i came here after long time looking for a private server to play at (coz official kinda sucks now) and found decent classic server (patch 5165) . Anyway, after playing for a while i realized that i am a bit bored so i started a small project in c# that would be for packet logging. Everything was going well until i was stuck on encryption. I have opened conquer.exe in notepad++ and cannot find encryption key that is used, in fact, it looks like whole file has been encrypted/protected against people like me . File size is same as original 5165 conquer.exe. Protected conquer.exe is in attachment, i would be glad if anyone can point me in right direction, i dont want complete solution (and lose opportunity to have all fun solving this).
Compiler : Borland Delphi 6.0-7.0
Heuristic : Enigma protection 1.1x-1.3x -> Sukhov Vladimir & Serge N. Markin
information : 4 hashes & crypto signatures detected
2 crc32 1 md2 1 md4 (if need offsets and addresses post for it)
if need manual unpacking post for it
if need the key and dont need to even move ur *** a bit post for it :P
if u need someone to play on this ps. for u also post it :P :P :P
Edit: forgot to say this , u don't really need to remove the client protection to figure out the encryption key :P that's pretty enough to have fun figuring it out :P
You can attach to it with a debugger when it's running to grab the key. Enigma decrypts everything at runtime.
I really can't right now, there is that anti-hack protection ^^. I am working on that now. They scan for known hacks (or processes, they prevent client from running if any java program is started ). Problem is they are blocking .net (tried c#) too. Only thing i can't figure out is how they know it is a c# application, I was changing exe descripions (or how it is called) via ResHacker and few other tools. There must be something that differs c# and applications that are written in other languages. Just haven't found it yet .
I really can't right now, there is that anti-hack protection ^^. I am working on that now. They scan for known hacks (or processes, they prevent client from running if any java program is started ). Problem is they are blocking .net (tried c#) too. Only thing i can't figure out is how they know it is a c# application, I was changing exe descripions (or how it is called) via ResHacker and few other tools. There must be something that differs c# and applications that are written in other languages. Just haven't found it yet .
Enigma protects against process names, window names, and class names. Change those in the program and it's helpless. It's crazy that they block .net programs from running. How stupid.
So I have tried changing everything I found in test application (class, filename, window name, copyrights, version, etc.) and it is still being detected. Also I have encryption key from olly (thanks guys). Just need to remove that Enigma **** so I can run VS2010 while running conquer (also blocked ). I was searching google how to remove it but so far no luck. Any hints?
I am so stupid. So i have tried changing the key inside clean 5165 but I can't log in sucessfully. Seems like encryption key I have is wrong (it shouldn't) or they have some extra encryption added (in CO folder there are dlls that are used to manipulate with memory but it looks like they aren't used because when i delete them i can still log in sucessfully with their conquer.exe).
Checked with WPE and ports are correct (9958, 5816). Looks like it's easier to create logger/proxy for retail conquer than for pserver lol. And I noticed that when I try to log in with their conquer.exe, there is slight (3-4 sec) "login freeze" before it proceeds to loading maps. When I am logging with cracked exe, no login freeze occurs.
Checked with WPE and ports are correct (9958, 5816). Looks like it's easier to create logger/proxy for retail conquer than for pserver lol. And I noticed that when I try to log in with their conquer.exe, there is slight (3-4 sec) "login freeze" before it proceeds to loading maps. When I am logging with cracked exe, no login freeze occurs.
noticed a login freeze when using windows 7 on more than 1 computer.. just thought i should let you
know that maybe its not whatever reason you think it is, its just the windows, Lateralus said that the client starts doing
something when it hits that point and that makes it freeze on windows 7
I'm protected VS hacker's? PLS 12/08/2010 - Metin2 Private Server - 1 Replies I have the game file, i change SHOWMETHEMONEY to other word.
I have the auth, first, game1_1, game1_2, game1_3 game2, game61, game99...
Exemple of one:
HOSTNAME: game2
CHANNEL: 1
PORT: 13004
P2P_PORT: 27094
run protected LUA functions? 05/11/2010 - General Gaming Discussion - 0 Replies Hi there
before I start with the serious shit let me explain why I did this:
Yesterday I tried to script a small addon that helps me while I do some Multiboxing with 6 Characters. I had no idea how to do this so I had to google for addon development tutorials.
What should this addon do for me?:
-Assist the partyleader to get his target (I control the partyleader manually)
-Cast the Mage Flame-spell if the target is alive
Everything went fine until I tested this:
CABALHelix 100% Protected!! 07/15/2009 - Cabal Private Server - 2 Replies Is it true cabalhelix is 100% protected?? Never heard it was hacked sinced they used XTRAP. :mofo:
I can`t use wpe, srv protected by lacd 04/23/2006 - World of Warcraft - 7 Replies I cant connect on a srv with wpe..because are protected by lacd. How i can trick that program....to can connect with wpe??? Can some1 help me plss???
. Anyway, after playing for a while i realized that i am a bit bored so i started a small project in c# that would be for packet logging. Everything was going well until i was stuck on encryption. I have opened conquer.exe in notepad++ and cannot find encryption key that is used, in fact, it looks like whole file has been encrypted/protected against people like me 
. File size is same as original 5165 conquer.exe. Protected conquer.exe is in attachment, i would be glad if anyone can point me in right direction, i dont want complete solution (and lose opportunity to have all fun solving this).
.
I am so stupid. So i have tried changing the key inside clean 5165 but I can't log in sucessfully. Seems like encryption key I have is wrong (it shouldn't) or they have some extra encryption added (in CO folder there are dlls that are used to manipulate with memory but it looks like they aren't used because when i delete them i can still log in sucessfully with their conquer.exe).
?
