[Question] about Packets .

06/17/2012 22:06 romeoromeo#1
what i know about conquer packets is . the last 8 byts are seal .
and the first two bytes for Length and the next two byts for header
but this packet is confusing me !!! can anybody help ?
Code:
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
hope somone will answer this
06/18/2012 00:33 Zeroxelli#2
Without even converting the hex, I can tell you right now, that packet is encrypted.
06/18/2012 00:52 Spirited#3
You could try my tutorial. I don't know how good of a job I did on it though:
[Only registered and activated users can see links. Click Here To Register...]
06/18/2012 00:56 Zeroxelli#4
Quote:
Originally Posted by Fаng View Post
You could try my tutorial. I don't know how good of a job I did on it though:
[Only registered and activated users can see links. Click Here To Register...]
Took a quick look at it, looks to be pretty helpful to me.
06/18/2012 05:49 romeoromeo#5
if the packet is encrypted ...... how to dencrype it ? !!! tips ?
06/18/2012 05:54 Spirited#6
Quote:
Originally Posted by romeoromeo View Post
if the packet is encrypted ...... how to dencrype it ? !!! tips ?
Why is it encrypted in the first place?
06/18/2012 06:07 Zeroxelli#7
Probably wasn't decrypted at the time of logging.
06/18/2012 19:19 romeoromeo#8
Quote:
Originally Posted by Fаng View Post
Why is it encrypted in the first place?
im not sure if i understand your question right or ....
but i think you mean the packet was encrypted at first place so no body can dencrypted it . ... ?
anyway .... i do not think it was encrypted and that is why i made this thread .
because Synsia sand : "You can use this program to study and analyze packets (non-encrypted) on the latest CO client." in this thread
[Only registered and activated users can see links. Click Here To Register...]

and i read your threat toutorial about two times, and i mention few things in here too
if the packet is not encrpted and ... first 2byte for length and 2nd two byts for header and last 8 bytes for seal ..... so this packet is confusing me
06/18/2012 21:25 Zeroxelli#9
Quote:
Originally Posted by romeoromeo View Post
im not sure if i understand your question right or ....
but i think you mean the packet was encrypted at first place so no body can dencrypted it . ... ?
anyway .... i do not think it was encrypted and that is why i made this thread .
because Synsia sand : "You can use this program to study and analyze packets (non-encrypted) on the latest CO client." in this thread
[Only registered and activated users can see links. Click Here To Register...]

and i read your threat toutorial about two times, and i mention few things in here too
if the packet is not encrpted and ... first 2byte for length and 2nd two byts for header and last 8 bytes for seal ..... so this packet is confusing me
I'm looking at the 2-byte blocks of data, and the hex is too large and too constant to have been decrypted, so I don't even have to bother converting it to ASCII. You're trying to log packets without the necessary key to pass to your decryption function for the newer clients, and thus, you're not decrypting them at all. And the problem with that is, instead of leaving them intact, you're more likely than not trying to decrypt them with an incorrect key, which just turns them into a pile of garbage.