GunZ Bot Base

YOU WILL NEED TO EDIT IT ACCORDINGLY FOR YOUR MATCHSERVER(probably)

That is easy though, I've done it for myself and got it working there is a spot for a command of !stats that will not work for you no matter what as you don't have a /stats command

main.cpp

Code:

#include <string> #include <conio.h> #include <windows.h> #include "packet.h" #include "struct.h" #define BUFFER_SIZE 256 BYTE ran[] = {0x37, 0x04, 0x5D, 0x2E, 0x43, 0x3A, 0x49, 0x53, 0x50, 0x05, 0x13, 0xC9, 0x28, 0xA4, 0x4D, 0x05}; BYTE xor[] = {0x57, 0x02, 0x5B, 0x04, 0x34, 0x06, 0x01, 0x08, 0x37, 0x0A, 0x12, 0x69, 0x41, 0x38, 0x0F, 0x78}; #define VERSION 0x3a #define FILELIST_CRC 0 #define ACCOUNT_NAME "testing22" #define CHAR_NAME "testing22" #define ACCOUNT_PASSWORD "notreallysecure" #define HOME_CHANNEL MUID(0, 1) MUID SVID; MUID MYID; MUID CHID; BYTE KEY[32]; BYTE COUNTER; SOCKET SOCK; sockaddr_in SIN; void WriteHex(void* A, char* B){ std::string patchstring = B; char* token = strtok((char*)patchstring.c_str(), " "); for(int i = 0; token != NULL; ++i){ BYTE b; sscanf(token, "%X", &b); ((BYTE*)A)[i] = b; token = strtok(NULL, " "); } } void Talk(){ start: SOCK = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); SIN.sin_family = AF_INET; SIN.sin_addr.s_addr = inet_addr("89.46.35.33"); SIN.sin_port = htons(6000); connect(SOCK, (sockaddr*)&SIN, sizeof(SIN)); PACKET_MANAGER in; for(;;){ int rc; rc = recv(SOCK, in.sbuffer, PACKET_MANAGER_BUFFER_SIZE, 0); if(rc == 0 || rc == SOCKET_ERROR){ printf("DISCONNECTED\n"); goto start; } if(in.packet->version == 0xA){ printf("HANDSHAKE\n"); in.index = 6; SVID = in.READ<MUID>(); MYID = in.READ<MUID>(); DWORD time = in.READ<DWORD>(); memcpy(KEY, in.buffer + 22, 4); memcpy(KEY + 4, in.buffer + 10, 12); memcpy(KEY + 16, ran, 16); for(int i = 0; i < 16; ++i){ KEY[i] ^= xor[i]; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x3e9);//login out.WRITE<BYTE>(++COUNTER);//counter out.WRITES(ACCOUNT_NAME);//name out.WRITES(ACCOUNT_PASSWORD);//pass out.WRITE<int>(VERSION);//version out.WRITE<DWORD>(FILELIST_CRC);//crc FILE* hashfile = fopen("hash.txt", "rb"); char hashstring[3 * 16]; fread(hashstring, 3, 16, hashfile); fclose(hashfile); BYTE hash[16]; WriteHex(hash, hashstring); out.WRITEB(1, 16);//md5 out.WRITER((void*)hash, 16); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); continue; } if(in.packet->version == 0x65){ in.DECRYPT(KEY); } WORD command = in.GET<WORD>(8); switch(command){ case 0x142:{//ping in.index = 11; DWORD time = in.READ<DWORD>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x143);//pong out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<DWORD>(time);//time out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x169:{//clock synch break; } case 0x192:{//announce in.index = 11; int type = in.READ<int>(); char* msg = in.READS(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID); out.WRITE<MUID>(CHID); out.WRITES(msg); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x1f5:{//admin announce in.index = 11; MUID adminid = in.READ<MUID>(); char* message = in.READS(); printf("WALL: %s\n", message); break; } case 0x3ea:{//response login in.index = 11; DWORD result = in.READ<DWORD>(); if(result != 0){ printf("LOGIN FAILED: %d\n", result); goto start; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a5);//request char list out.WRITE<BYTE>(++COUNTER); out.WRITEB(1, 1);//dunno, but needed (message) out.WRITE<BYTE>(0); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x4b7:{//response channel join in.index = 11; CHID = in.READ<MUID>(); DWORD type = in.READ<DWORD>(); char* name = in.READS(); printf("JOINED CHANNEL '%s'\n", name); break; } case 0x4c6:{//channel player list break; } case 0x4ca:{//channel chat in.index = 11; MUID id = in.READ<MUID>(); char* name = in.READS(); char* msg = in.READS(); int ugrade = in.READ<int>(); printf("%s: %s\n", name, msg); if(id == MYID){ break; } char buffer[BUFFER_SIZE]; char* command = strtok(msg, " "); if(command == NULL){ break; } if(_stricmp(command, "!stats") == 0){ sprintf_s(buffer, BUFFER_SIZE, "/stats %s", name); char* target = strtok(NULL, ""); if(target != NULL){ sprintf_s(buffer, BUFFER_SIZE, "/stats %s", target); } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID);//player id out.WRITE<MUID>(MUID(0, -1));//channel id out.WRITES(buffer);//message out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } break; } case 0x4cf:{//channel rules break; } case 0x522:{//stage list break; } case 0x641:{ in.index = 11; char* sender = in.READS(); char* receiver = in.READS(); char* msg = in.READS(); printf("from %s: %s\n", sender, msg); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID); out.WRITE<MUID>(CHID); char buffer[BUFFER_SIZE]; sprintf_s(buffer, BUFFER_SIZE, "%s says '%s'", sender, msg); out.WRITES(buffer); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x6a6:{//response char list in.index = 11; in.READ<int>();//blob total size in.READ<int>();//blob member size int count = in.READ<int>();//blob member count if(count > 0){ MTD_CharListInfo cli = in.READ<MTD_CharListInfo>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a7);//request select char out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<int>(cli.nIndex);//index of char out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } if(count == 0){ MTD_CharListInfo cli = in.READ<MTD_CharListInfo>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6af);//request create char out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<int>(0);//index out.WRITES(CHAR_NAME);//name out.WRITE<int>(0);//sex out.WRITE<int>(0);//hair out.WRITE<int>(0);//face out.WRITE<int>(0);//class out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } } case 0x6a8:{//response select character in.index = 11; DWORD result = in.READ<DWORD>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4b5);//request channel join out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<MUID>(HOME_CHANNEL);//channel id out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x6b0:{//response select character in.index = 11; DWORD result = in.READ<DWORD>(); if(result != 0){ printf("CHARACTER CREATION FAILED: %d\n", result); goto start; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a5);//request char list out.WRITE<BYTE>(++COUNTER); out.WRITEB(1, 1);//dunno, but needed (message) out.WRITE<BYTE>(0); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } default:{ print_packet((BYTE*)in.buffer, in.packet->size); break; } } } } int main(){ WSAData wsad; WSAStartup(0x202, &wsad); Talk(); return 0; }

packet.h

Code:

