ok yes this is going to be our biggest project yet, i kno ppl thought it was impossible but quite the contrary u can do this but u must

1. get 2 count 'em 2 packet sniffers as well as 1 sender
2. open 1 packet sniffer and lets label it as: Server to Computer
2b. open the other packet sniffer and lets label this 1 as: Computer to Server
3. set the Server to Computer sniffer to look on the server u r on
3b. set the Computer to Server to look onto ur computer this means Destination ip=[ur ip] Source ip=[ur server ip]
4. open the sender
5. now start sniffing with both sniffers
6. once u have the packets for lets say money from both sniffers
7. start searching for the packets that have the word [credits]
8. once u have those packets from both sniffers tell the sender to look onto ur computer
9. then from ther edit them
10. send them back to server and computer

that might be the end but of course im not sure if anyone wants more of an elaboration or maybe some help or doesnt understand something just post here

p.s. this has been proven of working just takes a supreme HaXorer to do it and i think we should be able to do it. (though i dont think any of us are supreme haXorers i still think we can do it with our brilliant minds)

While I think you have more than enough enthusiasm to get the ball rolling, unless you know the exact method used to decrypt the UDP packets you're not going to get anywhere. And I don't mean "you just change packets", if you want people to help you work on this you need the flow of information to be public, and precise, and very well laid out - otherwise you're on your own.

Some of the stuff I've read here just makes me laugh, its like you think SOE are just *****s and will let you get away with anything. EVERYTHING is logged, and you'd be silly to risk altering any packets.

I suggest you start off passively analysing the data being sent instead of trying to change it - you'll get a much better understanding of how things work instead of diving in at the deep end to find your account banned.

I'm not here to flame or cause arguments, as I really do want to understand their packets myself too, but I seriously think you'll just hamper any attempt if you go at it like you are.

i thank u for ur interjection and i do understand that u do need the udp security cracker but as it stands apparently ther r flaws in which some packets would come out unlamed by the udp and thus ur able to change it of course this would only happen in a milllion in 1 chance but of course if this does happen to anybody it helps to kno wtf to do am i correct in this statement day walker? and yes ther r times when SOE will miss things here and ther i have done this before and have gotton caught but of course i wont stop trieing to fix this my bro who is probably more of a wiz at this than me would kno exactly wat to do but he prefers laming FFXI.

I've not found anything yet to support the theory that some packets aren't encrypted. Everything i've seen is encrypted.

So unless you're looking at packets at a different point (in memory for example) then please explain which packets aren't encrypted so I can test myself.

The only thing I'd say aren't encrypted are what seem to be "pings" the client/server send to each other, since they are only 4 bytes long and not exactly big enough to be encrytped (and usually UDP packets have a CRC32 checksum which would make packets bigger).

the one's through memory are wat im doing it through..most of the packets are but u will probably find 1 or 2 that arent encrypted and it doesnt really matter which type it seems that some of those packets have problems but otherwise im not quite sure i kno that the udp security practilly bombs over the regular packets so i wont touch those but memory seems to be the ultimate savior or my ultimate demise. Either way its the memory im looking through.

I thought you were looking at packets via ethereal? you are very unclear and its hard to understand you. Not to be a flame, but you sound exactly like an aol kiddie. "OMFG i am teh leet i packet hack through memory!" is all I'm seeing.

If you speak somewhat proper english (Do not take me as an example, my grammar is horrible) then you might get better results when searching for help.

Again, I don't mean to flame. I'm just throwing in my two cents.

Heh yeah, don't confuse packets over the network with data in memory - two very very different things :)

I'll never touch anything client side or server side, too risky. Network packets however they have no control over, so I can do what I please with them. Viewing them is the first step (decrypting), and then a proxy/filter if you ever wanted to change the data.

ok then let me make this more clear...

1. in order to search and destroy packets (meaning search and change the damn packets) u must first have any packet sniffer watsoever that does the job of searching any type of packet network, memory, regular blah blah im not going into it.

2. u must have any type of packet sender doesnt matter wat kind just as long as it can send bak forth to client and to server

3. sometimes most memory packets (which is wat i have been searching through recently) dont have a stamped udp security on it so you r able to change the data inside via the packet sender or packet sniffer if they include them.

4. next but most important u must have 2 sniffers...1 sniffing the server the other sniffing your computer

5. u must then do something in game to get the packets u want ex. tipping someone 50 creds.

6. find the packets u want inside both packet sniffers through ther filters inside the filter type in credits...

7. once done with that and u have found it commence the starting of change. change to watevr credits by switching to hex and changing the values to equal that of wat u want....

8. once done send that packet off to server and the other to computer. (doesnt have to be done similtenously)

9. then look on ur screen to see if it has worked if not then try a differnt seting such as wat daywalker suggested network or another type again im not getting into it.

if need be that this does not work then by all means send in wat u think may be the right way of doing things ONLY IF!!! u have tested and this works...

So you're actually sending duplicate packets back to the server? (the one the game normally sends, and the one you've modified?)

I've never even attempted to touch memory, since I think thats the wrong way to do this properly, but if anything it might lead to help in decrypting the network packets.

