Usage: Packet Extractor v3

Wrote new code? Fixed a bug? Want to discuss technical stuff? Feel free to post it here.

Moderator: Moderators

Post Reply
Message
Author
kLabMouse
Administrator
Administrator
Posts: 1301
Joined: 24 Apr 2008, 12:02

Usage: Packet Extractor v3

#1 Post by kLabMouse »

From last time, when all known Packet Extractors failed on kRO targets... I came out with a little PoC code to make more universal way of extracting packets.
It's called 'PacketExtractor v3'. ;)

Well, As It says, it's just a Proof of Concept. So I need Reports on targets where it fails to Extract packets. :D

Usage:
1) Download and unpack Packet Extractor v3 (use "Download Snapshot")
2) Download start.exe and XSTools.dll from http://misc.openkore.com and unpack to the same folder where packet_extract.pl is placed (optional)
3) copy target .exe file to the same folder where packet_extract.pl is placed
4) run "start.exe ! packet_extract.pl your_exe_name.exe" or "perl packet_extract.pl your_exe_name.exe" to generate extractor.exe
5) run "extractor.exe > recvpackets.txt" to save extracted packets to text file.

Have a nice Testing time :D


P.S. Oh... Yeah, Forgot to say.... this Extractor out Format only compatible with latest SVN versions of OpenKore.

Upd: 16.08.2011
Uploaded a new Version to SVN.
This Time, It's fully Refactored and tested against all targets from all possible servers from 2010.08 to 2011.08
Will update to support all latest targets too.

Upd: **.06.2012 (Somewhere around that date)
After Recent changes in binaries, Extractor fails to extract packets from most binaries that support "Shadow" table.
Someone, should pick where I left, and implement support for them too.

If the file size is more than 6 MB, it is not possible to extract recvpackets! (see).
Try use Packet Extraction Evaluation Kit (PEEK)


Links of download:
Ever_Rox Extractor (ever_boy_ and ROX_Leopardo)
JCV's RO Tools v1.0.3
OpenKore Packet Length Extractor v1.1.0
Packet Extractor v3 (kLabMouse)
Packet Extraction Evaluation Kit (by Yommy and Neo)

willieata
Noob
Noob
Posts: 3
Joined: 08 Mar 2010, 10:38
Noob?: No

Re: Usage: Packet Extractor v3

#2 Post by willieata »

yep , i uesd it step by step
but i have one error line
cannot find current script 'openkore.pl' at start.pl line 130
what's the problem? i used SVN latest verison

thanks for your teaching

maemae2k7
Noob
Noob
Posts: 5
Joined: 25 Mar 2010, 16:05
Noob?: Yes

Re: Usage: Packet Extractor v3

#3 Post by maemae2k7 »

I'm a noob in this things but i had a background about scripting but sir can you help me.. I can't get it right in procedure #4 and 5 :( what should i run? please help me.. i want to extract old school ro packet >.< tnx sir in advance..

kLabMouse
Administrator
Administrator
Posts: 1301
Joined: 24 Apr 2008, 12:02

Re: Usage: Packet Extractor v3

#4 Post by kLabMouse »

maemae2k7 wrote:I'm a noob in this things but i had a background about scripting but sir can you help me.. I can't get it right in procedure #4 and 5 :( what should i run? please help me.. i want to extract old school ro packet >.< tnx sir in advance..
Well. I tested on my PC only, with Perl 5.12 Installed.
Also, the syntax for step (4) and (5) where back-ported to use start.exe.

kLabMouse
Administrator
Administrator
Posts: 1301
Joined: 24 Apr 2008, 12:02

Re: Usage: Packet Extractor v3

#5 Post by kLabMouse »

kLabMouse wrote:
maemae2k7 wrote:I'm a noob in this things but i had a background about scripting but sir can you help me.. I can't get it right in procedure #4 and 5 :( what should i run? please help me.. i want to extract old school ro packet >.< tnx sir in advance..
Well. I tested on my PC only, with Perl 5.12 Installed.
Also, the syntax for step (4) and (5) where back-ported to use start.exe.
For thus steps (If you don't have Perl Installed) you should open CMD line first, and don't forget for " ! " mark.

willieata
Noob
Noob
Posts: 3
Joined: 08 Mar 2010, 10:38
Noob?: No

Re: Usage: Packet Extractor v3

#6 Post by willieata »

Sorry, i sloved the problem by myself
thanks you :D

maemae2k7
Noob
Noob
Posts: 5
Joined: 25 Mar 2010, 16:05
Noob?: Yes

Re: Usage: Packet Extractor v3

#7 Post by maemae2k7 »

willieata wrote:yep , i uesd it step by step
but i have one error line
cannot find current script 'openkore.pl' at start.pl line 130
what's the problem? i used SVN latest verison

thanks for your teaching
how do you solve your problem sir? can't get it >.<

maemae2k7
Noob
Noob
Posts: 5
Joined: 25 Mar 2010, 16:05
Noob?: Yes

Re: Usage: Packet Extractor v3

#8 Post by maemae2k7 »

D:\Documents>perl D:\Documents\NewFolder\branches\v3\packet_extract.pl Os-RO.exe

Can't locate Disassemble/X86.pm in @INC (@INC contains: D:/strawberry/perl/site/
lib D:/strawberry/perl/vendor/lib D:/strawberry/perl/lib .) at D:\Documents\NewF
older\branches\v3\packet_extract.pl line 20.
BEGIN failed--compilation aborted at D:\Documents\NewFolder\branches\v3\packet_e
xtract.pl line 20.
i go this error if i use perl?
C:\Documents and Settings\ivan>D:\Documents\NewFolder\branches\v3\start.exe ! pa
cket_extract.pl Os-RO.exe
Cannot find current script 'packet_extract.pl' at start.pl line 130

C:\Documents and Settings\ivan>
and this one if i use "!"?

carlojoy23
Noob
Noob
Posts: 2
Joined: 09 Jan 2011, 04:48
Noob?: No

Re: Usage: Packet Extractor v3

#9 Post by carlojoy23 »

me too thats my problem

kLabMouse
Administrator
Administrator
Posts: 1301
Joined: 24 Apr 2008, 12:02

Re: Usage: Packet Extractor v3

#10 Post by kLabMouse »

3) copy target .exe file to the same folder where packet_extract.pl is placed

Post Reply