hasokeric
-
Posts
9 -
Joined
-
Last visited
Never -
Donations
0.00 GBP
Content Type
Profiles
Bug Tracker
Wiki
Release Notes
Forums
Downloads
Blogs
Events
Posts posted by hasokeric
-
-
Basically,
We are looking for a Guide/Tutorial or Screencast that will show us 'the beginners' example how to "Sniff" some packets and Sniff the Key and then manually decrypt or decrypt automatically.
If someone could make such tutorial would rock if not; What Guide or Where have you learned how to do - what you do (sniffing, decrypting, detecting encryption) you could also leave some references.
-
Memory address figured out by using IDA Pro disassembler and it's Hexrays plugin.
Tom thank you - is there anything else you could share with us on this topic some tips n tricks etc..
like for example for IDA Pro what would be the steps to retrieving such key
Open WoW.exe
Then ?
-
Your CPP File works nice
could you however tell us how you figured out 'which' memory address to look at to find the key - i mean i tried OllyDBG and it didnt quite work
-
The most efficient way is to read it from the wow process itself - simply memory reading as it's done there:
http://hg.sharesource.org/sniffitzt/file/04b874f8d78d/tools/SniffitztClient.cpp
If you don't plan to write the decryption part on your own, you also might want to have a look at the whole project http://sharesource.org/project/sniffitzt/
What is the difference now between Encryption Key and 'Session Key'
can you define Session Key - as in what is it; what is it used for ?
sessionKey contains only of zeros - unlikely.. reading sessionkey failed - will try again in 1 second Got pointer: 0X86DDDF8 Got sessionkey: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0 0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 checking plausibility sessionKey contains only of zeros - unlikely.. reading sessionkey failed - will try again in 1 second Got pointer: 0X86DDDF8 Got sessionkey: 29 82 97 1F 7C 18 DA CF 8C 0C AE 5A 75 FC 54 BE E2 BF 9B C6 52 6 A C4 08 2D 15 18 09 64 EA 4E 4A 73 74 C4 3E B5 A4 CB 88 checking plausibility trying to send it to sniffitzt
-
Alright so to clarify - the 'initial' key is usually stored in the client which may be found either through Reverse Engineering with a Debugger or reading it from Memory (as in your case) ?
Let us keep this thread running and input all the details required so that others may see the light.
-
We all know that a Packet Sniffer is required such as:
- EtherDetect
- Wireshark
Once we sniff a packet (which is of course encrypted) how to determine the key and decrypt it is what i am trying to figure out.
-
Dear Developers,
This is a hot question that many would like to know and it is also a question that is asked many times and quite often.
When sniffing Packets
- How do you determine the Encryption
- How do you decrypt (figure out) the key
For example while googling one MMORPGs Blowfish key was [1;$1[jk0; now how does one figure that out leaves me clueless i have searched and looked at Java and C++ Source Codes of other MMORPG Emulation still i am clueless.
I hope someone can take some time and answer this question with a little bit more detail than found on other forums.
Perhaps someone could list the tools recommended, the steps required.
-
Hey guys i have a question i have a tough time picturing.
How do you know the Game packets that need to be send, replied back etc..
For example
enum eAuthResults { REALM_AUTH_SUCCESS = 0x00, REALM_AUTH_FAILURE = 0x01, ///< Unable to connect REALM_AUTH_UNKNOWN1 = 0x02, ///< Unable to connect REALM_AUTH_ACCOUNT_BANNED = 0x03, ///< This <game> account has been closed and is no longer available for use. Please go to <site>/banned.html for further information. REALM_AUTH_NO_MATCH = 0x04, ///< The information you have entered is not valid. Please check the spelling of the account name and password. If you need help in retrieving a lost or stolen password, see <site> for more information REALM_AUTH_UNKNOWN2 = 0x05, ///< The information you have entered is not valid. Please check the spelling of the account name and password. If you need help in retrieving a lost or stolen password, see <site> for more information REALM_AUTH_ACCOUNT_IN_USE = 0x06, ///< This account is already logged into <game>. Please check the spelling and try again. REALM_AUTH_PREPAID_TIME_LIMIT = 0x07, ///< You have used up your prepaid time for this account. Please purchase more to continue playing REALM_AUTH_SERVER_FULL = 0x08, ///< Could not log in to <game> at this time. Please try again later. REALM_AUTH_WRONG_BUILD_NUMBER = 0x09, ///< Unable to validate game version. This may be caused by file corruption or interference of another program. Please visit <site> for more information and possible solutions to this issue. REALM_AUTH_UPDATE_CLIENT = 0x0a, ///< Downloading REALM_AUTH_UNKNOWN3 = 0x0b, ///< Unable to connect REALM_AUTH_ACCOUNT_FREEZED = 0x0c, ///< This <game> account has been temporarily suspended. Please go to <site>/banned.html for further information REALM_AUTH_UNKNOWN4 = 0x0d, ///< Unable to connect REALM_AUTH_UNKNOWN5 = 0x0e, ///< Connected. REALM_AUTH_PARENTAL_CONTROL = 0x0f ///< Access to this account has been blocked by parental controls. Your settings may be changed in your account preferences at <site> };How do you figure out these codes - if you do sniffing is it not Encrypted atleast with strong RSA ?
Is there a tutorial how 'one' starts making a simple 'C++ MMORPG Server' i would like to join MANGOS and pitch in however i have alot to learn i do know C++ pretty well however emulating a server is something way beyond i have ever done.
This is why i am asking is there a tutorial how to 'from scratch' get for example a WoW Login to work - which would give me and maybe others a picture how you actually figure out the packets and how you reply etc..
you get my question i hope
i thx in advanced
Contact Us
You can also email us at [email protected]
Privacy Policy | Terms & Conditions
Protocol
in OldGeneral discussion
Posted
Really no one ?
Anyways here is some more Research