Decrypt packets

07/21/2008 12:59 1111111111111111111111111#1
Using programs like WPE/rPE you get the packets of the game but many times they are encrypteds... so how can decrypt them? what need to learn or to start to look for?.
Thx.
07/21/2008 13:19 reijin#2
Quote:
Originally Posted by 1111111111111111111111111 View Post
Using programs like WPE/rPE you get the packets of the game but many times they are encrypteds... so how can decrypt them? what need to learn or to start to look for?.
Thx.
disassamble the game
understand the code
search the crypt algorythm
write a program to decrypt the info.
07/24/2008 10:24 1111111111111111111111111#3
Thx you it really helped, already disassembled it and more or less understand the code, only have to look for the algorythm, but before will read some more about reverse engineering, its kinda a confusing matter.
07/24/2008 12:08 reijin#4
Quote:
Originally Posted by 1111111111111111111111111 View Post
Thx you it really helped, already disassembled it and more or less understand the code, only have to look for the algorythm, but before will read some more about reverse engineering, its kinda a confusing matter.
PeiD has a plugin that detects several Encryption Methods and gives you the offsets of the code.
07/24/2008 12:23 Atheuz#5
Quote:
Originally Posted by 1111111111111111111111111 View Post
Thx you it really helped, already disassembled it and more or less understand the code, only have to look for the algorythm, but before will read some more about reverse engineering, its kinda a confusing matter.
BP the w32_recv, depending on the game, the needed call is in reach of that function.
07/24/2008 17:11 1111111111111111111111111#6
Quote:
PeiD has a plugin that detects several Encryption Methods and gives you the offsets of the code.
Yes but think that PeID only works with .exe right? And the one im trying to look into is a browser game, made in Javascript. Anyway will remember it, can be useful for others games.

Quote:
BP the w32_recv, depending on the game, the needed call is in reach of that function.
Ty, gonna take an eye although its being tiring.
07/24/2008 20:01 Atheuz#7
Quote:
Originally Posted by 1111111111111111111111111 View Post
Yes but think that PeID only works with .exe right? And the one im trying to look into is a browser game, made in Javascript. Anyway will remember it, can be useful for others games.



Ty, gonna take an eye although its being tiring.
Sir, why the hell are you using WPE for a browsergame and trying to decrypt packets?
07/24/2008 20:13 verT!c4L#8
if its based on javascript you should try to do something with that.
07/27/2008 15:54 1111111111111111111111111#9
Quote:
Sir, why the hell are you using WPE for a browsergame and trying to decrypt packets?
Boredom obviously... main reason to play a game. Seriously, there are browsergames more complex than what we probably think when mention it (a game like tetris etc.) and have curiosity for it, besides suppose that will be easier to do all this stuff in a browsergame than in the ones of download etc.
07/28/2008 17:10 Atheuz#10
Quote:
Originally Posted by 1111111111111111111111111 View Post
Boredom obviously... main reason to play a game. Seriously, there are browsergames more complex than what we probably think when mention it (a game like tetris etc.) and have curiosity for it, besides suppose that will be easier to do all this stuff in a browsergame than in the ones of download etc.
To use WPE on a Browsergame is more a hinderance than helpfull, you should atleast use something like HTTPLiveHeaders or Fiddler. A Browsergames Operates with GET/POST and in WPE it is a mess and won't record and send the whole packetlength.
07/28/2008 22:49 1111111111111111111111111#11
Didnt know about Fiddler, will take an eye, but actually WPE used to work fine, you could sniff packets, send etc. and all worked (freeze joins, send ppl to another room, look for weapons without have to go barrel after barrel...) well and still can do it, but now only sniff the same packet every time (with just little differences, 5-6 symbols) and crypted.
07/29/2008 00:46 Atheuz#12
Quote:
Originally Posted by 1111111111111111111111111 View Post
Didnt know about Fiddler, will take an eye, but actually WPE used to work fine, you could sniff packets, send etc. and all worked (freeze joins, send ppl to another room, look for weapons without have to go barrel after barrel...) well and still can do it, but now only sniff the same packet every time (with just little differences, 5-6 symbols) and crypted.
You can make a filter then and replace the dynamic values, so it will ignore them and you can trigger it on any occasion you like.