• You've discovered RedGuides 📕 an EverQuest multi-boxing community 🛡️🧙🗡️. We want you to play several EQ characters at once, come join us and say hello! 👋
  • IS THIS SITE UGLY? Change the look. To dismiss this notice, click the X --->

Hex offests? (1 Viewer)

Apoc.Index

New member
Joined
Feb 9, 2011
RedCents
Hey guys, im new here. And while doing some sniffing to find some offsets for eqtitanium unpatched (eqemu p99 server). I have been useing a ton of different tools to sniff them but cant seem to find and hex codeing in the packets for transactions. Such as telling the server I sold an item for 1pp but I actually didnt, in return receiving 1 plat?

I dont even know if its possible to trick the server into it, but It may be? I have found what I think is a small hex crack for small warps?

Maybe a pro could look at it?

00 15 A5 64 (X axis? I think) 69 (Y axis? I think) 32 0E

And just modifying them into say X=50 (80) and Y= 5F (95)? And the sending the packet? I Dont know if it would work, But after just doing a few small movement tests, the pattern seemed to develop within those to bytes. I think I tried 5 times and the patern just scaled in small incriments.

But If anyone knows how to or has Eqtitan offsets (Non patched) for say P99, and would be willing to share info with me. Id be glad to keep working and finsing more offsets. Im just trying to get my foot in the door as bit.

Thanks guys!

Nick
 
Im not useing MQ on P99, the only MQ I have working atm is for SoD non patched, Im just running WPE Pro and givig it rights to attack to eqgame.exe through PermEdit. One im in the game I just Launch the sniffer make a couple actions, movements or a NPC transaction.

The I just look through the packets sent to the server for any sort of pattern, I'll post a example here.

This is the packets sent to the server at spawn loc
00 15 A5 02 60 D0 4C
This is the code after moveing a few stepps forward
00 15 A5 03 0E AD 52
again forward
00 15 A5 03 90 13 11
00 15 A5 03 93 42 AB
00 15 A5 03 95 E7 9E

Next I will try and get the packet for Selling 1 flask of Water to a vendor- but this is tricky because im getting about sending about 6 packets a second to the server, so its hard to filter it.

So this is the Packet log after selling 1 Flask of Water (To the server)

pk-1t) 00 15 A5 05 8C E8 D8 (Location?)

pkt-2) 00 03 A5 04 00 15 05 8E 18 00 09 01 94 1B 6A 36 7A 34 44 3C D0 3F 43 50 C4 7B C2 02 6A 1A 03 19 36 7D 80

pkt-3) 00 03 A5 04 00 15 05 8F 0E 00 09 01 95 5F 6A 41 A3 A8 00 3C A3 A8 00 16 00 09 01 96 13 0E 0A 02 00 00 1B 00 00 00 01 00 00 00 0C 74 34 20 A7 B3

pkt-4) 00 03 5A 78 9C 53 3B 2D 72 98 C5 5C D2 AC CA C4 85 01 05 28 30 D8 5C B0 77 FE BA AE F1 90 18 90 C7 C2 20 CA 3A 81 8F 81 93 71 7A 7C 96 E7 E2 15 0C 36 40 0C 00 5E 9B 0D 30 AC 3B

pkt-5 ) 00 03 A5 0E 00 09 01 98 5F 6A 41 A3 A8 00 3C A3 A8 00 04 00 15 05 91 79 01

I have no idea how to track of filter Packet 2 through 5 to see if its related to the NPC transaction, this is where im stumbling.

My main goal is to just see if you can trick the server on small items (Im sure if you trick small purchased you can trick large purchases) but for practical reasons, I want to keep it small scale.

If anyone can tell me how to find or what to look for in NPC transaction it would really be splended, and if I get it working im deffinetly gonna try and post it here to potentially gain accest to level 2 =D

Another question in reguards to your MQ post, would there be a bennifet to getting a MQ compatible with Titanium? I am not sure if there are utils built into mq2 to modify NPC transactions. If so, I will have to explore that street and see if I can even find a MQ comp thats compatible with Titanium.

Thanks again guys!
 
A) this is a MQ2 comunity, yes there is a EQEMU section in the level 2 forums
B) your using a hex editor... AT MOST i've ever seen them do... change things client side.. no packet changing though....
C) if you do want to change packets... i'd suggest you go through MQ since EQ (even eqemu) has security to make sure simple programs like WPE Pro can't change the packets without crashing the client...

in all this i'd have to say... fork up the $5 to get level 2 access and see if you can figure it out there using MQ2.... as far as hex editing... i have no clue... i just know sturctures in eq read like this

00 00 - opcode
00 00 00 00 - first set of data
00 00 00 00 - second set of data
so on and so on... (some times the opcode isn't required in some opcodes... other times it is... all depends...)
 
Ok, hey thanks for the info. now atleast I know I dont have to waste my times playing with a hex editor. I am extramlly new to it overall, so once again thanks for the input. And I'll have to do some more research and see whats out there.

Thanks!
 
Hex offests?

Users who are viewing this thread

Back
Top