Author Topic: Need Help in packet sniffing  (Read 2003 times)

0 Members and 2 Guests are viewing this topic.

Offline emobyluks

  • /dev/null
  • *
  • Posts: 5
  • Cookies: -2
    • View Profile
Need Help in packet sniffing
« on: May 07, 2014, 04:40:09 am »
Hello Guys i have some questions that i wanted to ask and hopefully clear it out.
I have been trying to hack this game for sometime using wpe pro and i have quite a bit of knowledge about packet sniffing but i'm not an expert.
Ok here is what i did after opening my game and wpe pro and attaching it to my game i started mining and turn on the wpe pro and this is the 1st packet i got

Quote
00 2C 10 6C 00 00 00 00 05 00 00 00 00 00 00 00 00 49 00 00 00 00 01 00 63 63 E4 B4 00 00 F1 00 00 07 36 01 00 61 63 64 71 00 00 57

and here is the second one

Quote
00 2C 10 6C 00 00 00 00 05 00 00 00 00 00 00 00 00 49 00 00 00 00 01 00 63 63 E4 B8 00 00 BA 00 00 07 36 03 00 61 63 64 71 00 00 57

as you can see the first 2 bytes shows the size of the packet and the next 2 bytes maybe the headers or something not sure but anyway. The byte after 36 that is 01 and 03 resp. is the amount of irons im getting so i made a filter to modify them to give me 40 irons every time and voila success i get 40 irons everytime i mine but here is the problem when i refresh my inventory the amount of iron i have changes to 4(original) instead of 80(modified). I have tried to find tutorials but couldn't find any that can help me with this. I'm just a beginner so forgive me for any silly mistakes and my lack of knowledge, If any of you guys can help me or just point to the right direction i'll be really grateful i'm trying to learn and open to any suggestions as long as its related to the topic thanks guys. 

Offline Kulverstukas

  • Administrator
  • Zeus
  • *
  • Posts: 6627
  • Cookies: 542
  • Fascist dictator
    • View Profile
    • My blog
Re: Need Help in packet sniffing
« Reply #1 on: May 07, 2014, 09:28:24 am »
That is because you modify on the client side (your computer). So when you change the amount, it changes just for you and when you refresh, it pulls data again from the server, which is an unchanged value. I imagine you cannot tell the server how much you want the amount to be, because the server sends you the amount and you only store it, it's a one-way communication with your "mining".
It might work for other things where you send the numbers to the server, then you can alter the packets or the game binary itself.

Offline emobyluks

  • /dev/null
  • *
  • Posts: 5
  • Cookies: -2
    • View Profile
Re: Need Help in packet sniffing
« Reply #2 on: May 07, 2014, 05:12:04 pm »
okay seems like this is the case. The change is only on my side that is the client side but how does the server check the amount i received because there has to be a way the server checks that with for example with a packet or something.
I really want to learn about these things so please bare with me.

Offline Kulverstukas

  • Administrator
  • Zeus
  • *
  • Posts: 6627
  • Cookies: 542
  • Fascist dictator
    • View Profile
    • My blog
Re: Need Help in packet sniffing
« Reply #3 on: May 07, 2014, 06:21:18 pm »
The server doesn't check. It generates a number, stores it on the server itself and gives it to you. When you refresh, the client sends a query to the server saying "yo nigga, I need this numbuh" and the server gives it to you...

I can't explain it simpler, if you don't get it then I don't fuckin' know...

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: Need Help in packet sniffing
« Reply #4 on: May 07, 2014, 06:42:09 pm »
okay seems like this is the case. The change is only on my side that is the client side but how does the server check the amount i received because there has to be a way the server checks that with for example with a packet or something.
I really want to learn about these things so please bare with me.
You really want to be naked with us?

okay seems like this is the case. The change is only on my side that is the client side but how does the server check the amount i received because there has to be a way the server checks that with for example with a packet or something.
I really want to learn about these things so please bare with me.
Eventhough this seems like a fairly oke approach why dont you attack in memory ?
Since if what you claim is true , trusted data is stored and cofirmed at the client side, which is always a bad thing.
« Last Edit: May 07, 2014, 06:46:03 pm by proxx »
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage

Offline emobyluks

  • /dev/null
  • *
  • Posts: 5
  • Cookies: -2
    • View Profile
Re: Need Help in packet sniffing
« Reply #5 on: May 07, 2014, 08:42:45 pm »
ok guys thanks for the reply i get it..seems like i can't mess with the packet received from server. I'll try to start from the basics to understand more on how the game works
Eventhough this seems like a fairly oke approach why dont you attack in memory ?
Since if what you claim is true , trusted data is stored and cofirmed at the client side, which is always a bad thing.

I'm assuming by memory attack you mean cheat engine and stuff like that, if thats the case it will not work since as  Kulverstukas posted the server stores the data first and then sends it to me so even if manage to manipulate it the changes will only be visual but if you meant some other way i'll gladly hear it out  ;D

Offline iTpHo3NiX

  • EZ's Pirate Captain
  • Administrator
  • Titan
  • *
  • Posts: 2920
  • Cookies: 328
    • View Profile
    • EvilZone
Re: Need Help in packet sniffing
« Reply #6 on: May 07, 2014, 08:54:22 pm »
A morelogical approach would be to tell us what game. For all I know is you're trying to hack farmville. Give us the game and you will get more directed information. Also never mentioned what platform although I'm assuming windows.

