XSniff - Silkroad Online packet sniffer

Page 1 of 2 1 2
07/12/2017 18:50 Chernobyl*#1
XSniff is a advanced silkroad online packet sniffer / injector.

Current version: **1.0.7 (r7)**

Features
---
Packet analyser features

* Parsing data types on selection (supports decimal / hexadecimal / ascii)

Packet injector features

* Injecting any Client -> Server or Server -> Client packet
* Repeatable packet support (send packet each x specified miliseconds)

Display filter features

* Pause displaying incoming packets
* Display only Client -> Server packets
* Display only Server -> Client packets
* Displaying only packets whose opcodes are within allowed list
* Display only opcodes whose opcodes are not blocked

19.07.2017 update
* Settings are now being saved on change
* Support for changing fonts (will improve this later)

Screenshot
[Only registered and activated users can see links. Click Here To Register...]


Video guide


[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]

Credits:

Chernobyl (XSniff)
B1QB0SS (XSniff)
pushedx (SilkroadSecurityApi), [Only registered and activated users can see links. Click Here To Register...]
Salty (Ideas) [Only registered and activated users can see links. Click Here To Register...]
Valmiki (Ideas) [Only registered and activated users can see links. Click Here To Register...]

I'm open for new ideas.

Please, note that agent redirection packet is currently hardcoded. This is only tested and confirmed to work on vSRO v188 files.
07/12/2017 20:35 hanofastar#2
what is that mean ? or what its used for ?
07/12/2017 22:04 Isoline#3
whats the difference between this and exdLoader auto-parser?
07/12/2017 23:38 B1Q#4
Quote:
Originally Posted by Isoline View Post
whats the difference between this and exdLoader auto-parser?
you can inject packets....
07/13/2017 14:04 janicka#5
Add option to auto change packet like in filter.
07/13/2017 18:46 EdwardTeach+-#6
this tool gonna be useful for Coders
07/14/2017 09:53 SubZero**#7
for who will use this tool use Kaspersky Internet Security or any good anti virus
this tool will attack your programs or any .exe file
if you scan your "exe file"
you will get viurs.win23.Hidrag.a
anyway good luck
07/14/2017 12:47 hoangphan7#8
usefull. but same like edx loader :v
07/14/2017 23:37 grasvys112#9
can someone #approve this ?
used virustotal: [Only registered and activated users can see links. Click Here To Register...]
07/14/2017 23:55 florian0#10
Hey,
can you make it save the IPs and Ports? It doesn't save it for me.

Also can you make it use a monospaced font for the dump? The current one is a mess to read. Also please soften the colors. Hard white on black is a pain to watch at night.
07/15/2017 01:32 xantos1#11
Quote:
Originally Posted by grasvys112 View Post
can someone #approve this ?
used virustotal: [Only registered and activated users can see links. Click Here To Register...]

we are waiting !
07/16/2017 18:37 Chernobyl*#12
Quote:
Originally Posted by janicka View Post
Add option to auto change packet like in filter.
I was thinking about scripting system... Will do bit later.

Quote:
Originally Posted by florian0 View Post
Hey,
can you make it save the IPs and Ports? It doesn't save it for me.

Also can you make it use a monospaced font for the dump? The current one is a mess to read. Also please soften the colors. Hard white on black is a pain to watch at night.
Alright, I'll take care of saving settings. About fonts... I'll just give ability to change them on runtime.
07/19/2017 19:40 B1Q#13
19.07.2017 - 1.0.0.7 update
* Settings are now being saved in xml format
* Support for changing fonts. works on MainForm & PacketAnalyser only
07/24/2017 16:08 Eckoro#14
Great work, haven't touched Silkroad in a long while, but thought I may pass some suggestions to you, if you're both looking to add anything:
  1. One thing I always wanted included in pushedx tool was being able to replay logs. This could be done with a step button allowing you to send one packet at a time in the sequence. With this, potentially being able to bring this log up in the interface for you to manipulate the packet before you send it. This would allow for better parsing of packets especially with environments such as Fortress Wars or CTF as manually re-simulate them by sending all the movement packets etc. of objects.
  2. Being able to label Opcodes
07/24/2017 18:09 B1Q#15
Quote:
Originally Posted by Eckoro View Post
Great work, haven't touched Silkroad in a long while, but thought I may pass some suggestions to you, if you're both looking to add anything:
  1. One thing I always wanted included in pushedx tool was being able to replay logs. This could be done with a step button allowing you to send one packet at a time in the sequence. With this, potentially being able to bring this log up in the interface for you to manipulate the packet before you send it. This would allow for better parsing of packets especially with environments such as Fortress Wars or CTF as manually re-simulate them by sending all the movement packets etc. of objects.
  2. Being able to label Opcodes
thanks for your suggestions.
we'll be sure to include them in the next version
Page 1 of 2 1 2