Understanding the Packet System - Basics of a Packet explained

Page 2 of 3 1 2 3
04/13/2009 19:44 unknownone#16
Quote:
Originally Posted by -Chrome- View Post
12 A1 AA 02 E3 37 B4 01 A0 D9 22 01 01 01 01 01 01 01 01 01 01 01 01 01 01 01 01 4E 0C D1

Just to make it clear:
Since the code is in hex, 2 numbers form one part of decimal number, right?
Like: AA would be then 170 and 02 is 2.
I guess it's then 170 2 in decimal and not 172, right? (would be strange if not)
That sounds unlikely. I can't imagine why they would use such a strange way to store an integer in 16 bits, when using a standard 16-bit integer would work fine. As a hex number, it would be 0xaa02 or 0x02aa, depending on whether they're using little or big endian byte order. (big endian is also called network endian, so if they follow proper programming practices, it'll be that). Also, looking at the timestamp, it certainly does appear to be big endian.
But then, the decimal value of 43522 looks odd. I'm not sure this is the case. What are all those unhiglighted bytes for?

The packet "should" contain it's length at the beginning, or atleast somewhere at a specified location. If This game works on a TCP protocol, holding the length is a requirement, else endless problems ensue.

I'll read the rest another time anyway. Not even looked at the game yet.
04/13/2009 20:54 NovaCygni#17
Quote:
Originally Posted by unknownone View Post
That sounds unlikely. I can't imagine why they would use such a strange way to store an integer in 16 bits, when using a standard 16-bit integer would work fine. As a hex number, it would be 0xaa02 or 0x02aa, depending on whether they're using little or big endian byte order. (big endian is also called network endian, so if they follow proper programming practices, it'll be that). Also, looking at the timestamp, it certainly does appear to be big endian.
But then, the decimal value of 43522 looks odd. I'm not sure this is the case. What are all those unhiglighted bytes for?

The packet "should" contain it's length at the beginning, or atleast somewhere at a specified location. If This game works on a TCP protocol, holding the length is a requirement, else endless problems ensue.

I'll read the rest another time anyway. Not even looked at the game yet.
Yourll see what I mean when you do it... :) Nice to see you around ;)
05/13/2009 21:02 killzone#18
Helpful information. :)
With this info, not only a clientless bot can be done, you can alter any packets and do much more damage to a game.
As Ive remembered, a proxy was used to Create normal characters with GM powers at Rose Online.
06/21/2009 14:40 ibonehj15#19
sir nova
i'm really new here
gonna ask how to use a proxy?
i downloaded your link named hosts.zip
how could i use this to eerrr.
guess try using it in hacking cabal most likely my damage
thanx in advance
06/21/2009 17:13 .Kreative#20
He wasn't on the forum for a while... So i don't think you'll get a guide.
08/20/2010 21:41 .Law.#21
Nova's first post is mostly BS, so I'll unsticky both his packet threads.
11/12/2011 17:59 NovaCygni#22
Quote:
Originally Posted by PunkS7yle View Post
Nova's first post is mostly BS, so I'll unsticky both his packet threads.
Actually its 100% accurate in all cases, Ive reported your mis-action to site admins and have requested a infraction for posting false, misleading and defamatory comments.

As you obviously do not understand the subject you shouldve remained out of it. Google is able to quickly prove everything mentioned in the first post is actually correct so please explain the logic behind you "BS" statement? Ahh so you unticked the WPE thread aswell warning people not to use WPE on cabal because of the lack of Encryption routines?
Your lucky your not a mod anymore cause idve enjoyed having that stripped from you over this... :rolleyes: you opened yourself up for a world of hurt trying to smartass yourself because you thought Id quit the site completely... so noob the educating will begin...

Im presuming you knew I was a Lvl 2 "Hidden Forums" access member... I notice your not... wonder why :rolleyes:


Not Cabal Examle packet beneath hence diffrent Struct... funny that I mentioned that ;)
Quote:
= View PlayerStatus PacketID (0x43) Client>Server

Packet is used to tell the server that you are trying to view another player's status.

===Examples===

(AA) (00 08) (43) (49) (01) (00 72 F5 CD) (00)

===Structure===

<code><pre>
struct ViewPlayerStatus
{
byte Header;
short Length;
byte Type;
byte Incrementor;

byte Unknown1;
long UniqueEntityId;
Quote:
=Cast PacketID (0x0F) = Client>Server
Packet is used to tell the server that you are casting a spell, and the arguments if any for that spell.

