Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Hulky

Pages: [1] 2
1
Vietcong 1 & 2 / Re: color.cbf Deteckt
« on: September 27, 2006, 08:28:23 am »
When you are kicked by a server for HB issues use the " ~ " key or F12 to open the console and make note of the HB # that you were kicked for...post that # here and I will let you know what the problem was.

is there a list of all those issues?

2
Vietcong 1 & 2 / Re: unban tool for vc 1.01
« on: September 27, 2006, 08:27:01 am »
6th sense founded a way to block unban users , their servers don t appear in the list when u re using it.

3
Off Topic / Re: New Hacker !
« on: September 27, 2006, 08:25:00 am »
that s how it works , ok , so if i send u a trainer and you like it , you send me one too that is not public , i see , good to know that

4
Vietcong 1 & 2 / Re: vc-toolz 2.5
« on: September 27, 2006, 08:06:42 am »
whats the point of showing it if it s private and not for share?

5
General Modding & Programming / Other Games / cheatpack date?
« on: September 25, 2006, 02:47:23 am »
seems like nobody is playing anymore , could maybe the cheatpack be public soon so we can all enjoy it? , thanks

6
General Modding & Programming / Other Games / Re: .pak files
« on: September 25, 2006, 02:43:52 am »
lol, i think the .pak questions r like a "virus" here  :lol: =-p



What that mean dude?

anyways , managed to do it , was simplier than i thought , thanks King Ruben

7
General Modding & Programming / Other Games / Re: How read .pak?
« on: September 22, 2006, 08:57:03 pm »
i think the scr (compiled scripts) can t be opened (i m maybe wrong), you cant get the source out of it.
for the dat , you will learn "how to" in the VC section

8
General Modding & Programming / Other Games / Re: .pak files
« on: September 14, 2006, 08:47:56 pm »
thank you  i appreciate :D

9
General Modding & Programming / Other Games / .pak files
« on: September 14, 2006, 08:03:25 pm »
hi , i would like to know how to extract the .pak files from CoJ.?
I have TC , is there a special plug-in to extract the PAK?

thank you

10
For our second exemple , we are going to reuse the technics alreaduy seen before. First , we use Ethereal to analyse what comes in & out/

POST/flash/var.php.HTTP/1.1
Host.site.fr                                    
(...)
Cookie: login=test: pass=ec34657b87999fe73d12d2ca1801afd22: PHPSESSID=24a3c6f2e5fbecb8af221194dfca51c2
Content-type: application/x-www-form-urlencoded
Content-lenght: 51
ScoreC=JJXLX9&score=138&idj=1&action=setScores
HTTP/1.1 200 OK

It s a bit more complex than the first exemple : a cookie is used to catch the login name & pass & we have ScoreC & score.
Ethereal can t allow us to iunderstand immediatly the program. We have first to decompose it . After a quick use of Flare , We easily find the place where all is sended

mesLev.sendfindload('flash/var.php', webResponse,'POST');

After having consulting the ActionScript documentattion , we understand that the Send-AndLoad method sends what s in mesLev at the adress flash/var.php.
The response of the site is recorded in webresponse. We have to find in wich place the object mesLev is modified. We find this routine :

function setScores() (
      var v2 = _root;
      var v1 = new
Loadvars();
      v1.action = 'setScores';
v1.idj = v2.idj;
       v1.score = v2.score
       v1.ScoreC = v2.ScoreC.
sendData(v1);

The function sendData calls the sendAndLoad. So it s at this place than mesLev is initialised with what interests us : we can see ScoreC , score , action & idj, what we had founded with Ethereal.
We have to find to wich place Score C is modified. Toujours while watching the code, this line :

ScoreC = cryptage(score,code);

A cryptage function transform score in ScoreC. the code is the key used to crypt. It s impossible to have the clear code in the ActionScript file. But the use of Ethereal allows us to capture the code. We use Ethereal before the charging of the flash file , so we obtain :

mem_id= "8"
pseudo= "test"
code= "de8a249mk3gv315a2"idj="1"

EDIT : If we try  at another time to capture the code with Ethereal , we will see that he s different : every code is generated in function of the user session. With the source of the game , we understand that to get it back , the game sends a formular to the server , with a action containing getInfos.
To get the cryptage routine , it s in clear in the decompiled file , we just have to to convert it in PHP ,C or even Javascript. It s possible to reuse it like in another Flash project that will give us directly the crypted code.
So we can generate the necessary key fot the cryptage (with the help of getInfos) et crypt the score that we want. To verify if the "algorithme" is the good one , get a score & his crypted equivalency , and compare to to our cryptage routine. When the test is done successfully , you can try it on the game server.
For this , we need to proceed exactly the same way than the precedent game : we create a formular containing what the game waits for.

