Page 34 of 34 FirstFirst ... 243031323334
Results 496 to 501 of 501
  1. #496
    Elite User CoreCoins User Authenticator enabled namreeb's Avatar
    Reputation
    476
    Join Date
    Sep 2008
    Posts
    878
    Thanks G/R
    4/110
    CoreCoins
    3798
    Trade Feedback
    0 (0%)
    Quote Originally Posted by newfag View Post
    would anyone be so kind as to provide me with any pointers (pun intended) to the 1.12.1 sessionkey?
    Look at this for session and auth related info: GitHub - namreeb/wowned: Authentication bypass for outdated WoW emulation authentication servers

    Specifically: wowned/misc.hpp at master * namreeb/wowned * GitHub

  2. The Following 2 Members Gave Thanks To namreeb For This Useful Post:

    culino2, newfag
  3. #497
    Contributor CoreCoins User danwins's Avatar
    Reputation
    143
    Join Date
    Mar 2013
    Posts
    97
    Thanks G/R
    2/32
    CoreCoins
    639
    Trade Feedback
    1 (100%)
    Quote Originally Posted by newfag View Post
    would anyone be so kind as to provide me with any pointers (pun intended) to the 1.12.1 sessionkey?
    are you talking about this?

    [WoW] 1.12.1.5875 Info Dump Thread-c6fc559e57-png

    offsets:

    Code:
    00C28114  g_clientConnection
    structs:

    Code:
    struct NetClient
    {
      NetClientVMT *vmt;
      LoginData m_loginData;
      int m_netState;
      int (__fastcall *m_handlers[828])(void *, NETMESSAGE, unsigned int, CDataStore *);
      void *m_handlerParams[828];
      int m_netEventQueue;
      WowConnection *m_serverConnection;
      int m_refCount;
      int m_deleteMe;
      int m_pingSent;
      int m_pingSequence;
      int m_latency[16];
      int m_latencyStart;
      int m_latencyEnd;
      int m_bytesSent;
      int m_bytesReceived;
      int m_connectedTimestamp;
    };
    Code:
    struct LoginData
    {
      char m_account[64];
      int m_loginServerId;
      char m_sessionKey[40];
    };

  4. The Following 3 Members Gave Thanks To danwins For This Useful Post:

    culino2, newfag, tutrakan
  5. #498
    Member newfag's Avatar
    Reputation
    2
    Join Date
    Jul 2017
    Posts
    4
    Thanks G/R
    2/0
    CoreCoins
    0
    Trade Feedback
    0 (0%)
    excellent, thank you!

    Quote Originally Posted by danwins View Post
    are you talking about this?

    [WoW] 1.12.1.5875 Info Dump Thread-c6fc559e57-png

    offsets:

    Code:
    00C28114  g_clientConnection
    structs:

    Code:
    struct NetClient
    {
      NetClientVMT *vmt;
      LoginData m_loginData;
      int m_netState;
      int (__fastcall *m_handlers[828])(void *, NETMESSAGE, unsigned int, CDataStore *);
      void *m_handlerParams[828];
      int m_netEventQueue;
      WowConnection *m_serverConnection;
      int m_refCount;
      int m_deleteMe;
      int m_pingSent;
      int m_pingSequence;
      int m_latency[16];
      int m_latencyStart;
      int m_latencyEnd;
      int m_bytesSent;
      int m_bytesReceived;
      int m_connectedTimestamp;
    };
    Code:
    struct LoginData
    {
      char m_account[64];
      int m_loginServerId;
      char m_sessionKey[40];
    };
    thanks very much!

  6. #499
    Member newfag's Avatar
    Reputation
    2
    Join Date
    Jul 2017
    Posts
    4
    Thanks G/R
    2/0
    CoreCoins
    0
    Trade Feedback
    0 (0%)
    so i just spent the better part of the last three days learning assembly/disassembly and tons of other stuff.

    this post is paying it forward to the next guy - who like me two weeks ago - is looking into fidgeting with wow/vanilla on linux / bsd through means of wine and shared object preloading.

    the following is a minimal, jet complete and self contained example of a chat dump functionality written in C.

    it works by linking (preloading) wine with a custom 'recvmsg' function which calls the 'recvmsg' libc function and then decrypts and interprets the packet.
    like this: wow.exe -> wine -> chatdump.so -> libc -> kernel

    compile:
    Code:
    gcc -m32 -Wall -g -shared -fPIC -D_GNU_SOURCE chatdump.c -o chatdump.so
    run:
    Code:
    LD_PRELOAD="$PWD/chatdump.so" wine $WOWPATH/WoW.exe 2> /dev/null
    output:
    Code:
    [world] [00079045]:  Tank LFG, ubrs, or dm w 
    [world] [000e31e7]:  LFG BFD 
    [world] [0008ee3c]:  LF tank ulda
    [world] [000e31e7]:  LF3M BFD tank healer and dps
    [world] [000e31e7]:  LFM BFD need tank
    [Trade - City] [00065101]:  no enchanters?
    source: [chatdump.c]
    Code:
    #include <dlfcn.h>
    #include <stdint.h>
    #include <stdio.h>
    #include <string.h>
    #include <sys/socket.h>
    
