Connect to SMC through Agent?

02/09/2014 03:37 retontoxD#1

Hello,

Do you think is possible connect to the SMC through the AgentServer?

I did some tests and found that is possible to bypass the first error.
When you try to connect to SMC through port 15884 (AgentServer port), it will say something about connection closed.
But when you check it with a net scann you see that the SMC is asking for the GlobalManager.

PHP Code:


			
0000   10 00 01 20 00 00 0d 00 47 6c 6f 62 61 6c 4d 61  ... ....GlobalMa

0010   6e 61 67 65 72 00                                nager.

Ollydbg at '00423A15', and replace it : GlobalManager -> AgentServer.
Now check it again with the scanner, you will see is sending the username & password.

*Also when you try to connect with the edited SMC, the agent will get some spam:

PHP Code:


			
warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0001 (0x0000) (MsgType:7), 79 - 79    2014-01-30 19:35:04 003

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:05 425

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:07 089

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:08 754

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:10 420

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:12 083

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:14 826

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:15 415

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:17 075

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:18 731

warnning    unhandled msg received CAgentMainProcess : IP:192.168.1.38 Req:0x0204 (0x0000) (MsgType:7), 0 - 0    2014-01-30 19:35:21 407

I think we have a chance and this is possible

02/09/2014 04:12 magicanoo#2

I don't think so. Most likely because the opcode(s) you're trying to send to the AgentServer are not defined in the module, not 100% sure though.

Finally, a useful discussion around here.

02/09/2014 15:24 Haxor#3

#moved

02/10/2014 07:39 Timlock#4

You may be able to send a successful "Connection" to the agent server, but I doubt you will be able to maintain it or do anything with smc from it... The agent server is not designed to connect with smc, or handle any of its functionality.... at the very most if your lucky and gaymax added it... it might pass the connection off to the globalmanager...

02/10/2014 12:28 retontoxD#5

Quote:

Originally Posted by Timlock

You may be able to send a successful "Connection" to the agent server, but I doubt you will be able to maintain it or do anything with smc from it... The agent server is not designed to connect with smc, or handle any of its functionality.... at the very most if your lucky and gaymax added it... it might pass the connection off to the globalmanager...

Yeah i think there is a way for connect to the global manager through the agent using the SMC

02/11/2014 06:07 Anonymous-6723#6

Mmm what is the point of using AgentServer for SMC ? If SMC connects on public ports... and server is public = server will be dead for sure :)

02/11/2014 12:32 retontoxD#7

Quote:

Originally Posted by Zed*

Mmm what is the point of using AgentServer for SMC ? If SMC connects on public ports... and server is public = server will be dead for sure :)

The point is find the way and fix it. Im not the only one who believe this is possible

03/04/2014 23:33 A new hope#8

interesting. any news?

03/05/2014 00:59 retontoxD#9

I know one guy who did it, cant share info about him.
He was using an edited smc, not sure if was the old smc from swsro or ecsro, or vsro/twsro.
All ports were blocked except agent, gateway and download.
I tried but still didnt found a way.. just found a way for connect to the shardmanager (with the port closed) through agent :/

03/05/2014 18:45 LastThief*#10

I worked enough with smc / globalmanager shizzle and I can say one word about it

Bullshit

03/05/2014 19:49 retontoxD#11

Quote:

Originally Posted by LastThief*

I worked enough with smc / globalmanager shizzle and I can say one word about it

Bullshit

If you cant do it, you call my words bullshit?
I didnt say a random guy did it.

I could prove it, but then i would be in a trouble

03/06/2014 14:34 LastThief*#12

I never said your words are bullshit,I'm talking about the concept in theory it's bullshit.

03/06/2014 14:44 retontoxD#13

Quote:

Originally Posted by LastThief*

I never said your words are bullshit,I'm talking about the concept in theory it's bullshit.

Its ok, sorry then i misunderstood