#pragma once typedef struct PACKET{ WORD version; WORD size; WORD checksum; } PACKET; #define PACKET_MANAGER_BUFFER_SIZE 0x400 typedef struct PACKET_MANAGER{ WORD index; union{ PACKET* packet; char* sbuffer; BYTE* buffer; }; void RESET(){ packet->version = 0x64; packet->size = 0; } PACKET_MANAGER(){ sbuffer = (char*)malloc(PACKET_MANAGER_BUFFER_SIZE); RESET(); } PACKET_MANAGER(char* A){ sbuffer = A; } ~PACKET_MANAGER(){ try{ free(buffer); } catch(...){ } } template <class T> void SET(T A, WORD B){ memcpy(buffer + B, &A, sizeof(T)); if((B + sizeof(T)) > packet->size){ packet->size = B + sizeof(T); } } template <class T> T& GET(WORD B){ return *(T*)(buffer + B); } template <class T> void WRITE(T A){ memcpy(buffer + index, &A, sizeof(T)); index += sizeof(T); if(index > packet->size){ packet->size = index; } } template <class T> T& READ(){ T* ret = (T*)(buffer + index); index += sizeof(T); return *ret; } char* READS(){ WORD len = READ<WORD>(); char* ret = (char*)(buffer + index); index += len; if(index > packet->size){ return NULL; } return ret; } void WRITES(char* A){ WORD len = (WORD)strlen(A); WRITE<WORD>(len + 2); memcpy(buffer + index, A, len); index += len; WRITE<WORD>(0); } void WRITEB(DWORD A, DWORD B){ WRITE<DWORD>(A * B + 8); WRITE<DWORD>(A); WRITE<DWORD>(B); } void WRITER(void* A, WORD B){ memcpy(buffer + index, A, B); index += B; if(index > packet->size){ packet->size = index; } } char* READR(WORD B){ char* ret = (char*)(buffer + index); index += B; return ret; } void ENCRYPT(BYTE* K){ index = packet->size; for(int i = 0; i < packet->size; ++i){ WORD a = buffer[6 + i]; a ^= K[i % 32]; a <<= 5; BYTE b = a >> 8; b |= a & 0xff; b ^= 0xf0; buffer[6 + i] = b; } for(int i = 0; i < 2; ++i){ WORD a = buffer[2 + i]; a ^= K[i % 32]; a <<= 5; BYTE b = a >> 8; b |= a & 0xff; b ^= 0xf0; buffer[2 + i] = b; } packet->version = 0x65; packet->checksum = 0; for(int i = 6; i < index; ++i){ packet->checksum += buffer[i]; } for(int i = 0; i < 4; ++i){ packet->checksum -= buffer[i]; } #pragma warning(disable:4333) packet->checksum += packet->checksum >> 0x10; #pragma warning(default:4333) } void DECRYPT(BYTE* K){ for(int i = 0; i < 2; ++i){ BYTE a = buffer[2 + i]; a ^= 0xf0; BYTE b = a & 0x1f; a >>= 5; b <<= 3; b = a | b; buffer[2 + i] = b ^ K[i % 32]; } for(int i = 0; i < packet->size; ++i){ BYTE a = buffer[6 + i]; a ^= 0xf0; BYTE b = a & 0x1f; a >>= 5; b <<= 3; b = a | b; buffer[6 + i] = b ^ K[i % 32]; } packet->version = 0x64; } void CHECKSUM(){ index = packet->size; packet->checksum = 0; for(int i = 6; i < index; ++i){ packet->checksum += buffer[i]; } for(int i = 0; i < 4; ++i){ packet->checksum -= buffer[i]; } #pragma warning(disable:4333) packet->checksum += packet->checksum >> 0x10; #pragma warning(default:4333) } } PACKET_MANAGER; void print_packet(BYTE* A, int B){ for(int i = 0; i < B; ++i){ printf("%.2x ", A[i]); if(i % 16 == 0x0f && i != B){ printf("\n"); } } if(B % 16 != 0){ printf("\n"); } }

struct.h

Code:

#pragma once typedef struct MUID { DWORD LowPart; LONG HighPart; MUID(){ LowPart = 0; HighPart = 0; } MUID(DWORD A, LONG B){ LowPart = A; HighPart = B; } operator bool(){ return this->HighPart != 0 || this->LowPart != 0; } } MUID; bool operator==(const MUID& A, const MUID& B){ return A.HighPart == B.HighPart && A.LowPart == B.LowPart; } bool operator!=(const MUID& A, const MUID& B){ return (A == B) == false; } bool operator<(const MUID& A, const MUID& B){ return *(__int64*)&A < *(__int64*)&B; } bool operator>(const MUID& A, const MUID& B){ return *(__int64*)&A > *(__int64*)&B; } typedef struct LocatorData{ BYTE ip[4]; DWORD port; BYTE index; WORD playersmax; WORD playerscurrent; BYTE type; BYTE active; char name[64]; } LocatorData; typedef struct MTD_CharListInfo{ char szName[32]; BYTE nIndex; BYTE nLevel; } MTD_CharListInfo; typedef struct MTD_CharInfo{ char szName[32]; char szClanName[16]; DWORD nClanGrade; WORD nClanContPoint; char nCharNum; WORD nLevel; char nSex; char nHair; char nFace; DWORD nXP; int nBP; float fBonusRate; WORD nPrize; WORD nHP; WORD nAP; WORD nMaxWeight; WORD nSafeFalls; WORD nFR; WORD nCR; WORD nER; WORD nWR; DWORD nEquipedItemDesc[12]; DWORD nUGradeID; DWORD nClanCLID; } MTD_CharInfo; typedef struct MTD_ChannelPlayerListNode{ MUID uidPlayer; char szName[32]; char szClanName[16]; char nLevel; int nPlace; BYTE nGrade; BYTE nPlayerFlags; DWORD nCLID; DWORD nEmblemChecksum; } MTD_ChannelPlayerListNode;

Have fun, and avoid fighting over who's it is.

Re: GunZ Bot Base

o.0 What can I do with this??
What does it mean "Bot" ??

Re: GunZ Bot Base

It's simply a bot, a bot is a program or computer designed to do things that a human would do but automated.

This bot connects to the server, makes a character then sits in the lobby chat and can take commands.

It's essentially a chat bot, but for in gunz

Re: GunZ Bot Base

Quote:

Originally Posted by dawsonbyrd

It's simply a bot, a bot is a program or computer designed to do things that a human would do but automated.

