Register for your free account! | Forgot your password?

Go Back   elitepvpers > MMORPGs > RF Online
You last visited: Today at 17:40

  • Please register to post and access all features, it's quick, easy and FREE!

 

To Share or Not to Share

Closed Thread
 
Old   #361
 
elite*gold: 0
Join Date: Nov 2007
Posts: 160
Received Thanks: 28
Guyz, it seems, that you don't completely understand packet structure.
So, let me explain. All packets in RFO protocol have standard header of 4 bytes.
First 2 bytes are packet size (in reverse order). Next 2 bytes are packet identifier.
Other bytes are packet specific data.

e.g. in packet
21 00 07 11 00 2B ....

21 00 is the total packet size (reverse it to 00 21, convert from hex to dec - and voila - 33 bytes)
07 11 is the packet identifier (moreover 07xx - packet group dealing with items)

so, please, don'ts say "21 packet" it's really 0711 packet.

Next, regarding so-called "14 packet". Let us look more closely :

14 00 66 03 7A 8D 0C B5 8B CD 7C D0 15 C9 F7 9F 96 8E 8C 9B

according to we already know, the packet actually is 66 03.

As far as I know 6603 is a security ping packet. It's not concerned item upgdade at all !
It's being sent to server in reply to 6602 packet right 5 seconds after 6602 was received.

Now, you can continue your research.

P.S. Sorry for my bad english - it's not my native language.



BuBucekTop is offline  
Thanks
3 Users
Old   #362
 
elite*gold: 0
Join Date: Jul 2006
Posts: 397
Received Thanks: 322
nice one! thx for the tip..


eric0584 is offline  
Old   #363
 
elite*gold: 0
Join Date: Apr 2008
Posts: 8
Received Thanks: 15
i like 2 have a +7 int set armor and +7 int or Strong Int Weapon In game!..
Ghozt22 is offline  
Old   #364
 
elite*gold: 0
Join Date: Jun 2006
Posts: 17
Received Thanks: 8
Quote:
Originally Posted by BuBucekTop View Post
Guyz, it seems, that you don't completely understand packet structure.
So, let me explain. All packets in RFO protocol have standard header of 4 bytes.
First 2 bytes are packet size (in reverse order). Next 2 bytes are packet identifier.
Other bytes are packet specific data.

e.g. in packet
21 00 07 11 00 2B ....

21 00 is the total packet size (reverse it to 00 21, convert from hex to dec - and voila - 33 bytes)
07 11 is the packet identifier (moreover 07xx - packet group dealing with items)

so, please, don'ts say "21 packet" it's really 0711 packet.

Next, regarding so-called "14 packet". Let us look more closely :

14 00 66 03 7A 8D 0C B5 8B CD 7C D0 15 C9 F7 9F 96 8E 8C 9B

according to we already know, the packet actually is 66 03.

As far as I know 6603 is a security ping packet. It's not concerned item upgdade at all !
It's being sent to server in reply to 6602 packet right 5 seconds after 6602 was received.

Now, you can continue your research.

P.S. Sorry for my bad english - it's not my native language.
thanks for the tip... where did you get these informations? are there any pages on the net, regarding to the security ping packet?

I'm not interessted in this 100% success shyt, i dont believe it is possible to do with a single packet send or so and screenshots won't tell the truth either. I'm just interessted in the packet structure and the packetid

