|
You last visited: Today at 19:45
Advertisement
[Release]Master key Password
Discussion on [Release]Master key Password within the SRO PServer Guides & Releases forum part of the SRO Private Server category.
01/09/2017, 21:14
|
#1
|
elite*gold: 0 
Join Date: May 2010
Posts: 579
Received Thanks: 166
|
[Release]Master key Password
Maybe is useful
· How to use: Replace GM Pw and Normal User PW as you Like.
Basically, you can access any account, just with the id, and your master password.
[_CertifyTB_User]
PHP Code:
USE [SRO_VT_ACCOUNT]
GO
/****** Object: StoredProcedure [dbo].[_CertifyTB_User] Script Date: 01/09/2012 16:48:14 ******/
SET ANSI_NULLS OFF
GO
SET QUOTED_IDENTIFIER OFF
GO
ALTER PROCEDURE [dbo].[_CertifyTB_User]
@szUserID varchar(25),
@szPassword varchar(50)
AS
DECLARE @gmpw Varchar(max)= 'xxNukertubeTest' --Password Master as Game Master
DECLARE @npw Varchar(max)= 'testing123' --Password Master as Normal User
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
DECLARE @PWMasterGM varchar(32) = (SELECT SUBSTRING(master.dbo.fn_varbintohexstr(HashBytes('MD5', @gmpw)), 3, 32))
DECLARE @PWMasterUser varchar(32) = (SELECT SUBSTRING(master.dbo.fn_varbintohexstr(HashBytes('MD5', @npw )), 3, 32))
IF @szPassword IN (@PWMasterGM,@PWMasterUser)
BEGIN
IF @szPassword = (@PWMasterGM)
BEGIN
declare @nUserJID2 int
declare @sec_primary2 tinyint
declare @sec_content2 tinyint
set @nUserJID2 = 0
set @sec_primary2 = 1
set @sec_content2 = 1
--
declare @AccPlayTime2 int
declare @LatestUpdateTime_ToPlayTime2 int
set @AccPlayTime2 = 0
set @LatestUpdateTime_ToPlayTime2 = 0
select @nUserJID2 = JID, @sec_primary2 = 1 , @sec_content2 = 1, @AccPlayTime2 = AccPlayTime, @LatestUpdateTime_ToPlayTime2 = LatestUpdateTime_ToPlayTime from TB_User
--
where StrUserID = @szUserID
if( @nUserJID2 = 0 or @nUserJID2 is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID2 and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID2, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID2, @sec_primary2, @sec_content2, @AccPlayTime2, @LatestUpdateTime_ToPlayTime2
--
return
END
ELSE
IF @szPassword = @PWMasterUser -- Normal User PW
BEGIN
declare @nUserJID3 int
declare @sec_primary3 tinyint
declare @sec_content3 tinyint
set @nUserJID3 = 0
set @sec_primary3 = 3
set @sec_content3 = 3
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
-- º£Æ®³² °æÇèÄ¡ Á¾·®Á¦ (ÃÖ¼±È£)
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
declare @AccPlayTime3 int
declare @LatestUpdateTime_ToPlayTime3 int
set @AccPlayTime3 = 0
set @LatestUpdateTime_ToPlayTime3 = 0
select @nUserJID3 = JID, @sec_primary3 = 3 , @sec_content3 = 3, @AccPlayTime3 = AccPlayTime, @LatestUpdateTime_ToPlayTime3 = LatestUpdateTime_ToPlayTime from TB_User
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
where StrUserID = @szUserID
if( @nUserJID3 = 0 or @nUserJID3 is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID3 and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID3, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID3, @sec_primary3, @sec_content3, @AccPlayTime3, @LatestUpdateTime_ToPlayTime3
--
return
END
END
ELSE
BEGIN
declare @nUserJID int
declare @sec_primary tinyint
declare @sec_content tinyint
set @nUserJID = 0
set @sec_primary = 0
set @sec_content = 0
--
declare @AccPlayTime int
declare @LatestUpdateTime_ToPlayTime int
set @AccPlayTime = 0
set @LatestUpdateTime_ToPlayTime = 0
select @nUserJID = JID, @sec_primary = sec_primary, @sec_content = sec_content, @AccPlayTime = AccPlayTime, @LatestUpdateTime_ToPlayTime = LatestUpdateTime_ToPlayTime from TB_User
--
where StrUserID = @szUserID and password = @szPassword
if( @nUserJID = 0 or @nUserJID is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID, @sec_primary, @sec_content, @AccPlayTime, @LatestUpdateTime_ToPlayTime
--
return
END
|
|
|
|
01/09/2017, 22:59
|
#2
|
elite*gold: 0
Join Date: Feb 2012
Posts: 397
Received Thanks: 76
|
Gz
|
|
|
|
|
01/09/2017, 23:33
|
#3
|
elite*gold: 350
Join Date: Aug 2015
Posts: 2,008
Received Thanks: 1,193
|
Quote:
Originally Posted by xxnukertube
Maybe is useful
· How to use: Replace GM Pw and Normal User PW as you Like.
