WSASend buffer Need DECRYPT

emreozan625 · 06/15/2017, 16:32

Hello,
I am 15 years old. I am new in this assembly. I have not good English. So I hooked WSASend function on C++. Packets crypted i wanna decrypt this packets.
Like this:

This is buffer data:

Sorry for my bad English. Thanks

qoaway · 06/15/2017, 20:38

its not good idea to hook WSASend, check out Iwa's Sro++

emreozan625 · 06/15/2017, 20:53

How can i decrypt this packets?

florian0 · 06/16/2017, 11:48

Quote:

Originally Posted by emreozan625

How can i decrypt this packets?

Capture the Handshake, steal the clients secret (CoCreateGuid) and calculate the shared secret. Decrypt the packets using existing blowfish libraries.
If you want to inject packets, too, you need mess with the count-byte.

The one from Jim Conger is really close to the one used in ClientNet.
The other C++ one is close to the implementation used in GFXFileManager.

These might even be the original implementations they are using. (Maybe someone with access to the source can clarify this).

Both should work fine, if you really want to go the hard way.

Some more info on the Handshake:
[1]

[2]

[3]

[4]

emreozan625 · 06/16/2017, 13:22

Quote:

Originally Posted by florian0

Capture the Handshake, steal the clients secret (CoCreateGuid) and calculate the shared secret. Decrypt the packets using existing blowfish libraries.
If you want to inject packets, too, you need mess with the count-byte.

The one from Jim Conger is really close to the one used in ClientNet.
The other C++ one is close to the implementation used in GFXFileManager.

These might even be the original implementations they are using. (Maybe someone with access to the source can clarify this).

Both should work fine, if you really want to go the hard way.

Some more info on the Handshake:
[1]
[2]
[3]
[4]

Thanks for your comment

Which function should I call? How can this functions find? Do you have any videos on this subject? Thanks

florian0 · 06/16/2017, 17:05

Quote:

Originally Posted by emreozan625

Thanks for your comment
Which function should I call? How can this functions find? Do you have any videos on this subject? Thanks

No, there aren't any useful videos on sro security. Learn from text and existing code. Search the forums for silkroad security. I've linked in an example implementation in my previous post.

Chernobyl* · 06/17/2017, 02:17

You are using my old ClientLib aint u ? ;p

emreozan625 · 06/17/2017, 09:35

Quote:

Originally Posted by Chernobyl*

You are using my old ClientLib aint u ? ;p

i just wanna send packet with wsasend. I need decrypt packet

florian0 · 06/17/2017, 13:29

I gave you all the information you need. If you cant solve it, then you are not ready for it. Learn it. Or use some of the existing libraries if you dont want to learn.
But stop begging for complete solutions because there are plenty around ready to use.

emreozan625 · 06/18/2017, 20:30

Thanks for your help. I will learn this.