Quote:
Originally Posted by DeathByMoogles
If we're lucky maybe saweet will answer :P
If 9D is anything like Conquer Online, we need to decrypt the packets using a key, and then the right checksum will automatically be appended to the packets (I THINK)
Maybe Saweet can enlighten us?
Saweet, oh Saweet. Where are you? Do you see what happens when you leave for three days?
|
The key can be found inside the launcher if I'm not mistaken.. It takes someone who knows what he's doing to find out where exactly the code is crypted though -.-"
There by the way is a tut somewhere here.. It uses this logic:
Find out the basic 'structure' of the chat-package using WPE
- Like.. 00 00 01 = world chat, 00 00 02 = party chat, 00 00 03 = whisper etc.
Next - find out what's the message you type (it's a certain part changing alot)
Once done, start using OllyDbg - set a BP somewhere you THINK the key is, and manually step true code.
- Type in-game "aaaaAAA" and check ollydbg for that > compare with what u get from WPE.
- Now scan the memory using OllyDbg for that message (aaaaAAA),
- ... Dunno how to finish the job. But you need to make use of OllyDbg's function that it show's all the changed hex-code in red (or black idk), so there you can check at what function the plain text aaaaAAA changes in something you get in your WPE log's/packets.
Now that you've found what function encrypts, you can start looking for the method/key used (Hopefully some X0R'ing or similar simple - but probably not, although the code is ageing..)
, as I'm more interested in figuring out stuff with ollydbg than hacking D9 :3
