hooking functions after loader

06/21/2013 20:51 go for it#1
im trying to hook send/receive for some private server where it lunch using csv3 loader
after disabling client protections i didn't find the 4 send calls for ws2_32, so i've made a hw bp on the send function at ws2_32 to figure out who calls it

and this is what i found


at the stack it says return from csv3 to conquer , going there at the cpu to find out that it should call something at csv3 but instead it call the import table to call the send function at ws2_32

i honestly duno what's doing on, with common sense im guessing that loader should patch 2 things , first the socket to connect to the private server and the password crypto stuff but im so so confused about how to handle that
should i just hook the function after tracing it backward from ws2_32 and not caring about what csv3 loader do to the socket as there is no send functions at csv3 ?

notice : again i apologize for asking too many questions and not spending days trying but i badly need to save time :)
06/21/2013 21:25 phize#2
Read some fucking tutorials.
06/21/2013 23:11 go for it#3
Quote:
Originally Posted by phize View Post
Read some fucking tutorials.
i guess that wasn't relevant , we are here at a forum so people help each others when they need help (else you are at the wrong place)
and as i said im saving time as my usage for reversing is limited which to why i can't waste weeks just to get to hook couple of functions :)
so thanks for the advice , fuck you and have a nice day
06/22/2013 00:22 Super Aids#4
[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]
06/22/2013 01:11 go for it#5
Quote:
Originally Posted by Super Aids View Post
[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]
@bauss
ang. tutorial is useless when it comes to that as conquer online doesn't work with loader which is to why im confused
and ill check about detours but that wasn't what it's all about

lets make this as simple and short as possible
what does the csv3 loader inject to conquer.exe to connect to a private server instead of the official server ? that's it

thanks once more mate

@phize sorry for being rude but still fuck you :)
06/22/2013 01:43 phize#6
Quote:
Originally Posted by go for it View Post
i guess that wasn't relevant , we are here at a forum so people help each others when they need help (else you are at the wrong place)
and as i said im saving time as my usage for reversing is limited which to why i can't waste weeks just to get to hook couple of functions :)
so thanks for the advice , fuck you and have a nice day
Most of your threads are questions that could have been avoided if you weren't so fucking lazy to read tutorials/books/whatever like everyone else does.

As for your question: look in the csv3 source, or do you need someone to do that for you, too?
06/22/2013 02:17 Super Aids#7
The 2nd link should answer that question. As for what CSV3 hook exactly does, someone correct me if I am wrong, but doesn't it just skip the password cryptography or was it authentication cryptography? I don't know, but yeah like phize said the answer would be in the CSV3 source.
06/22/2013 03:33 go for it#8
Quote:
Originally Posted by phize View Post
Most of your threads are questions that could have been avoided if you weren't so fucking lazy to read tutorials/books/whatever like everyone else does.

As for your question: look in the csv3 source, or do you need someone to do that for you, too?
im not lazy and that's why i was kinda rude in the first place, i got a very limit time to learn programming (personal reasons) which force me to use my time wisely, as you can see im not asking about spoon feeding , all im asking for is questions which is really time consuming, ex. this one took me too much to reverse it and test it's effects, it's just pissing me when you accusing me of being an asshole asking for help all the time without working my ass out because im actually working now with c++ after 6 days of reading 4 books with shit tons of tutorials within a 18 hrs daily doing nothing everyday but working my ass out! so nope im not lazy :)

and thank you for letting me know there is a source code for csv3
06/22/2013 03:57 { Angelius }#9
Quote:
Originally Posted by go for it View Post
lets make this as simple and short as possible
what does the csv3 loader inject to conquer.exe to connect to a private server instead of the official server ? that's it
Idk about csv3 but simply hook the Ws2.connect function and inside the hook callback override the IP Address to your server IP Address. Look inside Evolution -> Client.cpp -> DetouredConnect();

int WINAPI Client:: DetouredConnect(SOCKET s, const sockaddr *name, int len)

As for the password i normally grab it -> encrypt it my way -> and send it with the packet 1542 to the server.

Let me know if you need some additional information, Good luck.
06/22/2013 04:25 go for it#10
Quote:
Originally Posted by { Angelius } View Post
Idk about csv3 but simply hook the Ws2.connect function and inside the hook callback override the IP Address to your server IP Address. Look inside Evolution -> Client.cpp -> DetouredConnect();

int WINAPI Client:: DetouredConnect(SOCKET s, const sockaddr *name, int len)

As for the password i normally grab it -> encrypt it my way -> and send it with the packet 1542 to the server.

Let me know if you need some additional information, Good luck.
This is a significant help, I'm so thankful for saving my time :) Thank you so much
06/22/2013 04:55 Super Aids#11
Again, it was already in the 2nd link. You could have found all your answers by searching.