greets


TwixMan is offline  
Old   #365
 
elite*gold: 0
Join Date: Apr 2008
Posts: 21
Received Thanks: 2
b u l l s h i t

Look at the RFO server sources and you will see that all success rate calculation are on the server.
I will try to show you shortly:
Increasing success rate by the stones (default is 0,125)
Code:
for(int i = 0; i < upgrade_jewel_num; i++)
{
if(!pJewelFld[i])
   fRate += 0.125;
else
   fRate += pJewelFld[i];
}
Calculating rate depending on item's level
Code:
BYTE GetItemUpgedLv(DWORD dwLvBit)
{
    BYTE byLv = 0;
    for(int g = 0; g < MAX_ITEM_LV; g++)
    {
        BYTE byTemp = (BYTE)((dwLvBit>>(g*4))&0x0000000F);
        if(byTemp == __NO_TALIK)
            break;
        byLv++;
    }
    return byLv;
}
Calculating general rate:
Code:
dwTotalRate = s_dwItemUpgSucRate[byLv]*fRate/upgrade_jewel_num)*1000;
Calculating random variables:
Code:
DWORD dwR1 = rand();
DWORD dwRand = (dwR1<<16)+rand();
And the final success/failur checking depending on random variables and calculated rate:
Code:
if(dwTotalRate <= dwRand%100000) {
....
And what the f*ck you can change in it by packets???? NOTHING! You can just tell to the server *by packets) which talic you want to use and what item upgrade, nothing more. All other calculation is done by the server and it gives you a result: success/failur. You can just a bit increase possibility by level, timing and other stuff, nothing more.
So stop talking bull$hit about 100% upgrading and listening to bull$hiters like zhoea. Dont believe me? Ok, try to find this magic packet or dont waste your time and just look into the sources.

Full source is attached.
Attached Files
File Type: txt upgrade.txt (2.0 KB, 125 views)
nopp is offline  
Thanks
1 User
Old   #366
 
elite*gold: 0
Join Date: Apr 2008
Posts: 78
Received Thanks: 14
anyone did come up to +4 or +5? it is very useful up to that level. dont make it too complicated to get to max level up upgrade, as other says it can ruined the game!

mind sharing up to only +4 or +5? any reply would be appreciated!
shiver21 is offline  
Old   #367
 
elite*gold: 0
Join Date: Apr 2008
Posts: 78
Received Thanks: 14
Quote:
Originally Posted by nopp View Post
Look at the RFO server sources and you will see that all success rate calculation are on the server.
I will try to show you shortly:
Increasing success rate by the stones (default is 0,125)
Code:
for(int i = 0; i < upgrade_jewel_num; i++)
{
if(!pJewelFld[i])
   fRate += 0.125;
else
   fRate += pJewelFld[i];
}
Calculating rate depending on item's level
Code:
BYTE GetItemUpgedLv(DWORD dwLvBit)
{
    BYTE byLv = 0;
    for(int g = 0; g < MAX_ITEM_LV; g++)
    {
        BYTE byTemp = (BYTE)((dwLvBit>>(g*4))&0x0000000F);
        if(byTemp == __NO_TALIK)
            break;
        byLv++;
    }
    return byLv;
}
Calculating general rate:
Code:
dwTotalRate = s_dwItemUpgSucRate[byLv]*fRate/upgrade_jewel_num)*1000;
Calculating random variables:
Code:
DWORD dwR1 = rand();
DWORD dwRand = (dwR1<<16)+rand();
And the final success/failur checking depending on random variables and calculated rate:
Code:
if(dwTotalRate <= dwRand%100000) {
....
And what the f*ck you can change in it by packets???? NOTHING! You can just tell to the server *by packets) which talic you want to use and what item upgrade, nothing more. All other calculation is done by the server and it gives you a result: success/failur. You can just a bit increase possibility by level, timing and other stuff, nothing more.
So stop talking bull about 100% upgrading and listening to bull like zhoea. Dont believe me? Ok, try to find this magic packet or dont waste your time and just look into the sources.

Full source is attached.

nice algorithm catched...! anyways juz as the thread says its 100% upgrade success, why not believe, others tried to sniff on it and did have a progress so dont alter those who want to break the codes... peace
shiver21 is offline  
Old   #368
 
elite*gold: 0
Join Date: Nov 2007
Posts: 160
Received Thanks: 28
instead of saying "thanx" press apropriate button =)
regading "where did you get these informations?" it's easy - I've dizassembled client binary and looked carefully throught the code.

2nopp

I have this sources too, but the're too outdated. Many things changed afer these sources were leaked. And don't forget about possible bugs in packet handling. If you find 'em - you can exploit 'em.
BuBucekTop is offline  
Old   #369
 
elite*gold: 0
Join Date: Jun 2006
Posts: 17
Received Thanks: 8
Quote:
Originally Posted by BuBucekTop View Post
instead of saying "thanx" press apropriate button =)
regading "where did you get these informations?" it's easy - I've dizassembled client binary and looked carefully throught the code.