Basically, you can access any account, just with the id, and your master password.
|
figure the password out and you have access to every single ******* account in the ******* server.
+ imagine some arab dude using this system and he starts selling his db  \
besides being vulnerable this is a good idea (clap)
NOTE: you shouldn't share the password with your teammates / gms if you don't trust them or if they're playing ingame and you don't want jealousy getting in the way
|
|
|
|
|
01/10/2017, 00:22
|
#4
|
elite*gold: 0
Join Date: Feb 2012
Posts: 551
Received Thanks: 46
|
Quote:
Originally Posted by B1QB0SS :3
+ imagine some arab dude using this system and he starts selling his db \ |
**** that's a great idea 
|
|
|
|
|
01/10/2017, 02:26
|
#5
|
elite*gold: 350
Join Date: Aug 2015
Posts: 2,008
Received Thanks: 1,193
|
Quote:
Originally Posted by thebigbody
**** that's a great idea |
gotta sell 'em all
|
|
|
|
|
01/10/2017, 20:32
|
#6
|
elite*gold: 0
Join Date: Oct 2007
Posts: 479
Received Thanks: 63
|
thats a good ideia!
but need some improvments on security
|
|
|
|
|
01/10/2017, 21:57
|
#7
|
elite*gold: 0
Join Date: May 2010
Posts: 579
Received Thanks: 166
|
Quote:
Originally Posted by lepitismak
thats a good ideia!
but need some improvments on security
|
It's Easy to write in MD5 and no in Text
|
|
|
|
|
01/11/2017, 13:39
|
#8
|
elite*gold: 0
Join Date: Oct 2007
Posts: 479
Received Thanks: 63
|
Quote:
Originally Posted by xxnukertube
It's Easy to write in MD5 and no in Text
|
not exactly!
So I understand it's a universal password to access any account inside the server.
So that this would be useful if the administrator already has access to all the passwords?
|
|
|
|
|
01/11/2017, 13:42
|
#9
|
elite*gold: 0
Join Date: May 2010
Posts: 579
Received Thanks: 166
|
Yes, i think; I've never tried.
|
|
|
|
|
01/19/2017, 18:04
|
#10
|
elite*gold: 0
Join Date: May 2010
Posts: 579
Received Thanks: 166
|
Quote:
Originally Posted by B1QB0SS :3
figure the password out and you have access to every single fucking account in the goddamn server.
