ROSE Online Exploit Theory.

[LastSilhouette]

I've been playing rose online, though not entirely by choice. I've been doing some poking and prodding with packet editing in an attempt to find some critical exploits, and i've come across a few things I can share, and some theories. Hopefully we can get something going and find something worth exploiting.

First of all is a force into party.

Get someone to invite you into a party. Record the packet of where you hit confirm. Last 4 byes are XX XX 00 00. X's are the player's ID. Change that ID to your target, by recording a packet of sending them a trade or invite. It'll be in the same spot. Change, resend, you're in the party. Must target the leader though. Can be used to leech EXP or steal items that drop.

The same thing can be done to get into vehicles with others.

Pick-up anything from anywhere.

Pretty simple, record picking an item up. However, there are potentially 65535 ID's that are randomly assigned... Find a way to cycle through all of them quickly and congratulations.

Become invisible to players. (Haven't really explored this.)

At the end of a movement packet, filter a value to FF. Whenever you move, it will appear to others as if you're invisible. This is likely the value for your height movement, and though you're not seeing it client side, so long as you keep moving you can't be seen.

More to come as I continue to explore. Really i've been putting off any sort of testing with the exception to some sort of duping possibility...

If anyone knows of an exploit that was preformed in the past, or knows one that could be expounded upon now, please post or send me a PM if you don't want it patched.

[paniken]

Did you try to change packets with exp gain?