[INFO] IBot datas and tip to make a crack

xxDr-Shadowxx · 06/01/2012, 19:52

The userID is caught when iBot asks for indexInternal.es?action=internalStart webpage... You can modify the response but iBot will check this ID so...

Regwin32 · 06/01/2012, 19:56

Quote:

Originally Posted by xxDr-Shadowxx

The userID is caught when iBot asks for indexInternal.es?action=internalStart webpage... You can modify the response but iBot will check this ID so...

But when we're catching this Packet and change it?
I thing the only thing is to Emulate a server and forward iBot to it

RBence13 · 06/01/2012, 19:57

Quote:

Originally Posted by xxDr-Shadowxx

The userID is caught when iBot asks for indexInternal.es?action=internalStart webpage... You can modify the response but iBot will check this ID so...

Yes and ibot will send the real id to mail.majar.com.
But there will still here the programme,which forwards the data,so it would send the fake again.

Regwin32:
82.98.86.167:8084 is also the server,so we can login

EDIT: and yes that would be the best,and I wanna do that,but without forward I can't.

Only difficulty is ibot send two packets:
1. packet 49 bits
2. packet 4 bits
So 7 letters and a number means a userid.
If we catch some packet and we know the sent id,then we can decode it,so we can crypt the fake id to seems ibot sent it..

xxDr-Shadowxx · 06/01/2012, 19:58

When you modify the packet which gets the ID iBot checks the fakeID, that's all...

Regwin32 · 06/01/2012, 20:02

Quote:

Originally Posted by xxDr-Shadowxx

When you modify the packet which gets the ID iBot checks the fakeID, that's all...

Are u kidding me??
It's not impossible to Fake the ID! V.I.R.U.S done it! You're talking like:"It's Impossible, you can Fake it anymore." Thats not correct. The Point is that iBot change the way to get the ID, then we can change the way to Fake the ID

€ @RBence13 : Done it like kBOT use a tool witch divert the Request.

xxDr-Shadowxx · 06/01/2012, 20:05

Lol, you can fake the ID but not when iBot gets the ID from indexInternal.es?action=internalStart

I think V.I.R.U.S inject the fakeID after iBot checks license or else

Regwin32 · 06/01/2012, 20:08

Quote:

Originally Posted by xxDr-Shadowxx

Lol, you can fake the ID but not when iBot gets the ID from indexInternal.es?action=internalStart

I think V.I.R.U.S inject the fakeID after iBot checks license or else

Yeah i got it! The Request will take more time but you can Play!
1. Let Check iBot normaly.
2. Catch the Packet.
3. iBOT got the ID
4. Inject a Facked ID
5. iBOT send the Facked ID to the Server
6. Done

possible?

xxDr-Shadowxx · 06/01/2012, 20:09

I dont know how to inject but it should work

I dont trust injecting data

RBence13 · 06/01/2012, 20:11

Quote:

Originally Posted by Regwin32

But when we're catching this Packet and change it?
I thing the only thing is to Emulate a server and forward iBot to it

Quote:

Originally Posted by Regwin32

Yeah i got it! The Request will take more time but you can Play!
1. Let Check iBot normaly.
2. Catch the Packet.
3. iBOT got the ID
4. Inject a Facked ID
5. iBOT send the Facked ID to the Server
6. Done

possible?

Yeah,but how do you wanna do it?

Regwin32 · 06/01/2012, 20:11

Quote:

Originally Posted by xxDr-Shadowxx

I dont know how to inject but it should work

I dont trust injecting data

The problem is there.

Quote:

ibot has to take the faked ID to the server!

Quote:

Yeah,but how do you wanna do it?

That's the Point, in theory it's easer as in practice

RBence13 · 06/01/2012, 20:13

Quote:

Originally Posted by Regwin32

The problem is there.

Then:
1.Run ibot
2.Run a prog what takes over the control of the connections
3.Login with ibot and when checks the license modify the id and send to the server
4.Done

xxDr-Shadowxx · 06/01/2012, 20:14

Eyh, you know the communication between ibot and the license server ?

It's encrypted lol

RBence13 · 06/01/2012, 20:16

Quote:

Originally Posted by xxDr-Shadowxx

Eyh, you know the communication between ibot and the license server ?

It's encrypted lol

Yes,but the bot send only 2 packets which constist 7 letters and 1 number.
If we catch some packets we can find out the crypt mechanism and then crypt our fakeid

Regwin32 · 06/01/2012, 20:16

Quote:

Originally Posted by RBence13

Yeah,but how do you wanna do it?

Quote:

Originally Posted by RBence13

Then:
1.Run ibot
2.Run a prog what takes over the control of the connections
3.Login with ibot and when checks the license modify the id and send to the server
4.Done

Quote:

Originally Posted by xxDr-Shadowxx

Eyh, you know the communication between ibot and the license server ?

@RBence13
Can you make a Screenshot and show us the Packet's...

It's encrypted lol

I thing there is a easier solution... Just a thing that we forgot
find out the crypt mechanism (My Head!)

RBence13 · 06/01/2012, 20:21

Quote:

Originally Posted by Regwin32

I thing there is a easier solution... Just a thing that we forgot
find out the crypt mechanism (My Head!)

it doesn't so hard cause,the number is the last number of your id.
and the rest of 7 are letters,so if you catch sometimes the first packet,and send me the results,I will find out,believe me

But you made me curious..what's that thing?