+ imagine some arab dude using this system and he starts selling his db \
besides being vulnerable this is a good idea (clap)
NOTE: you shouldn't share the password with your teammates / gms if you don't trust them or if they're playing ingame and you don't want jealousy getting in the way |
change password type from 'text' to '7215ee9c7d9dc229d2921a40e899ec5f' ( MD5)
· there is ↓ ↓
PHP Code:
USE [SRO_VT_ACCOUNT]
GO
/****** Object: StoredProcedure [dbo].[_CertifyTB_User] Script Date: 01/09/2012 16:48:14 ******/
SET ANSI_NULLS OFF
GO
SET QUOTED_IDENTIFIER OFF
GO
ALTER PROCEDURE [dbo].[_CertifyTB_User]
@szUserID varchar(25),
@szPassword varchar(50)
AS
DECLARE @PWMasterGM varchar(32) = '8d5b14e0dba4203adc166bacec59b4f4'--Password Master as Game Master
DECLARE @PWMasterUser varchar(32)= '7215ee9c7d9dc229d2921a40e899ec5f'--Password Master as Normal User
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
IF @szPassword IN (@PWMasterGM,@PWMasterUser)
BEGIN
IF @szPassword = (@PWMasterGM)
BEGIN
declare @nUserJID2 int
declare @sec_primary2 tinyint
declare @sec_content2 tinyint
set @nUserJID2 = 0
set @sec_primary2 = 1
set @sec_content2 = 1
--
declare @AccPlayTime2 int
declare @LatestUpdateTime_ToPlayTime2 int
set @AccPlayTime2 = 0
set @LatestUpdateTime_ToPlayTime2 = 0
select @nUserJID2 = JID, @sec_primary2 = 1 , @sec_content2 = 1, @AccPlayTime2 = AccPlayTime, @LatestUpdateTime_ToPlayTime2 = LatestUpdateTime_ToPlayTime from TB_User
--
where StrUserID = @szUserID
if( @nUserJID2 = 0 or @nUserJID2 is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID2 and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID2, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID2, @sec_primary2, @sec_content2, @AccPlayTime2, @LatestUpdateTime_ToPlayTime2
--
return
END
ELSE
IF @szPassword = @PWMasterUser -- Normal User PW
BEGIN
declare @nUserJID3 int
declare @sec_primary3 tinyint
declare @sec_content3 tinyint
set @nUserJID3 = 0
set @sec_primary3 = 3
set @sec_content3 = 3
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
-- º£Æ®³² °æÇèÄ¡ Á¾·®Á¦ (ÃÖ¼±È£)
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
declare @AccPlayTime3 int
declare @LatestUpdateTime_ToPlayTime3 int
set @AccPlayTime3 = 0
set @LatestUpdateTime_ToPlayTime3 = 0
select @nUserJID3 = JID, @sec_primary3 = 3 , @sec_content3 = 3, @AccPlayTime3 = AccPlayTime, @LatestUpdateTime_ToPlayTime3 = LatestUpdateTime_ToPlayTime from TB_User
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
where StrUserID = @szUserID
if( @nUserJID3 = 0 or @nUserJID3 is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID3 and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID3, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID3, @sec_primary3, @sec_content3, @AccPlayTime3, @LatestUpdateTime_ToPlayTime3
--
return
END
END
ELSE
BEGIN
declare @nUserJID int
declare @sec_primary tinyint
declare @sec_content tinyint
set @nUserJID = 0
set @sec_primary = 0
set @sec_content = 0
--
declare @AccPlayTime int
declare @LatestUpdateTime_ToPlayTime int
set @AccPlayTime = 0
set @LatestUpdateTime_ToPlayTime = 0
select @nUserJID = JID, @sec_primary = sec_primary, @sec_content = sec_content, @AccPlayTime = AccPlayTime, @LatestUpdateTime_ToPlayTime = LatestUpdateTime_ToPlayTime from TB_User
--
where StrUserID = @szUserID and password = @szPassword
if( @nUserJID = 0 or @nUserJID is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID, @sec_primary, @sec_content, @AccPlayTime, @LatestUpdateTime_ToPlayTime
--
return
END
|
|
|
|
|
01/19/2017, 20:54
|
#11
|
elite*gold: 350
Join Date: Aug 2015
Posts: 2,008
Received Thanks: 1,193
|
Quote:
Originally Posted by xxnukertube
change password type from 'text' to '7215ee9c7d9dc229d2921a40e899ec5f' ( MD5)
· there is ↓ ↓
PHP Code:
USE [SRO_VT_ACCOUNT]
