Register for your free account! | Forgot your password?

You last visited: Today at 22:46

  • Please register to post and access all features, it's quick, easy and FREE!

 

Conquer Aimbot

Closed Thread
 
Old   #16
 
elite*gold: 0
Join Date: Oct 2005
Posts: 295
Received Thanks: 340
Actually no, the last part of the password hash is installation specific. So without actually knowing the unique installation id there is no way to use it. (so long as your password is over 8 characters)

but screw it anyway since now everyone thinks i'm gonna hack their accounts, I withdraw the offer.



Qonquer is offline  
Old   #17
 
elite*gold: 0
Join Date: Jul 2004
Posts: 981
Received Thanks: 46
Quote:
Originally posted by chocoman4k+Nov 10 2005, 20:38--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td>QUOTE (chocoman4k @ Nov 10 2005, 20:38)</td></tr><tr><td id='QUOTE'> <!--QuoteBegin--Qonquer@Nov 10 2005, 20:15
can you explain the password encryption reversal proceedure?

It is very common in a lot of systems to encrypt a password with a non-reversible hash before sending it. The same hash is applied to the password on file server-side to make the comparison. I haven&#39;t actually looked at the password too closely but i have had to implement it&#39;s usage as many here will know. You may be right and it may be reversible but I very much doubt it.

(just FYI, the protocol is encrypted and the password is encrypted further)
Never tried to write a decryption algorithm, but as far as I remember it&#39;s byte-wise encryption which is reversible. Anyway the hash of the password is enough in order to login. [/b][/quote]
the pw encryption is 4 byte at once if i remember correct


Ultima is offline  
Old   #18
 
elite*gold: 0
Join Date: Apr 2005
Posts: 689
Received Thanks: 212
Quote:
Originally posted by Qonquer@Nov 10 2005, 20:51
Actually no, the last part of the password hash is installation specific. So without actually knowing the unique installation id there is no way to use it. (so long as your password is over 8 characters)
How would the server know the InstallationID then? It needs to verify the password somehow.
chocoman4k is offline  
Old   #19
 
elite*gold: 0
Join Date: Jul 2004
Posts: 981
Received Thanks: 46
Quote:
Originally posted by chocoman4k+Nov 10 2005, 20:55--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td>QUOTE (chocoman4k @ Nov 10 2005, 20:55)</td></tr><tr><td id='QUOTE'> <!--QuoteBegin--Qonquer@Nov 10 2005, 20:51
Actually no, the last part of the password hash is installation specific. So without actually knowing the unique installation id there is no way to use it. (so long as your password is over 8 characters)
How would the server know the InstallationID then? It needs to verify the password somehow. [/b][/quote]
there is a standart byte pattern that is used for the password
i made a password generator and can generate password hashes for my bots but i never reversed it


Ultima is offline  
Old   #20
 
elite*gold: 0
Join Date: Oct 2005
Posts: 295
Received Thanks: 340
dun ask me, as i said i aint looked into it completely. I had to use the password hash in order to allow people to log into the private server and I noticed the last part of the hash was always different for different clients even if the password was the same. If you did attempt to log in with a hash from another client using a proxy, it&#39;s possible that somewhere down the line the server would attempt to verify the install id with the client.

of course it could be some mechanism for TQ to track what accounts have been used on the same client.
Qonquer is offline  
Old   #21
 
elite*gold: 0
Join Date: Mar 2005
Posts: 1,272
Received Thanks: 1,311
sorry the link is working again now
Ultimation is offline  
Old   #22
 
elite*gold: 0
Join Date: Apr 2005
Posts: 689
Received Thanks: 212
Ultima: Yea, those being used to init the encryption context.
Qonquer: When the last few bytes of the "hash" change it must be either very weak hashing or no hashing at all. (encryption)
I think the last few bytes change cause not the whole buffer is being zeroed, instead some random bytes remain from other functions which are being encrypted and sent to the server.

Btw. I have fully reversed the init_ctx function and half of the password encrypt function, got bored of translating it to C some day although ultimatehaker needed it :P
chocoman4k is offline  
Old   #23
 
elite*gold: 0
Join Date: Oct 2005
Posts: 295
Received Thanks: 340
That&#39;s possible however in that case they would appear purely random. but they are always the same fro the same client install. even after shut down/ reboot etc...
Qonquer is offline  
Old   #24
 
elite*gold: 0
Join Date: May 2005
Posts: 18
Received Thanks: 0
ultimate can u plz post like to ur manager thing
Sukh is offline  
Old   #25
 
elite*gold: 0
Join Date: Apr 2005
Posts: 689
Received Thanks: 212
Well lets say it like this, in BJX emulator I encrypted those passwords myself and I cleared the buffer fully, and logging in always worked. Btw. try using passwords with maximum password length :P I think the "hash" will always stay the same. No random numbers at the end as the whole buffer is being filled with the password.
chocoman4k is offline  
Old   #26
 
elite*gold: 0
Join Date: May 2005
Posts: 18
Received Thanks: 0
ultimate hacker ur hack manger links are down..
Sukh is offline  
Old   #27
 
elite*gold: 20
Join Date: Jun 2005
Posts: 1,013
Received Thanks: 379
You were blocked from the private server for witholding information we needed. You couldve saved us hours of work by just sharing what you had.
unknownone is offline  
Old   #28
 
elite*gold: 0
Join Date: Jul 2004
Posts: 981
Received Thanks: 46
Quote:
Originally posted by chocoman4k@Nov 10 2005, 21:19
Well lets say it like this, in BJX emulator I encrypted those passwords myself and I cleared the buffer fully, and logging in always worked. Btw. try using passwords with maximum password length :P I think the "hash" will always stay the same. No random numbers at the end as the whole buffer is being filled with the password.
i never tested if i could leave the last byts empty^^
maybe those doesnt matter and its an encryption and no hash cause they put a 00 byte for string termination after the password however my pass algo works maybe i should make the decryption of the encrypted passwords work
Ultima is offline  
Old   #29
 
elite*gold: 20
Join Date: Jun 2005
Posts: 1,013
Received Thanks: 379
I asked you for the fb packet description more than once, and you just replied with ^^ or .
I don&#39;t leech from the community either. I&#39;ve used the pecket en/decryption tutorial, but I wouldn&#39;t take credit for it. I did reverse the skill packet myself, without help from here. And I do contribute everything I find to this community.
I am as much a member of epvp as you are, and just because I help in the development of a private server doesn&#39;t make me a leecher.
unknownone is offline  
Old   #30
 
elite*gold: 0
Join Date: Jul 2005
Posts: 62
Received Thanks: 0
edit..full credit to ulti Is it workin?


Shizzle1 is offline  
Closed Thread



« Previous Thread | Next Thread »

Similar Threads
Conquer AimBot
Anyone have conquer aimbot for patch 5165? ty
8 Replies - CO2 Main - Discussions / Questions
ask for aimbot for new praive conquer
plz i need aimbor for new praive conquer server call MegaOnline and the site is darkgamingcommunity.tk i told GM he told me they just good fbs,while...
2 Replies - CO2 Programming
There is no aimbot in conquer,all lies
I believe there&#39;s not aimbot in conquer,most people wer use speedhack or they got really good skill on fb/ss. all the post about aimbot in this forum...
14 Replies - CO2 Main - Discussions / Questions



All times are GMT +2. The time now is 22:46.


Powered by vBulletin®
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.

Support | Contact Us | FAQ | Advertising | Privacy Policy
Copyright ©2017 elitepvpers All Rights Reserved.