|
You last visited: Today at 00:09
Advertisement
[Guide] Finding the PK2 Blowfish Key in 5 Easy Steps
Discussion on [Guide] Finding the PK2 Blowfish Key in 5 Easy Steps within the SRO Coding Corner forum part of the Silkroad Online category.
07/09/2011, 01:54
|
#16
|
elite*gold: 0 
Join Date: Feb 2009
Posts: 173
Received Thanks: 14
|
Okay, so this made about zero sense to me. Would you mind making a dumbed down version for people who have never done this before? Would be greatly appreciated.
|
|
|
|
07/09/2011, 02:08
|
#17
|
elite*gold: 0
Join Date: Sep 2009
Posts: 36
Received Thanks: 0
|
Quote:
Originally Posted by lorveth
Search in ollydbg for ".pk2", till you find the latest one, then click on it and follow the guide.
|
1.how i know which one is latest ?
2.should i search only for .pk2 or media.pk2 like on thie screens ?
3.how do i "step into the function call"
4.in step 3 what means "Trace into the higher level function call" how do i get inside "GFXFileManager DLL" ?
Im stuck on step 3 and cant find anything that is on third screen.I think the problem is that i dont understand what that steping into function is ,was just looking for text strings that was on first and second screens.Would appreciate help from someone who is pro with ollydbg.
|
|
|
|
|
07/09/2011, 16:29
|
#18
|
elite*gold: 0
Join Date: Apr 2008
Posts: 696
Received Thanks: 310
|
Quote:
Originally Posted by peppe27
1.how i know which one is latest ?
2.should i search only for .pk2 or media.pk2 like on thie screens ?
3.how do i "step into the function call"
4.in step 3 what means "Trace into the higher level function call" how do i get inside "GFXFileManager DLL" ?
Im stuck on step 3 and cant find anything that is on third screen.I think the problem is that i dont understand what that steping into function is ,was just looking for text strings that was on first and second screens.Would appreciate help from someone who is pro with ollydbg.
|
He means search for ".pk2" in all reference text strings in olly. Its easier to just search for the "Media.pk2" instead which is in the tutorial. Ignore what KingLi said just then. Otherwise it will confuse you.
Anyway i'm in the same position as you, stuck on step 3. It says "Trace into the higher level function call" But Which function call am i supposed to Trace into lol?
The tutorial seems good untill step 2, after this it becomes unclear what to do.
Iv'e searched for the text string "false" which i can see in the screen shot/dump but i cannot find the correct string, like it does not exsist. I find mulitple "false" text strings but not the one in the screen shot which is near "kernal32.CreateFileA" & "USER32.MessageBoxA"
|
|
|
|
|
07/09/2011, 16:33
|
#19
|
elite*gold: 0
Join Date: Apr 2008
Posts: 696
Received Thanks: 310
|
Quote:
Originally Posted by walus32
i found string but cant read key ;p
|
You found the Blowfish key? Apparently you need to convert it to MD5 if that makes sense?
Quote:
Originally Posted by teto_max15
what is Program name ???
|
OllyDbg 1.10
|
|
|
|
|
07/09/2011, 17:12
|
#20
|
elite*gold: 0
Join Date: May 2008
Posts: 641
Received Thanks: 379
|
im open .dll found all but wher is key??
|
|
|
|
|
07/09/2011, 19:12
|
#21
|
elite*gold: 0
Join Date: Apr 2007
Posts: 449
Received Thanks: 236
|
lol you guys are making this 10x harder than it actually is. your putting too much
thought into it and not approaching it in a more practical and simple way. 
the key literally takes seconds to find. honestly the part that takes up the most time, is
loading sro_client in Ollydbg, finding the key once you have it open, literally takes
3 seconds
|
|
|
|
|
07/10/2011, 20:59
|
#22
|
elite*gold: 0
Join Date: Apr 2008
Posts: 696
Received Thanks: 310
|
Quote:
Originally Posted by Kazuyaš
lol you guys are making this 10x harder than it actually is. your putting too much
thought into it and not approaching it in a more practical and simple way.
the key literally takes seconds to find. honestly the part that takes up the most time, is
loading sro_client in Ollydbg, finding the key once you have it open, literally takes
3 seconds |
Well instead of been smug you could just give some info or a hint? lol
better than just saying, ohh it only takes 3 seconds, when you allready know we are having trouble locating it.