2nopp

I have this sources too, but the're too outdated. Many things changed afer these sources were leaked. And don't forget about possible bugs in packet handling. If you find 'em - you can exploit 'em.
well you got my "Thanks"
TwixMan is offline  
Old   #370
 
elite*gold: 0
Join Date: Nov 2007
Posts: 131
Received Thanks: 33
i just wanna know...why can't we send the "14" packets?

and to zhoea,

can u post a screenie that u made this work in RF-PH before i collapse in thinking of ways to make a 100% upgrade chance?
borlet is offline  
Old   #371
 
elite*gold: 0
Join Date: Nov 2007
Posts: 160
Received Thanks: 28
Quote:
i just wanna know...why can't we send the "14" packets?
look, man, I've described above that so-called "14 packet" is actually "security ping response". In other words - when you joined the world server sends you "security ping request" - packet 6602. Client recalculates response key based on request key, encrypts it and sends back in 6603 packet right 5 seconds after receiving 6602. If you'll try to re-send already captured 6603 packet - that will result to immediate disconnect. Also your suspected activity will be logged on server.
BuBucekTop is offline  
Old   #372
 
elite*gold: 0
Join Date: Apr 2008
Posts: 21
Received Thanks: 2
there is only one client packet for item upgrading while author said that we must change 8 packets
I heard such dispute many times before and believe me there is only one way to 100% upgrade items: SQL-injection. Forget about packets. Sure I will not tell you where it is, but injecting SQL-request is:
UPDATE tbl_inven SET U<item_slot>=<talics> WHERE Serial=<character_id>--
where talics has format the same as in "03 06" packet
nopp is offline  
Old   #373
 
elite*gold: 0
Join Date: Apr 2008
Posts: 21
Received Thanks: 2
Quote:
Originally Posted by borlet View Post
i just wanna know...why can't we send the "14" packets?

and to zhoea,

can u post a screenie that u made this work in RF-PH before i collapse in thinking of ways to make a 100% upgrade chance?
uhaha and what you will see on the screen? Look at mine:
Attached Images
File Type: jpg upgraded.jpg (71.0 KB, 254 views)
nopp is offline  
Old   #374
 
elite*gold: 0
Join Date: Apr 2008
Posts: 78
Received Thanks: 14
Quote:
Originally Posted by BuBucekTop View Post
instead of saying "thanx" press apropriate button =)
regading "where did you get these informations?" it's easy - I've dizassembled client binary and looked carefully throught the code.

i agreed but no possibility to use your post. no offense thou!

Quote:
Originally Posted by nopp View Post
there is only one client packet for item upgrading while author said that we must change 8 packets
I heard such dispute many times before and believe me there is only one way to 100% upgrade items: SQL-injection. Forget about packets. Sure I will not tell you where it is, but injecting SQL-request is:
UPDATE tbl_inven SET U<item_slot>=<talics> WHERE Serial=<character_id>--
where talics has format the same as in "03 06" packet
well for SQL injection, someone will find a way to have this.
shiver21 is offline  
Old   #375
 
elite*gold: 0
Join Date: Nov 2007
Posts: 160
Received Thanks: 28
Quote:
Originally Posted by nopp View Post
uhaha and what you will see on the screen? Look at mine:
Камрад. на ру-оффе играешь ? =))


BuBucekTop is offline  
Closed Thread



« Previous Thread | Next Thread »

Similar Threads
pa SHARE nmn ng CE nyo...^_^
closed
13 Replies - Grand Chase
Share with us
some one share with us this bug.. i have no posts to see it.. Multiply gold bars
0 Replies - Lineage 2
Why don't they share ? :(
I've seen a lot of ppl at dark bladers using speedhack... Once i saw an osmium gearred warrior with shadowsteel greatsword using speed hack but as...
8 Replies - Cabal Main - Discussions / Questions



All times are GMT +2. The time now is 17:40.


Powered by vBulletin®
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.

Support | Contact Us | FAQ | Advertising | Privacy Policy
Copyright ©2017 elitepvpers All Rights Reserved.