With evey video my proxy code gets worse and worse. So please don't take it as good example code :D It is just hacked together to work for me. DON'T JUDGE ME!!

One fun note -- the auto item pickup works for other people's drops too! In fact, one person built such a hack and used it during the GitS weekend when we launched the game. We heard complaints from users that drops weren't working and we were worried until we investigated and saw what was happening. Had a good laugh.

A bear drops an ak47 *Soviet union anthem playing in distance*

I love this series! It should be a standard for KZbin content creation. It’s inspired and inspiring.

The holy handgrenade was a refference to Monty python

Everytime you uploaded a video, I really got exicited. I think this channel is my life now. I always learn new stuff. Keep uploading. Thumbs up!

nice I'm loving this series :D

Fun fact. Since movement is done client side, the tcp proxy can be used to fulfill Unbearable revenge on AFK. You simply make code that intercepts your position packets and decreases Z by 200 points. Since positions are handled client side, there's no gravity to fight as the client thinks you're on the ground.

I think the other numbers are the directions of the bears. So position (XYZ) rotation (XYZ). Will you implement a aimbot? Or a command that shoots fireballs like a shotgun?

Your channel is amazing, I have no idea how you have the ability to just keep trying to hack something until you finally manage it.

I am a simple man, I see LiveOverflow, I like Ich liebe diese Serie, ich will mehr!

I want episodes like this one more often.

There is lots of trash with millions of views on KZbin and then there are cherries like this series.

LOVING this series. Big thank you to the channel owner for uploading all this content. Super interesting stuff.

You should find a way to spawn explosions

When you made the resend the fireball, did it spawn from your actor, or from where the actor was when original packet was sent? If it is the 2nd, you could with the knowledge of enemy actor location have a zone wide autokill. start the attack at X,Y,Z + Orientation. This also can give you a way to get that orientation packet figured out.

Pickup Items are definitely _not_ safe when playing multi-player. By guessing drop Id's, you can pick up some other players loot and have it disappear in front of their eyes, if the server does not check which player the request comes from! I actually did something very similar in an online game to accept 'invites' not intended for me, and managed to 'gatecrash' groups - the bug was notified and fixed, but was fun while it lasted. Would have been also good to see multiple fireballs launched at random positions across the island (maybe a ton radiating out from a point - real danger area).

Your videos are epic. Especially this series. Making every little part of security research interesting.

I don't know coding. I have no idea what you're doing. But you're still making it exciting to watch, and explaining it in a very educational way, that makes it easily digestable, even for idiots like me xD

Implement with Packets auto kill bears at their x,y,z locations with auto pickup to have a fully functional bot that will clear the whole region in like 5 seconds.

The holy hand grenade reminds me of a weapon from the Worms series... I was expecting the "hallelujah" sound when he threw it lol

pwn adventure it is much educational and u can learn a lot of things its soo amazing u did the right thing playing this game u r videos becomes more interesting after playin and reverse engineering this game this is soo awesome man

I see German dude talk about very complicated stuff. I subscribe.

This episode you managed to cast a spell to a location, see locations of NPCs AND pick up items. Combine those things and you are able to kill an NPC on spawn and pickup the loot!

make a force field or something like that (kills all the bears in a radius)

The holy hand grenade come from Monty Python and the holy grail

I love your videos so much. Waiting for next one...

Make a series on networking basics as they are the very fundamentals of hacking. You can cover topics like proxies, dns etc

This makes me happy and helps me sleep

With Yaw and Pitch it could be that the devs wanted to save Traffic and shortened the Yaw to the Angle you can look. You cant rotate your head 360° Up and Down ;)

I follow you recently but I am already your fan. You are great!

You can do a couple of other things now: Make a vacuum hack that changes the mob coords to a certain offset from your character coords allowing you to shoot all mobs in range at one spot. Or since you already have autoloot create a fireball at the coords of all the mobs.

Wow, I'm beginning to like this series

Can I subscribe twice?

Going to watch hackers ...😅😅😅

This series is the best

About the position data: I am almost certain the position and rotation in the packets are bundled together into a Quaternions: en.wikipedia.org/wiki/Quaternions_and_spatial_rotation which allows you to describe position and rotation in a 4 element vector

:O The holy hand grenade of Antioch!

MOOORRREEE of these vids! Love them! ❤

awsome, many thank you

Just a heads up, the data following the x y z of some objects is almost undoubtedly the pitch and yaw of the creature as floats and perhaps an animation or action state of some kind. Note that simple objects such as the drops that are round and have no facing direction are lacking those details. I'll wager that after it has been unpacked properly, the chances are good that as soon as the object has spawned, the pitch, yaw, state, or some combination of the three may be initially set to 0 before the object begins to wander. [edit] Well, I decided to try it out and unpack those values but I'm getting junk unless the sample size is just too small. Or perhaps we aren't breaking the fields correctly. Oh, and I suspect that extra 0000 at the end of some of the bears' packets is actually another no_op (keepalive?) packet from the server and not another data field.