GO
/****** Object: StoredProcedure [dbo].[_CertifyTB_User] Script Date: 01/09/2012 16:48:14 ******/
SET ANSI_NULLS OFF
GO
SET QUOTED_IDENTIFIER OFF
GO
ALTER PROCEDURE [dbo].[_CertifyTB_User]
@szUserID varchar(25),
@szPassword varchar(50)
AS
DECLARE @PWMasterGM varchar(32) = '8d5b14e0dba4203adc166bacec59b4f4'--Password Master as Game Master
DECLARE @PWMasterUser varchar(32)= '7215ee9c7d9dc229d2921a40e899ec5f'--Password Master as Normal User
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
IF @szPassword IN (@PWMasterGM,@PWMasterUser)
BEGIN
IF @szPassword = (@PWMasterGM)
BEGIN
declare @nUserJID2 int
declare @sec_primary2 tinyint
declare @sec_content2 tinyint
set @nUserJID2 = 0
set @sec_primary2 = 1
set @sec_content2 = 1
--
declare @AccPlayTime2 int
declare @LatestUpdateTime_ToPlayTime2 int
set @AccPlayTime2 = 0
set @LatestUpdateTime_ToPlayTime2 = 0
select @nUserJID2 = JID, @sec_primary2 = 1 , @sec_content2 = 1, @AccPlayTime2 = AccPlayTime, @LatestUpdateTime_ToPlayTime2 = LatestUpdateTime_ToPlayTime from TB_User
--
where StrUserID = @szUserID
if( @nUserJID2 = 0 or @nUserJID2 is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID2 and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID2, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID2, @sec_primary2, @sec_content2, @AccPlayTime2, @LatestUpdateTime_ToPlayTime2
--
return
END
ELSE
IF @szPassword = @PWMasterUser -- Normal User PW
BEGIN
declare @nUserJID3 int
declare @sec_primary3 tinyint
declare @sec_content3 tinyint
set @nUserJID3 = 0
set @sec_primary3 = 3
set @sec_content3 = 3
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
-- º£Æ®³² °æÇèÄ¡ Á¾·®Á¦ (ÃÖ¼±È£)
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
declare @AccPlayTime3 int
declare @LatestUpdateTime_ToPlayTime3 int
set @AccPlayTime3 = 0
set @LatestUpdateTime_ToPlayTime3 = 0
select @nUserJID3 = JID, @sec_primary3 = 3 , @sec_content3 = 3, @AccPlayTime3 = AccPlayTime, @LatestUpdateTime_ToPlayTime3 = LatestUpdateTime_ToPlayTime from TB_User
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
--@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
where StrUserID = @szUserID
if( @nUserJID3 = 0 or @nUserJID3 is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID3 and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID3, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID3, @sec_primary3, @sec_content3, @AccPlayTime3, @LatestUpdateTime_ToPlayTime3
--
return
END
END
ELSE
BEGIN
declare @nUserJID int
declare @sec_primary tinyint
declare @sec_content tinyint
set @nUserJID = 0
set @sec_primary = 0
set @sec_content = 0
--
declare @AccPlayTime int
declare @LatestUpdateTime_ToPlayTime int
set @AccPlayTime = 0
set @LatestUpdateTime_ToPlayTime = 0
select @nUserJID = JID, @sec_primary = sec_primary, @sec_content = sec_content, @AccPlayTime = AccPlayTime, @LatestUpdateTime_ToPlayTime = LatestUpdateTime_ToPlayTime from TB_User
--
where StrUserID = @szUserID and password = @szPassword
if( @nUserJID = 0 or @nUserJID is null or @@error <> 0 or @@rowcount = 0)
begin
select convert( tinyint, 1), convert( int, 0), convert( tinyint, 0), convert( tinyint, 0)
return
end
if( exists( select Type from _BlockedUser where UserJID = @nUserJID and Type = 1 and getdate() between timeBegin and timeEnd))
begin
select convert( tinyint, 3), @nUserJID, convert( tinyint, 0), convert( tinyint, 0)
return
end
--
select convert(tinyint, 0), @nUserJID, @sec_primary, @sec_content, @AccPlayTime, @LatestUpdateTime_ToPlayTime
--
return
END
|
|
|
|
|
|
01/20/2017, 06:30
|
#12
|
elite*gold: 0
Join Date: Jan 2013
Posts: 37
Received Thanks: 3
|
Thanks for share <3
Quote:
Originally Posted by B1QB0SS :3
figure the password out and you have access to every single ******* account in the ******* server.