I'm mad bro 
|
|
|
|
|
07/10/2011, 21:46
|
#23
|
elite*gold: 0
Join Date: Sep 2009
Posts: 36
Received Thanks: 0
|
Quote:
Originally Posted by Kazuyaš
lol you guys are making this 10x harder than it actually is. your putting too much
thought into it and not approaching it in a more practical and simple way.
the key literally takes seconds to find. honestly the part that takes up the most time, is
loading sro_client in Ollydbg, finding the key once you have it open, literally takes
3 seconds |
Yes ,im sure it takes 3 seconds if you done it before or worked with ollydbg on something else.Can you just help and answer questions i asked before in this topic ?
|
|
|
|
|
07/11/2011, 05:45
|
#24
|
elite*gold: 0
Join Date: Apr 2007
Posts: 449
Received Thanks: 236
|
Quote:
Originally Posted by r7slayer
Well instead of been smug you could just give some info or a hint? lol
better than just saying, ohh it only takes 3 seconds, when you allready know we are having trouble locating it.
I'm mad bro |
i would have posted exactly how to get it and what it was right when the
key changed, but since i am friends with Snyx, i couldnt go against him since
hes the one that changed it :P so im not going to explain it. but hints are
always alright lol.
|
|
|
|
|
07/13/2011, 10:57
|
#25
|
elite*gold: 0
Join Date: Jul 2011
Posts: 121
Received Thanks: 34
|
Awesome
|
|
|
|
|
07/13/2011, 15:13
|
#26
|
elite*gold: 0
Join Date: Feb 2009
Posts: 1,064
Received Thanks: 539
|
Quote:
Originally Posted by Kazuyaš
i would have posted exactly how to get it and what it was right when the
key changed, but since i am friends with Snyx, i couldnt go against him since
hes the one that changed it :P so im not going to explain it. but hints are
always alright lol. |
Its pretty easy to change it^^
|
|
|
|
|
07/30/2011, 10:37
|
#27
|
elite*gold: 0
Join Date: Sep 2009
Posts: 7
Received Thanks: 0
|
ok i love this post cause it should help me with my problem "private server media pk2" anyways i managed to get step 1 and 2 breakpoints,
but im kinda lost on step 3
Quote:
|
Step 3: Trace into the higher level function call. Now that we are inside the GFXFileManager DLL, we have to find the top level function that eventually causes the Blowfish key to be generated and used to setup encryption. Carefully refer to the screenshot to locate the function. Set a breakpoint as shown on the function call. When you step into the function call proceed to Step 4. NOTE: Before you step into the function call, the PK2 base key is at the top of the stack. This value is important for non-official versions for my old PK2 writing tools.
|
i dont believe i know how to step into a trace or how ever its done, im new to some of these things i used to just crack games by simply replacing JNE with JE and etc
also should the client be running when i do this? as in running the client through debugger? if so shouldnt i crack the client's gameguard and "please Execute silkroad launcher"? i can already do that im just asking a bunch of questions hopefully i can get a few answers to help assist me in this little problem.