==Examples==
*(AA) (00 04) (0F) (0A) (01) (00) - Soothe
*(AA) (00 04) (0F) (11) (03) (00) - Gateway
*(AA) (00 04) (0F) (13) (10) (00)
*(AA) (00 04) (0F) (1A) (34) (00)
*(AA) (00 0A) (0F) (45) (1B) (48 65 6C 6C 6F 2E) (00) - Sage
*(AA) (00 0C) (0F) (49) (17) (00 1C 90 79) (00 0B) (00 06) (00) - Target Spell
*(AA) (00 0C) (0F) (4D) (11) (00 1C 90 79) (00 0B) (00 06) (00)
*(AA) (00 0C) (0F) (57) (31) (00 1C 90 79) (00 0B) (00 07) (00)
*(AA) (00 0C) (0F) (5C) (31) (00 00 1B 29) (00 0D) (00 06) (00)
*(AA) (00 0C) (0F) (5E) (31) (00 00 1B 28) (00 0A) (00 03) (00)
*(AA) (00 0C) (0F) (71) (03) (00 01 56 B3) (00 08) (00 15) (00)
*(AA) (00 0C) (0F) (A5) (03) (00 01 56 B6) (00 00) (00 0D) (00)
*(AA) (00 0C) (0F) (52) (03) (00 1B E7 16) (00 38) (00 34) (00)
*(AA) (00 0C) (0F) (57) (31) (00 1C 90 79) (00 32) (00 37) (00)

==Structure==

<code><pre>
struct Cast
{
byte Header;
word Length;
byte Type;
byte Incrementor;

byte SpellPosition; //a = 01, p = 10, Z = 34

//When Spell has user input data
{
string Input;
}

//When Spell is instantly Cast
{
}

//When Spell targets a Entity
{
long UniqueEntityID;
short X;
short Y;
}

byte Delimiter; // 00

}</pre></code>
Ive made the Packet IDs stand out so you can understand them easiar Punk... would you like me to make them larger for you to?

notice how whats posted matches up with whats been said? are you to stupid to be able to see the signatures in my posts, and you think you wont be slapped with a "Here everyone just to prove PunkSt7le is actually full of BS himself and tried flaming a person who he thought quit, have a WORKING Proxy source-code" :facepalm: (* Is queen doing what we think shes doing :o *)

So... here for people to learn from is a fully compilable VB6 Proxy-Bot source-code for people to study and learn from... go check "4botters . com" for further examples of my Java and C# Proxy bots and source-codes, Or my tutorials on using ollydbg ;)


You see everyone... not only do I know without a shadow of doubt what im saying, I can also prove it all! :mofo:

Thats why if you all remember I was the person who posted the CabalEU Entire Encryption routine :cool:
Code:
namespace Ant1_V3n0M
{
    class Encryption
    {
        public byte[] MainKey;
        uint[] Keys2 = { 0xFFFFFFFF, 0xFFFFFF00, 0xFFFF0000, 0xFF000000 };
        public void Decrypt(ref byte[] packet)
        {
            uint size = (uint)packet.Length;
            Array.Resize(ref packet, packet.Length + 4);
            uint i = 4;
            uint Key = BitConverter.ToUInt32(MainKey, (BitConverter.ToInt32(packet, 0) & 0x3FFF) * 4);
            BitConverter.GetBytes(BitConverter.ToInt32(packet, 0) ^ 0x7AB38CF1).CopyTo(packet, 0);
            uint t = (size - 4) >> 2; //Shift right 2 = divide by 4
            uint t1;
            while (t > 0)
            {
                t1 = BitConverter.ToUInt32(packet, (int)i);
                Key = Key ^ t1;
                BitConverter.GetBytes(Key).CopyTo(packet, i);
                t1 = t1 & 0x3FFF;
                Key = BitConverter.ToUInt32(MainKey, (int)(t1 * 4));
                i += 4;
                t--;
            }
            t1 = Keys2[((size - 4) & 3)];
            t1 = ~t1;
            t1 = t1 & Key;
            BitConverter.GetBytes(BitConverter.ToUInt32(packet, (int)i) ^ t1).CopyTo(packet, i);
            Array.Resize(ref packet, (int)size);
        }
        public struct PacketInfo
        {
            public uint Key; //Encryption basekey
            public uint Step; //Encryption Step
            public uint Mul; //Encryption Multiplier
            public PacketInfo(bool setup)
            {
                Key = 0x6EC03CB4;
                Step = 0;
                Mul = 1;
            }
        }
        public void Encrypt(ref byte[] packet, ref PacketInfo PI)
        {
            uint size = (uint)packet.Length;
            Array.Resize(ref packet, packet.Length + 4);
            if (size < 0x0A)
                return;
            BitConverter.GetBytes(BitConverter.ToInt32(packet, 0) ^ PI.Key).CopyTo(packet, 0);
            uint Key = (BitConverter.ToUInt32(packet, 0) & 0x3FFF) * (uint)PI.Mul;
            Key = BitConverter.ToUInt32(MainKey, (int)(Key * 4));
            uint t = (size - 8) >> 2; //Shift right 2 = divide by 4
            uint t1;
            uint i = 8;
            while (t > 0)
            {
                t1 = BitConverter.ToUInt32(packet, (int)i);
                t1 = t1 ^ Key;
                BitConverter.GetBytes(t1).CopyTo(packet, i);
                t1 = (t1 & 0x3FFF) * (uint)PI.Mul;
                Key = BitConverter.ToUInt32(MainKey, (int)(t1 * 4));
                i += 4;
                t--;
            }
            t1 = Keys2[((size - 8) & 3)];
            t1 = ~t1;
            uint t2 = (t1 & Key) ^ BitConverter.ToUInt32(packet, (int)i);
            BitConverter.GetBytes(t2).CopyTo(packet, i);
            Array.Resize(ref packet, packet.Length - 4);
            t1 = (Key & 0x3FFF) * (uint)PI.Mul;
            t1 = t2 ^ BitConverter.ToUInt32(MainKey, (int)(t1 * 4));
            BitConverter.GetBytes(t1).CopyTo(packet, 4);
            PI.Step = ((PI.Step + 1) & 0x3FFF);
            PI.Key = BitConverter.ToUInt32(MainKey, (int)((PI.Step * PI.Mul) * 4));
        }
    }
}