This bot connects to the server, makes a character then sits in the lobby chat and can take commands.

It's essentially a chat bot, but for in gunz

Red - Does it increase player count?
Blue - Take commands as in?

Re: GunZ Bot Base

This looks pretty nice. Can you record it? I wanna see it's effect In-game.

Re: GunZ Bot Base

yeah me 2 I wanna see it's effect In-game.

Re: GunZ Bot Base

Hell thanks looked for this

Re: GunZ Bot Base

Quote:

Originally Posted by phoenix_147

Red - Does it increase player count?
Blue - Take commands as in?

Yes, it increases player count
Any command you make it can take, if you look for the !stats command you can see an example, as in this all it does is type /stats and output what it gets. you can really use anything

example:

Code:

if(_stricmp(command, "!hello") == 0){ sprintf_s(buffer, BUFFER_SIZE, "hi %s", name);

---------- Post added at 10:02 PM ---------- Previous post was at 09:55 PM ----------

Oh, and the SS someone wanted

http://i41.tinypic.com/sex8yf.png

old SS I had laying around

Re: GunZ Bot Base

lol thats freaking awesome, good job

Re: GunZ Bot Base

Oh shwit, that's nice.

Re: GunZ Bot Base

Thanks for this.

Re: GunZ Bot Base

wow! Nice release! (: ! thnx

Re: GunZ Bot Base

This source is even worse than Kore...

Re: GunZ Bot Base

Quote:

Originally Posted by ThePhailure772

This source is even worse than Kore...

Your just pissed he released it XD
Oh and thats why its a BASE?...

Re: GunZ Bot Base

Quote:

Originally Posted by Joe9099

Your just pissed he released it XD
Oh and thats why its a BASE?...

Explain why I would be pissed if I had no involvement in this source?

Kore was a base as well, and it's a hell of a lot better rofl.

Re: GunZ Bot Base

Quote:

Originally Posted by ThePhailure772

Explain why I would be pissed if I had no involvement in this source?

Kore was a base as well, and it's a hell of a lot better rofl.

too bad you wouldn't know

Re: GunZ Bot Base

Quote:

Originally Posted by gregon13

too bad you wouldn't know

Uhh, wut?

Re: GunZ Bot Base

Quote:

Originally Posted by ThePhailure772

Uhh, wut?

Your "Source" of Kore is more fucked then your mind is twisted

Re: GunZ Bot Base

Hmm, will look into this later but I already know this will help a lot.
Thanks!

Re: GunZ Bot Base

Keep the drama out of this thread guys, this was a just a release of a source I had two copy's laying around of. One from Jacob one from Fisher so I wasn't sure who's it actually was.

Obviously Jacob now says he had no involvement so the answer is found, and Jacob don't start shit in this thread it was fine till you tried to god-complex. 'cuz you know I'll put my try-hard cap on next time we play mw2 if you do.

Re: GunZ Bot Base

Wow thats great, ive seen something similar on another server.

Thanks for releasing it. =)

Re: GunZ Bot Base

would you make a in-game bot for people who training juggle?

Re: GunZ Bot Base

I would like to someday, will I? Probably not it's a lot of work for something useless. Not like juggle is hard.

Re: GunZ Bot Base

edit nvm.

Re: GunZ Bot Base

Quote:

Originally Posted by Trilest

You have to inject this into the matchserver right ?

......

Re: GunZ Bot Base

http://media.ebaumsworld.com/picture/Smitty2009/ZOMG.png

Re: GunZ Bot Base

Quote:

Originally Posted by dacharles

http://media.ebaumsworld.com/picture...y2009/ZOMG.png

You don't do a good job at that, sorry.

Re: GunZ Bot Base

do we make into dll or soemthing? =o

Re: GunZ Bot Base

Quote:

Originally Posted by killerzx

do we make into dll or soemthing? =o

No. It's a console-based program.

Re: GunZ Bot Base

Sorry for bumping this thread but which one do you compile to a console?

main.cpp

Code:

