Guyz, it seems, that you don't completely understand packet structure.
So, let me explain. All packets in RFO protocol have standard header of 4 bytes.
First 2 bytes are packet size (in reverse order). Next 2 bytes are packet identifier.
Other bytes are packet specific data.
e.g. in packet
21 00 07 11 00 2B ....
21 00 is the total packet size (reverse it to 00 21, convert from hex to dec - and voila - 33 bytes)
07 11 is the packet identifier (moreover 07xx - packet group dealing with items)
so, please, don'ts say "21 packet" it's really 0711 packet.
Next, regarding so-called "14 packet". Let us look more closely :
14 00 66 03 7A 8D 0C B5 8B CD 7C D0 15 C9 F7 9F 96 8E 8C 9B
according to we already know, the packet actually is 66 03.
As far as I know 6603 is a security ping packet. It's not concerned item upgdade at all !
It's being sent to server in reply to 6602 packet right 5 seconds after 6602 was received.
Now, you can continue your research.
P.S. Sorry for my bad english - it's not my native language.
Guyz, it seems, that you don't completely understand packet structure.
So, let me explain. All packets in RFO protocol have standard header of 4 bytes.
First 2 bytes are packet size (in reverse order). Next 2 bytes are packet identifier.
Other bytes are packet specific data.
e.g. in packet
21 00 07 11 00 2B ....
21 00 is the total packet size (reverse it to 00 21, convert from hex to dec - and voila - 33 bytes)
07 11 is the packet identifier (moreover 07xx - packet group dealing with items)
so, please, don'ts say "21 packet" it's really 0711 packet.
Next, regarding so-called "14 packet". Let us look more closely :
14 00 66 03 7A 8D 0C B5 8B CD 7C D0 15 C9 F7 9F 96 8E 8C 9B
according to we already know, the packet actually is 66 03.
As far as I know 6603 is a security ping packet. It's not concerned item upgdade at all !
It's being sent to server in reply to 6602 packet right 5 seconds after 6602 was received.
Now, you can continue your research.
P.S. Sorry for my bad english - it's not my native language.
thanks for the tip... where did you get these informations? are there any pages on the net, regarding to the security ping packet?
I'm not interessted in this 100% success shyt, i dont believe it is possible to do with a single packet send or so and screenshots won't tell the truth either. I'm just interessted in the packet structure and the packetid
Look at the RFO server sources and you will see that all success rate calculation are on the server.
I will try to show you shortly: Increasing success rate by the stones (default is 0,125)
Code:
for(int i = 0; i < upgrade_jewel_num; i++)
{
if(!pJewelFld[i])
fRate += 0.125;
else
fRate += pJewelFld[i];
}
And the final success/failur checking depending on random variables and calculated rate:
Code:
if(dwTotalRate <= dwRand%100000) {
....
And what the f*ck you can change in it by packets???? NOTHING! You can just tell to the server *by packets) which talic you want to use and what item upgrade, nothing more. All other calculation is done by the server and it gives you a result: success/failur. You can just a bit increase possibility by level, timing and other stuff, nothing more.
So stop talking bull$hit about 100% upgrading and listening to bull$hiters like zhoea. Dont believe me? Ok, try to find this magic packet or dont waste your time and just look into the sources.
anyone did come up to +4 or +5? it is very useful up to that level. dont make it too complicated to get to max level up upgrade, as other says it can ruined the game!
mind sharing up to only +4 or +5? any reply would be appreciated!
Look at the RFO server sources and you will see that all success rate calculation are on the server.
I will try to show you shortly: Increasing success rate by the stones (default is 0,125)
Code:
for(int i = 0; i < upgrade_jewel_num; i++)
{
if(!pJewelFld[i])
fRate += 0.125;
else
fRate += pJewelFld[i];
}
And the final success/failur checking depending on random variables and calculated rate:
Code:
if(dwTotalRate <= dwRand%100000) {
....
And what the f*ck you can change in it by packets???? NOTHING! You can just tell to the server *by packets) which talic you want to use and what item upgrade, nothing more. All other calculation is done by the server and it gives you a result: success/failur. You can just a bit increase possibility by level, timing and other stuff, nothing more.
So stop talking bull about 100% upgrading and listening to bull like zhoea. Dont believe me? Ok, try to find this magic packet or dont waste your time and just look into the sources.
Full source is attached.
nice algorithm catched...! anyways juz as the thread says its 100% upgrade success, why not believe, others tried to sniff on it and did have a progress so dont alter those who want to break the codes... peace
instead of saying "thanx" press apropriate button =)
regading "where did you get these informations?" it's easy - I've dizassembled client binary and looked carefully throught the code.
2nopp
I have this sources too, but the're too outdated. Many things changed afer these sources were leaked. And don't forget about possible bugs in packet handling. If you find 'em - you can exploit 'em.
instead of saying "thanx" press apropriate button =)
regading "where did you get these informations?" it's easy - I've dizassembled client binary and looked carefully throught the code.
2nopp
I have this sources too, but the're too outdated. Many things changed afer these sources were leaked. And don't forget about possible bugs in packet handling. If you find 'em - you can exploit 'em.
i just wanna know...why can't we send the "14" packets?
look, man, I've described above that so-called "14 packet" is actually "security ping response". In other words - when you joined the world server sends you "security ping request" - packet 6602. Client recalculates response key based on request key, encrypts it and sends back in 6603 packet right 5 seconds after receiving 6602. If you'll try to re-send already captured 6603 packet - that will result to immediate disconnect. Also your suspected activity will be logged on server.
there is only one client packet for item upgrading while author said that we must change 8 packets
I heard such dispute many times before and believe me there is only one way to 100% upgrade items: SQL-injection. Forget about packets. Sure I will not tell you where it is, but injecting SQL-request is:
UPDATE tbl_inven SET U<item_slot>=<talics> WHERE Serial=<character_id>--
where talics has format the same as in "03 06" packet
instead of saying "thanx" press apropriate button =)
regading "where did you get these informations?" it's easy - I've dizassembled client binary and looked carefully throught the code.
i agreed but no possibility to use your post. no offense thou!
Quote:
Originally Posted by nopp
there is only one client packet for item upgrading while author said that we must change 8 packets
I heard such dispute many times before and believe me there is only one way to 100% upgrade items: SQL-injection. Forget about packets. Sure I will not tell you where it is, but injecting SQL-request is:
UPDATE tbl_inven SET U<item_slot>=<talics> WHERE Serial=<character_id>--
where talics has format the same as in "03 06" packet
well for SQL injection, someone will find a way to have this.
Share with us 06/15/2009 - Lineage 2 - 0 Replies some one share with us this bug.. i have no posts to see it..
Multiply gold bars
Why don't they share ? :( 09/19/2007 - Cabal Online - 8 Replies I've seen a lot of ppl at dark bladers using speedhack...
Once i saw an osmium gearred warrior with shadowsteel greatsword using speed hack but as soon as i entered his sight he dissapeared (name: Meleout) I hid over a corner and waited ... after a few minutes the same looking and geared warrior appeared with a different name appeared and started speedhacking again ... as i entered his sight he disspapeared again ... in a few minutes the same guy with a diffrent name logged in ...
That's very...
Look at mine:
