New Find!

**Someuser** · 18-10-11

I was on Habbo today to get their new Habbo.swf to check it out, and I saw they are hosting it on a different site then images.habbo.com; they are now hosting their new SWF at

Code:

http://habbo.hs.llnwd.net/gordon/RELEASE63-201110171102-827251604/Habbo.swf

This must be a new kind of security or they may be prepping for something new. For the cap0strike crack, I updated it to work with the new location although it doesn't have a crack version yet.

Code:

<?php

$RELEASE = "RELEASE63-201110171102-827251604";

function StartsWith($Haystack, $Needle)
{
    return strpos($Haystack, $Needle) === 0;
}

function make_seed()
{
  list($usec, $sec) = explode(' ', microtime());
  return (float) $sec + ((float) $usec * 100000);
}

if(strpos($RELEASE,"'") !== false)
{
	echo "Bad Release".$RELEASE;
	return;
}

//$url=file_get_contents("http://****************:80/swf.php?RELEASE=".$RELEASE,"r");

//if(!StartsWith($url, "fail"))
//{
//	$url=file_get_contents("http://****************:80/swf.php?RELEASE=".$RELEASE,"r");
//}
//else
{
	$PostToCrack = -1;
	$num = (int)substr ( $RELEASE , 22 , 8);
	if($num >= 20110405)
	{
		if($num >= 20110419)
		{
			if($num >= 20110814)
			{
				$PostToCrack = -2;
			}
			else
			{
				$PostToCrack = -1;
			}
		}
		else // (05/04/2010) - (18/04/2010)
		{
			$PostToCrack = 8;
		}
	}
	else if($num > 20010000)
	{
		$PostToCrack = 7;
	}
	
	$newswf = "";
	if($PostToCrack == -1)
	{
		$content=file_get_contents("http://habbo.hs.llnwd.net/gordon/".$RELEASE."/Habbo.swf");
		
		if($content=="")
		{
			echo "The swf \"http://habbo.hs.llnwd.net/gordon/".$RELEASE."/Habbo.swf\" not exist";
			return;
		}
		
		$header=substr($content, 0, 8);
		$content=gzuncompress(substr($content, 8));
		
		$pos = strpos
			(
				$content
				,
				chr(hexdec("56")).
				chr(hexdec("02")).
				chr(hexdec("56")).
				chr(hexdec("03")).
				chr(hexdec("10")).
				chr(hexdec("06"))
			);

		$magic = 0;

		if ($pos === false)
		{
			echo "No Crack for this ver.";
			return;
		}
		else
		{
			for($pointer = 1;$pointer <= 3; $pointer++)
			{
				$getchar = substr($content,$pos - $pointer - $magic,1);
				if($getchar == "-" || $getchar == "V")
				{
					$magic += $pointer;
					$pointer = 1;
				}
				else if($pointer == 3)
				{
					break;
				}
			}
		}
				
		$recort = substr ( $content , $pos-$magic, $magic+4 );
		$recort = explode($recort, $content);
		
		$content = $recort[0];
		for($i = 0;$i<$magic;$i++)
		{
			$content .= chr(hexdec("02"));
		}
		$content .=	chr(hexdec("02")).
				chr(hexdec("20")).
				chr(hexdec("80")).
				chr(hexdec("06")).
				$recort[1];
		
		unset($recort);
		
		$pos = strpos
			(
				$content
				,
				chr(hexdec("08")).
				chr(hexdec("10")).
				chr(hexdec("40"))
			);
				
		if ($pos === false)
		{
			echo "No Crack for this ver.";
			return;
		}
		
		$content[$pos] = chr(hexdec("07"));
		
		$newswf = $header.gzcompress($content);
		
		unset($content);
	}
	else if($PostToCrack == -2)
	{
              $content=file_get_contents("http://habbo.hs.llnwd.net/gordon/".$RELEASE."/Habbo.swf");
	
		if($content=="")
		{
			echo "The swf \"http://habbo.hs.llnwd.net/gordon/".$RELEASE."/Habbo.swf\" not exist";
			return;
		}
		
		$header=substr($content, 0, 8);
		$content=gzuncompress(substr($content, 8));
		

		$posX = strpos
			(
				$content
				,
				chr(hexdec("56")).
				chr(hexdec("05")).
				chr(hexdec("62")).
				chr(hexdec("05"))
			);

		$pos = strpos
			(
				$content
				,
				chr(hexdec("56")).
				chr(hexdec("02")).
				chr(hexdec("56")).
				chr(hexdec("03")).
				chr(hexdec("24"))
			);

		$magic = 0;

		if ($posX === false)
		{
			echo "No Crack for this ver.1";
			return;
		}
		else
		{
			$magic = $pos-$posX;
			for($pointer = 1;$pointer <= 3; $pointer++)
			{
				$getchar = substr($content,$pos - $pointer - $magic,1);
				if($getchar == "-" || $getchar == "V")
				{
					$magic += $pointer;
					$pointer = 1;
				}
				else if($pointer == 3)
				{
					break;
				}
			}
		}
				
		$recort = substr ( $content , $pos-$magic, $magic+4 );
		$recort = explode($recort, $content);
		
