Getting packets

What should i do to Extract Packets and when im saying this i need Advanced Explaining ..ABout required progs and requirments ..i can Build Packets but i cant Extract them so i need Help and sm1 told me a program Named Ollydbgwhat does it do ??

The fact you can structure them but cant find out how to get the packet dump kinda confuses me, If your good, use olydbg and reverse the packets, otherwise get a packet dump using a Packet sniffer.

well i do need Explaining like from where can i get packet sniffer and what does it do exactly cuz i heard that All packet sniffer r outdated and beside that How to extract offsets too

Here.... I wrote a tutorial a while ago. I didn't publish it here though because of the feedback I would get from members....

[Only registered and activated users can see links. Click Here To Register...]

Quote:

Originally Posted by Fаng Here.... I wrote a tutorial a while ago. I didn't publish it here though because of the feedback I would get from members.... [Only registered and activated users can see links. Click Here To Register...]

Cool Guide but i have couple of questions :-

1- u mentioned 2 ways of getting Packets which are either using packet sniffer or guessing So the question here is How to make packet sniffer and is there any working one now ?

2- what about the offests of flags effects how to bring them too

3- What does ollydbg do and is it Efficient in using or there r better ways ?

Quote:

Originally Posted by shadowman123 Cool Guide but i have couple of questions :- 1- u mentioned 2 ways of getting Packets which are either using packet sniffer or guessing So the question here is How to make packet sniffer and is there any working one now ? 2- what about the offests of flags effects how to bring them too 3- What does ollydbg do and is it Efficient in using or there r better ways ?

1. Packet Sniffers are just reflectors. Unfortunately, you would need the new cipher to packet sniff real co. We know quite a lot of packet structures atm though, so it isn't that hard to guess offsets anymore.

2. Depends on your patch. They're found in the character spawn packet (1014/10014) and sent to the client with the update packet (1017/10017).

3. Ollydbg shows machine code. C# and other high level programming languages compile into machine code. With ollydbg, you can step into the machine code like you'd step into C# ... but it's complicated to learn. That's why we have high level languages (to make programming easier).

Quote:

Originally Posted by shadowman123 Cool Guide but i have couple of questions :- 1- u mentioned 2 ways of getting Packets which are either using packet sniffer or guessing So the question here is How to make packet sniffer and is there any working one now ? 2- what about the offests of flags effects how to bring them too 3- What does ollydbg do and is it Efficient in using or there r better ways ?

1: All a sniffer is is a program which intercepts and reads incoming/outgoing packets in decrypted (or pre/post encrypt/decrypt) form. There are currently no public proxy based sniffers but if you get the send/receive address you could use memory hooks to read from the send/receive functions inside the client (hawtness' hook based framework is public. You just need to figure out and update the memory addresses)

2: Offsets just mean where data goes in the packet. You mentioned status effects which is a little complicated to explain if you don't understand how data type works...

GENERAL over view...

I won't go into any deep explanation but basically using flags it checks if an effect is true or false based on a 'pool' of bits. In the case of conquer it uses a grand total of 16 bytes of status effects (2 ulongs in most sources but they aren't ACTUALLY ulongs :P)

3: ollydb lets you examine the assembly for .exe files. This lets you track down how a program works and reverse engineer it. In the case of conquer this can be anything from figuring out how its encryption works (and then writing your own encryption to make a new patch pserver) or simply understanding how the game systems work PROPERLY and coding that into your server.

Quote:

Originally Posted by pro4never 1: All a sniffer is is a program which intercepts and reads incoming/outgoing packets in decrypted (or pre/post encrypt/decrypt) form. There are currently no public proxy based sniffers but if you get the send/receive address you could use memory hooks to read from the send/receive functions inside the client (hawtness' hook based framework is public. You just need to figure out and update the memory addresses) 2: Offsets just mean where data goes in the packet. You mentioned status effects which is a little complicated to explain if you don't understand how data type works... GENERAL over view... I won't go into any deep explanation but basically using flags it checks if an effect is true or false based on a 'pool' of bits. In the case of conquer it uses a grand total of 16 bytes of status effects (2 ulongs in most sources but they aren't ACTUALLY ulongs :P) 3: ollydb lets you examine the assembly for .exe files. This lets you track down how a program works and reverse engineer it. In the case of conquer this can be anything from figuring out how its encryption works (and then writing your own encryption to make a new patch pserver) or simply understanding how the game systems work PROPERLY and coding that into your server.

My packet sniffer is public. It's out of date though for the current patch. It can still be used on other private servers though.

Quote:

Originally Posted by Fаng My packet sniffer is public. It's out of date though for the current patch. It can still be used on other private servers though.

There's tons of public sniffers. None work on existing co though so they are useless imo. Logging from pservers is usually poor.

Quote:

Originally Posted by pro4never There's tons of public sniffers. None work on existing co though so they are useless imo. Logging from pservers is usually poor.

Mhm. Guessing is sometimes faster anyways... if you know what to expect. Even when I had a packet logger, I didn't really use it much unless it was something like coming up with the length of a packet (which you can kinda figure out from conquer.exe in ollydbg).

Quote:

Originally Posted by Fаng 3. Ollydbg shows machine code. C# and other high level programming languages compile into machine code. With ollydbg, you can step into the machine code like you'd step into C# ... but it's complicated to learn. That's why we have high level languages (to make programming easier).

Hum... False! The C# and any other .net language are compiled into CIL (Common Intermediate Language) that is a bytecode. This bytecode is converted at runtime to machine code by the .net virtual machine/interpreter.

seems its complicated to get packets Cuz i already dont know how to updates addresses to use it on real co . beside when i tried to use ollydbg all i could do is loading conquer.exe then i found millions of codes that i couldnt understand what to do with it or even what does it means..is there anyways to figure out offsets i used a way of guessing but by using higher number they r repeted without getting the exact value which i wanna (its the blue Effect and red one too under players in arena i couldnt reach it)

Quote:

Originally Posted by shadowman123 seems its complicated to get packets Cuz i already dont know how to updates addresses to use it on real co . beside when i tried to use ollydbg all i could do is loading conquer.exe then i found millions of codes that i couldnt understand what to do with it or even what does it means..is there anyways to figure out offsets i used a way of guessing but by using higher number they r repeted without getting the exact value which i wanna (its the blue Effect and red one too under players in arena i couldnt reach it)

Fairly.sure that's an arena packet vs status effect simply sue to having tested all the stateffs before and not having seen what ppl post as being it... or is it a new effect added?

Quote:

Originally Posted by pro4never Fairly.sure that's an arena packet vs status effect simply sue to having tested all the stateffs before and not having seen what ppl post as being it... or is it a new effect added?

heres a pic ..thats what i mean

[Only registered and activated users can see links. Click Here To Register...]

yes but the question is when was that added to conquer? It must be new cause when I logged arena (5200 and earlier I think) it was not present. As of 5300'ish I'm 99 pct sure it was not a status effect so unless it's only on really new patches then it is a arena subtype and not a status effect on the character (which wouldn't make much sense but w/e)