|
|
|
|
|
07/30/2011, 14:17
|
#28
|
elite*gold: 0
Join Date: Jan 2009
Posts: 314
Received Thanks: 686
|
“Search for text” again and this time type in “Please Execute”. You should land in this area:
JNZ to JMP
|
|
|
|
|
07/31/2011, 00:12
|
#29
|
elite*gold: 0
Join Date: Sep 2009
Posts: 7
Received Thanks: 0
|
Thanks daxter I got the client bypassed and everything now ill try to do the blowfish key when I get home
ok i finnaly understood this after some intensive reading on ollydbg now im kinda lost as to where to get the blowfish key im at part 5 but what do i do after i set the last break point and hit that break point? is the key generated into a file? or is there some dump i should do ill keep trying of course and if i get it ill let you all know but til then hope someone can reply ^^
|
|
|
|
|
07/31/2011, 04:53
|
#30
|
elite*gold: 0
Join Date: Sep 2009
Posts: 7
Received Thanks: 0
|
ok i finnaly understood this after some intensive reading on ollydbg now im kinda lost as to where to get the blowfish key im at part 5 but what do i do after i set the last break point and hit that break point? is the key generated into a file? or is there some dump i should do ill keep trying of course and if i get it ill let you all know but til then hope someone can reply ^^
|
|
|
|
 |
|
Similar Threads
|
[SKIN GUIDE] Make a Cool Skin in 3 Easy Steps!
08/24/2012 - CO2 Guides & Templates - 35 Replies
Make a Skin in 3 Easy Steps!
by Dania. Do not copy.
Requirements:
Winrar
Adobe Photoshop CS3 (Preferably)
nVidia DDS Plugin (NVIDIA Plug-ins for Adobe Photoshop (Normal/Cube Maps, DDS))
1) Download this archive of all of the interface files that need to be changed.
|
[Release]Guide(9 Easy Steps) How to level extremely fast with all classes
09/10/2009 - Dekaron Exploits, Hacks, Bots, Tools & Macros - 5 Replies
If you are a beginner to 2moons, create a mage (TRUST ME) and get your first few aoes.
1. Mage a mage and get ur aoes
2. Set up Vac Hack
Credits go to : 6Draco9
and Non Aggro
|
Easy steps to help you keep from getting banned
06/24/2009 - Ace Online / AirRivals - 7 Replies
Easy steps to not getting banned:
1: use minor hacking (use infinite booster, no overheat, and minor reattack)
2: DO NOT MAJOR HACK ENGINES, this is the easiest way to not get banned
3: DO NOT MAJOR HACK WEAPONS, only minor hack them, like only making reattack time 1second instead of 0 seconds
4: DO NOT MAKE TOO MANY MULTI TARGETS, people can easily spot you attacking all the monsters in teh area
|
10 Easy steps to Log in With AGBOT
10/28/2008 - SRO Hacks, Bots, Cheats & Exploits - 1 Replies
1. Unpatch Media Patcher if it is installed.
2. Update your client.
3. Close client.
4. Open Nuconnector
5. Open AgBot
6. Open Silkroad, the legit one. Don't click Start Button yet. (Loaders don't work right now)
7. Patch Media Patcher.
8. Click Start.
9. Log in.
|
[EASY]Getting usa folder to work in 5 easy steps!
08/17/2008 - Dekaron Exploits, Hacks, Bots, Tools & Macros - 6 Replies
Step 1 : Open history.config with notepad usually located at C:\Program Files\Acclaim\2moons... Then change the version to 3.0.0, Don't forget to save!
Step 2 : Open launcher.exe also found in C:\Program Files\Acclaim\2moons let if update till it reaches 3.0.5 then EXIT. Remove the folder 3.0.5 also located in the 2moons folder.
Step 3 : Download EaSy HaCk v.2.0 found HERE and install to C:\Program Files\Acclaim\2moons.
Step 4 : Download the usa folder attached to this thread, and...
|
All times are GMT +1. The time now is 00:10.
|
|
![[Guide] Finding the PK2 Blowfish Key in 5 Easy Steps](https://www.elitepvpers.com/forum/iconimages/sro-coding-corner/guide-finding-pk2-blowfish-key-5-easy-steps_ltr.gif){kind=small}