    #define SMSG_MESSAGECHAT 0x096
    #define CHAT_MSG_CHANNEL 0x0e
    
    typedef struct {
    	uint8_t pad_120[0x120];
    	uint8_t cryptavailable; // 0x120
    	uint8_t pad_124[0x3];
    	uint8_t sessionkey_i;	// 0x124
    	uint8_t sessionkey_j;	// 0x125
    	uint8_t opcodelen;  // 0x126
    	uint8_t sessionkey_size;  // 0x127
    	uint8_t *sessionkey_base; // 0x128
    } serverconnection_t;
    
    typedef struct {
    	uint8_t pad_1a58[0x1a58];
    	serverconnection_t *serverconnection; // 0x1a58
    } netclient_t;
    
    typedef struct {
    	uint8_t pad_c28114[0xc28114];
    	netclient_t *netclient; // 0x00c28114
    } wow_t;
    
    wow_t *wow = (wow_t *)0x00000000;
    
    void decrypt(uint8_t *data, int length)
    {
    	uint8_t i = wow->netclient->serverconnection->sessionkey_i;
    	uint8_t j = wow->netclient->serverconnection->sessionkey_j;
    	uint8_t size = wow->netclient->serverconnection->sessionkey_size;
    	uint8_t *key = wow->netclient->serverconnection->sessionkey_base;
    
    	while (length--) {
    		uint8_t v = (uint8_t)((*data - j) ^ key[i++]);
    		j = *data;
    		*data++ = v;
    		i %= size;
    	}
    }
    
    ssize_t recvmsg(int sockfd, struct msghdr *msg, int flags)
    {
    	ssize_t (*_recvmsg)(int sockfd, struct msghdr *msg, int flags);
    	_recvmsg = dlsym(RTLD_NEXT, "recvmsg");
    	ssize_t retval = (*_recvmsg)(sockfd, msg, flags);
    
    	if (retval <= 2 || sockfd < 50 || wow->netclient == NULL ||
    	    wow->netclient->serverconnection == NULL ||
    	    wow->netclient->serverconnection->cryptavailable == 0)
    		return retval;
    
    	static uint32_t bytesread = 0;
    	uint8_t *base = ((uint8_t *)msg->msg_iov->iov_base) - bytesread;
    	uint8_t opcodelen = wow->netclient->serverconnection->opcodelen;
    
    	uint16_t opcode = *((uint16_t *)base);
    	if (bytesread == 0) {
    		decrypt((uint8_t *)&opcode, opcodelen);
    	}
    
    	switch (opcode) {
    	case SMSG_MESSAGECHAT:
    		if (*((uint8_t *)(base + 2)) == CHAT_MSG_CHANNEL) {
    			printf(
    			    "[%s] [%08llx]:  %s\n", (char *)(base + 7),
    			    *(uint64_t *)(base + 7 +
    					  strlen((char *)(base + 7)) + 1 + 0x4),
    			    (char *)(base + 7 + strlen((char *)(base + 7)) + 1 +
    				     0x10));
    		}
    	}
    
    	bytesread = 0;
    	return retval;
    }
    Last edited by newfag; 1 Week Ago at 10:41 PM.

  7. #500
    Member newfag's Avatar
    Reputation
    2
    Join Date
    Jul 2017
    Posts
    4
    Thanks G/R
    2/0
    CoreCoins
    0
    Trade Feedback
    0 (0%)
    anybody got an offset to the function which resolves a guids name?

  8. #501
    Active Member karliky's Avatar
    Reputation
    60
    Join Date
    Jun 2007
    Posts
    59
    Thanks G/R
    3/14
    CoreCoins
    79
    Trade Feedback
    0 (0%)
    Got working Spectate mode on WoW 1.12 - it wasn't available until 2.x -


    This is the url of the project in case anyone is interested Bugcraft Studio
    Last edited by karliky; 5 Days Ago at 11:34 AM.

  9. The Following 2 Members Gave Thanks To karliky For This Useful Post:

    culino2, Corthezz
 

 
Page 34 of 34 FirstFirst ... 243031323334

Similar Threads

  1. [WoW][3.3.5.12340] Info Dump Thread
    By Nesox in forum WoW Memory Editing
    Replies: 82
    Last Post: 11-02-2014, 04:11 PM
  2. [WoW][4.0.3.13329] Info Dump Thread
    By TOM_RUS in forum WoW Memory Editing
    Replies: 73
    Last Post: 02-06-2011, 05:37 AM
  3. [WoW][4.0.1.13164] Info Dump Thread
    By Seifer in forum WoW Memory Editing
    Replies: 29
    Last Post: 01-18-2011, 08:14 AM
  4. [WoW][4.0.1.13205] Info Dump Thread
    By DrGonzo in forum WoW Memory Editing
    Replies: 12
    Last Post: 11-11-2010, 01:34 PM
  5. [WoW][3.3.3.11723] Info Dump Thread
    By miceiken in forum WoW Memory Editing
    Replies: 2
    Last Post: 03-27-2010, 03:42 PM
All times are GMT -5. The time now is 09:57 AM. Powered by vBulletin® Version 4.2.3
Copyright © 2017 vBulletin Solutions, Inc. All rights reserved. Digital Point modules: Sphinx-based search