Let's Hack d2jsp's Ladder Slasher

Hello elitepvpers.
I'm currently working on a Hack for Ladder Slasher!
The key to the hack is editing the LS.swf you can directly download from d2jsp.*

I've got it decompiled allready!
Editing the Action Scripts to get some advantage is very easy as of what i see in my files.
For example it'd be a 1 minute job to prevent you from dieing at 0hp.

The Problem for now is.
If i compile it again with Flash CS3 i can run the new .swf but once i try to login i get the following Error Msg in Chat:

Login Failed.
Disconnected from server.

I think this Error comes up becouse i did choose the wrong options for the compiler of flash cs3!

So here is what i need:
- basicly a team of ppl are used to flash
- someone or something that tells us the options njaguar used to compile this thing!

Other important informations:
It is possible to run LS.swf on your computer.
I reccomend using the Adobe Flash Player (not the Plugin for your browser) or
IrfanView (you have to download the plugins install pack too - to enter the login informations you have to clipboard them since you cant type anything) since running it in your browser seems to not work.

* [Only registered and activated users can see links. Click Here To Register...]

Quote:

Hello elitepvpers. I tried to decompile some flash but i dont have a fucking clue what to do i already fail at such simple tasks. So there is what i need: - basicly a team of ppl are used to flash for doing my job i repeat: i have no fucking clue what to do. i made some scripts in autoit SO IM A REAL HACKER, believe me

fix'd

Quote:

Originally Posted by emjay fix'd

very constructive thanks

well it seems like you can't hack it by editing the client tho
i've checked this with wireshark and well this appears to only change what you see (if you can get a fresh compiled swf to login)

w/e if someone has another idea post it up and lets work on it

Well you can edit the swf all you want there is no way to re-insert it so that the server uses it in replace of the current one. The only way to hack it that I can think of would be to Tamper with all incoming and out going data and see if you hit the right spot and get something, unless you have someone who excels in action scripts this will be near to impossible for the in-experienced hacker.

link error ??

well, i think you gonna be disconnected 'cause you edited the .swf
maybe the server validates the hash of the client and if you edit it the hash changes, too.

I successfully hacked a flash game called "icy tower", it's a "app", it is embedded in a sozial network, similar to facebook...

The server validates the client (however, but i guess its hash)
in my case the swf called the site .../verify.php and i found a list of return values: "VERIFY_FAIL" and so on...
I would change the url to your own verify.php which returns "VERIFY_SUCCESS" (for example)
Or if you find the verify function you can just delete its call or content...


I don't know the game, but do you have to logg in the website?
If this is the case, its just because you don't send the session cookie...
Then you have to send a loggin package, which posts your acc datas, then you resieve a http header with a cookie identificates the session...
Then you send your request of the .swf and append the cookie...


I hope i could help you, of course you can ask again :)
Sorry that i ended pretty many phrasres with "..." and for my english...