rappelz hacks ??

get your superiourity here ! be an offline or online GOD of the game. infinite ammo, unlimited nitro, turbo boost, god mode, you name it !
Post Reply
aarkman22
Newbie..
Newbie..
Posts: 15
Joined: Tue Sep 20, 2011 8:10 pm

Re: rappelz hacks ??

Post by aarkman22 »

well I don't know alot about this commview thing :D I had to read about it

anyway after sniffing packets using commview I found that it cought 229 packets !! *_* and yeah I made this rules > process name step

also I found in latest ip connections two lines for the same process - which called SFrame.exe- first one was 12 packets and the second one was 217 packets so I saved each one in a single file and saved another one which has all the 229 packets togather

I hope this is what you asked for :)
Attachments
Packets.rar
(89.71 KiB) Downloaded 602 times
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

Seems like its not encrypted, its just packed

Code: Select all

Accept-Encoding: gzip, deflate
i also found interesting lines like these:

Code: Select all

If-None-Match: "1000000000122-180-478f6e68b69c3"

Code: Select all

ETag: "1000000000122-180-478f6e68b69c3"
This must be some identifier to something.

anyway Luigi (aluigi.org) has some tool to decrypt the packets. mydownlib i think, not sure tho.
i'll ask him next time i see him in skype.
im quite sure it is nothing more than just packed.
aarkman22
Newbie..
Newbie..
Posts: 15
Joined: Tue Sep 20, 2011 8:10 pm

Re: rappelz hacks ??

Post by aarkman22 »

so it's not encrypted and it's packed

this leads to some questions : what does - packed- means ??

how can I use the packets to get values and edit them when they are packed ??
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

i don't understand why you ask what i just posted, i don't know what else to say. i only posted so you know i have seen the post.
aarkman22
Newbie..
Newbie..
Posts: 15
Joined: Tue Sep 20, 2011 8:10 pm

Re: rappelz hacks ??

Post by aarkman22 »

well , you didn't say what does the word - packed- means ? :D

anyway I searched for this mydownlib on aluigi.org I found it

I'll try using it and give you feedbacks :)


and btw , looks like I missed something important to say :) thanks alot for your help I really appreciate it :) and I wish I could do you a favor in return :)
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

Seems like its not encrypted, its just packed

Code: Select all

    Accept-Encoding: gzip, deflate
whats this then ? "gzip and "deflate"

no need to say thank you, i consider it useless. if you are thankful, you can show it by donating.
aarkman22
Newbie..
Newbie..
Posts: 15
Joined: Tue Sep 20, 2011 8:10 pm

Re: rappelz hacks ??

Post by aarkman22 »

ok , first thing ... how can I use this thing ! :|

I downloaded it and it was written in C language so I used microsoft visual c++ to build it but I faced like 10 errors


can you give me a hand in this ? :$
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

no, this is not discussion on how to use tools. STAY IN TOPIC. this is the first and last time i say it.
aarkman22
Newbie..
Newbie..
Posts: 15
Joined: Tue Sep 20, 2011 8:10 pm

Re: rappelz hacks ??

Post by aarkman22 »

as I'm working on this tool - I don't know what's wrong with it - I wanted to ask you about searching values using CE or Tshearch

how can I find the real value for the skill level ?
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

I tought i replied already, but guess im going insane.
im very sure i posted a reply already ..

Packets are encrypted after all. I talked to Luigi. tool that can unpack the packets is called "offzip", however it is useless on this game.
if you are 100% sure those packets are from game (which they did look like), then it is encrypted. i sent those packets to Luigi and he too said that there's no packed content, so it must be encryption.