#include <string> #include <conio.h> #include <windows.h> #include "packet.h" #include "struct.h" #define BUFFER_SIZE 256 BYTE ran[] = {0x37, 0x04, 0x5D, 0x2E, 0x43, 0x3A, 0x49, 0x53, 0x50, 0x05, 0x13, 0xC9, 0x28, 0xA4, 0x4D, 0x05}; BYTE xor[] = {0x57, 0x02, 0x5B, 0x04, 0x34, 0x06, 0x01, 0x08, 0x37, 0x0A, 0x12, 0x69, 0x41, 0x38, 0x0F, 0x78}; #define VERSION 0x3a #define FILELIST_CRC 0 #define ACCOUNT_NAME "testing22" #define CHAR_NAME "testing22" #define ACCOUNT_PASSWORD "notreallysecure" #define HOME_CHANNEL MUID(0, 1) MUID SVID; MUID MYID; MUID CHID; BYTE KEY[32]; BYTE COUNTER; SOCKET SOCK; sockaddr_in SIN; void WriteHex(void* A, char* B){ std::string patchstring = B; char* token = strtok((char*)patchstring.c_str(), " "); for(int i = 0; token != NULL; ++i){ BYTE b; sscanf(token, "%X", &b); ((BYTE*)A)[i] = b; token = strtok(NULL, " "); } } void Talk(){ start: SOCK = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); SIN.sin_family = AF_INET; SIN.sin_addr.s_addr = inet_addr("89.46.35.33"); SIN.sin_port = htons(6000); connect(SOCK, (sockaddr*)&SIN, sizeof(SIN)); PACKET_MANAGER in; for(;;){ int rc; rc = recv(SOCK, in.sbuffer, PACKET_MANAGER_BUFFER_SIZE, 0); if(rc == 0 || rc == SOCKET_ERROR){ printf("DISCONNECTED\n"); goto start; } if(in.packet->version == 0xA){ printf("HANDSHAKE\n"); in.index = 6; SVID = in.READ<MUID>(); MYID = in.READ<MUID>(); DWORD time = in.READ<DWORD>(); memcpy(KEY, in.buffer + 22, 4); memcpy(KEY + 4, in.buffer + 10, 12); memcpy(KEY + 16, ran, 16); for(int i = 0; i < 16; ++i){ KEY[i] ^= xor[i]; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x3e9);//login out.WRITE<BYTE>(++COUNTER);//counter out.WRITES(ACCOUNT_NAME);//name out.WRITES(ACCOUNT_PASSWORD);//pass out.WRITE<int>(VERSION);//version out.WRITE<DWORD>(FILELIST_CRC);//crc FILE* hashfile = fopen("hash.txt", "rb"); char hashstring[3 * 16]; fread(hashstring, 3, 16, hashfile); fclose(hashfile); BYTE hash[16]; WriteHex(hash, hashstring); out.WRITEB(1, 16);//md5 out.WRITER((void*)hash, 16); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); continue; } if(in.packet->version == 0x65){ in.DECRYPT(KEY); } WORD command = in.GET<WORD>(8); switch(command){ case 0x142:{//ping in.index = 11; DWORD time = in.READ<DWORD>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x143);//pong out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<DWORD>(time);//time out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x169:{//clock synch break; } case 0x192:{//announce in.index = 11; int type = in.READ<int>(); char* msg = in.READS(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID); out.WRITE<MUID>(CHID); out.WRITES(msg); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x1f5:{//admin announce in.index = 11; MUID adminid = in.READ<MUID>(); char* message = in.READS(); printf("WALL: %s\n", message); break; } case 0x3ea:{//response login in.index = 11; DWORD result = in.READ<DWORD>(); if(result != 0){ printf("LOGIN FAILED: %d\n", result); goto start; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a5);//request char list out.WRITE<BYTE>(++COUNTER); out.WRITEB(1, 1);//dunno, but needed (message) out.WRITE<BYTE>(0); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x4b7:{//response channel join in.index = 11; CHID = in.READ<MUID>(); DWORD type = in.READ<DWORD>(); char* name = in.READS(); printf("JOINED CHANNEL '%s'\n", name); break; } case 0x4c6:{//channel player list break; } case 0x4ca:{//channel chat in.index = 11; MUID id = in.READ<MUID>(); char* name = in.READS(); char* msg = in.READS(); int ugrade = in.READ<int>(); printf("%s: %s\n", name, msg); if(id == MYID){ break; } char buffer[BUFFER_SIZE]; char* command = strtok(msg, " "); if(command == NULL){ break; } if(_stricmp(command, "!stats") == 0){ sprintf_s(buffer, BUFFER_SIZE, "/stats %s", name); char* target = strtok(NULL, ""); if(target != NULL){ sprintf_s(buffer, BUFFER_SIZE, "/stats %s", target); } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID);//player id out.WRITE<MUID>(MUID(0, -1));//channel id out.WRITES(buffer);//message out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } break; } case 0x4cf:{//channel rules break; } case 0x522:{//stage list break; } case 0x641:{ in.index = 11; char* sender = in.READS(); char* receiver = in.READS(); char* msg = in.READS(); printf("from %s: %s\n", sender, msg); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID); out.WRITE<MUID>(CHID); char buffer[BUFFER_SIZE]; sprintf_s(buffer, BUFFER_SIZE, "%s says '%s'", sender, msg); out.WRITES(buffer); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x6a6:{//response char list in.index = 11; in.READ<int>();//blob total size in.READ<int>();//blob member size int count = in.READ<int>();//blob member count if(count > 0){ MTD_CharListInfo cli = in.READ<MTD_CharListInfo>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a7);//request select char out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<int>(cli.nIndex);//index of char out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } if(count == 0){ MTD_CharListInfo cli = in.READ<MTD_CharListInfo>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6af);//request create char out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<int>(0);//index out.WRITES(CHAR_NAME);//name out.WRITE<int>(0);//sex out.WRITE<int>(0);//hair out.WRITE<int>(0);//face out.WRITE<int>(0);//class out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } } case 0x6a8:{//response select character in.index = 11; DWORD result = in.READ<DWORD>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4b5);//request channel join out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<MUID>(HOME_CHANNEL);//channel id out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x6b0:{//response select character in.index = 11; DWORD result = in.READ<DWORD>(); if(result != 0){ printf("CHARACTER CREATION FAILED: %d\n", result); goto start; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a5);//request char list out.WRITE<BYTE>(++COUNTER); out.WRITEB(1, 1);//dunno, but needed (message) out.WRITE<BYTE>(0); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } default:{ print_packet((BYTE*)in.buffer, in.packet->size); break; } } } } int main(){ WSAData wsad; WSAStartup(0x202, &wsad); Talk(); return 0; }

packet.h

Code:

#pragma once typedef struct PACKET{ WORD version; WORD size; WORD checksum; } PACKET; #define PACKET_MANAGER_BUFFER_SIZE 0x400 typedef struct PACKET_MANAGER{ WORD index; union{ PACKET* packet; char* sbuffer; BYTE* buffer; }; void RESET(){ packet->version = 0x64; packet->size = 0; } PACKET_MANAGER(){ sbuffer = (char*)malloc(PACKET_MANAGER_BUFFER_SIZE); RESET(); } PACKET_MANAGER(char* A){ sbuffer = A; } ~PACKET_MANAGER(){ try{ free(buffer); } catch(...){ } } template <class T> void SET(T A, WORD B){ memcpy(buffer + B, &A, sizeof(T)); if((B + sizeof(T)) > packet->size){ packet->size = B + sizeof(T); } } template <class T> T& GET(WORD B){ return *(T*)(buffer + B); } template <class T> void WRITE(T A){ memcpy(buffer + index, &A, sizeof(T)); index += sizeof(T); if(index > packet->size){ packet->size = index; } } template <class T> T& READ(){ T* ret = (T*)(buffer + index); index += sizeof(T); return *ret; } char* READS(){ WORD len = READ<WORD>(); char* ret = (char*)(buffer + index); index += len; if(index > packet->size){ return NULL; } return ret; } void WRITES(char* A){ WORD len = (WORD)strlen(A); WRITE<WORD>(len + 2); memcpy(buffer + index, A, len); index += len; WRITE<WORD>(0); } void WRITEB(DWORD A, DWORD B){ WRITE<DWORD>(A * B + 8); WRITE<DWORD>(A); WRITE<DWORD>(B); } void WRITER(void* A, WORD B){ memcpy(buffer + index, A, B); index += B; if(index > packet->size){ packet->size = index; } } char* READR(WORD B){ char* ret = (char*)(buffer + index); index += B; return ret; } void ENCRYPT(BYTE* K){ index = packet->size; for(int i = 0; i < packet->size; ++i){ WORD a = buffer[6 + i]; a ^= K[i % 32]; a <<= 5; BYTE b = a >> 8; b |= a & 0xff; b ^= 0xf0; buffer[6 + i] = b; } for(int i = 0; i < 2; ++i){ WORD a = buffer[2 + i]; a ^= K[i % 32]; a <<= 5; BYTE b = a >> 8; b |= a & 0xff; b ^= 0xf0; buffer[2 + i] = b; } packet->version = 0x65; packet->checksum = 0; for(int i = 6; i < index; ++i){ packet->checksum += buffer[i]; } for(int i = 0; i < 4; ++i){ packet->checksum -= buffer[i]; } #pragma warning(disable:4333) packet->checksum += packet->checksum >> 0x10; #pragma warning(default:4333) } void DECRYPT(BYTE* K){ for(int i = 0; i < 2; ++i){ BYTE a = buffer[2 + i]; a ^= 0xf0; BYTE b = a & 0x1f; a >>= 5; b <<= 3; b = a | b; buffer[2 + i] = b ^ K[i % 32]; } for(int i = 0; i < packet->size; ++i){ BYTE a = buffer[6 + i]; a ^= 0xf0; BYTE b = a & 0x1f; a >>= 5; b <<= 3; b = a | b; buffer[6 + i] = b ^ K[i % 32]; } packet->version = 0x64; } void CHECKSUM(){ index = packet->size; packet->checksum = 0; for(int i = 6; i < index; ++i){ packet->checksum += buffer[i]; } for(int i = 0; i < 4; ++i){ packet->checksum -= buffer[i]; } #pragma warning(disable:4333) packet->checksum += packet->checksum >> 0x10; #pragma warning(default:4333) } } PACKET_MANAGER; void print_packet(BYTE* A, int B){ for(int i = 0; i < B; ++i){ printf("%.2x ", A[i]); if(i % 16 == 0x0f && i != B){ printf("\n"); } } if(B % 16 != 0){ printf("\n"); } }

