[Proof of Concept]Why not to trust a public multi-client (bananasplit in asm)

Quote:

Originally Posted by _fobos_ I will look for it aswell and yes, certainly it will have uses I tried to find the emotes i set breakpoints on all the BtnClick.wav and i hit a bp when i opened it, it just didnt get me far so i gave up, then i searched the same way for pathfinding only instead i put a bpon all NDSound.DXPlaySound and that got me further and got me to patch the pathfinding button to unequip all.

I'm pretty sure that conquer reads like, #02 instead of an actual emote when it sends. Whisper an emote to another character of yours, and check the chatlog, it says #02 or whatever still. So I think all it is, is conquer seeing #24, and the client just has it show the emote, i dont think you send an emote as data

Quote:

Originally Posted by Force.Of.Spite I'm pretty sure that conquer reads like, #02 instead of an actual emote when it sends. Whisper an emote to another character of yours, and check the chatlog, it says #02 or whatever still. So I think all it is, is conquer seeing #24, and the client just has it show the emote, i dont think you send an emote as data

No not an emoticon, haha
meant like Wave, Kneel, Sit etc.. :)

Quote:

Originally Posted by darkirax hi i'm having troubles in this edit. i'm noob in asm I try to found LEA EDI,DWORD PTR DS:[ESI+FA8] to edit and put de JMP but i can't find LEA EDI,DWORD PTR DS:[ESI+FA8] the addres isn't the same and i try with Control+F but it say unckown identifier. can anybody help me?

Yea olly doesn't like that command for some reason, I couldn't cut and paste it so I had to go binary copy > paste

Quote:

Originally Posted by _fobos_ No not an emoticon, haha meant like Wave, Kneel, Sit etc.. :)

Ahh, :P, I was reading too fast I guess xD

ok i'll try to download the older patch and i try it thaks

i download de patch version 5063 but it dont have conquer.exe how i can get the old conquer.exe?

Quote:

Originally Posted by darkirax i download de patch version 5063 but it dont have conquer.exe how i can get the old conquer.exe?

ftp://69.59.179.232/enzf/5050-5063.exe

thanks

So, *M*, you're saying we should take care when we're using other people's multi-client.

What about all those other kind of hacks that changes the CO memory, like speedhack? Shouldn't we be afraid of those too? In reality, they could change the memory and make a bananasplit too, just like a multi-client. :o

Yes, anything that alters memory in any way could be doing that.

For example the Warehouse password bypass thing I got could basically drop all your items and then disconnect you. (Same as bananasplit, but this would happen EVERY time you click an npc that has the "normal" dialog.)

This is one of the reasons mod should be actually testing these things and be able to read what the program does instead of just running it through a virus scanner which shows NOTHING in these cases.

i was use speed hack alws my clint go into pk mode and my cherector bcome helf nacked
am luky i gess i got dc same time but whin it work it work none dc only pk mode and i go blue and same time dead be caz i plvl on red devils in teaf high lvl tro and war thet was funy i got pked and person go no blinks i bring all freinds guild and pked heme in the end thet was my speed hack i was uninstal conquer client and setup new this keep hapn to me
i stop use speed hack and problem fixed...ohh and from thet time i start scan all in online
[Only registered and activated users can see links. Click Here To Register...] it scan your filse on 32 difrent anitvirus system engins idc if ther 1/32 i do not use this stuff only 0\32 and am alws test noobs bfor it work on my mine

Quote:

Originally Posted by IAmHawtness So, *M*, you're saying we should take care when we're using other people's multi-client. What about all those other kind of hacks that changes the CO memory, like speedhack? Shouldn't we be afraid of those too? In reality, they could change the memory and make a bananasplit too, just like a multi-client. :o

Also remember that just becuase a program doesn't say it modifies memory or whatever doesn't mean it doesn't. Someone could release a simple akh file, like ELSE or whatever, and bind it with something that does modify memory, or modifiy an actual file, like the conquer.exe. Can't overlook things just because they don't say they do something which can fuck ur shit up.

Quote:

Originally Posted by Force.Of.Spite Also remember that just becuase a program doesn't say it modifies memory or whatever doesn't mean it doesn't. Someone could release a simple akh file, like ELSE or whatever, and bind it with something that does modify memory, or modifiy an actual file, like the conquer.exe. Can't overlook things just because they don't say they do something which can fuck ur shit up.

Yeah, well, my firewall is pretty fast to detect things like that (programs trying to modify other files/programs):p
COMODO ftw =}

Quote:

Originally Posted by IAmHawtness Yeah, well, my firewall is pretty fast to detect things like that (programs trying to modify other files/programs):p COMODO ftw =}

Don't rely on your firewall/antivirus to not do it's job properly. Once someone is in your machine, it's no longer your machine, they have as much control as you do, and just as you can turn off your firewall, so can they.
Do you run the machine as an admin by any chance? Unless you have some more strict permissions in place, there's nothing else stopping them (well, other than some difficulty in programming, but anything can be done).

Quote:

Originally Posted by unknownone Don't rely on your firewall/antivirus to not do it's job properly. Once someone is in your machine, it's no longer your machine, they have as much control as you do, and just as you can turn off your firewall, so can they. Do you run the machine as an admin by any chance? Unless you have some more strict permissions in place, there's nothing else stopping them (well, other than some difficulty in programming, but anything can be done).

My Windows account isn't an admin :).
I'm pretty cautionous about my computer, but yea, I know it's not that hard to get control over a computer :p.
I do, however, know how to avoid most viruses/backdoors/hackers, etc.