Re: [Release] Main V1.18 Season 13 Unpack
At the 1st look , I only know the address you gave is out of range...-.- not in main.exe
(valid main.exe address about 0x00400000 -> 0x0A??????)
0C5A7DC9 ??? what is this? guessing IGC.dll ??? lol
2nd I don't know what "data or notes" you want...
You must be kidding me :)
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
solarismu
At the 1st look , I only know the address you gave is out of range...-.- not in main.exe
(valid main.exe address about 0x00400000 -> 0x0A??????)
0C5A7DC9 ??? what is this? guessing IGC.dll ??? lol
2nd I don't know what "data or notes" you want...
You must be kidding me :)
IGC.dll:0C5A7DC9
SetKey function. Seems like it is protected and wondering did u manage to get its info? Or may be u have some clues how it can be obtained.
Re: [Release] Main V1.18 Season 13 Unpack
I think you should learn something basic first -.-
...
If you means IGC.dll+0x0C5A7DC9
-> IGC.dll must be a HUGE HUGE file :))
2nd IGC.dll address which you see is dynamic... not static...
will change, change, and change...
3rd not everyone use same version of IGC.dll
4th Yes IGCN protected some part of code by obfuscation , need hardcore experience to due with that.
5th I don't think IGC change their keys. check their Season9 release
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
solarismu
I think you should learn something basic first -.-
...
If you means IGC.dll+0x0C5A7DC9
-> IGC.dll must be a HUGE HUGE file :))
2nd IGC.dll address which you see is dynamic... not static...
will change, change, and change...
3rd not everyone use same version of IGC.dll
4th Yes IGCN protected some part of code by obfuscation , need hardcore experience to due with that.
5th I don't think IGC change their keys. check their Season9 release
Most of dlls i saw were same like from 18/04/18. Btw the address i've posted is static every time i run pe. PacketEncrypt key has changed since s9, that's why im asking.
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
Fusion78
Most of dlls i saw wew the same.PacketEncrypt key has changed since s9, that's why im asking.
you won't need their keys if you are creating your own DLL...
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
solarismu
you won't need their keys if you are creating your own DLL...
You are totally right but what if that is not the case of what im doing...
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
Fusion78
You are totally right but what if that is not the case of what im doing...
Now I know...
If you need Keys for "hack/troll" purpose... You can hook something/proxy app to IGC.dll bypass its Encrypts
just fine and easy for me... good luck and sorry for not really help... :D
https://i.imgur.com/e4DYQoC.jpg
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
solarismu
Now I know...
If you need Keys for "hack/troll" purpose... You can hook something/proxy app to IGC.dll bypass its Encrypts
just fine and easy for me... good luck and sorry for not really help... :D
https://i.imgur.com/e4DYQoC.jpg
The purpose is not to bypass encryption and get raw data but to get the key.
I can hook send/parsepacket easyly and do whatever i want but that does not really helps to extract the packetencrypt key.
So if u got any ideas i would really appritiate that.
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
Fusion78
The purpose is not to bypass encryption and get raw data but to get the key.I can hook send/parsepacket easyly and do whatever i want but that does not really helps to extract the packetencrypt key. I've tried known-text attack cipher with no luck. So if u got any ideas i would really appritiate that.
If you want to hack game, just say hack :)) we wont laugh you. Swear :)Till now, still doubt about your knowlegde causeof the way you gave adrress offet. Sorry :P
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
solarismu
If you want to hack game, just say hack :)) we wont laugh you. Swear :)Till now, still doubt about your knowlegde causeof the way you gave adrress offet. Sorry :P
If saying "hack" will help the business then hack, whatever.
IGC.dll:0C5A7DA0 is a static start of SetKey() function inside of CPacketEncrypt class and dynamic part begins with a jump at IGC.dll:0C5A7DF3
IGC.dll:0C5A7DC9 which was posted initially contains vftable value that can be read as a string, given to make you understand the deal without a tonns of explanations.
btw we are working with same global mu igc.dll
another btw what significance does knowledge have if the question is posed
Re: [Release] Main V1.18 Season 13 Unpack
Fine, you only raised confusing with you unclear question and purpose.
Hope mod will clean thread soon. Sorry for the mess
btw,this popic about main.exe... and you did bring igc.dll in... off topic too far :))
Re: [Release] Main V1.18 Season 13 Unpack
Quote:
Originally Posted by
solarismu
Fine, you only raised confusing with you unclear question and purpose.
Hope mod will clean thread soon. Sorry for the mess
btw,this popic about main.exe... and you did bring igc.dll in... off topic too far :))
Sorry for being so confusing. Thought of dynamic as of themida protection methods, but not the file mapping.
igc.dll+17DA0 g_PacketEncrypt.SetKey()
igc.dll+17DC9 vftable value
igc.dll+17DF3 jmp to protected stuff, originally supposed to mov btKey to xmm registers