struct.h

Code:

#pragma once typedef struct MUID { DWORD LowPart; LONG HighPart; MUID(){ LowPart = 0; HighPart = 0; } MUID(DWORD A, LONG B){ LowPart = A; HighPart = B; } operator bool(){ return this->HighPart != 0 || this->LowPart != 0; } } MUID; bool operator==(const MUID& A, const MUID& B){ return A.HighPart == B.HighPart && A.LowPart == B.LowPart; } bool operator!=(const MUID& A, const MUID& B){ return (A == B) == false; } bool operator<(const MUID& A, const MUID& B){ return *(__int64*)&A < *(__int64*)&B; } bool operator>(const MUID& A, const MUID& B){ return *(__int64*)&A > *(__int64*)&B; } typedef struct LocatorData{ BYTE ip[4]; DWORD port; BYTE index; WORD playersmax; WORD playerscurrent; BYTE type; BYTE active; char name[64]; } LocatorData; typedef struct MTD_CharListInfo{ char szName[32]; BYTE nIndex; BYTE nLevel; } MTD_CharListInfo; typedef struct MTD_CharInfo{ char szName[32]; char szClanName[16]; DWORD nClanGrade; WORD nClanContPoint; char nCharNum; WORD nLevel; char nSex; char nHair; char nFace; DWORD nXP; int nBP; float fBonusRate; WORD nPrize; WORD nHP; WORD nAP; WORD nMaxWeight; WORD nSafeFalls; WORD nFR; WORD nCR; WORD nER; WORD nWR; DWORD nEquipedItemDesc[12]; DWORD nUGradeID; DWORD nClanCLID; } MTD_CharInfo; typedef struct MTD_ChannelPlayerListNode{ MUID uidPlayer; char szName[32]; char szClanName[16]; char nLevel; int nPlace; BYTE nGrade; BYTE nPlayerFlags; DWORD nCLID; DWORD nEmblemChecksum; } MTD_ChannelPlayerListNode;

edit: I tryed to compile all of them but idk how to make it a console program..

Re: GunZ Bot Base

Maybe is adding an A.L.I.C.E bot to this a smart idea.

@killerzx create a new vc project. Select console app. Ans empty project. Go to the sidebar(IDE), at header add those header files. At the recources tab none. And on the last one the cpp.

Re: GunZ Bot Base

why is phail so pro ?

Re: GunZ Bot Base

Quote:

Originally Posted by 00niels00

Maybe is adding an A.L.I.C.E bot to this a smart idea.

@killerzx create a new vc project. Select console app. Ans empty project. Go to the sidebar(IDE), at header add those header files. At the recources tab none. And on the last one the cpp.

oke ty, I use Dev C++ or do I have to use VC? :O
What vc stand for again? I forgot lol.

EDIT : I got this error O_o it went red on that line :S

Code:

BYTE xor[] = {0x57, 0x02, 0x5B, 0x04, 0x34, 0x06, 0x01, 0x08, 0x37, 0x0A, 0x12, 0x69, 0x41, 0x38, 0x0F, 0x78};

Re: GunZ Bot Base

Waw nice XD

Re: GunZ Bot Base

Quote:

Originally Posted by gabire

Waw nice XD

did u compiled this ? :O
Can you... send me it xd

Quote:

Originally Posted by killerzx

oke ty, I use Dev C++ or do I have to use VC? :O
What vc stand for again? I forgot lol.

EDIT : I got this error O_o it went red on that line :S

Code:

BYTE xor[] = {0x57, 0x02, 0x5B, 0x04, 0x34, 0x06, 0x01, 0x08, 0x37, 0x0A, 0x12, 0x69, 0x41, 0x38, 0x0F, 0x78};

I would recomment vc 2008 or 2010
Posted via Mobile Device

Re: GunZ Bot Base

Quote:

Originally Posted by 00niels00

I would recomment vc 2008 or 2010
Posted via Mobile Device

alrighty, I got vc 2010 :)
edit : When i compile with vc 2010 I get this error O_o

Code:

c:\documents and settings\mike\my documents\visual studio 2010\Projects\BOT\Debug\BOT.exe : fatal error LNK1120: 7 unresolved externals ========== Build: 0 succeeded, 1 failed, 0 up-to-date, 0 skipped ==========

why that happend?

Re: GunZ Bot Base

dose this has more command to it?

Re: GunZ Bot Base

Quote:

Originally Posted by killerzx

alrighty, I got vc 2010 :)
edit : When i compile with vc 2010 I get this error O_o

Code:

c:\documents and settings\mike\my documents\visual studio 2010\Projects\BOT\Debug\BOT.exe : fatal error LNK1120: 7 unresolved externals ========== Build: 0 succeeded, 1 failed, 0 up-to-date, 0 skipped ==========

why that happend?

Those are linker errors.

Re: GunZ Bot Base

Quote:

Originally Posted by Arcelor

Those are linker errors.

how to fix it? :o

Re: GunZ Bot Base

If it's linking to a library, you need to add the library to your project.

Re: GunZ Bot Base

Awesome! Thanks..

Re: GunZ Bot Base

Code:

#define VERSION 0x3a #define FILELIST_CRC 0 #define ACCOUNT_NAME "testing22" #define CHAR_NAME "testing22" #define ACCOUNT_PASSWORD "notreallysecure" #define HOME_CHANNEL MUID(0, 1)

USE THE CONST/STATIC KEYWORDS APPROPRIATELY, QUIT USING FUCKING PREPROCESSOR MACROS.