For the people that don't know. The holy hand grenade was a reference to. Monty python and the holy grail. specifically this scene kzbin.info/www/bejne/h36cc6ykn81lgs0

bro can u do more hardware reverse engineering coz i really like the way u reverse engineering hardware to why don't u try rtsl-sdr and blade-rf and u know radio hacking and stuff like that amazing videos i swear i can't express the way i feel after watching such amazing educational videos like urs man the way u explain things this is awesome u r one of the best i wish all the best for u man

Would be interesting to see you implement an ESP/Radar with this proxy

This series is really good. I'm this close to try and hack the game!

What do the Holy Hand Grenade's "onShoot" packets look like? Does the client send a velocity/look vector to the server to determine where it goes? Can you spam them via packet spamming? (If you don't know where I'm going with this, if the server isn't doing cooldown checks, and trusts any look/velocity vector, then it might be possible to cover the entire map in Holy Hand Grenades, every proxy tick... ;D )

I think the devs should have gone the extra mile and did a timing check between arming the Holy Hand Grenade (press the button) and throwing it (release the button). Bad things would happen if you didn't follow the holy instructions. ;)

amazing as usual

You're so inspiring ;) Love your videos!

i Love the pwn game Videos because I lern how to make game serversxD

If somebody asked me "I want to get into Game-Development, what should I learn first?" My answer would be "Watch this series!" (Don't know why anybody would ask me that, but anyway ...)

Shouldnt tcp packets get thrown into a buffer before working with them? I am currently working on something like this myself and i noticed that data doesnt have to be exactly what you ask for. The data send can be split up into multiple, or merged into just one packet (imagine the recieved data as [|magic|payloadsize|payload| ) but the size of payload is larger than 4096 or however bytes you have specified to recieve. i am really struggeling to find a good buffer solution that allows me to seek my header information (magic & payloadsize) then check if the actual payload is larger than the recieved packet or buffer and wait for the next packet to resolve everything. there is BytesIO but my while loops dont seem efficient

A bear drops an ak47 ... Is this the old Rust?

12:04 Monty Python reference!

this game still has better code than pubg lol

How about if you could analyze the chat packet so that the client could perform proxy commands for example "§send position-packet 192/168/178" or something like that

print 'server[{}]'.format(self.port), e Statements must be separated by newlines or semicolons Pylance [33,27] where am i doing wrong?

Oh yuss another video

Maybe you could also auto loot the Golden eggs by using the id you get when you join without even visiting the eggs locations.

this series is awesome. please sir, have my sub

What editor do you use? It kinda looks like sublime text

Top work...

Awwwwwesome 👍👍👍

I know the video is pretty old now, but I'm not sure how he managed to get the actual names of the items at 9:14, is anyone able to explain?

its pretty amazing

Holy hand grenade : Monty Python.

i love these videos

Now you can auto-farm items, if you automatically send shoot packets at enemies Maybe the server does not do any(ammo, mana) checks...

couldn't you also just run the proxy on windows (it's python so it should work) or install a linux distro on an usb stick?

you got very emotional about the hackers easter egg but not the monty python holy hand grenade one... I'm very disapointed

Soo, whats your laptop model? I think I have the same

Ist es eig möglich in c++ (wie in Java) Module in anderen Programmiersprachen zu laden? Das wäre extrem nützlich, wenn man zusammen mit freunden an einem Hack arbeitet

just keep the way u r doing things this is mind blowing i feel like u r walking on the steps of geohotz and sami kamkar and a lot af great hackers

Lists are threadsafe in Python, unless you disabled your GIL.

I read title "implementing aimbot" xD

It would be nice if you disabled your spell check in your text editor for those of us with OCD ;)

Soo, just send Pickup-Packet for the Golden Egg IDs upon login?

And for all of you who want to know the soundtrack of Hackers: kzbin.info/www/bejne/mIeQmYadgZaFbZY

Yeah ! :) gj

I think multiple same packets was send when they couldnt reach server.

Well, I just saw the movie... pretty SF

What IDE do you use?

So as you suggested I watched the Hackers from 1995 and I can't find the flag in it. I'm just a rookie in this hacking thing...

Hackers was filmed at my high school :))

Does this work on Windows 10?

Love the videos but 12 minutes is too short for this kind of video.

I didn't understand anything. Enjoyed it nonetheless.

You should program an aimbot, or a killaura.

That's not a queue, it's a stack (FIFO vs LIFO).

Can you show us how you would make an aimbot?

Holy Handgranate is from worms :D

Instant click pretty much

Dont get the reference, I hope I can watch the next video as a whole...

You're german, right?

Can you implement this to PUBG Mobile/PC version, please?

hmm.. h_respawn prints "reload"

Good thing that he is hacking a dead game! *inb4 make a fortnite cheat!*

hi

this game for hacker?

make pubg mobile emulator hack videos