| 04-18-2002, 04:27 AM | #1 |
Guest | This is only a *INGAME* packet, although I have outofgame packets decoded, PM me if you need it. I didnt think you guys would want it. This is brought to you by Noodlez of Warzone (www.wc3warzone.com) The same guys who brought you the packet sniffer, and are gonna bring you WC3hackit Ok this is an example of a WC3 packet. Code:
0x0000 00 04 5A 4C 83 3F 00 02-3B 00 32 53 88 64 11 00 ..ZLƒ?..;.2Sˆd.. 0x0010 17 93 00 30 00 21 45 00-00 2E E8 9A 00 00 73 06 .“.0.!E...èš..s. 0x0020 65 83 3F F1 53 CB 42 F5-22 FB 17 E0 0B C3 96 94 eƒ?ñSËBõ"û.Ã*.Ö” 0x0030 2E 69 93 13 14 3B 50 18-FE BA 2F 62 00 00 F7 0C .i“..;P.þº/b..÷. 0x0040 06 00 FB 00 ..û. Now I'll take it apart piece by piece :) 00 04 5A 4C 83 3F: The destination MAC 00 02-3B 00 32 53: The Source MAC 88 64: The Ethertype 11: The frame version 00: Code 17 93: Session ID 00 30: Length 00 21: PPP Protocol 45: Ip version 00-: Type of service 00 2E: Total length ID: E8 9A 00 00: Flags 73: Time to live 06: Protocol 65 83: Checksum 3F F1 53 CB: Source IP 42 F5-22 FB: Destination IP 17 E0: Source Port 0B C3: Destination Port 96 94 2E 69: Sequence 93 13 14 3B: Acknowledgment 50: Header Length 18: flags FE BA: Window 2F 62: Checksum 00 00: Urgent Pointer F7 0C 06 00 FB 00: Data Length So.... destMacsrcMactheEthertheFrameCodesessionIDLengthpppProtocolipVersiontypeOfServicetotalLengthiDFlagsT imetoliveProtocolChecksumSourceIPDestIPSource PortDestPortSequenceAcknowledgeHeaderLengthFlagsWindowCHecksumUrgentPointerDatalength and there you have a wc3 packet. i hope this was good info this was done with assitance from commview :) maybe this could be stickied for those elite packet kiddies that have a use for this :) and maybe now you understand the packets that are being sniffed with chaotechs sniffer. -Noodlez |
| 04-18-2002, 04:30 AM | #2 |
btw, that was me :) (noodlez) |