Register for your free account! | Forgot your password?

Go Back   elitepvpers > The Black Market > Other Trading > Coders Trading
You last visited: Today at 15:10

  • Please register to post and access all features, it's quick, easy and FREE!


[B]Login Packet Capture & Decryption 500 EURO

Reply
 
Old   #1
 
elite*gold: 0
Join Date: Jun 2009
Posts: 65
Received Thanks: 3
[B]Login Packet Capture & Decryption 500 EURO

Hello!
I WTB Login Packet capture and decryption from D.o Online / Martial Heroes!
I will pay for it 500 euro.
(Crypt algorithm, packet structure, packet resp)



XaniXpl is offline  
Old 11/02/2012, 20:51   #2
 
elite*gold: 0
Join Date: Jun 2009
Posts: 65
Received Thanks: 3
Quote:
Originally Posted by Taekwondo14 View Post
500
Alles ok bei dir ?
I really need this packet.
With this one i can start private server


XaniXpl is offline  
Old 11/03/2012, 03:31   #3 Trade Status: Unverified(?)
 
elite*gold: 11
Join Date: Nov 2012
Posts: 14
Received Thanks: 10
only login encrypted?
∅∪  is offline  
Old 11/03/2012, 08:15   #4
 
elite*gold: 0
Join Date: Jun 2009
Posts: 65
Received Thanks: 3
So, i' ve captured it.

Firstly game send on start up secret packet :

00000000 83 A3 AE DA B5 8D 4B EC 9E 30 2F 15 F1 0F D6 1C ......K. .0/.....
00000010 4F 24 E0 34 60 FE 9A 7F 0D 21 76 56 D4 49 98 03 O$.4`.. .!vV.I..
00000020 44 C0 E7 35 30 50 38 02 9D 40 68 64 0F DB D5 A9 D..50P8. [email protected]
00000030 0B 08 6C 1E C3 F2 C9 00 02 36 5E 76 0F 14 77 38 ..l..... .6^v..w8
00000040 99 AF C3 3D 30 C6 CC F6 A0 B9 26 A7 E5 20 89 A1 ...=0... ..&.. ..
00000050 0A 7D 02 53 E7 CB 53 36 0F A3 1F 15 36 C7 4D 11 .}.S..S6 ....6.M.
00000060 FE D0 2C 41 4A 9B 8F 72 8F 74 2C E6 C8 1C 55 07 ..,AJ..r .t,...U.
00000070 C9 A4 3A 94 8A 48 42 90 49 77 21 59 AC 6C 68 50 ..:..HB. Iw!Y.lhP
00000080 53 2F 92 A9 34 66 66 BA EA 00 E9 E7 02 21 82 9A S/..4ff. .....!..
00000090 54 02 C1 E5 5D B7 66 C6 F6 44 8C ED A8 3D DB F2 T...].f. .D...=..
000000A0 FB 47 1D 29 BD A5 0E 35 69 8C 11 FB 19 4F 48 BA .G.)...5 i....OH.
000000B0 78 B0 6C CB 14 F3 21 9B 3D 60 8A F2 D1 57 91 11 x.l...!. =`...W..
000000C0 68 7E 51 A7 FA 87 44 B6 B2 1F 2F 17 38 62 1D 58 h~Q...D. ../.8b.X
000000D0 7D B9 E6 83 9B 63 64 77 2B EB 75 9F D6 32 32 E4 }....cdw +.u..22.
000000E0 B3 E1 87 4D 83 A9 0A B9 7E 89 77 65 D1 96 1C 4E ...M.... ~.we...N
000000F0 92 7D 72 81 56 46 CD 6A 30 E3 3C EA FD 4C 12 75 .}r.VF.j 0.<..L.u
00000100 36 9C 07 3B 02 05 31 27 BC DE 5C 33 6..;..1' ..\3

Next game recive server list : // i have encryption for this

00000000 10 00 00 00 01 00 00 00 04 00 00 00 01 00 00 00 ........ ........

On server click :

Recived Game Server IP from Connection Dispatcher (i have encrypted it)

00000000 1F 00 00 00 17 00 00 00 32 31 31 2E 31 39 36 2E ........ 211.196.
00000010 31 35 30 2E 34 20 31 31 34 30 33 00 00 00 00 150.4 11 403....

Game recive from game server "handshake" with algorithm.

46 00 00 00 00 00 00 00 D9 00 1C 00 1C 00 00 00 is a static header

00000000 46 00 00 00 00 00 00 00 D9 00 1C 00 1C 00 00 00 F....... ........
00000010 01 F3 32 2F A9 CB E8 09 55 8E 52 D1 29 18 94 15 ..2/.... U.R.)...
00000020 13 2F 02 A0 F0 AE 49 9E DC F7 C7 D5 0E 00 00 00 ./....I. ........
00000030 0C C8 92 F8 C1 69 21 5D E0 8D 5B 78 0F EB 92 C2 .....i!] ..[x....
00000040 94 50 40 2A 0E 00 [email protected]*..

Client send login packet to server : (id : test, password : test, security pin : 0000)
3B 00 00 00 01 00 04 00 is a static header

00000000 3B 00 00 00 01 00 04 00 82 47 7E B1 C2 B7 C5 FF ;....... .G~.....
00000010 99 A9 5B B1 18 C9 31 D8 94 30 FA 4A FA 72 3F 86 ..[...1. .0.J.r?.
00000020 46 3E 9D 8C DC AF 67 D8 A6 A1 63 D1 0E 33 BB 11 F>....g. ..c..3..
00000030 7E F9 D1 90 58 9C 8C F2 4D DB 6E ~...X... M.n

Server response : (login fail, wrong id or psw) static packet

00000000 09 00 00 00 03 00 64 00 CA ......d. .


