Register for your free account! | Forgot your password?

Go Back   elitepvpers > Silkroad Online > SRO Coding Corner
You last visited: Today at 21:35

  • Please register to post and access all features, it's quick, easy and FREE!


WSASend buffer Need DECRYPT

Reply
 
Old   #1
 
elite*gold: 0
Join Date: Aug 2013
Posts: 15
Received Thanks: 0
Unhappy WSASend buffer Need DECRYPT

Hello,
I am 15 years old. I am new in this assembly. I have not good English. So I hooked WSASend function on C++. Packets crypted i wanna decrypt this packets.
Like this:

http://imgur.com/a/Mk0Tp

This is buffer data:
http://imgur.com/a/4qVmp

Sorry for my bad English. Thanks



emreozan625 is offline  
Old 06/15/2017, 20:38   #2
 
elite*gold: 11
Join Date: May 2009
Posts: 591
Received Thanks: 561
its not good idea to hook WSASend, check out Iwa's Sro++


qoaway is offline  
Old 06/15/2017, 20:53   #3
 
elite*gold: 0
Join Date: Aug 2013
Posts: 15
Received Thanks: 0
How can i decrypt this packets?
emreozan625 is offline  
Old 06/16/2017, 11:48   #4
 
elite*gold: 0
Join Date: Apr 2008
Posts: 497
Received Thanks: 617
Quote:
Originally Posted by emreozan625 View Post
How can i decrypt this packets?
Capture the Handshake, steal the clients secret (CoCreateGuid) and calculate the shared secret. Decrypt the packets using existing blowfish libraries.
If you want to inject packets, too, you need mess with the count-byte.


The one from Jim Conger is really close to the one used in ClientNet.
The other C++ one is close to the implementation used in GFXFileManager.

These might even be the original implementations they are using. (Maybe someone with access to the source can clarify this).

Both should work fine, if you really want to go the hard way.

Some more info on the Handshake:
[1]
[2]
[3]
[4]


florian0 is offline  
Old 06/16/2017, 13:22   #5
 
elite*gold: 0
Join Date: Aug 2013
Posts: 15
Received Thanks: 0
Quote:
Originally Posted by florian0 View Post
Capture the Handshake, steal the clients secret (CoCreateGuid) and calculate the shared secret. Decrypt the packets using existing blowfish libraries.
If you want to inject packets, too, you need mess with the count-byte.


The one from Jim Conger is really close to the one used in ClientNet.
The other C++ one is close to the implementation used in GFXFileManager.

These might even be the original implementations they are using. (Maybe someone with access to the source can clarify this).

Both should work fine, if you really want to go the hard way.

Some more info on the Handshake:
[1]
[2]
[3]
[4]
Thanks for your comment
Which function should I call? How can this functions find? Do you have any videos on this subject? Thanks
emreozan625 is offline  
Old 06/16/2017, 17:05   #6
 
elite*gold: 0
Join Date: Apr 2008
Posts: 497
Received Thanks: 617
Quote:
Originally Posted by emreozan625 View Post
Thanks for your comment
Which function should I call? How can this functions find? Do you have any videos on this subject? Thanks
No, there aren't any useful videos on sro security. Learn from text and existing code. Search the forums for silkroad security. I've linked in an example implementation in my previous post.
florian0 is offline  
Old 06/17/2017, 02:17   #7
 
elite*gold: 62
Join Date: Mar 2011
Posts: 595
Received Thanks: 2,940
You are using my old ClientLib aint u ? ;p
Chernobyl* is offline  
Old 06/17/2017, 09:35   #8
 
elite*gold: 0
Join Date: Aug 2013
Posts: 15
Received Thanks: 0
Quote:
Originally Posted by Chernobyl* View Post
You are using my old ClientLib aint u ? ;p
i just wanna send packet with wsasend. I need decrypt packet
emreozan625 is offline  
Old 06/17/2017, 13:29   #9
 
elite*gold: 0
Join Date: Apr 2008
Posts: 497
Received Thanks: 617
I gave you all the information you need. If you cant solve it, then you are not ready for it. Learn it. Or use some of the existing libraries if you dont want to learn.
But stop begging for complete solutions because there are plenty around ready to use.
florian0 is offline  
Old 06/18/2017, 20:30   #10
 
elite*gold: 0
Join Date: Aug 2013
Posts: 15
Received Thanks: 0
Thanks for your help. I will learn this.


emreozan625 is offline  
Reply

Tags
assembly, c++, ollydbg, packet, sro



« Hiring a coder | Silkroad Map X - Y Finder »

Similar Threads
[Selling] [SG] LV 87 Warrior 3P + LV 90 Buffer, Lv 76 Sura + lvl 70 Buffer
03/16/2014 - Metin2 Trading - 8 Replies
Hi, Ich verkauf hier meine Chars auf Metin2.SG Tradeadministrator : dust oder wer online ist Ingame name(en): Kurdboy verheiratet mit Vexina, BugattiStyle verheiratet mit Custombuffer
Need help tracing WSASend to locate pre-encryption point with Ollydbg
03/16/2013 - General Coding - 0 Replies
I've been at this for this entire week every day nonstop and I can't figure it out. The game I am doing this for is called Runes of Magic, RoM for short. In the past the customer support for this game has always been shit and every person who has managed to do what I am trying to do has said their encryption is extremely weak and it is very easy. The client uses WSASend to send it's packets out so I can have been break pointing and filing through thousands of lines of code around the...
C++ Text Decrypt Function + Programm Encrypt to Decrypt
07/09/2011 - WarRock Hacks, Bots, Cheats & Exploits - 19 Replies
http://desmond.imageshack.us/Himg233/scaled.php?server=233&filename=icevisionzxencrypttodec.png&res=medium Download: uploaded.to - where your files have to be uploaded to Virustotal: VirusTotal - Free Online Virus, Malware and URL Scanner Function C++: char* encrypt(const char* plaintext) {
[Realese] Flyff buffer für homepage buffer server
04/01/2011 - Flyff PServer - Discussions / Questions - 7 Replies
Hallo dies ist mein erstes tool ein flyff buffer für p-server die einen homepage buffer haben 1. den changejob ordner in eure appserv/www verschieben http://biffi.bplaced.net/pic1.png 2. die config.html mit editor öffnen und eure ip eintragen http://biffi.bplaced.net/pic2.png



All times are GMT +1. The time now is 21:35.


Powered by vBulletin®
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Abuse
Copyright ©2018 elitepvpers All Rights Reserved.