Do you have an example program/docs on what you do with the memory data? Your overview above is a little vague to get a clear picture on what you're doing.

On a side note - I read in the other forum your credit dupe through packet hacking. Is there anyway we can get a hold of this to figure out what you're doing? You might have stumbled on something we can all expand on. Do share.

yes that is correct daywalker i send duplicate packets back to get a response from both the computer and the server. unfortunatley i have no program/docs i tried doing this already with a program but just around mid way into sending the packets he errors itself saying "line 1 a is incorrect shutting down program" apparently a programming line inserted said something wrong alas i dont kno wat to do so im searching for a new one as we speak. Btw with the memory data wat u usually do is its memory correct now if u were to insert this memory a few times (quite a few to be exact) this would help the server to recgionize that format thus making the memory useful for changin values and such but...alas it is only memory and not anything else though i was thinking the same thing daywalker maybe memory could be more useful towards finding the decryption...
ok for the credit dupe i found A singular Paket with info purtaining to wat credits i had and wat credits were going where and wat i was going to have left so then i inserted a line into the packet that said basically give ex. 3000 credits and since i send it both ways it helped it too work correctly and i got it but...because of this action (the logs on SOE im guessing) i was discovered and told to nevr do this kind of hacking again but BS im not stopping herre not after all this work...

Its probably the duplicate packets that triggered the alarms if SOE contacted you.

Although how are you finding these packets? Looking at data in memory is one thing, but changing a packet seems very odd (since it should be encrypted). This is why i'm curious how you changed the packet, and at what stage.

i.e. Did you use Engage Packet Builder or something like that to resend the network packet? Or did you just change a value in memory that held the value of the current mission or something?

More info you can give, more it will help us.

thats probably wat did do it daywalker with the duplicate packets. apparently believe or not my prog. that i had was able to find packets through the encyrption dont kno y dont kno when but when i was searching as to how nothing was listed obviously the filter was able to use a decrypter and find that packet itself or maybe i didnt look through the decoder list enough (too many too list). btw i changed it in engage but it was weird when i changed it, it was decrypted (probably because the filter tried to find that thing it totally decrypted the packet). so i was thinking i kno ther is definitly a prog. out ther that is able to decrypt anything if my packet searcher was able too so im going to search for it if anyone wants to help then by all means go ahead..

btw WOOT!! 100 POSTS WOOT!!!

If you can email me the programs you use, and what you do - I might be able to figure out how they decrypted them (or at least how they searched for the key).

Sent you a PM anyway (or not - says I can't PM until 30 messages.. doh)

Anyway I can send you my email without posting it?

yea just click on my profile and hit email me! and then we can email back and forth without it being posted on the boards

I know that this project is gonna fail big time!
You are up against SOE & LucasArts
Meaning
SOE = Sony!!!
LucasArts = u are stupid if u don't know!
These are big big BIG companies u are facing.. don't underestemate them!
They update alot.. more than once a day!
u could never do a hack.. maby a hack that lasted for 2-4h..lol

sorry for the bad news.. =P

BTW: by doing the 2-4h hack.. have your bags packed.. u have a little time until police arrives..hahaha

hey at least giving it a try is wat we're doing, and so far no luck...lol

Guys may want to check out: http://mpcheatz.de/mpc/forum/showthread.php?postid=316019#post316019

yes ddh u have made a good post but in any case trieing a few more times always helps even if it wont work, flaws are wat i am looking for and usually those can occur randomly at any second those are wat i look for.

The only thing you are going to accomplish from "packet hacking" is the ability to change what's on your screen. Everything you own, do, change, obtain, lose and check is stored on the game servers. Everything. Period. Dot. [.]

You'll never find a packet that you can manipulate to give yourself more money, stats, items, etc b/c the only packets you are getting to begin with are information about what the server says you have. Packets that are sent back are actions you take and information the client queries. Ever wonder why you can't attack anything when you get disconnected? Your client doesn't initiate the attack, it sends a packet chain to the server to tell it to make you character initiate the attack, then the server sends the information back about the attack so your client can interpret it... hence, lag.

The mission example is flawed b/c you will never see a packet that says +xxxx for the amount of credits you recieve... all of that is on the server and the server sends YOU a packet that says you recieved that much and to update what your client says you have for credits in your bank.

Packet sniffing, while not a complete waste, is largely unproductive towards hacking an MMO these days. At least in the way you are attempting. Unless you hack the servers, you will not be able to give yourself anything that you don't rightfully obtain [except through the use of exploits that take advantage of loop holes or bugs on the server end].

YES!!! SOMONE NOTICED!!!! exploits are wat i look through to change things after all these things as u said are LOOPHOLES which is exactly wat i look for loopholes in the system.

maybe some speed hax could be done, it sounds possible to me.

but u could already do a speed hax from a program.

maybe does the client send the coord (xyz) where he wants to go, and then the server make some basic(realy basic becose it would be prety expencive in memory do perform big tests on every single player move)
so basicaly if u can play w/ that u might find someway to abuse it.

i doubt increasing the computer clock's speed would help here

anyway i quited swg a month ago so i can't test anything anymore.. this game's lifetime is way too short imo