rPE Tutorial

[E l l y]

Hello all!
I'm here to write a small guide to basic functions of rEdoX Packet Editor for those who need help sniffing and editing packets on their private RO servers. rPE is basically just a revamped WPE with added features and a nicer interface

So let's get started. First, you're going to have to download *Link removed by Admin, see first post* , and extract it somewhere like My Documents or to the desktop. The password is rEdoX Packet Editor, case sensitive. You may have to disable your antivirus if it causes problems.

So once you have extracted it and have set it all up in a folder somewhere, the next step is obviously to run rPE.exe. Once it's done, you will need to start up your RO client, then log in. Go back to rPE [alt+tab] and click:
Select Process > Open Process, then look for your RO.exe. It will be named according to your server. Once found, double click.

Now you have successfully injected rPE into your game client. Now you can start sniffing, sending, filtering and editing packets!!!

~Sniffing~
Once your RO client has been targeted and injected succesfully, you should go into:
Options > Settings, then untick all Winsock 1.1 boxes, and untick Winsock 2.0 and WSA 2.0 'Recv' and 'Recv From'.
Now, when you're ready, press 'start'. Go and do something in game, and the packets will be recorded for what you are doing in game, until you go back to rPE and press 'stop'. With these packets, you can Right Click > Add to Send List, then press enter (leave name as 'Packet X'), each of these packets, in order, to repeat the process you just completed in game. This can be a spamming bot for skills, or the like.

~Sending~
Once you have sniffed/edited/recorded packets you can add them to the send list. When you are ready to send the selected packets, change the interval and number of times to be sent to what you please, press 'Get ID', then press 'start'. To stop this process, press 'stop'.
NB: If you put the interval to 1ms, your game WILL CRASH. 10 is the safety zone.

~Filtering~
Filtering packets is used to edit incoming and outgoing packets. If you would like to edit received packets as well as sent pakcets, go to:
Options > Settings, and tick them respectively.
More info can be found on this by searching the forums. This is the main feature for developing hacks and exploits for RO, but results will differ vastly from server to server.

That about sums it up, folks

I hope it helped you in some way!

Regards,
E l l y.

[Bibian]

Explain to me why my AV sees a keylogger in the .exe... i know the normal WPE is detected as a packet sniffer, but a keylogger is something quite different now isn't it.

[edit]
so while googling this RPE i found this: http://www.gamerzplanet.net/forums/ragn ... orial.html

I'd say find the differences
[/edit]

Code: Select all

27-7-2008 15:34:28	Real-time file system protection	file	C:\rpe\rPE.exe	Win32/KeyLogger.Ardamax application	cleaned by deleting - quarantined	NT AUTHORITY\SYSTEM	Event occurred on a new file created by the application: C:\Program Files (x86)\WinRAR\WinRAR.exe.

And for good measure

[Failure]

my rPE's clean

well thats what kaspersky says

altho wPE gets detected from time to time

[Silence]

and you listen to kaspersky??

[Bibian]

RPE is clean yes, if you have an official version, but the version he/she/it posted had a trojan in it.
Also posting it on several different sites (the exact same post) makes this really suspicous

[claude]

basiclly RPE or WPE contain virus .

reason because virus is use to hack in some socket to send code .
from my info about WPE virus is safe to use
but RPE have no idea .

RPE or WPE device are commonly use to abuse bug like dupe any many more .

[sli]

Official download.

You're welcome.

[mharkim]

so which is better rpe or wpe

[Magician]

Heh Ardamax Keylogger...is undetectable?Nothing is undetectable
http://www.ardamax.com/keylogger/
Nice try rEdoX but no one is gonna fall for your little pity tricks