.TrimSpace(string(hostOutput)))
fmt.Println("[+]")

// Clean up temporary files
err = os.Remove(CAP_PATH)
if err != nil {
log.Fatal("Cleanup error:", err)
}

err = os.Remove(CAP_TEXT)
if err != nil {
log.Fatal("Cleanup error:", err)
}

fmt.Println("[+] Cleanup completed.")
} else {
fmt.Println("[-] Telegram traffic not found.")
fmt.Println("[!]")
fmt.Println("[!] Run this script only >>>AFTER<<< the response.")
fmt.Println("[!]")
os.Exit(1)
}

fmt.Println("[?]")
fmt.Print("[?] Run whois", IP, "? (Y/N): ")

// Check if the user wants to run the whois command
var answer string
fmt.Scanln(&answer)

Telegram Maltego

a free set of Transforms for Maltego that enables OSINT investigations in the Telegram messenger.
Initially designed solely to simplify de-anonymization through stickers/emojis, it has since expanded far beyond its original functionality, allowing for more advanced investigations.

Features:
Getting Telegram profile by phone number
Getting a linked Telegram channel group
Getting a list of Telegram group administrators
Getting a list of authors of a Telegram channel
Collect all forwarded & similar channels by Channel
Search for deleted posts and generate links to view them
Indexing of all stickers/emoji in Telegram channel
Identification of the creator of a set of stickers/emoji

https://github.com/vognik/maltego-telegram

#tg #telegram

🔋Bluetooth settings on Android will soon show your device's battery level using circles

Google is working on a minor change to the Bluetooth device details page to make it more polished.

A screenshot of the new UI change can be found in this article.

Android 15 QPR2 could fix this lock screen widget oversight

When Google reintroduced lock screen widgets in the last quarterly release of Android 15, they weren’t resizable. But that could change soon.

More details + first look at this change can be found in this article.

Microsoft is starting to warn users about changes in Android 15 that affect certain notifications when mirrored to Phone Link.

As I previously reported, Android 15 automatically redacts certain sensitive notifications (like those with OTP codes in them) from being sent to "untrusted" notification listeners. These notifications will instead say "sensitive content hidden."

Microsoft should be able to overcome this on devices where Phone Link is preinstalled and where the Companion Device Role for Computer is requested, as apps holding the Computer Role are granted the RECEIVE_SENSITIVE_NOTIFICATIONS permission that bypasses this redaction. So far, I think the Phone Link service only requests this role on Samsung devices running One UI 6.1.1 and later.

BREAKING: Xiaomi Flagships have Stage 5 Terminal Cancer and can die anytime

In the launch video (around 2:04:00) I would summarise what Lei Jun said:

During writing HyperOS their engineers made a "discovery" that the UFS storage chips have 10GB+ storage reserved for "性能的优化" (Performance optimizations, so likely refers to UFS cache?)
They apparently optimised this to use much less space and so freeing up 8/16GB on their 256/512GB storage models, giving them "264/528GB" of actual usable storage.

It looks good on paper as Xiaomi fanbois will fap to anything Xiaomi advertised, but let's have a look at BTS.

1. Volatile Data Loss Risk: The reserved space in UFS (Turbo Write region) isn’t meant for permanent storage. If repurposed for user data, it’s significantly more volatile, increasing the risk of random data loss during power failures or crashes.

2. Long-term Durability: Repurposing this space for user data could lead to increased write amplification and faster wear on the storage, making your device die randomly even just after warranty expires, eventually making customers buy a new Xiaomi device & Xiaomi thereby making money.

3. Performance Trade-offs: UFS 4.0 relies on this reserved space for write acceleration. Reducing it could lead to slower write speeds, especially for large or sustained workloads when you game or use AI models.

The GPT Backup exists in Over-Provisioning Space.
The GPT (GUID Partition Table) has two backups: one at the beginning of the block device and another at the end. "If" Xiaomi's approach to reducing the reserved over-provisioning space affects the area where the GPT backup resides, it could lead to the loss of Partition Information as if the GPT backup stored in the over-provisioning space is compromised or overwritten, critical partition mapping can be lost, rendering the storage unreadable or corrupt, thus making the device instable and even loss of data in worst-case scenarios.

Wait, it's not over yet.
Xiaomi’s implementation of ZRAM means both your apps and the system are writing into the same limited SLC cache. Here’s why this is a catastrophic design flaw:

1. Overloading the SLC Cache: Turbo Write relies on this SLC cache for fast writes. With ZRAM and user data writing into it, the cache could be perpetually full, leading to severe write amplification and performance degradation.

2. System Instability: ZRAM adds constant write pressure on the already reduced cache. When combined with high disk activity from apps or downloads, it could lead to slowdowns, freezes, or even storage failures.

Special Thanks to developers @xLOCKnLOADx @Lunarixus, Dyneteve and @theVakhovskeIsTaken for revealing the side-effects of this "discovery" by Xiaomi.

Follow @TechLeaksZone

We tried SimpleX Chat, a private, decentralized communications app. 

https://news.itsfoss.com/simplex-chat/

Microsoft Removes TPM 2.0 Requirement for Windows 11 on Older PCs
https://www.gizchina.com/2024/12/12/microsoft-removes-tpm-2-0-requirement-for-windows-11-on-older-pcs/

How to Unlock an Android Phone Without a Password
https://www.gizchina.com/2024/12/13/how-to-unlock-android-phone-without-password-2/

WhatsApp Enhances Group Video Call Features with Exciting Updates
https://www.gizchina.com/2024/12/13/whatsapp-enhances-group-video-call-features-with-exciting-updates/

ChatGPT’s Game-Changing Live Video Feature Arrives
https://www.gizchina.com/2024/12/13/chatgpts-game-changing-live-video-feature-arrives/