i can fairly say its easy to find the adresses for all the skills, life, damage , level, ex with a cheat engine but without a proper injection tool the effects are just visual...iff anyone can help me with that pls msg me...10q
any injection method?
12/16/2008 14:44
endimion2k#1
12/16/2008 21:13
167943852#2
do a dll injection and hook some inloop function ingame
you will need c/c++ skills or perhaps some other programming language although the best one for such things is C/Cpp
you will need c/c++ skills or perhaps some other programming language although the best one for such things is C/Cpp
04/06/2009 12:32
aznlj2001#3
how does it work? could it do something like increase run speed with injection of code then?
ie: let's say you use a sprint skill that runs really fast, capture the code that was send to the server as to what increase your own speed.....
next time inject that code again to the server without using that skill, so virtually no skill cooldown and made yourself run faster then?
or something like using itemshop mount, see what's changed as to what code was send to server to make you move so much faster on mount. next time inject code that speed yourself up.....when that code hit the server, it assume you are on a mount when you are not even on one?.....
would injection of code do something like that?
just curious...
ie: let's say you use a sprint skill that runs really fast, capture the code that was send to the server as to what increase your own speed.....
next time inject that code again to the server without using that skill, so virtually no skill cooldown and made yourself run faster then?
or something like using itemshop mount, see what's changed as to what code was send to server to make you move so much faster on mount. next time inject code that speed yourself up.....when that code hit the server, it assume you are on a mount when you are not even on one?.....
would injection of code do something like that?
just curious...
04/07/2009 17:41
0o0#4
no information for mounts and etc are all stored on server. The server sends it to the client so the client knows whats out there. however what current hacks memory hacks do is that they read the recieved info from the memory and understand whats happening in the game witht he char etc.
However evrything is server sided, about the char the server will check where the spring scroll is in the inventory when u cast it and when u dont the server will ignore it or mybe even keep track of u that u hacked and tried to do something that is impossible? u can't sprint when u dont have the scroll..
RemoteProcessThread injects a DLL into a running process from c++, with all those technolgy u can read the packets that are going from server to client and read the information.
the use of this idea is that if the char moves the client sents the server the info and the server interprets it. SO what u can do is u can send the server the same information without the client knowing and control it.! read what the server gies understand it and give the server what the servr needs and act like u the real game client. basicly a bot.
However evrything is server sided, about the char the server will check where the spring scroll is in the inventory when u cast it and when u dont the server will ignore it or mybe even keep track of u that u hacked and tried to do something that is impossible? u can't sprint when u dont have the scroll..
RemoteProcessThread injects a DLL into a running process from c++, with all those technolgy u can read the packets that are going from server to client and read the information.
the use of this idea is that if the char moves the client sents the server the info and the server interprets it. SO what u can do is u can send the server the same information without the client knowing and control it.! read what the server gies understand it and give the server what the servr needs and act like u the real game client. basicly a bot.
04/11/2009 16:02
thiefbro#5
""SO what u can do is u can send the server the same information without the client knowing and control it.! read what the server gies understand it and give the server what the servr needs and act like u the real game client. basicly a bot.""
-Lol I like that , but that will not work with dll injection , all codes for skills, speed , gold, stuff is server sided like you said . So need hack the server side directly and not with dll injection , GMs and "good" hackers of the server will find all your injections even without the client knowing .. and you'll be dc of the server enough easy.. 1st of all need make a trojan horse called "DSS" in advanced Python scripts and put it in DLL control or make another trojan called "Torpig" with another injection but its more hardest method.Then its just the start .
-Lol I like that , but that will not work with dll injection , all codes for skills, speed , gold, stuff is server sided like you said . So need hack the server side directly and not with dll injection , GMs and "good" hackers of the server will find all your injections even without the client knowing .. and you'll be dc of the server enough easy.. 1st of all need make a trojan horse called "DSS" in advanced Python scripts and put it in DLL control or make another trojan called "Torpig" with another injection but its more hardest method.Then its just the start .
04/11/2009 17:21
plixbugmenot#6
I heard their server is written in Java, pretty hard to exploit. But SQL injections may be possible if you break the encryption, but I doubt it :)
04/12/2009 17:02
thiefbro#7
The core programmatic mechanics of any server is hidden behind layers of NTFS permissions that make external attempts at infiltration negligible. The only portion of a server that is made available to the outside world are points of access that are defined and controlled internally.
SQL injection can be possible if you can avoid NTFS permissions .
it all goes back to encryption. The data going to and from their server is encrypted based upon a set of keys. It's technologically impossible to guess their key. Let's say that you were to dedicate a computer to attempt every possible key value in a brute force attack against their server. Let's also say that it can go through a billion keys per second (impossible, but still... this is a hypothetical situation). It would take that computer billions of billions of a billion times the current age of the known universe to go through them all.
At the moment only Trojan horses can do something but need a lot of time to make a good sense of them and put it with SQL injection and it must be invisible for their server.
SQL injection can be possible if you can avoid NTFS permissions .
it all goes back to encryption. The data going to and from their server is encrypted based upon a set of keys. It's technologically impossible to guess their key. Let's say that you were to dedicate a computer to attempt every possible key value in a brute force attack against their server. Let's also say that it can go through a billion keys per second (impossible, but still... this is a hypothetical situation). It would take that computer billions of billions of a billion times the current age of the known universe to go through them all.
At the moment only Trojan horses can do something but need a lot of time to make a good sense of them and put it with SQL injection and it must be invisible for their server.
04/12/2009 17:51
Smurfin#8
how about damage hack, some other games have it while pw doesn't, anyone know the logic of how a damage hack works for other game ? maybe that can be used to implement a damage hack for pw
04/13/2009 22:43
Airninja6r#9
Quote:
The core programmatic mechanics of any server is hidden behind layers of NTFS permissions that make external attempts at infiltration negligible. The only portion of a server that is made available to the outside world are points of access that are defined and controlled internally.
SQL injection can be possible if you can avoid NTFS permissions .
it all goes back to encryption. The data going to and from their server is encrypted based upon a set of keys. It's technologically impossible to guess their key. Let's say that you were to dedicate a computer to attempt every possible key value in a brute force attack against their server. Let's also say that it can go through a billion keys per second (impossible, but still... this is a hypothetical situation). It would take that computer billions of billions of a billion times the current age of the known universe to go through them all.
At the moment only Trojan horses can do something but need a lot of time to make a good sense of them and put it with SQL injection and it must be invisible for their server.
It's not this impossible or complicated. All that needs to happen is decrypt the packets. I was never able to do it for perfect world, but also never really tried. We have done it for other games like florensia online and I know it was done by a few friends in conquer online.
when the server sends a packet to the client the client has to decrypt it to read it, so this means somewhere in the client exe it tells you how to read a packet. So if someone with a lot of reversing skills took the time to find this they could easily read every packet incoming and outgoing. I know someone who did this and he told me once he got the packets decrypted they were in Chinese and to him that was like another set of encryption lol.
So then if you accomplished this you could copy the function from the exe create your own packet, encrypt it then send it to the server. If anyone knows conquer online an insane speed hack was created by sending cyclone and divine hare packets even if you didn't have these skills you could use it and move fast forever or until turned off. In florensia we were able to teleport to any location just by saving the coordinates, spam the heal skills with no channeling and bot without clicking.