It has very secret structure.

It is same id, password and security key with above but :

00000000 46 00 00 00 00 00 00 00 D9 00 1C 00 1C 00 00 00 F....... ........
00000010 01 C1 37 0D B8 9E 14 7D B9 85 4B 42 E0 DD 67 EF ..7....} ..KB..g.
00000020 30 AB AC 65 24 32 75 07 80 54 52 E9 0E 00 00 00 0..e$2u. .TR.....
00000030 0B 8E AA 00 2E 60 F9 7C CF 55 E1 C3 B2 FB A8 C3 .....`.| .U......
00000040 94 50 0A 0F 0D 00 .P....

00000000 3A 00 00 00 01 00 04 00 CB DF A8 75 40 AB 89 F1 :....... [email protected]
00000010 31 28 72 43 CE 03 99 EA 9A 99 88 B8 CE 0F 39 93 1(rC.... ......9.
00000020 C7 6D 69 22 BA 57 62 74 CE B5 9C 6C 2C EE 97 AB .mi".Wbt ...l,...
00000030 24 B3 7E 7B 29 F8 DC BC AD C0 $.~{)... ..


I pay for :

-packet encrypted

-crypt algorithm

-server resopnse

-pre login packet structure & decryption

Crypto function ?
int __cdecl sub_5F799A(int a1, int a2)
{
int v3; // [email protected]
int v4; // [email protected]
__int16 v5; // [email protected]
const char *v6; // [sp-18h] [bp-201Ch]@2
unsigned int v7; // [sp-14h] [bp-2018h]@2
char v8; // [sp-14h] [bp-2018h]@10
int v9; // [sp+4h] [bp-2000h]@9
unsigned int v10; // [sp+1FF4h] [bp-10h]@1
int v11; // [sp+2000h] [bp-4h]@5
int v12; // [sp+2004h] [bp+0h]@1

v10 = (unsigned int)&v12 ^ dword_7A0620;
if ( *(_DWORD *)a1 > 0x1FF0u )
{
v7 = *(_DWORD *)a1;
v6 = "[error] CryptoManager::EncryptPacket - Packet size too big %d";
LABEL_3:
sub_5CDB19(v6, v7);
return 0;
}
v3 = (int)sub_5E869E();
v4 = 0;
v11 = 0;
if ( v3 )
v4 = sub_5E82BA(v3);
v11 = -1;
if ( !v4 )
{
sub_5CDB19("[error] CryptoManager::EncryptPacket - new Packet failed");
return 0;
}
memset(&v9, 0, 0x1FF0u);
v8 = a2 == 1;
v7 = sub_5F7864(&v9, a1 + 8, *(_DWORD *)a1, (int)&v9, v8);
if ( v7 > 0x1FF0 )
{
v6 = "[error] CryptoManager::EncryptPacket - encrypt size too big %d";
goto LABEL_3;
}
v5 = *(_WORD *)(a1 + 4);
*(_WORD *)(v4 + 6) = *(_WORD *)(a1 + 6);
*(_WORD *)(v4 + 4) = v5;
sub_5E80E2((void *)v4, (int)&v9, v7);
return v4;
}


It using Microsoft CryptoAPI


XaniXpl is offline  
Thanks
2 Users
Old 11/03/2012, 15:09   #5 Trade Status: Unverified(?)
 
elite*gold: 0
Join Date: Jul 2012
Posts: 286
Received Thanks: 127
Now its time to pm him, give him 500€! Im really excited if he pays that money.
3Angle is offline  
Old 11/03/2012, 15:12   #6
 
elite*gold: 0
Join Date: Jun 2009
Posts: 65
Received Thanks: 3
Hm ?

Do u decrypted packet ?


XaniXpl is offline  
Reply



« Previous Thread | Next Thread »

Similar Threads
Packet Decryption help
Hi! I'm working on a little prog. that decrypts the L2 packages. The decryption algorithm is (I think) good, because the first packet seems to...
4 Replies - Lineage 2
CO Packet decryption.
Hi, i recently made a Java proxy, I'm wondering if anyone would like to share with me the CO packet encryption/decryption packet structure. I...
11 Replies - CO2 Programming
Packet Decryption
Packet Decryption: BYTE *DecryptPacket&#40;BYTE *Packet, DWORD len&#41; { BYTE KeyIndex, curKey, lastByte; DWORD i; KeyIndex = *&#40;CryptInfo +...
9 Replies - WoW Exploits, Hacks, Tools & Macros
packet decryption?
soo, ich wuerde gerne bissl mit den wow-packets rumspielen. allerdings hab ich keine ahnung, wie ich die decrypten soll. weiss da wer was? Ping
1 Replies - WoW Main - Discussions / Questions
Packet Decryption
My Other Thread Died (*sigh* And I Still Can&#39;t Decrypt The First Server -> Client Packet) Heres What I Posted About It There: ...
3 Replies - CO2 Main - Discussions / Questions



All times are GMT +2. The time now is 15:10.


Powered by vBulletin®
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Abuse
Copyright ©2018 elitepvpers All Rights Reserved.