Page 1 of 6 123 ... LastLast
Results 1 to 10 of 53
  1. #1
    WAZAAAAA
    WAZAAAAA is offline
    New member WAZAAAAA's Avatar
    Join Date
    2010 Dec
    Posts
    4
    Thanks Thanks Given 
    2
    Thanks Thanks Received 
    0
    Thanked in
    0 Posts
    Rep Power
    0

    Question X-Trap bypassing in Divine Souls problem

    So, finally, the Open Beta of Divine Souls, Action MMO game from OutSpark and GamePrix companies started today after its two Closed Beta phases.

    Before the OB there was no working protection in the background and the game was easily hackable, but now they have finally implemented a protection.

    I've tried in OllyDBG to NOP the XTrapVa.dll call (the DLL that triggers other XCrap functions), the game could start, but it closed itself after a very short time. Nextly, I've NOPed it again, but this time I also NOPed a check in the client that checked if XCrap was running (at least I think)... the game could start, "copyright marks" loaded (OutSpark hosters, the developers blabla) but then the game gets stuck in a black screen (not responding) instead of getting into the server selection screen.
    This is my semi-bypassed client, my current progresses: mediafire.com/?8i9hqnip4gozeji
    It shouldn't be that hard... the exe isn't even encrypted, and it uses a simple IsDebuggerPresent function as anti-debugger (I think).

    Random notes:
    -If you start the game from the OutSpark launcher, the X-Trap checksum will run and detect every change to the XCrap files and update them.
    -If you start the game directly from the client, the X-Trap protection will start directly with no checksum performed and you will "land" on the server selection screen (you won't be able to login and play with your account though, since the launcher gives you the parameters for the log in).



    Could anyone shed some light on this?
    Thanks in advance.

  2. #2
    falc0n
    falc0n is offline
    Member-in-training
    Join Date
    2010 Aug
    Posts
    64
    Thanks Thanks Given 
    0
    Thanks Thanks Received 
    0
    Thanked in
    0 Posts
    Rep Power
    0
    Or better yet, there's more than one way to skin a cat.

    Why don't we just attack the game WITHOUT removing it's shield?

    You can always stab the knight even if he has a shield? :S You don't necessarily have to remove it's shield before stabbing it.

  3. #3
    Dwar
    Dwar is offline
    Veteran Dwar's Avatar
    Join Date
    2010 Mar
    Posts
    2,222
    Thanks Thanks Given 
    211
    Thanks Thanks Received 
    2,230
    Thanked in
    292 Posts
    Rep Power
    10
    Quote Originally Posted by WAZAAAAA View Post
    This is my semi-bypassed client
    It's peace of cake to remove xTrap, but all new xTrap versions has server ping (heartbeat packets), so without emulation you are unable fully bypass this protection

    Quote Originally Posted by falc0n View Post
    You don't necessarily have to remove it's shield before stabbing it.
    Completely agree, but it would work only if you know bugs and have hacks which can be implemented via dll injection etc. But for game analyzing (finding bugs etc) removing protection is a good way... certainly, it's also possible to use Ollydbg simultaneously with xTrap
    Please, post your questions on forum, not by PM or mail

    I spend my time, so please pay a little bit of your time to keep world in equilibrium

  4. #4
    Bradwashere
    Bradwashere is offline
    Guest
    Join Date
    2010 Dec
    Posts
    1
    Thanks Thanks Given 
    0
    Thanks Thanks Received 
    0
    Thanked in
    0 Posts
    Rep Power
    0
    Dwar are you working to bypass it?

  5. #5
    WAZAAAAA
    WAZAAAAA is offline
    New member WAZAAAAA's Avatar
    Join Date
    2010 Dec
    Posts
    4
    Thanks Thanks Given 
    2
    Thanks Thanks Received 
    0
    Thanked in
    0 Posts
    Rep Power
    0
    Do you guys mean I that I should find an alternative way for it... like removing every Close function in the client? Or make my own UCE?

    Just wondering Dwar... do you pause the X-Crap process in order to run it with Olly?


    And thanks, I will retry bypassing it when I can.