If the Score has a stranfge name like aso... , it s always possible to decompile & with Ethereal , to understand what is corresponding with what.

Thanks to Alexis.H , just to let you know , like i said at first : In Europe , entering false infos in a server brings you to three years of jail and a 45000 E's fine , if you re rich , they ll probably take all you got , unless you have an authorization to decompile. NOBODY HAS EVER BEEN PUNISHED TO CHEAT ON A VIDEO GAME so it s a big joke and this act seems less bad than warez or to change a internet site. But once again ,use it = it s your responsability

11
Vietcong 1 & 2 / invisible zb 37 to place on your map
« on: April 14, 2006, 10:31:45 am »
i understand , thanks for answering

12
Vietcong 1 & 2 / debugged editor
« on: April 14, 2006, 02:23:53 am »
While reading posts on a VC forum , i heard of a debugged editor , is there maybe a chance that i could find it here on TKC?
Maybe it s something i shouldn t speak about , if so , sorry.   Thanks

13
General Modding & Programming / Other Games / flash games
« on: April 11, 2006, 09:23:21 pm »
Here is some other informations for flash games , use it = it s your responsability:

To understand how the game sends the score to the server , many technics are possible , First we gonna try to use Ethereal , a program that allows you to see what comes & out of the computer , and a decompiler of flash files : Flare.
Start the game , and , just before the score is sended to the server , we active the capture with Ethereal (capture , & start). After the score is showed , go back to Ethereal to stop the capture , & analyse what he found.
They will be a lot of packets to ignore. To follow only what interests us , we will find a line corresponding to the line of the site that we are interested in , then select Follow TCP Stream. we ll get this :

POST/games/scores.php HTTP/1.15(...)
Referer:http//xxxx/games/thegame.php
Content-type:application/x-www-form-urlencoded
Content-length:26
level=2&score=100&name=ABC

We can already see how it works. Level , score & name are sended to the scores.php page. We ll now see how to discover the thing , but with another way of doing it:

the flash programs are executed ad-hoc plug in of the navigator. Like the Java program , they work with a virtual machine. So it s easy to obtain a visible code , with the help of flash decompilers. There are a lot of them , some are free. We are going to use Flare , that allows you to decompile from the ActionScript code from an existing file with all the flash versions , until version 8. It s also possible to decompose the flash file with Flasm. The decomposed code is easier than ActionScript but more difficult to understand . The difference with Flare that requires to have an ActionScript decompiler. Flasm can recompile by himself the code.
First , we have to find the .swf file For this , once the page is loaded , we have to record the web page on the disk. In the downloaded files , we have to find the correct game .swf . After having installed Flare , we decompile the .swf (right click + option/decompile) , we obtain a .flr file; it s a text file , it contains the ActionScript code used by the game. we have now to find the routine that sends the score. For this , we research "http" "php" or "html" because the game has to communicate with the server to send the score. Bingo! a research with "php" brings us to this routine:

button 121 {
on (release) {
formData = new LoadWars();
      formData.nom = _
root.actions2.name;
      formData.score = _
global.score;
      formData.level = _
global.level;
      formData.send('scores.php','_parent','POST'),

As seen with Ethereal , it s with this "POST" type that the score is made.

Now that we understood how how works the recording mecanism of the score , we are gonna write an "html" page that allows us to write our own score. Only a few lines are enough if you respect the limitation of the site.

   formname= "testflash"
METHOD= "post" ACTION= "
http://xxxx/games/scores.php"
          p score :  input
type= "text" name= "score"
size = "6" maxlenght= "6"   /p
          p name (3 letters):
 input type= "text"
name = "name" size= "3"
maxlenght= "3"    /p
          p level :  input
type= "text" name = "level"
size= "6" maxlenght= "6"    /p
          BUTTON name= "submit"
value= "submit"
type= "submit" Send/BUTTON
           :form

We just have to copy this code in a "html" page to write infos in the page.
The first line contains two important elements : METHOD= "post" that indicates wich sending type to use and ACTION= that sends all the informations (score , name , level) to the recording page of the scores.
In a flash game , this recording method is as basic as possible , without no securisation

Thanks to Alexis.H , once you will be in the page , it will seems much more easier than it looks. if more people interested , i will post more about doing it with more advanced protections , this is just for basic flash games

14
Vietcong 1 & 2 / invisible zb 37 to place on your map
« on: April 11, 2006, 07:59:06 pm »
i got the 1.35 editor when i bought the FA add-on but you can find two betas of it at :

http://www.vietcong-game.net/index.php?kategorie=downloads/tools

15
Vietcong 1 & 2 / invisible zb 37 to place on your map
« on: April 11, 2006, 06:18:22 am »
yes , it s only for custom maps  :(

Pages: [1] 2