__________________

Quote:



Ohhhhhh and to answer a massively old question PunkS7yle,,, no Im not Shynd but we are good friends hence why I know his work well... Its not like I walk around with "Member of MHS" team stuck above my head all the time but then its hardly a secret either! Shynd is a friend and thats why I was actively promoting his thread. Also you clearly failed even to be able to read the name at the end of every wall of text because otherwise yourd know everywhere I go I always say........

The-Most-Infamous
Queen-Of-Evil

YOU MUST INSTALL VB6 TO USE THIS PROXY-BOT SOURCE-CODE!!!!
THE BOT IS NOT FOR CABAL ;) ITS THE MOST BASIC PROXY BOT SOURCECODE I HAVE, AND IS SUFFICIENT FOR BEGINNERS TO LEARN THE BASICS OF THE SUBJECT
11/13/2011 15:53 imperialwolf#23
nice perfect.
11/18/2011 18:48 Yamachi#24
Why are you posting data that has NOTHING to do with CABAL in a CABAL subforum? PunkS7yle was right in unstickying this thread, because it mostly IS utter crap, at least where CABAL Online is concerned. This game doesn't use timestamps in every packet (in fact, I believe it doesn't ever use them), the header consists of
Code:
E2 B7 (short size) (short opcode)
, and padding is NOT used in strings, nor is it used in most packets, as most packets are not of a fixed length (strings are almost always preceeded by a length value). The information you provided is completely useless to anyone wishing to learn about CABAL's networking system.

P.S. I find it disgusting that you are trying to lay claim to that encryption code. You know as well as I do that it came from PacketBusters and was written by high6 (source can be found here: [Only registered and activated users can see links. Click Here To Register...]). Hell, it's more-or-less just a copy-paste of the pseudocode generated by HexRays. Pretty simple shit.

P.P.S. The time I spent talking to you allowed me to realise that you really don't know what you're talking about when it comes to CABAL... I remember a long time ago when I asked you a few questions, and you would not give a straight answer that actually made sense. Now that I know more, I know why; You simply didn't know.
11/20/2011 12:13 pornpinoy#25
Sir Yamachi i think MASTER NovaCygni is just mentioning the theories on proxy botting he just post his own script to let us newbies learn the importance of proxy botting and how it cud be applied in cabal... i'm also looking at his codes... haven't tried it coz i don't play the game but still it has the same theories...

All of us have there different views on things around us... you don't have to argue just because you know what the other person don't know... there must be a boundaries of respect to each person... may be the theories of both sides are different but is focus on one goal. TO HELP US LEARN... THE NEWBIES....

PEACE GUYS... BE a professional
11/20/2011 15:51 .Law.#26
Quote:
Originally Posted by pornpinoy View Post
Sir Yamachi i think MASTER NovaCygni is just mentioning the theories on proxy botting he just post his own script to let us newbies learn the importance of proxy botting and how it cud be applied in cabal... i'm also looking at his codes... haven't tried it coz i don't play the game but still it has the same theories...

All of us have there different views on things around us... you don't have to argue just because you know what the other person don't know... there must be a boundaries of respect to each person... may be the theories of both sides are different but is focus on one goal. TO HELP US LEARN... THE NEWBIES....