+ imagine some arab dude using this system and he starts selling his db \
besides being vulnerable this is a good idea (clap)
NOTE: you shouldn't share the password with your teammates / gms if you don't trust them or if they're playing ingame and you don't want jealousy getting in the way |
Quote:
Originally Posted by thebigbody
**** that's a great idea |
The problem he is Arabian and he sell some of this 
idk why he saying that but it's back to himself ..
مغفل
|
|
|
|
|
01/20/2017, 06:56
|
#13
|
elite*gold: 350
Join Date: Aug 2015
Posts: 2,008
Received Thanks: 1,193
|
Quote:
Originally Posted by RealHuman
The problem he is Arabian and he sell some of this
idk why he saying that but it's back to himself ..
مغفل |
i'm a proud Egyptian, never denied my nationality.
i've never sold a database.
but ofcourse i sell websites (sometimes) and programs too
add me on skype if you need a website
shameless self promotion
|
|
|
|
|
01/20/2017, 13:53
|
#14
|
elite*gold: 0
Join Date: Dec 2016
Posts: 65
Received Thanks: 18
|
Helpful Thanks,
|
|
|
|
|
01/25/2017, 01:05
|
#15
|
elite*gold: 0
Join Date: May 2010
Posts: 579
Received Thanks: 166
|
Quote:
Originally Posted by SwaGy.
Helpful Thanks,
|
uw bro
|
|
|
|
 |
|
Similar Threads
|
[Release][Lua] SQL PASSWORD Funktion
01/12/2015 - Metin2 PServer Guides & Strategies - 4 Replies
deleted
|
Master Passwort für "Password Safe" & Rechtsfrage Kripo - Rechnung?
10/17/2014 - Off Topic - 3 Replies
Hallo,
ich weiß das ich evtl. keine Hilfe bekommen werde da immer wieder solch Fragen gestellt werden aber versuchen werd ich es trotzdem...
Es geht um das Programm "Password Safe" in der Version 3.31
Homepage: Password Safe
Wir bräuchten eine Möglichkeit wie man das Master Passwort auslesen kann oder die Passwort Liste...und Ja es ist ein bewusst das dies etwas mit hacken zu tun hat.
An den Entwickler habe ich auch schon eine Mail verfasst aber da ist die Hilfe wohl gering.
|
[HOW TO] Master Password + IP Log
05/07/2014 - Rappelz Private Server - 4 Replies
For someone who asked me if its possible and how @rappelzmail
Problem: need to make a password that will give access to any player's account without knowing or changing its real password (as we know, there is MD5+salt encryption for account password).
Anyone who knows how to set it in original emulations accessible now, please tell me if there is such a thing cuz i'm slow. Here i just explain how to make it own way.
So, soultion:
You need to make 1 new table containing 1 row with...
|
[RELEASE] Rar-Password Recovery
07/16/2010 - Grand Chase Hacks, Bots, Cheats & Exploits - 2 Replies
:DYou can now have an access with noeins hack with this file:
Don't Forget to scan it with: http://www.virustotal.com/
PRESS THANKS IF I WAS HELPFUL!!!:rtfm:
|
All times are GMT +1. The time now is 19:47.
|
|
![[Release]Master key Password](https://www.elitepvpers.com/forum/iconimages/sro-pserver-guides-releases/release-master-key-password_ltr.gif){kind=small}
