Tbot 1228 Hack

[miyagison]

It is currently a work in progress, but Tbot 1228 is underway.
* Initial Program Startup Testing Done
* Login - ARRRGGGGHHHH



** UPDATE **
{MANUAL LOGIN VIA MY CLIENT}


--------------------------------------------------------------

** UPDATE **
- The current packet sniffer that i am using is WireShark, if anybody knows of a better one please let me know.

Login -
1. Client is supposed to send a login command
2. Server responds with a packet containing how many days you have left.
2. Client Ack
3. -- Sometimes Client sends another PSH, ACK, URG, same flags as 1., but with different data

*1
- I set the server to recv until further notice
- I try to login to see if the server is recieving the packet ... nope the client just locks up. Which leads me to believe that there is some missing packets that I am not picking up with WireShark.

*2
- If i set the server to send before recieving the client does not crash and gives me a server busy message.

** Update **

While going over the packet data for a billionth time i noticed that it uses a differnt sending port each time Tbot starts up.
With this said ... it is either storing the used or next port number in either the program, registry, an external data file or on the server itself.

The port numbers go up in increments of 2, each time sending a different login header data.... which also means that the server sends a different packet for each port used. If I can capture enough packets until the port number recycles i might be able to login ... might ... but that just seems to redundant and tedious for now, so I will look in the registry and attempt to control the port number manually. BUT - using different port numbers each time is probably one of many ways Tbot is hard to detect, thus counteracting the initial idea of changing ports.

Maby i can narrow the ports it uses down to a select few and go from there.

-- ANY HELP WOULD BE MUCH APPRECIATED, or you could sit on your arses and wait for somebody to do all the work.
-- Anybody that might be able to determine the source of the port incrementation would be appreciated!!

[jinjiny]

keep it up ;P

[_Stryder_]

yeaya you have my full support

[wallfex]

noob trying to be famous ? ¬¬ edited Tbot with paint ? -.-

[angelofheil]

Quote:

Originally Posted by wallfex

noob trying to be famous ? ¬¬ edited Tbot with paint ? -.-

wow never knew anyone trying became famous ...

[wallfex]

Quote:

Originally Posted by angelofheil

wow never knew anyone trying became famous ...

here you saw the first one

[TheDash]

um....so whats special about that?? you can unpack tbot and do that easely and you can edit the butons also....so this i jut a noob tryng 2 be a cracker or hacker

[Red Man]

seems fake ?
i dont see where you succeeded to login and proceed ?

[PaoloC]

yes fake look xD
i have posted an old topic when i explame how open tbot ^^

[duffmanbfr]

/\
/\ uhahauauhauhauhuhuhauh
/\
/\

[zangetsu123]

bump

[OrangeJuice]

yeah right...

[miyagison]

void ServerThread::ServerLoop(){
char temp[512];
char recv_buf[1049];

recv(server, recv_buf, 1049, 0);
printf("%s\n", recv_buf);

ifstream myFile ("data.bin", ios::in | ios::binary);
myFile.read (bin_buf, 48);
myFile.close();
send(client, bin_buf, sizeof(bin_buf), 0x12);

recv(server, recv_buf, 512, 0);
char *bin_buf3 = "!Programmed BY MIYAGISON .... LOL";
printf("%s\n", bin_buf3);

int sz = sizeof(bin_buf3);
send(client, bin_buf3, 29, 0);
recv(server, recv_buf, 512, 0);
// closesocket(client);

}

Data Bin Packet As Follows:
¨d Úþ‚GüT < < ÿÿÿÿÿÿ ˆÉ*

- This will allow you to start the program.
Where I am running into some difficulty is where it actually logs in.

The packet as followed:
1seCl*USERNAME*

is what i picked up when i log in to the server normally .... but .....
when i set my server to recv the data it does not pick anything up and the Bot Crashes due to a connection to the server error.

The user name is sent via a 0x38 Flag - PSH, ACK, URG

*Anybody with some programming experience may be appreciated - lol fame -
BTW - Tbot0108 is the new version posted today.

[SrO_Thanker]

ye lol i messed with the buttons too but that was a long time ago
u can write what u want where u want on tbot but that's not usefull

[babsxz]

working or not?? lol