[Tut] How I found out what the new Encryption was

_DreadNought_ · 07/17/2011, 00:47

Hey,

So... Instead of releasing anything, I'm going to explain how I managed to figure out what the new encryption.

So, I was talking to fang and he linked me to a tut how to reverse packets, But it wasnt very generic and specified rather for a different game, but have no fear I am here! It showed me how to find all the "public" encryptions the game is using...

So I downloaded

.

Extracted with WinRaR and then started "PEiD.exe" and this should comeup:

And then(Picture with instructions):

And then:

And save it to your desktop/Documents/whatever

And then, your going to do EXACTLY the same for another Conquer.exe without the new encryption.

Afterwoods you should be left with two files:

so, Open them both up:

Okay, Look for changes, In that picture you can see a new entry called "CAST 128", And further down we can see two new entrys added again "CRC32" <- Checksum, and MD5 "File hashing", with a quick google search, CAST 128 came out with another name CAST5 which came out with a wiki page CAST-128 - Wikipedia, the free encyclopedia and explains that its a known block cipher, Very similar to blowfish itself, So, Our best bet would be to go with CAST-128, Research it, and attempt to implement it.

Note: That's probably not the best way to do it, but thats how I done it, Took 30mins max as it was my first time and I did in addition play with OlyDbg.

NOTE: This isnt releasing the new encryption, This is showing how one got there, they still have the horror of implementing it, not that is matter now proxyparadise is here.

Thanks for looking,
Dread

#edit

It's out there anyway so I mightaswell enlighten some people.

abel395 · 07/18/2011, 04:28

and all that what do u give in conquer i want to say, if i do waht happen, for what is that?? thank you

~~Cyanogen~~ · 07/18/2011, 10:13

All I did was to hex edit the client, look where all the blowfish keys used to be, and noticed they'd been replaced. A simple google search on the first value yielded the new scheme.

_DreadNought_ · 07/18/2011, 18:57

Quote:

Originally Posted by abel395

and all that what do u give in conquer i want to say, if i do waht happen, for what is that?? thank you

Struggling to understand what you mean but if you mean what I think, Then it is for people to figure out what Algorithms certian software uses provided they have not implemented there own.

Quote:

Originally Posted by Cyanogen

All I did was to hex edit the client, look where all the blowfish keys used to be, and noticed they'd been replaced. A simple google search on the first value yielded the new scheme.

I'll give that way ago next time they implement a new public algorithm, But as I said, this is how I found it, there are probably many ways to achieve this.

G4George · 07/18/2011, 19:56

Notice the big ****yzer...

KraHen · 07/18/2011, 20:27

Yeah, I did this as well, too bad I did it after Fang already told me the actual implementation. I`m steel feeling like an idiot, lol.

~~Cyanogen~~ · 07/19/2011, 11:01

TQ are serious muppets. They take 3 years to change a simple padding scheme to an even simpler one? How much did they spend on programmers and the like to do this? It was cracked in a day, meaning they completely wasted every penny. I know they can afford it, but it must be a serious irritation to a company as greedy as TQ to throw so much money away for absolutely nothing (deliberate tautology). I imagine TQ do read the posts here, so if per chance they happen upon this post, I have this to say to them.

TQ, no matter what you do, there are guys here and everywhere that are 100x times more intelligent and imaginative than your programmers will ever be. So stop wasting huge amounts of time and money on stuff that costs us nothing but a few hours to deal with. Instead spend that time and money on customer support, then maybe, just maybe some players would not feel the need to bot. There will always be botters, there is NOTHING you can do to stop that, but I guarantee if you quit being such an ******* of a company, the amount of botters will reduce.

End of rant.

KraHen · 07/19/2011, 17:57

AFAIK only one guy manages the programming of the game servers, maybe he was high.

Korvacs · 07/19/2011, 17:59

Quote:

Originally Posted by KraHen

AFAIK only one guy manages the programming of the game servers, maybe he was high.

Thats entirely not true lol

~~Cyanogen~~ · 07/19/2011, 18:02

And probably unemployed too now.

KraHen · 07/23/2011, 15:17

Quote:

Originally Posted by Korvacs

Thats entirely not true lol

I can see where you`re coming from, the war against drugs is pretty serious in China.

I loove visualization.