halsten

Hello everybody, it’s time to release some fresh information. This will be the end of this phases of news as the project is somehow finished as only updates will be required for it. A website can be found as well as a forum; which is ready for all of you to register and post your comments, ideas, bug reports, support and criticism. The project package can be downloaded from here.

By the way, for now the project has been targeted on PES (Pro Evolution Soccer) 2008. Other hacks will be available soon.

Take care and have a nice day.

Hello everybody, today I come to you with a very great news. Me and my friend (red dwarf) have finished a working (stable) server for the game and it will be published in the up-coming days. Also, a website will be hosted soon containing a small forum for all of PES users and/or developers to post their feedback, ideas, criticism and bug reports. Remember, your support is heavily required and appreciated for us. In the end, have a great day.

Big news everyone, we were able to crack the protocol’s algorithm and decode the packets. So it’s time to write a basic server for hosting and/or joining sessions. A couple of days and something will be available to preview and/or download. Till then, stay tuned everybody.

Okay, as of now my friend red dwarf has joined me to the journey of reversing Pro Evolution Soccer 6. Currently, we’re working on making a Client/Server Application for Pro Evolution Soccer 6, Pro Evolution Soccer 2008 and probably Pro Evolution Soccer 2009. I don’t have much to show right now because we’re still in the process of reversing and writing some codes. However, as soon as we have some solid information and/or outputs I will publish them as soon as possible.

Also, we have been reversing Pro Evolution Soccer 2008 to make sure that both versions of the game are using the same protocol to communicate with KONAMI servers. Anyways, more information with more details will be published very soon.

There might be a few that likes to play the game. However, to play the game in network mode you have to have a valid username and password. Anyways to cut to the chase, I have been playing around with the EXE file to see if I can get to somewhere. After many attempts of trial and error; I was able to hook the game to sniff the data sent and receifved from the client and the server and then I managed to patch the game to connect to a fake server that I’ve created to see how it was communicating with the server. Unfortunately, the game seems to be using an encrypted protocol to communicate with the server. I will try to post more information about the steps I took so far and the code I have written. But, for now let’s call it a day. Enjoy!

Am back again after a long time. I been busy with a lot of things to be honest, but I will try to keep this blog as much updated as I can. So to keep this short, lately I been spending some time on solving the puzzles found in Facebook in here. I believe they have removed the old ones I have solved and created new ones, and that’s why am leaving the opportunity for anyone who wants to know how to solve them to contact me and I will give them my solutions. The reason for not uploading the solutions directly is because I don’t like people stealing the solutions and directly linking them from other pages. Anyways, anyone who wishes to know how to solve any of the puzzles just let me know and I will try to help as much as I can. And trust me, the puzzles were fun to work on. So have fun and happy coding.

A long time has passed since my first analysis paper, but here is another one. This time it’s short and small. The package contain all the necessary files to get you started on understanding the malware. I hope it’s better than my last paper.

Here’s a simple PE viewer I wrote in wxWidgets framework. I converted this tool from my old console based one. I will keep updating it more when I get more time or if anyone found it interesting.

My very first analysis paper for a malware is finished. The package contains all the information you might need to understand the malware. Be ware that this is the first draft and not the final version yet.

Recently, I been posting about anti-debugging tricks, but I thought I should add them to the one’s already existing in OpenRCE’s  anti-reversing section. Have fun all!