Conquer Packets

They were stupid. They socked normal gear with supergems (ALOT of normal gear) and sold it for 3k. What idiots!

Quote:

Originally posted by behelit@Aug 2 2005, 15:52 the coding was so lame that it only checked the first byte so you could use anything with the same first byte for type id

They may not check even first byte correctly. lol.

ex.)
SuperDragon is 6D AE 0A 00.

SuperDragon:
6D AE 0A 00 -> Iron ore rate 4 8D 5B 10 00 or Vanilla(pack) 8D FC 0A 00
SuperViolet:
95 AE 0A 00 -> Gold ore rate 4 B5 5B 10 00
Normal Rainbow:
7F AE 0A 00 -> EndlessLove 9F FC 0A 00

-20 for the first byte seems to be ok...

Maybe this still works for CO2.0

oops yeh its 6D not 8D but its still the same principle..
i dont get what your saying sutte
are you saying it only check the 2nd half of the first byte?
7F 80 81 - rainbows
60 61 62 - phoenix
61 and 81? i dont think that would work

They could just simply check the least significant nyble of the first byte (which is the low end byte) because there are 15 gem types and 16 possible combinations of 4 bits.

*quickly edited to avoid sillyness*

Grr stupid slow connection, and i can't delete my own posts here either. Please remove this and the next post.

ok guys, one lil question just for researching, what r the mets ids like or dbs?

edit: ok forget it xD

Quote:

Originally posted by behelit@Jul 20 2005, 08:56 has anyone worked out how to reply to the bot check packets? i have a stand alone tg bot but you get arrested becuase it cant reply to the "F2 03" type BC packets

can you tell me what packet you mean?

maybe post the complete packet?

ok, one request to behelit and choco, could someone of you make some kind of patch for 2.0? for what i see it doesnt log the same way u rcv a 30 bytes pckt, copac wont hang on the client maybe window name, coproxy does open, but says wrong acc :P when loging

OK guys, i saw a pretty lucid 0x03f2 packet description earlier int he thread but it didn't really cover jumping. I think I have totally sussed the jump packet. here it is...

Jump Packet

Client to Server - Length:28 PacketID:0x3f2
Length <1c 00>
Type <f2 03>
Timer<57 19 8c 01>
Pawn ID (you) <a4 a4 11 00>
From X <b9 01>
From Y <ca 01>
Always 0 <00 00 00 00>
To X<b6 01>
To Y<d1 01>
Action <8e 00 00 00> (8E=jump)

Len = Length of packet (16 bit low endian)
Type = Packet Type (16 bit low endian)
Jump Timer = Millisecond counter (32 bit low endian)
This value does not seem to start from 0 from connection, I think it is probably the system time from boot up that is being used.
Entity ID = ID Assigned to your character by the server (32 bit low endian)
From XY = Where you jumped from (both 16 bit low endian)
To XY = Where you are jumping to (both 16 bit low endian)
Action = What kind of info the packet is sending (32 bit low endian 0x8e is used for jump but 0x03f2 packets are used for other things)

The server will send the same packet back to the client to acknowledge the jump assuming the jump is valid.


Item on floor packets

Server to Client - Length:20 PacketID:0x044d
Length(20) <14 00>
Type(0x04d4) <4d 04>
Item ID(0x120d59) <59 0d 12 00>
Graphic ID(0x10a1da) <da a1 10 00>
Co-ords(368,312) <70 01 38 01>
Action(1) <01 00 00 00>

Action is 1 for an "item appearing" on the floor and 2 for an "item disapearing" from the floor.
Graphic ID is the client side ID for the graphic that shows on the floor.
Item ID is the unique value the server assigns the item.



Client to Server - Length:20 PacketID:0x044d
Length(20) <14 00>
Type(0x04d4) <4d 04>
Item ID(0x120d59) <59 0d 12 00>
Unknown(0x7914a09a) <9a a0 14 79>
Co-ords(368,312) <70 01 38 01>
Action(3) <03 00 00 00>

Same kind of packet from client to server except that the action value is 3 for "pick up" and there is also an unknown 32 bit value where the graphic id on the server to client packets is. I cant make head nor tails of it. It always seems to be the same value for me no matter what server or character i play with or whatever i pick up. Seems to work using this value anyway.

Quote:

Originally posted by sabbathin@Aug 4 2005, 09:31 ok, one request to behelit and choco, could someone of you make some kind of patch for 2.0? for what i see it doesnt log the same way u rcv a 30 bytes pckt, copac wont hang on the client maybe window name, coproxy does open, but says wrong acc :P when loging

did you put the login servers ip in the ip box? (press stop/reset once you've done it)
it was probably connecting to co1 login, it should work because i've used it on co2 before

Quote:

can you tell me what packet you mean? maybe post the complete packet?

the server send you a BC packet and the client responds with a BC packet except it will take the float value and do some calculation and then send back the result
i believe this is used to cause arrests
if you dont reply properly you get arrested
the BC packet is sent to the client every 10 minutes and you get 2 minutes to reply to it before getting arrested
this is why people randomly get arrested sometimes, either because they take too long to reply because of lag or dropped packets
it only expects a reply when you are either in tg or in a mine while holding a pickaxe

[QUOTE=behelit,Aug 4 2005, 06:24] [QUOTE=sabbathin,Aug 4 2005, 09:31] ok, one request to behelit and choco, could someone of you make some kind of patch for 2.0? for what i see it doesnt log the same way u rcv a 30 bytes pckt, copac wont hang on the client maybe window name, coproxy does open, but says wrong

yes i did, but didnt press stop :P, ok lemme check
edit: woo! its works xD here i go conquista

hELP PLEASE, all of these packets doesnt work on COPAC

Obvious.You dunno how to edit them. It is not copying and pasting the packets.The char ids are different. its like a guide for you to identify and change where they are needed.

well first let me switch to my tao and cast pray on this thread :P

openwarhouse(dunno if itll work if its locked, ill check later):
10 00 EF 07 08 00 00 00 00 00 00 00 00 00 00 00 ; ..ï.............

deposit 5k:
14 00 F1 03 08 00 00 00 88 13 00 00 0A 00 00 00 ; ..ñ.....?.......
53 B2 5D 13 ; S²].

withdraw 5k:
14 00 F1 03 08 00 00 00 88 13 00 00 0B 00 00 00 ; ..ñ.....?.......
D7 BF 42 13 ; ׿B.

10 00 EF 07 2C 00 00 00 00 00 00 00 00 00 00 00 ; ..ï.,...........

those were all for TC btw.

open market WH:
10 00 EF 07 2C 00 00 00 00 00 00 00 00 00 00 00 ; ..ï.,...........

edit: damn! doesnt open the warehouse, bring sup the password input box