  6. #6
    Dwar
    Dwar is offline
    Veteran Dwar's Avatar
    Join Date
    2010 Mar
    Posts
    2,222
    Thanks Thanks Given 
    211
    Thanks Thanks Received 
    2,230
    Thanked in
    292 Posts
    Rep Power
    10
    Quote Originally Posted by WAZAAAAA View Post
    I will retry bypassing it
    As was saying, without emulator your client will be disconnected from server within 5-10 sec.
    Quote Originally Posted by WAZAAAAA View Post
    do you pause the X-Crap
    Nope Try to tune your Ollydbg
    Quote Originally Posted by Bradwashere View Post
    Dwar are you working to bypass it?
    Yeah, also Aika, MartialEmpires, FirstOfFu and some other clients
    Please, post your questions on forum, not by PM or mail

    I spend my time, so please pay a little bit of your time to keep world in equilibrium

  7. #7
    falc0n
    falc0n is offline
    Member-in-training
    Join Date
    2010 Aug
    Posts
    64
    Thanks Thanks Given 
    0
    Thanks Thanks Received 
    0
    Thanked in
    0 Posts
    Rep Power
    0
    Quote Originally Posted by Dwar View Post
    It's peace of cake to remove xTrap, but all new xTrap versions has server ping (heartbeat packets), so without emulation you are unable fully bypass this protection


    Completely agree, but it would work only if you know bugs and have hacks which can be implemented via dll injection etc. But for game analyzing (finding bugs etc) removing protection is a good way... certainly, it's also possible to use Ollydbg simultaneously with xTrap
    Ollydbg simultaneously with xtrap is definitely possible. I've used that method in all my games. Then use ollydbg to extract hacks from the game and code it in a DLL.

    However, for a game like this I'd rather use structures by finding stats etc.

    I'm just using a memory editor I made at the moment which isn't detected for some reason XD

  8. #8
    DoNatz
    DoNatz is offline
    Member-in-training
    Join Date
    2010 Dec
    Posts
    75
    Thanks Thanks Given 
    3
    Thanks Thanks Received 
    32
    Thanked in
    18 Posts
    Rep Power
    0
    Me and a friend of mine are Working on a bypass too .. we successfully disabled the initialisation of it but now the client closes b4 login screen.
    We also traced back the call where the sockets are closed and the game is exited but until now we couldnt locate the check to prevent this <.<

    at falc0n: i would be interested in your memory editor .. i tell you some neat hacks in return (including stamina, dmg and money)
    at Dwar: injecting dlls is detected after entering the world .. already tried that (injecting directly after EP and using a proxy dll neither works ..)
    Last edited by DoNatz; 2010-12-17 at 05:15 PM.

  9. #9
    WAZAAAAA
    WAZAAAAA is offline
    New member WAZAAAAA's Avatar
    Join Date
    2010 Dec
    Posts
    4
    Thanks Thanks Given 
    2
    Thanks Thanks Received 
    0
    Thanked in
    0 Posts
    Rep Power
    0
    Packets emulating QQ out of range for me I guess :\

    Quote Originally Posted by Dwar View Post
    Nope Try to tune your Ollydbg
    Are you refering to the usage of plugins like StrongOD and Phantom Olly?

    Quote Originally Posted by falc0n View Post
    Ollydbg simultaneously with xtrap is definitely possible. I've used that method in all my games.
    Explain guys T_T

    So you say that I should hack the game without disabling totally the protection... how am I supposed to do it with xTrap that protects the game memory and makes DLL injections void?

    I thought it was way easier :/...





    EDIT:
    Well, just in case someone finds something, keep me updated.
    Last edited by WAZAAAAA; 2010-12-19 at 04:30 AM.

  10. #10
    DoNatz
    DoNatz is offline
    Member-in-training
    Join Date
    2010 Dec
    Posts
    75
    Thanks Thanks Given 
    3
    Thanks Thanks Received 
    32
    Thanked in
    18 Posts
    Rep Power
    0
    no progress yet ..

Page 1 of 6 123 ... LastLast

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •