Cheat Engine

[Foolers]

I hope my subject fits what I'm trying to figure out.

The server sends an encrypted packet to my computer, and the game I am playing decrypts it some where...

I used Ollydbg and some break points to roughly sketch out in what function this happens in. I have a good idea, but what can I now do with this information? How can I parse the register to read the unencrypted packet? And no, I can't just read the memory, the program uses dynamic memory.

If anyone has any suggestions, I'm open to them

[warfreak]

hi i have same problem but with difrent game

[atom0s]

Depends on the games function itself. In most cases you will have a buffer which will contain the unencrypted packet after the decryption was applied. In a lot of games that I've messed around with the decryption functions will usually take 4 params, something on the lines of:

decrypt_packet( size1, buffer1, size2, buffer2 )

size1 = encrypted packet size
buffer1 = encrypted packet buffer
size2 = decrypted packet size
buffer2 = decrypted packet buffer

(Keep in mind it might not be setup exactly the same and such.)

The packet size can be contained in the packet itself as well, some games append the size at the end, or to the beginning after the packet is encrypted too.

Follow the function back to what calls it and check the params. Then follow the function through and break at the end and recheck the params. In most cases you can find which param was a buffer for the decrypted packet.

The game might also use a static container for decrypting the packets, just look through the function you assume is doing the work.

Once the packets are decrypted, you can do a lot with them. As long as you reverse their information and are able to distinguish between packets you can write a bot to monitor for specific packets, do actions when a given packet is found etc.