polkaulfield

#IfWinActive, AION Client
#MaxHotkeysPerInterval, 500

*1::s("1")

*2::s("2")

*3::s("3")

*4::s("4")

polkaulfield

;Funcion para calcular la rotacion del pj
playerRotation(xPlayer, yPlayer, xWaypoint, yWaypoint)
{
	
	;Devuelve null si la coordenada de inicio es igual a la del wp
	if (xPlayer == xWaypoint AND yPlayer == yWaypoint)
	{
		return null
	}
	

polkaulfield

;Funcion para calcular la rotacion del pj
playerRotation(xPlayer, yPlayer, xWaypoint, yWaypoint)
{	
	;Devuelve null si la coordenada de inicio es igual a la del wp
	if (xPlayer == xWaypoint AND yPlayer == yWaypoint)
		return null
	
	;Sacar angulos rectos
	if (xPlayer == xWaypoint AND yPlayer > yWaypoint)
		return 0

polkaulfield

;Funcion para moverte a las coordenadas
moveToCoords(xWaypoint, yWaypoint)
{
	loop
	{
		xPlayer := aion.read(xPlayerAddress, type := "Float")
		yPlayer := aion.read(yPlayerAddress, type := "Float")
		rot := playerRotation(xPlayer, yPlayer, xWaypoint, yWaypoint)
		aion.write(camRotAddress, rot, type := "Float")	
		aion.write(moveForwardAddress, 4)				

polkaulfield

// ==UserScript==
// @name          Dojin.co Download Bypass
// @description   Patches the dojin.co website to allow downloads ^^
// @include       http://dojin.co/*
// @grant none
// ==/UserScript==

var links = document.getElementsByClassName("cellInformation_edit_download");
for (i = 0; i < links.length; i++)
{

polkaulfield

#include classMemory.ahk

aionPid := getWindowPid("AION Client (64bit)", 500)
aion := new _ClassMemory("ahk_pid " aionPid)
gameDll := aion.getModuleBaseAddress("Game.dll")

;Cambia aki el hotkey
1::
tX := aion.read(gameDll + 0xE19F88, type:="Float", 0x330, 0x8, 0x178, 0xA0)
tY := aion.read(gameDll + 0xE19F88, type:="Float", 0x330, 0x8, 0x178, 0xA4)

polkaulfield

// Servers

	Login Server: 79.110.83.80
	Game  Server: 79.110.83.77
	Chat  Server: 79.110.83.83

// Filters
	
	Get packets sent to server:
	ip.dst == 79.110.83.77 and ip.src == youraddress

polkaulfield

No.     Time           Source                Destination           Protocol Length Info                                                            Data
      1 0.000000       192.168.1.100         187.45.247.233        TCP      66     60953→7777 [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=4 SACK_PERM=1 

Frame 1: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)
Ethernet II, Src: AsustekC_0f:32:f6 (00:1f:c6:0f:32:f6), Dst: Tp-LinkT_e4:59:36 (74:ea:3a:e4:59:36)
Internet Protocol Version 4, Src: 192.168.1.100, Dst: 187.45.247.233
Transmission Control Protocol, Src Port: 60953, Dst Port: 7777, Seq: 0, Len: 0

No.     Time           Source                Destination           Protocol Length Info                                                            Data
      2 0.116868       187.45.247.233        192.168.1.100         TCP      62     7777→60953 [SYN, ACK] Seq=0 Ack=1 Win=8192 Len=0 MSS=1460 SACK_PERM=1 

polkaulfield

[item:100101425;ver7;搲㉅㑳呂捉⼫㈹捧单㕄䥅噒朵浦䭖湫捉䭕剐㝪⬰䱍㑺䍺捣噅㕺㑇倳㡎潵㍥剖䝄浚㡰坥剷杰剅⽵倷八噒朵浦䭖湫捉䭕剐㝪⬰䩆啙佚湹汚㕈䍃汅含㐯瑃剖䝄浚㡰坥剷杰剅⽵倷八噒朵浦䭖湫捉䭕剐㝪⬰䩆啙佚湹汚㕈䍃汅含㐯瑃剖䝄浚㡰坥剷杰剅⽵倷八噒朵浦䭖湫捉䭕剐㝪⬰䭰瑴浭硸塎乪畡⭧敯奙南;;;]

Just paste this in chat and hover mouse over godstone icon, you get a crash ^^

It's created by setting godstone value to 0xFFFFFFFF on Cheat Engine. Link in chat and extract the string with wireshark or dumping from memory. Maybe remote code execution is possible ¿buffer overflow?. Have fun.

polkaulfield

public static void PacketOrganizer(List<PcapDotNet.Packets.Packet> _rawPacketList, List<PcapDotNet.Packets.Packet> _packetList)
        {
            for (int i = 0; i < _rawPacketList.Count; i++)
            {
                bool _paired = false;
                uint _seq = _rawPacketList[i].Ethernet.IpV4.Tcp.SequenceNumber;
                for (int j = 0; j < _rawPacketList.Count; j++)
                {
                    uint _ack = _rawPacketList[j].Ethernet.IpV4.Tcp.AcknowledgmentNumber;
                    if (_seq == _ack)