Code:

MUID SVID; MUID MYID; MUID CHID; BYTE KEY[32]; BYTE COUNTER; SOCKET SOCK; sockaddr_in SIN; void WriteHex(void* A, char* B){ std::string patchstring = B;

Mixed some all caps, some all lowercase variable naming is confusing. Variables with short names is also, confusing.

Code:

char* token = strtok((char*)patchstring.c_str(), " ");

Unsafe function; and mixing C++ with C functions? Really?

Code:

start:

I hope there's not a goto in there..

Code:

PACKET_MANAGER in;

You should zero the structure.

__

I could go on. This is some ugly fucking code.

Re: GunZ Bot Base

Code:

Unsafe function; and mixing C++ with C functions? Really?

Is that the reason the dude may be getting the linker errors for? o.o.

Re: GunZ Bot Base

Quote:

Originally Posted by Arcelor

Code:

Unsafe function; and mixing C++ with C functions? Really?

Is that the reason the dude may be getting the linker errors for? o.o.

No. Learn C++, there is your answer. :P:

Re: GunZ Bot Base

Quote:

Originally Posted by Guy

Code:

#define VERSION 0x3a #define FILELIST_CRC 0 #define ACCOUNT_NAME "testing22" #define CHAR_NAME "testing22" #define ACCOUNT_PASSWORD "notreallysecure" #define HOME_CHANNEL MUID(0, 1)

USE THE CONST/STATIC KEYWORDS APPROPRIATELY, QUIT USING FUCKING PREPROCESSOR MACROS.

Code:

MUID SVID; MUID MYID; MUID CHID; BYTE KEY[32]; BYTE COUNTER; SOCKET SOCK; sockaddr_in SIN; void WriteHex(void* A, char* B){ std::string patchstring = B;

Mixed some all caps, some all lowercase variable naming is confusing. Variables with short names is also, confusing.

Code:

char* token = strtok((char*)patchstring.c_str(), " ");

Unsafe function; and mixing C++ with C functions? Really?

Code:

start:

I hope there's not a goto in there..

Code:

PACKET_MANAGER in;

You should zero the structure.

__

I could go on. This is some ugly fucking code.

Exactly as I said when he was building it.

Re: GunZ Bot Base

Quote:

Originally Posted by killerzx

alrighty, I got vc 2010 :)
edit : When i compile with vc 2010 I get this error O_o

Code:

c:\documents and settings\mike\my documents\visual studio 2010\Projects\BOT\Debug\BOT.exe : fatal error LNK1120: 7 unresolved externals ========== Build: 0 succeeded, 1 failed, 0 up-to-date, 0 skipped ==========

why that happend?

Paste this at the upper part of main.cpp.

Code:

#pragma comment(lib, "ws2_32.lib")

This will probaly fix it.

EDIT*FIXED(create a hash.txt in the same folder):
I've tried it myself but it shows "HANDSHAKE" in console. And throws an error.
Im using 2008 july files.

EDIT2:
Ok so I get the response "HANDSHAKE". It won't login or do anything else at all. Maybe this is because im using july 2008??

Re: GunZ Bot Base

Quote:

Originally Posted by 00niels00

Paste this at the upper part of main.cpp.

Code:

#pragma comment(lib, "ws2_32.lib")

This will probaly fix it.

EDIT*FIXED(create a hash.txt in the same folder):
I've tried it myself but it shows "HANDSHAKE" in console. And throws an error.
Im using 2008 july files.

EDIT2:
Ok so I get the response "HANDSHAKE". It won't login or do anything else at all. Maybe this is because im using july 2008??

the hash thing didn't work O_o

edit: It says "HANDSHAKE" for me too lol

Re: GunZ Bot Base

Quote:

Originally Posted by DawsonByrd

People may dispute who made this, fisher or phail as they both claimed it as their work. Either way it's not used and can be released. This is not edited, the pure source of what I have.

YOU WILL NEED TO EDIT IT ACCORDINGLY FOR YOUR MATCHSERVER(probably)

That is easy though, I've done it for myself and got it working there is a spot for a command of !stats that will not work for you no matter what as you don't have a /stats command

main.cpp

Code:

