Proof of Concept emerges, WP7 Marketplace might actually be hacked!

WPCentral reports that they have seen the tool in action. Created by a “white hat” developer, the application is called “FreeMarketplace“.

The tool performs the original steps outlined in the whitepaper by;

1. Downloading the entire marketplace using a C# code snippet that was provided
2. Circumventing the maximum application sideload limit, which was originally outlined on WithinWindows
3. Enabling deployment of the disabled XAP files by deleting a file header inside the XAP “Zip” itself
4. Activating the disabled marketplace XAP by replacing an entry assemly (the example used an open source app which had the debug assembly freely available
5. Removing the XAP’s security signatures
6. Replacing the marketplace published entry assembly with a facade debug assembly

Below is a video that shows how the tool works;

According to WPCentral;

While many will condemn us for “promoting piracy,” we respectfully disagree. We have heard many complaints from developers about this weakness for months now and it is their right to know about the flaws in the system. We are confident Microsoft will work hard to implement a stronger DRM system, in part due to this proof-of-concept demonstration.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: