[Tutorial] Packets - Sniffing & Analysis

Page 2 of 10

08/25/2008 18:19 Cholik#16

Quote:

Originally Posted by link

It's wrong, there's no reason the bytes should be reversed.

Well thats how values are stored in the memory... Little Endian.
And if you want to convert it from hex to dec using a normal calculator you have you reverse it, else you will get a wrong (or an other) value...
At least thats how I learned it ... if i'm wrong correct me.

//Edit: Well thats the Byte-Order i've seen in some MMORPGS for now... if there's something else just tell me ;)

08/25/2008 19:21 Cholik#17

Well if you know it better, why not explain it ? It's easy to say "you're wrong", then go and read your wikipedia-article and explain it to me then, k thx ;)

PS: "It won't help if you throw some keywords around :P"
Well i thought you would feel familiar with those keywords :)

08/25/2008 22:32 Cholik#18

lol dude... you just told the same thing i basically told before .... but who cares .... wikipedia rules ;)

its not false facts ;) you should just get your facts right and check some games ... a lot of them do use the endianness order even in their packet protocol for the values, of course not all ... the values can also be transfered in a normal order ... but thats just a tutorial with an example ....

so if i'm wrong you can surely tell me why in a packet the server sends to the client telling the client which port the worldserver is listening on is sent as D0 07 (original copy from the packet) ... the port ist 2000 ... so don't tell me thats a normal way to produce values. since D0 07 (in a calculator) transformed to hex isn't 2000 ... so thats the basic theory. i just wanted to show that for most beginners when using a calculator it will produce wrong values... and thats what i said in my tutorial. if you don't like it... i dont care ;)

//edit: i mean, dude i don't want to be unfriendly, but if you want to give a feedback than do it with an explanation and not just "ahaha nooob thats wrong" ... although its not wrong, cause i think you just didn't get what i meant... (see the explanation with the calculator above)

08/25/2008 23:31 MeUndercover#19

The Tut-Reader should try it on their own, cause its vary.
You're both are right and i think it was an good idea from al_j to show how reversing works.

-MeUndercover

08/26/2008 21:18 Lestat86#20

Well done i think its one of the best tutorials i have ever seen.
Easy to understand and like you wanted it to be for the basic things.
But i would realy like it to see if anyone can make a second tutorial about the encryption methods.
GREAT WORK :D
Sincerly Lestat86

08/27/2008 05:39 jmblen1#21

i cant sniff anything on asdastory.exe why is it so?

08/27/2008 09:13 mr.rattlz#22

Talking about Endiannes:
Fact is, integers are indeed stored on x86 processors as little endian.
In computer networks you usually use big endian though:
Endianness - Wikipedia, the free encyclopedia
So, if you program some networking software for x86 processors you have to think, if you want to use the native way of storing integers, or the networking standard way.

08/27/2008 18:34 Cholik#23

Quote:

Originally Posted by mr.rattlz

Talking about Endiannes:
Fact is, integers are indeed stored on x86 processors as little endian.

Ok seems like i didn't mess up with those ;e

@jmblen1: Did you use the normal executable or one with bypassed gameguard ?
And (although i dont remember what the game was using) did you activate the Winsock 2.0 stuff in the WPE-Options (see the first parts of my tutorial) ?

09/01/2008 04:58 jmblen1#24

wpe options is the thing i forgot thx...btw the no gg asdastory.exe you released is outdated and cant use wpe anymore on it cos gg is running ^_^

im having fun with wpe...but im so so noob on it..a little only is what i can do

09/01/2008 16:04 Cholik#25

just keep it up and learn and play around, you'll make it sooner or later ;)
i'll try to release a new bypassed exe as soon as possible, quite busy atm ;/

09/03/2008 16:51 ~Yuki~#26

Trockener stoff....

09/03/2008 17:39 Cholik#27

Well then i hope you wasted your expensive time reading this tutorial ;)

09/16/2008 21:17 AvengerXXX#28

irgendjemand hier der evtl zuviel zeit hat und gut eng-ger kann und mir das tutorial �bersetzt?

09/17/2008 10:03 verT!c4L#29

Mach das mal lieber selbst. Es gibt sehr viel mehr Information zu finden zu diesem
und anderen Themen und der gro�teil is halt auf Englisch.
Je fr�her du damit anf�ngst, desto besser f�r dich...

09/17/2008 14:36 AvengerXXX#30

wie kann ichs mir denn selbst sagen wie es geht wenn ich nicht ein solch gutes deutsch kann?

Page 2 of 10

Last »