#include <string> #include <conio.h> #include <windows.h> #include "packet.h" #include "struct.h" #define BUFFER_SIZE 256 BYTE ran[] = {0x37, 0x04, 0x5D, 0x2E, 0x43, 0x3A, 0x49, 0x53, 0x50, 0x05, 0x13, 0xC9, 0x28, 0xA4, 0x4D, 0x05}; BYTE xor[] = {0x57, 0x02, 0x5B, 0x04, 0x34, 0x06, 0x01, 0x08, 0x37, 0x0A, 0x12, 0x69, 0x41, 0x38, 0x0F, 0x78}; #define VERSION 0x3a #define FILELIST_CRC 0 #define ACCOUNT_NAME "testing22" #define CHAR_NAME "testing22" #define ACCOUNT_PASSWORD "notreallysecure" #define HOME_CHANNEL MUID(0, 1) MUID SVID; MUID MYID; MUID CHID; BYTE KEY[32]; BYTE COUNTER; SOCKET SOCK; sockaddr_in SIN; void WriteHex(void* A, char* B){ std::string patchstring = B; char* token = strtok((char*)patchstring.c_str(), " "); for(int i = 0; token != NULL; ++i){ BYTE b; sscanf(token, "%X", &b); ((BYTE*)A)[i] = b; token = strtok(NULL, " "); } } void Talk(){ start: SOCK = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); SIN.sin_family = AF_INET; SIN.sin_addr.s_addr = inet_addr("89.46.35.33"); SIN.sin_port = htons(6000); connect(SOCK, (sockaddr*)&SIN, sizeof(SIN)); PACKET_MANAGER in; for(;;){ int rc; rc = recv(SOCK, in.sbuffer, PACKET_MANAGER_BUFFER_SIZE, 0); if(rc == 0 || rc == SOCKET_ERROR){ printf("DISCONNECTED\n"); goto start; } if(in.packet->version == 0xA){ printf("HANDSHAKE\n"); in.index = 6; SVID = in.READ<MUID>(); MYID = in.READ<MUID>(); DWORD time = in.READ<DWORD>(); memcpy(KEY, in.buffer + 22, 4); memcpy(KEY + 4, in.buffer + 10, 12); memcpy(KEY + 16, ran, 16); for(int i = 0; i < 16; ++i){ KEY[i] ^= xor[i]; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x3e9);//login out.WRITE<BYTE>(++COUNTER);//counter out.WRITES(ACCOUNT_NAME);//name out.WRITES(ACCOUNT_PASSWORD);//pass out.WRITE<int>(VERSION);//version out.WRITE<DWORD>(FILELIST_CRC);//crc FILE* hashfile = fopen("hash.txt", "rb"); char hashstring[3 * 16]; fread(hashstring, 3, 16, hashfile); fclose(hashfile); BYTE hash[16]; WriteHex(hash, hashstring); out.WRITEB(1, 16);//md5 out.WRITER((void*)hash, 16); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); continue; } if(in.packet->version == 0x65){ in.DECRYPT(KEY); } WORD command = in.GET<WORD>(8); switch(command){ case 0x142:{//ping in.index = 11; DWORD time = in.READ<DWORD>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x143);//pong out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<DWORD>(time);//time out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x169:{//clock synch break; } case 0x192:{//announce in.index = 11; int type = in.READ<int>(); char* msg = in.READS(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID); out.WRITE<MUID>(CHID); out.WRITES(msg); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x1f5:{//admin announce in.index = 11; MUID adminid = in.READ<MUID>(); char* message = in.READS(); printf("WALL: %s\n", message); break; } case 0x3ea:{//response login in.index = 11; DWORD result = in.READ<DWORD>(); if(result != 0){ printf("LOGIN FAILED: %d\n", result); goto start; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a5);//request char list out.WRITE<BYTE>(++COUNTER); out.WRITEB(1, 1);//dunno, but needed (message) out.WRITE<BYTE>(0); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x4b7:{//response channel join in.index = 11; CHID = in.READ<MUID>(); DWORD type = in.READ<DWORD>(); char* name = in.READS(); printf("JOINED CHANNEL '%s'\n", name); break; } case 0x4c6:{//channel player list break; } case 0x4ca:{//channel chat in.index = 11; MUID id = in.READ<MUID>(); char* name = in.READS(); char* msg = in.READS(); int ugrade = in.READ<int>(); printf("%s: %s\n", name, msg); if(id == MYID){ break; } char buffer[BUFFER_SIZE]; char* command = strtok(msg, " "); if(command == NULL){ break; } if(_stricmp(command, "!stats") == 0){ sprintf_s(buffer, BUFFER_SIZE, "/stats %s", name); char* target = strtok(NULL, ""); if(target != NULL){ sprintf_s(buffer, BUFFER_SIZE, "/stats %s", target); } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID);//player id out.WRITE<MUID>(MUID(0, -1));//channel id out.WRITES(buffer);//message out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } break; } case 0x4cf:{//channel rules break; } case 0x522:{//stage list break; } case 0x641:{ in.index = 11; char* sender = in.READS(); char* receiver = in.READS(); char* msg = in.READS(); printf("from %s: %s\n", sender, msg); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4c9);//request channel chat out.WRITE<BYTE>(++COUNTER);//counter out.WRITE<MUID>(MYID); out.WRITE<MUID>(CHID); char buffer[BUFFER_SIZE]; sprintf_s(buffer, BUFFER_SIZE, "%s says '%s'", sender, msg); out.WRITES(buffer); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x6a6:{//response char list in.index = 11; in.READ<int>();//blob total size in.READ<int>();//blob member size int count = in.READ<int>();//blob member count if(count > 0){ MTD_CharListInfo cli = in.READ<MTD_CharListInfo>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a7);//request select char out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<int>(cli.nIndex);//index of char out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } if(count == 0){ MTD_CharListInfo cli = in.READ<MTD_CharListInfo>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6af);//request create char out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<int>(0);//index out.WRITES(CHAR_NAME);//name out.WRITE<int>(0);//sex out.WRITE<int>(0);//hair out.WRITE<int>(0);//face out.WRITE<int>(0);//class out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } } case 0x6a8:{//response select character in.index = 11; DWORD result = in.READ<DWORD>(); PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x4b5);//request channel join out.WRITE<BYTE>(++COUNTER); out.WRITE<MUID>(MYID);//player id out.WRITE<MUID>(HOME_CHANNEL);//channel id out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } case 0x6b0:{//response select character in.index = 11; DWORD result = in.READ<DWORD>(); if(result != 0){ printf("CHARACTER CREATION FAILED: %d\n", result); goto start; } PACKET_MANAGER out; out.index = 8; out.WRITE<WORD>(0x6a5);//request char list out.WRITE<BYTE>(++COUNTER); out.WRITEB(1, 1);//dunno, but needed (message) out.WRITE<BYTE>(0); out.SET<WORD>(out.packet->size - 6, 6); out.ENCRYPT(KEY); send(SOCK, out.sbuffer, out.index, 0); break; } default:{ print_packet((BYTE*)in.buffer, in.packet->size); break; } } } } int main(){ WSAData wsad; WSAStartup(0x202, &wsad); Talk(); return 0; }

packet.h

Code:

#pragma once typedef struct PACKET{ WORD version; WORD size; WORD checksum; } PACKET; #define PACKET_MANAGER_BUFFER_SIZE 0x400 typedef struct PACKET_MANAGER{ WORD index; union{ PACKET* packet; char* sbuffer; BYTE* buffer; }; void RESET(){ packet->version = 0x64; packet->size = 0; } PACKET_MANAGER(){ sbuffer = (char*)malloc(PACKET_MANAGER_BUFFER_SIZE); RESET(); } PACKET_MANAGER(char* A){ sbuffer = A; } ~PACKET_MANAGER(){ try{ free(buffer); } catch(...){ } } template <class T> void SET(T A, WORD B){ memcpy(buffer + B, &A, sizeof(T)); if((B + sizeof(T)) > packet->size){ packet->size = B + sizeof(T); } } template <class T> T& GET(WORD B){ return *(T*)(buffer + B); } template <class T> void WRITE(T A){ memcpy(buffer + index, &A, sizeof(T)); index += sizeof(T); if(index > packet->size){ packet->size = index; } } template <class T> T& READ(){ T* ret = (T*)(buffer + index); index += sizeof(T); return *ret; } char* READS(){ WORD len = READ<WORD>(); char* ret = (char*)(buffer + index); index += len; if(index > packet->size){ return NULL; } return ret; } void WRITES(char* A){ WORD len = (WORD)strlen(A); WRITE<WORD>(len + 2); memcpy(buffer + index, A, len); index += len; WRITE<WORD>(0); } void WRITEB(DWORD A, DWORD B){ WRITE<DWORD>(A * B + 8); WRITE<DWORD>(A); WRITE<DWORD>(B); } void WRITER(void* A, WORD B){ memcpy(buffer + index, A, B); index += B; if(index > packet->size){ packet->size = index; } } char* READR(WORD B){ char* ret = (char*)(buffer + index); index += B; return ret; } void ENCRYPT(BYTE* K){ index = packet->size; for(int i = 0; i < packet->size; ++i){ WORD a = buffer[6 + i]; a ^= K[i % 32]; a <<= 5; BYTE b = a >> 8; b |= a & 0xff; b ^= 0xf0; buffer[6 + i] = b; } for(int i = 0; i < 2; ++i){ WORD a = buffer[2 + i]; a ^= K[i % 32]; a <<= 5; BYTE b = a >> 8; b |= a & 0xff; b ^= 0xf0; buffer[2 + i] = b; } packet->version = 0x65; packet->checksum = 0; for(int i = 6; i < index; ++i){ packet->checksum += buffer[i]; } for(int i = 0; i < 4; ++i){ packet->checksum -= buffer[i]; } #pragma warning(disable:4333) packet->checksum += packet->checksum >> 0x10; #pragma warning(default:4333) } void DECRYPT(BYTE* K){ for(int i = 0; i < 2; ++i){ BYTE a = buffer[2 + i]; a ^= 0xf0; BYTE b = a & 0x1f; a >>= 5; b <<= 3; b = a | b; buffer[2 + i] = b ^ K[i % 32]; } for(int i = 0; i < packet->size; ++i){ BYTE a = buffer[6 + i]; a ^= 0xf0; BYTE b = a & 0x1f; a >>= 5; b <<= 3; b = a | b; buffer[6 + i] = b ^ K[i % 32]; } packet->version = 0x64; } void CHECKSUM(){ index = packet->size; packet->checksum = 0; for(int i = 6; i < index; ++i){ packet->checksum += buffer[i]; } for(int i = 0; i < 4; ++i){ packet->checksum -= buffer[i]; } #pragma warning(disable:4333) packet->checksum += packet->checksum >> 0x10; #pragma warning(default:4333) } } PACKET_MANAGER; void print_packet(BYTE* A, int B){ for(int i = 0; i < B; ++i){ printf("%.2x ", A[i]); if(i % 16 == 0x0f && i != B){ printf("\n"); } } if(B % 16 != 0){ printf("\n"); } }