		$content = $recort[0];
		for($i = 0;$i<$magic;$i++)
		{
			$content .= chr(hexdec("02"));
		}
		$content .=	chr(hexdec("02")).
				chr(hexdec("20")).
				chr(hexdec("80")).
				chr(hexdec("06")).
				$recort[1];
		
		unset($recort);
		
		$pos = strpos
			(
				$content
				,
				chr(hexdec("63")).
				chr(hexdec("08")).
				chr(hexdec("62")).
				chr(hexdec("0f")).
				chr(hexdec("2a")).
				chr(hexdec("11"))
			);
				
		if ($pos === false)
		{
			echo "No Crack for this ver.2";
			return;
		}
		
		$content[$pos+1] = chr(hexdec("07"));

		// REMOVE NEW PROTECTION
		$data = "60 05 66 06 24";
		$ary = explode(" ",$data);
		$newfind = "";
		foreach($ary as $key => $val)
		{
			$newfind .= chr(hexdec($val));
		}
		$patch = strpos($content,$newfind)+6;
		$content[$patch] = chr(hexdec("13"));
		// REMOVE NEW PROTECTION

		
		$newswf = $header.gzcompress($content);
		
		unset($content);
	}
	else
	{
		$content=file_get_contents("http://habbo.hs.llnwd.net/gordon/".$RELEASE."/Habbo.swf");

		if($content=="")
		{
			echo "The swf \"http://habbo.hs.llnwd.net/gordon/".$RELEASE."/Habbo.swf\" not exist";
			return;
		}
		
		$header=substr($content, 0, 8);
		$content=gzuncompress(substr($content, 8));
		$exploded = explode("&H'H",$content);
		$string="";
		$i = 0;
		foreach($exploded as $seccion)
		{
			if(++$i == $PostToCrack) $string .= $seccion."&H&H";
			else
			{
				$string .= $seccion;
				if(count($exploded) != $i)
				{
					$string .= "&H'H";
				}
			}
		}
		$newswf = $header.gzcompress($string);
	}

	srand(make_seed());
	$nametmp = rand().".swf";
	
	$f = fopen("./".$nametmp,'w');
	fwrite($f,$newswf,strlen($newswf)); 
	fclose($f);

	//$url=file_get_contents("http://****************:80/swf.php?RELEASE=".$RELEASE."&file=".$nametmp,"r");

	//if($url == "fail") die("Fail to Crack. (Please report this)");
	
	//unlink("./".$nametmp);
}
//header("location: ".$url);
?>

Apparently the new link is linked to LimeLights networking. I presume the change is for us Retroer's; so they probably went with this package. Click here to see the package they probably got with LimeLight. If they put their whole web-build and stuff and not only the SWF we are screwed.

Thread updated with Cap0strikes cracka fixed

**MentaL**

**American** · 18-10-11

When you got a cracked version, release please

**Someuser** · 18-10-11

okay.

---------- Post added at 11:07 PM ---------- Previous post was at 11:02 PM ----------

Thread updated more thoroughly

**DoctorCooper** · 18-10-11

Well this is a good release, and also interesting.

**Someuser** · 18-10-11

Thanks :0

**Pookie** · 18-10-11

Good luck releasing the cracked version, looking forward to it.

**Danny** · 18-10-11

Yeah nice find, Also good luck on the Cracked release.

**Someuser** · 18-10-11

Thanks guys

**siem212212** · 18-10-11

Sames as the others said,:3 intressting and goodluck =]

**Kryptos** · 18-10-11

Yea, you're kinda late...

http://forum.ragezone.com/f282/chang...4/#post6603726

**Someuser** · 18-10-11

Good thing I released something.

**siem212212** · 18-10-11

Script-o-matic // Don't be h8'in?!?
--> downloads

this part**
Habbo RSA Crack - C# implemention of on-the-fly SWF cracking (in this instance; its the removal of the crypted RSA clientkey). It doesn't work anymore though since the new SWF Bootstrap structure, but it can be adapted and modified ;-)

Maybe,someone can... we have some pretty neath coders on ragezone who knows what may happen :)

**Makarov** · 18-10-11

Originally Posted by siem212212

Script-o-matic // Don't be h8'in?!?
--> downloads

this part**
Habbo RSA Crack - C# implemention of on-the-fly SWF cracking (in this instance; its the removal of the crypted RSA clientkey). It doesn't work anymore though since the new SWF Bootstrap structure, but it can be adapted and modified ;-)

Maybe,someone can... we have some pretty neath coders on ragezone who knows what may happen :)

Why show us this, it isn't like we don't go by the site..

**Someuser** · 18-10-11

Makarov is right, every person who is here who has released something of value goes to that site. I went and checked it out but since I cant code for the shit, I am attempting to figure out how to crack a Habbo SWF without a tutorial. I did although PM Cap0strike and Anthony to see if I can get some help. So basically I'm doing this blind.

**SkeetEmUp** · 18-10-11

Not suprised that Habbo is trying to block us out. They are also seeming to block big hotels from using web_build and figures etc.

Some of you may have noticed that the figures went dead a bit back. Well now my web_build links whenever I update past 532 (So say 616) redirect me to Habbo.com could that be some kinda of protection like the figure.php for certain URLs?

Im planning to switch to my own hosted web_build ;)

New Find!

Thread Tools

New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Re: New Find!

Advertisement