PEACE GUYS... BE a professional
If you have no idea what-so-ever about what's posted here then don't post, that's not Novas source at all.
11/20/2011 16:02 pornpinoy#27
jizz... its good to be a low class noob sometimes... rather than a big head ppl being rude... Too much logic can kill you sometimes ... jizzz
11/20/2011 17:58 .Law.#28
Quote:
Originally Posted by pornpinoy View Post
jizz... its good to be a low class noob sometimes... rather than a big head ppl being rude... Too much logic can kill you sometimes ... jizzz
Riveting.
11/03/2012 17:11 Queen-Of-Evil#29
Quote:
Originally Posted by Yamachi View Post
P.S. I find it disgusting that you are trying to lay claim to that encryption code. You know as well as I do that it came from PacketBusters
You mean MY Cabal section of PB which I founded and I personally am In charge of? btw yes, I am NovaCygni, and the code is a example from Lukes work there, seeing as I never released the completed Cabot code I was given by Luke/High6 you've clearly never seen the whole thing and have only seen "Snippets" of its code which was posted in the "Research" thread or the abandoned Google thread..... If you wouldve contributed more to the Cabal section or bothered to talk to Luke/Ratza/Myself/BigMac/Julian/Twista/Orion maybe you would've been given further access but clearly you didn't. The only reason you even know of the existence of PB is because I told you about it, the same reason why if you check the first mention of MHS here at epvpers Cabal Section was when I was promoting my mates thread lol... You have failed hard in attempting to be "Discusted" or to be anything at all. Ohhh and at the time of the thread being written the TimeStamp was used in the CC/Shop exchanges, and the Packet shown here was a EXAMPLE of how packets work, considering how the packets are shown by the Proxies I use that is actually the format used. Also, consider yourself Banned from PB aswell :) Its my power and ill abuse it as I see fit. :mofo: Owned!!!!! :mofo:
Quote:
Originally Posted by PunkS7yle View Post
If you have no idea what-so-ever about what's posted here then don't post, that's not Novas source at all.
1) Please refer to your own comment about "no idea what-so-ever" and dont post 2) At what point did I say the source-code example was written by me? I clearly stated "I have" so others could see my comments where based on ACTUAL source-code that was ACTUALLY in use for Cabal and that therefore my opinion was more likely to be correct than say, someone whos just got themselves BANNED from the site they claim to try throwing at my face to discredit me and some idiot mod who clearly wouldn't grasp the first thing about the GENERAL USE OF PACKETS. Whats even more laughable is I actually even told you I was in charge of the Forum section at the other place, which wouldve meant any retard couldve worked out I have/had access to FAR MORE than you, and that furthermore you even KNEW I was SAL Rijndael and that they STILL TO THIS DAY USE MY EC LIST!!!! STILL!!! (* Yes yes, another SAL for Cabal EU who was a bot/hack maker :rolleyes: *)
Please Punk show me a SINGLE thread of a example of ANY of your Packet based Bots? Any examples of ANY of your hacks period???? come on im waiting..... ahhh yes you have none....
Quote:
Originally Posted by pornpinoy View Post
jizz... its good to be a low class noob sometimes... rather than a big head ppl being rude... Too much logic can kill you sometimes ... jizzz
Not all of us just the idiot ones who begged for Mod status to make themselves feel big and powerful and the other idiots who get themselves banned from other sites for being stupid and not realising who there arguing with. In conclusion from this Punk acting on Yamachi's vouching has got Punk to look like a retard and Yamachi to be BANNED from the site he was trying to sound "elite" by mentioning,

Ohhh and I think they must be coloured blind and not able to read the BIG READ WRITING saying the example was NOT for Cabal and was for learning the basics of the subject only...
Yamachi's and Punks brains hurt much?

NovaCygni/QoE

PS> Sorry for threadmongering but I had to correct the idiots and conclude the argument. Feel free to close the thread.
11/03/2012 17:55 .Law.#30
The fact that you come back here and dig this up after being proven wrong over and over again is disgusting, you posted the packet encryption /decryption routine as your own, without mentioning credits to the creator, simply leading people who don't know about it to think that you wrote it.

Yamachi PROVED your ORIGINAL POST was bullshit and now you keep trying to go back to it, why ? The info in the first post is total crap and it's not even close to how a real cabal packet looks, yet again you lead us to think that it's a cabal packet answering to unknownone, and when you got called out for it you shrugged it off by saying it's not related to cabal, well, if it isn't, I don't see why this thread should even exist.


Also, PB is a graveyard, you're a king without a kingdoom, or should I say queen ?



The only one who should be banned here is you for posting false information and stirring up conflict.
Page 2 of 3 1 2 3