struct.h

Code:

#pragma once typedef struct MUID { DWORD LowPart; LONG HighPart; MUID(){ LowPart = 0; HighPart = 0; } MUID(DWORD A, LONG B){ LowPart = A; HighPart = B; } operator bool(){ return this->HighPart != 0 || this->LowPart != 0; } } MUID; bool operator==(const MUID& A, const MUID& B){ return A.HighPart == B.HighPart && A.LowPart == B.LowPart; } bool operator!=(const MUID& A, const MUID& B){ return (A == B) == false; } bool operator<(const MUID& A, const MUID& B){ return *(__int64*)&A < *(__int64*)&B; } bool operator>(const MUID& A, const MUID& B){ return *(__int64*)&A > *(__int64*)&B; } typedef struct LocatorData{ BYTE ip[4]; DWORD port; BYTE index; WORD playersmax; WORD playerscurrent; BYTE type; BYTE active; char name[64]; } LocatorData; typedef struct MTD_CharListInfo{ char szName[32]; BYTE nIndex; BYTE nLevel; } MTD_CharListInfo; typedef struct MTD_CharInfo{ char szName[32]; char szClanName[16]; DWORD nClanGrade; WORD nClanContPoint; char nCharNum; WORD nLevel; char nSex; char nHair; char nFace; DWORD nXP; int nBP; float fBonusRate; WORD nPrize; WORD nHP; WORD nAP; WORD nMaxWeight; WORD nSafeFalls; WORD nFR; WORD nCR; WORD nER; WORD nWR; DWORD nEquipedItemDesc[12]; DWORD nUGradeID; DWORD nClanCLID; } MTD_CharInfo; typedef struct MTD_ChannelPlayerListNode{ MUID uidPlayer; char szName[32]; char szClanName[16]; char nLevel; int nPlace; BYTE nGrade; BYTE nPlayerFlags; DWORD nCLID; DWORD nEmblemChecksum; } MTD_ChannelPlayerListNode;

Have fun, and avoid fighting over who's it is.

i got error :
http://i49.tinypic.com/znvbpg.jpg
waht i need to do ?

Re: GunZ Bot Base

Quote:

Originally Posted by hotgame

i got error :
http://i49.tinypic.com/znvbpg.jpg
waht i need to do ?

XOR is technically replaced with the actual XOR carrot, ^ in the standard for C++. You have to rename the variable everywhere it's used, so replace the word "xor" everywhere with another name, like "key".

Re: GunZ Bot Base

Quote:

Originally Posted by hotgame

i got error :
http://i49.tinypic.com/znvbpg.jpg
waht i need to do ?

I had that error when I used dev C++.
The error wasn't there when I was using VC 2008 :).

Re: GunZ Bot Base

Quote:

Originally Posted by killerzx

I had that error when I used dev C++.
The error wasn't there when I was using VC 2008 :).

By default, VS sets up MSC to not conform to standards by ignoring the replacement of XOR/OR/AND words with their respective symbol.

Quote:

Originally Posted by hotgame

can u give me your msn?

Yeah, not gonna do that, lol.

Re: GunZ Bot Base

Quote:

Originally Posted by hotgame

add me to msn: walla@nana10.co.il

No, lol.

Re: GunZ Bot Base

uhh... how do we make this go in game? Mine just says "HANDSHAKE" then it gives this error message :S

Re: GunZ Bot Base

Quote:

Originally Posted by killerzx

uhh... how do we make this go in game? Mine just says "HANDSHAKE" then it gives this error message :S

Make a txt file called hash.txt and it won't give an error message.
As far as I noticed, it stops after the 'continue;' so it won't say anything more than 'HANDSHAKE'.

Re: GunZ Bot Base

Quote:

Originally Posted by Trilest

Make a txt file called hash.txt and it won't give an error message.
As far as I noticed, it stops after the 'continue;' so it won't say anything more than 'HANDSHAKE'.

I'm talking about this error :
http://i48.tinypic.com/ibc7l5.jpg
;o

Re: GunZ Bot Base

Use Kore, it's a way better base than this. I'm pretty sure it's around on RageZONE somewhere.

Re: GunZ Bot Base

It got removed, but I posted it on Aeon.
Btw, GunzDev is filled with porn ads. Clean it up a bit :):.

Re: GunZ Bot Base

Quote:

Originally Posted by Wizkidje

Use Kore, it's a way better base than this. I'm pretty sure it's around on RageZONE somewhere.

ok o.o
edit: can't find lol

Re: GunZ Bot Base

Here's a tip, you DO have to change a bit of the code to make it work for you.

Re: GunZ Bot Base

Yes, you do, because for each revision of the GunZ server things change. Plus, Kore may be "Better" but with tweaking and cleaning this supplies a far better base. I personally have started cleaning it up and re-writing parts of it. I'm figuring I'll put out an updated version here after exams.