But as said most online games are client and server. With some games you can send the server the ammou t of whatever you wish to have and if it works they have real shitty code. A couple of years back I was fucking with cheat engine hijacking firefox and altering values. However this doesn't work for most games these days unless they're local only
[09:27] (+lenoch) iTpHo3NiX can even manipulate me to suck dick
[09:27] (+lenoch) oh no that's voluntary
[09:27] (+lenoch) sorry

Offline emobyluks

  • /dev/null
  • *
  • Posts: 5
  • Cookies: -2
    • View Profile
Re: Need Help in packet sniffing
« Reply #7 on: May 07, 2014, 11:25:03 pm »
It's an mmorpg called wakfu very nice game the only reason i want the hack is because of the amount of time consumed for mining it's really long and boring and the other reason since i'm a CS student i'm very much excited all the time about learning everything related to CS.  :D

Offline RKH4X

  • NULL
  • Posts: 2
  • Cookies: 0
    • View Profile
Re: Need Help in packet sniffing
« Reply #8 on: July 30, 2014, 10:35:30 pm »
Dude, It's a really simple concept.

You have an Application.
You have a Server.
In between them is the internet.

Which of these things do you have controll over?

Instead of trying to decode the packet and send it out of context (which is just dumb and is likely to get you banned), you can inject a CRC Bypass which can be done using ASM (google assembly tutorials) and modify the program to send the data you want.

Obviously you'll need to figure out the algorithm used to encode the packet - this takes practice because you need to have enough knowledge to identify how something is being encoded. Once you know what the encryption method is you can work on reverse engineering it.

After that you've got free access to anything.

This is why anything can be "hacked". You're not actually hacking the server, (this is nearly always impossible), but rather you're tricking the server into thinking that your application is legitimately sending untampered data.
« Last Edit: July 30, 2014, 10:39:34 pm by RKH4X »

Offline chapp

  • Peasant
  • *
  • Posts: 87
  • Cookies: 2
    • View Profile
Re: Need Help in packet sniffing
« Reply #9 on: July 30, 2014, 10:52:58 pm »
Dude, It's a really simple concept.

You have an Application.
You have a Server.
In between them is the internet.

Which of these things do you have controll over?

Instead of trying to decode the packet and send it out of context (which is just dumb and is likely to get you banned), you can inject a CRC Bypass which can be done using ASM (google assembly tutorials) and modify the program to send the data you want.

Obviously you'll need to figure out the algorithm used to encode the packet - this takes practice because you need to have enough knowledge to identify how something is being encoded. Once you know what the encryption method is you can work on reverse engineering it.

After that you've got free access to anything.

This is why anything can be "hacked". You're not actually hacking the server, (this is nearly always impossible), but rather you're tricking the server into thinking that your application is legitimately sending untampered data.

This could be true, but you are assuming the server doesn't verify the data it receives. The package is not necessarily encrypted in any way and the client could just send the data as is, but some quick reverse engineering will reveal this.

Offline RKH4X

  • NULL
  • Posts: 2
  • Cookies: 0
    • View Profile
Re: Need Help in packet sniffing
« Reply #10 on: July 31, 2014, 07:51:56 pm »
If the data you modify is still considered a legitimate parameter then there's no way for it to tell except by human inspection.

For example

You could change the packet so that you pick up 15 gold instead of 10 gold. This just simply won't be noticed if you do it every now and then.

But if you change the packet to pick up 99999999 gold instead of 10 gold. Then you're thick and deserve what you get.

The fact is that even if you did pick up 99999999 gold or whatever then unless a GM actually sees this in a log then you'll get away with it. But why make it so bleeding obvious unless you're trolling.

The fact is that you could actually force everyone in an entire map to pick up 99999999 instead of whatever drops and that, my friend, is hilarious ... (well now this is a case where it depends on checks and how shit they've coded the game. A few chinese games might have a huge flaw but this is a huge exaggeration that's just fun to think about)



have fun

I am, of course, assuming that you're not going to nitpick and argue an unheard of case like "oh well that's assuming that gold drops are random" which it is for every game i've ever played
« Last Edit: July 31, 2014, 07:58:45 pm by RKH4X »

Offline chapp

  • Peasant
  • *
  • Posts: 87
  • Cookies: 2
    • View Profile
Re: Need Help in packet sniffing
« Reply #11 on: July 31, 2014, 11:02:24 pm »
If the data you modify is still considered a legitimate parameter then there's no way for it to tell except by human inspection.

For example

You could change the packet so that you pick up 15 gold instead of 10 gold. This just simply won't be noticed if you do it every now and then.

But if you change the packet to pick up 99999999 gold instead of 10 gold. Then you're thick and deserve what you get.

The fact is that even if you did pick up 99999999 gold or whatever then unless a GM actually sees this in a log then you'll get away with it. But why make it so bleeding obvious unless you're trolling.

The fact is that you could actually force everyone in an entire map to pick up 99999999 instead of whatever drops and that, my friend, is hilarious ... (well now this is a case where it depends on checks and how shit they've coded the game. A few chinese games might have a huge flaw but this is a huge exaggeration that's just fun to think about)



have fun

I am, of course, assuming that you're not going to nitpick and argue an unheard of case like "oh well that's assuming that gold drops are random" which it is for every game i've ever played

Again this is all assuming the server is created by idiots. A proper server implementation would know the coordinates for gold, the amount of gold and would do proper checks to check for double pickups.

I don't know the game TS is trying tamper with, but you are making general statements of something that can't be generalised.