Quote:
Originally Posted by DarkorbitUser123
Been looking into this the past few days now, i see the data, i know parts of it are encrypted but i dont know how to go about decrypting them. Been using WireShark to read the packets.
I heard to use MD5 was used, but i've found very little other information about the subject here or abroad. If you got useful information about darkorbit packets that would be awesome. If not any information about decrypting MD5 data would be great.
|
The purpose of MD5 and any other hash algorithm for that matter is that it is irreversible, meaning the initial data cannot be recreated from the hash. The server might be sending you some kind of "should-be" checksum which is then compared to a checksum generated from data on your machine to verify validity of any number of possible areas of the program.
As for decrypting packets you'll simply have to look for the place where the program actually decrypts the packets and implement/copy/call that algorithm to decrypt packets at your will. To do that your starting point would be to check the program's routine for receiving data (recv/WSARecv/recvfrom) and step through the code from there to get a grasp of what is done to the received data.