how can you find the value .. follow my wiki.
http://sethioz.com/mediawiki/index.php5 ... own_Values

however it might be harder. i don't think that skill values ever change. there's no easy way to do it, you have to do lot of research on how RAM works and how to find things.
For start you can read some of the following topics (search on forum, i cant bother linking)

aliens vs predator 2 hacks
resident evil 4 hacks
resident evil 5 hacks
aliens vs predator 2010 hacks
GRID hacks

in those games, i used memory view and compared files to memory (when file gets loaded into memory).
so i was able to find values that never changes and were impossible to filter.
mostly its common sense (which is not so common nowdays). you have to understand the way game maps the memory.
find something that is searchable, something like speed lets say. you find that, then from there you know in what area of memory game maps such things. usually other useful things are very near to that address. like jump, attack speed, weapon ..etc
its general and might not work on rappelz, but almost all games use similar memory mapping.

best would be if you can get your hands on some kind of a "readable" game file that specifies values for things.
or source code of the game.
then it would be quite easy.

did you manage to get memory tools working ? i tought its using gameguard ?!
aarkman22
Newbie..
Newbie..
Posts: 15
Joined: Tue Sep 20, 2011 8:10 pm

Re: rappelz hacks ??

Post by aarkman22 »

lol , I was about to quote your reply :D luckily I noticed :D

anyway so we're back to the first place again x( !!

those packets are encrypted , I don't know how to decrypt them and you don't write tools to decrypt or uncompress traffic then what should I do ! :D

and yup the game uses GG but as I told you I have a way to disable it for about 30 sec then the game DC
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

Wireshark has options for it, however do not ask me anything about wireshark, i dont like it and i know almost nothing about it.
Charles proxy is also something that can decrypt SSL, but don't think game is SSL.

if you are really interested > google
see what you can find out how to decrypt game traffic. or try asking on xentax forum (google).
they are more into such things, like how to decrypt game file and packets.
Actarus666
Newbie..
Newbie..
Posts: 1
Joined: Mon Nov 07, 2011 7:04 pm

Re: rappelz hacks ??

Post by Actarus666 »

Rappelz uses GG (shit & easy to bypass) & Themida (more difficult). Themida provides anti-debugging/anti-attach features, encryption, garbage code/dummy functions, self modifying code & a lot of other funny things to make her life easiest. :)

I'm able to open/launch sframe.exe with OD in kernel mode (with the help of some plugins/drivers), but the program crashes at a given point (just before launching the game window). I think i did not found the appropriate settings yet. Because of themida, we cannot attach to the process once created, and we cannot read the process memory, nor access process information (access is denied), even by patching some kernel services.

Is there a known way to bypass or prevent themida detecting us ?
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

i haven't heard of themida, i tought rapplez uses gameguard ?!
if this is about something else, make new topic in right place. if it is about game hack that uses themida, post game name - hacking into game hacks, if it is just about themida protection system, it goes into pc hacking.

have anyone tested cheat engine on rapplez ? latest CE i mean. it is able to bypass tdu2 anti-debugger, while olly can't do it and neither can any other debugger.
User avatar
MagicalSilence
Special
Special
Posts: 289
Joined: Mon Sep 21, 2009 11:06 pm
Custom: Retired :3
Location: Santa's Workshop

Re: rappelz hacks ??

Post by MagicalSilence »

Interesting finding as yes GG is the main protection of the game the themida is again in charge of protecting the game files from piracy and modification with lovely functions that we're listed before.

Last time i tryed my vip version artymoney worked fine about week ago.

you can try olly to work with StrongOD and PhantOm. adds or well.. / using either injectors or unpackers )
issue that it detects that its being run in virtual environment from my understanding but try and see.
User avatar
Sethioz
Admin
Admin
Posts: 4762
Joined: Fri Jul 27, 2007 5:11 pm
Custom: Gaming YT > https://youtube.com/SethiozEntertainment
Game Hacking YT > https://youtube.com/sethioz
Game Hacks Store > https://sethioz.com/shopz
Location: unknown
Contact:

Re: rappelz hacks ??

Post by Sethioz »

idea of virtual machine should be that software does not know its being ran in virtual. it brings me back to this, kind a offtopic, topic.
we need some external memory hacking method, some hardware that sits between RAM and motherboard and can be controlled with seperate interface.
that way, games never know what hit em.
Post Reply