Habbo has new RC4/DH/RSA shit?

Results 1 to 11 of 11
  1. #1
    Grand Master Emily is offline
    Grand MasterRank
    Oct 2012 Join Date
    The NetherlandsLocation
    2,408Posts

    Habbo has new RC4/DH/RSA shit?

    Hello, this weekend I wanted to upgrade headers for my emulartor 'cuz I was bored.
    I got everything but it doesn't decipher bytes.

    I use the same way for encryption as always (Joopies way, not butterfly way), it gives no error on initializing and it processes the Decipher function.

    What I get after Deciphering:

    PHP Code:
    [10]▼eü®kìã¢'½à[3]ÇY^¹ÊfI&^?»å³SY)"4%½zT£Z╬YëT92[6]\êTç´[15]I^?x[5][.sK8Ì(b▬[3]Ñ▲Ü[3]:Yº:4X╬Ð
    7~1ïÉËnÓbh[0]Ö|UZڷש¯ÛB?¨öê¿^í\?¶3'
    µ§3-ý↨«?¼Ð­M ±BL[3]←M¥6F,
    This doesn't seem deciphered good. Checked out the RC4 file but it seems correct. Hopefully somebody could help me. Thanks already.

    It's the same shit if I use one of my old emulators which worked on an older revision correctly.


  2. #2
    j’aime ma famille dominic is offline
    Grand MasterRank
    Aug 2012 Join Date
    ~/Location
    611Posts

    Re: Habbo has new RC4/DH/RSA shit?

    I don't think they've updated their classes, as they always stay the same.

  3. #3
    Grand Master Emily is offline
    Grand MasterRank
    Oct 2012 Join Date
    The NetherlandsLocation
    2,408Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Quote Originally Posted by mikkelfriis View Post
    I don't think they've updated their classes, as they always stay the same.
    You know what could be the problem?

  4. #4
    Developer Quackster is offline
    DeveloperRank
    Dec 2010 Join Date
    AustraliaLocation
    3,486Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Updated the RSA keys?

  5. #5
    Grand Master Zak© is offline
    Grand MasterRank
    Oct 2007 Join Date
    2,693Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Yeah make sure your keys are correct. I doubt they would suddenly focus on Security at this moment of this.

  6. #6
    Grand Master Emily is offline
    Grand MasterRank
    Oct 2012 Join Date
    The NetherlandsLocation
    2,408Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Quote Originally Posted by Quackster View Post
    Updated the RSA keys?
    Yes, Mikkel cracked the SWFs and he said it uses the keys of Joopie (to call it like that)

  7. #7
    Grand Master Zak© is offline
    Grand MasterRank
    Oct 2007 Join Date
    2,693Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Quote Originally Posted by Tha View Post
    Yes, Mikkel cracked the SWFs and he said it uses the keys of Joopie (to call it like that)
    Check the InitCrypto and InitRC4 packets on your packetlogger make sure that they match your current InitCrypto and RC4 (Even though they should have not been changed/updated)

    Also try to confirm that you are actually sending the InitCrypto and RC4 packets, by using your debug console. This will allow you to know if you have the correct headers.

  8. #8
    Grand Master Emily is offline
    Grand MasterRank
    Oct 2012 Join Date
    The NetherlandsLocation
    2,408Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Quote Originally Posted by Zak© View Post
    Check the InitCrypto and InitRC4 packets on your packetlogger make sure that they match your current InitCrypto and RC4 (Even though they should have not been changed/updated)

    Also try to confirm that you are actually sending the InitCrypto and RC4 packets, by using your debug console. This will allow you to know if you have the correct headers.
    Logs:

    Code:
    [LOG] > CLIENT ID: '2433': [0][0][0]%[9][0] 85e9fa6976d118c3f5e4f7831cd0740c[0]
    [LOG] > CLIENT ID: '43': [0][0][0]Q[0]+[0]M35455673808594598242305055182083401080254686613558842382426373912517598787158
    PHP Code:
    Client.Crypto = new HabboCrypto(new BigInteger("86851DD364D5C5CECE3C883171CC6DDC5760779B992482BD1E20DD296888DF91B33B936A7B93F06D29E8870F703A216257DEC7C81DE0058FEA4CC5116F75E6EFC4E9113513E45357DC3FD43D4EFAB5963EF178B78BD61E81A14C603B24C8BCCE0A12230B320045498EDC29282FF0603BC7B7DAE8FC1B05B52B2F301A9DC783B7"16), new BigInteger(3), new BigInteger("59AE13E243392E89DED305764BDD9E92E4EAFA67BB6DAC7E1415E8C645B0950BCCD26246FD0D4AF37145AF5FA026C0EC3A94853013EAAE5FF1888360F4F9449EE023762EC195DFF3F30CA0B08B8C947E3859877B5D7DCED5C8715C58B53740B84E11FBC71349A27C31745FCEFEEEA57CFF291099205E230E0C7C27E8E1C0512B"16));

                
    string Token = new BigInteger(DiffieHellman.GenerateRandomHexString(15), 16).ToString();

                
    CarbonEnvironment.Bannertokens.Add(Token, new List<string>() { Client.Crypto.GetPrime.ToString(), Client.Crypto.GetGenerator.ToString() });

                
    ServerMessage Message = new ServerMessage(HeadersOut.BannerToken);
                
    Message.Append<string>(Token);
                
    Message.Append<bool>(false);
                
    Client.SendPacket(Message); 
    PHP Code:
    string DecryptedKey Request.ReadUTF();

                if (!
    Client.Crypto.InitializeRC4(DecryptedKey))
                {
                    
    Console.WriteLine("NO RC4 SHIT!");
                    return;
                }

                
    ServerMessage Message = new ServerMessage(HeadersOut.PublicKey);
                
    Message.Append<string>(Client.Crypto.GetPublicKey.ToString());
                
    Client.SendPacket(Message); 
    PHP Code:
            public static readonly short BannerToken 2433;
            public static 
    readonly short PublicKey 43
    PHP Code:
     if (Crypto != null)
                    {
                        if (
    Crypto.Initialized)
                        {
                            
    bytes Crypto.RC4.Decipher(bytes);
                        }
                    }

                    while (
    bytes != null && bytes.Length 0)
                    {
                        var 
    message = new ClientMessage(bytes);

                        
    CarbonEnvironment.GetGame().GetMessageHandler().Handle(thismessage);

                        
    bytes message.Remain;
                    } 
    Also no sending of PublicKey -> no new request of bytes.

  9. #9
    Grand Master Zak© is offline
    Grand MasterRank
    Oct 2007 Join Date
    2,693Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Have you made sure that your remote connection connects to your banner.php?

  10. #10
    Grand Master Emily is offline
    Grand MasterRank
    Oct 2012 Join Date
    The NetherlandsLocation
    2,408Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Quote Originally Posted by Zak© View Post
    Have you made sure that your remote connection connects to your banner.php?
    Yes, else I wouldn't have received the RC4 init packet ;)

  11. #11
    Grand Master Emily is offline
    Grand MasterRank
    Oct 2012 Join Date
    The NetherlandsLocation
    2,408Posts

    Re: Habbo has new RC4/DH/RSA shit?

    Solved. Found out it was just my Banner.txt file.



Advertisement