Page 6 of 8

Re: Packet Tokenizer issue with users of XKore 1

Posted: 12 Jul 2017, 03:45
by jsteng
finished reading through this thread, finished installing a compatible perl that works with openkore.

I am one of the old timer devs who wrote many of the route functions back in 2003~2005. But there are tons of changes I noticed. Lets see if I am still up to this.

Re: Packet Tokenizer issue with users of XKore 1

Posted: 12 Jul 2017, 15:30
by Mercurial
Hi guys! I have cleaned the thread and left all the useful information here. Just to remind you guys again this is not a support topic!

If you expect to find a download link / zip here, Then you are in the wrong place.

This is solely for developer discussion about XKore1 packet structure and how to tackle it (in the code) in-order to support new pRO servers (Loki, Thor) botting using XKore 1.

Then once that is solved, then Heroo and the others will probably setup another topic for a download or merge necessary code changes to the git repository and probably post another topic to handle encryption and XKore 0.

Any user that will post support questions (how to make this work? where to download? how about kore 0)? will probably get cleaned and will be warned.

hopefully we can figure this out very soon!
Thank you very much

Re: Packet Tokenizer issue with users of XKore 1

Posted: 13 Jul 2017, 06:06
by nkorea
dawnvillain wrote:
fclose wrote:fixed unknown token problem.

tested with xkore 0. can enter map and read all stats. but still can't do anything.
major change is in MessageTokenizer that wrap to the packet segmentation. I think it should work with x1 but I can't try myself.
xkore 0 works... (sort of ?)

Testing fclose files.

Scenario:

I dual logged-in my Acolyte and Swordsman on the same map.
Then, i placed them side by side.

Image

Then I logged out the Swordsman
Then I turn on bot for Swordsman
It is able to login... kinda?
even Openkore is saying that "You are now in the game."
However, my Swordsman is nowhere to be found in game!
When I checked the "Party Status Window", it is saying that my Swordsman is "Online".

Image

then after a few minutes... the bot disconnects.

Image

PS: I used fclose's pRO.pm & recvpackets
How were you able to bypass the issue with the map login? I'm stuck on that it gets timeout.

Re: Packet Tokenizer issue with users of XKore 1

Posted: 13 Jul 2017, 07:23
by kali
jsteng wrote:finished reading through this thread, finished installing a compatible perl that works with openkore.

I am one of the old timer devs who wrote many of the route functions back in 2003~2005. But there are tons of changes I noticed. Lets see if I am still up to this.
In case you're interested, some people are trying to improve on your routing code :) http://forums.openkore.com/viewtopic.ph ... 0&start=30

Re: Packet Tokenizer issue with users of XKore 1

Posted: 13 Jul 2017, 21:26
by materpogi01
these are my observations with wireshark. maybe it can help
red = send, blue = received
##roclient##

0A76 master_login /80


01B5 account_payment_info
0276 account_server_info /115


0275 game_login /37


fa17 ?
082D received_characters_info


09A1 sync_received_characters /2
09A1 sync_received_characters /2


099D received_characters /436
099D received_characters /304


0187 sync /6


0187 sync /6


08b8 send_pin_password /10


08b9 login_pin_code_request /12


0066 char_login /3


0071 received_character_ID_and_Map /28


0436 map_login /19


0009 ? /9
0010 ? /149
000b ? /28
000b ? /113


0005 guild_check /5 #encrypted?
0009 guild_info_request /46 #encrypted?


002f ? /482
000b ? /57
002f ? /482
000b ? /57
0009 ? /9
0029 ? /29


0187 sync /6 (char select)
0011 sync /17 (ingame)

it looks like encryption starts after map_login.

Re: Packet Tokenizer issue with users of XKore 1

Posted: 14 Jul 2017, 00:14
by nkorea
materpogi01 wrote:these are my observations with wireshark. maybe it can help
red = send, blue = received
##roclient##

0A76 master_login /80


01B5 account_payment_info
0276 account_server_info /115


0275 game_login /37


fa17 ?
082D received_characters_info


09A1 sync_received_characters /2
09A1 sync_received_characters /2


099D received_characters /436
099D received_characters /304


0187 sync /6


0187 sync /6


08b8 send_pin_password /10


08b9 login_pin_code_request /12


0066 char_login /3


0071 received_character_ID_and_Map /28


0436 map_login /19


0009 ? /9
0010 ? /149
000b ? /28
000b ? /113


0005 guild_check /5 #encrypted?
0009 guild_info_request /46 #encrypted?


002f ? /482
000b ? /57
002f ? /482
000b ? /57
0009 ? /9
0029 ? /29


0187 sync /6 (char select)
0011 sync /17 (ingame)

it looks like encryption starts after map_login.
Do you know where packet 059A is used? I'm getting errors on that one.

Re: Packet Tokenizer issue with users of XKore 1

Posted: 20 Jul 2017, 16:33
by poring gaming
LINK REMOVED FOR SPAMMING IN 3 THREADS with the same link

- Mercurial

Re: Packet Tokenizer issue with users of XKore 1

Posted: 21 Jul 2017, 03:31
by bhelinda21
materpogi01 wrote:these are my observations with wireshark. maybe it can help
red = send, blue = received
##roclient##

0A76 master_login /80


01B5 account_payment_info
0276 account_server_info /115


0275 game_login /37


fa17 ?
082D received_characters_info


09A1 sync_received_characters /2
09A1 sync_received_characters /2


099D received_characters /436
099D received_characters /304


0187 sync /6


0187 sync /6


08b8 send_pin_password /10


08b9 login_pin_code_request /12


0066 char_login /3


0071 received_character_ID_and_Map /28


0436 map_login /19


0009 ? /9
0010 ? /149
000b ? /28
000b ? /113


0005 guild_check /5 #encrypted?
0009 guild_info_request /46 #encrypted?


002f ? /482
000b ? /57
002f ? /482
000b ? /57
0009 ? /9
0029 ? /29


0187 sync /6 (char select)
0011 sync /17 (ingame)

it looks like encryption starts after map_login.

sir ung character_move at attack nakuha mo rin ba ung packet?

Re: Packet Tokenizer issue with users of XKore 1

Posted: 23 Jul 2017, 21:45
by iwanttobot
Hello!

Just noticed that ragnarok ph modifies a process called csrss.exe. I had tested it on 4 computers with windows 7 and the results are the same.

All computers with ragnarok ph installed have their csrss.exe without username and description in the task manager. (see picture)
Image

Maybe this is the reason why packet editing software can't hook to the ragnarok ph client?

Is my observation the same with you guys?

For your reference:
https://en.wikipedia.org/wiki/Client/Se ... _Subsystem

Re: Packet Tokenizer issue with users of XKore 1

Posted: 23 Jul 2017, 23:37
by eneedla
iwanttobot wrote:Hello!

Just noticed that ragnarok ph modifies a process called csrss.exe. I had tested it on 4 computers with windows 7 and the results are the same.

All computers with ragnarok ph installed have their csrss.exe without username and description in the task manager. (see picture)
Image

Maybe this is the reason why packet editing software can't hook to the ragnarok ph client?

Is my observation the same with you guys?

For your reference:
https://en.wikipedia.org/wiki/Client/Se ... _Subsystem

Csrss is responsible for console windows, creating and/or deleting threads, and some parts of the 16-bit virtual MS-DOS environment


csrss.exe is native for windows NT. so I don't think this is the reason why packet editing is not working.
this is more of the security measures that the new ragnarok ph provider implements. more like they encrypt their packets or shuffles them.