ZenHAX

Free Game Research Forum | Official QuickBMS support | twitter @zenhax | SSL HTTPS://zenhax.com
It is currently Wed Aug 23, 2017 3:53 pm

All times are UTC




Post new topic  Reply to topic  [ 44 posts ]  Go to page Previous 1 2 3 Next
Author Message
PostPosted: Thu Mar 05, 2015 10:09 pm 

Joined: Thu Mar 05, 2015 10:07 pm
Posts: 1
aluigi wrote:
I made some quick tests but at the moment I found no easy solution.
GetP2PSessionState is a debugging feature so it's possible that it has been limited.

Thanks for your work mate, hope you will find solution :)


Top
   
PostPosted: Sun Mar 08, 2015 2:01 pm 
Site Admin
User avatar

Joined: Wed Jul 30, 2014 9:32 pm
Posts: 6459
My guess at the moment is that probably the limitation affect only DOTA2 because this game is just one of the few that uses protocols and APIs that are similar to those of Steamworks but are not compatible.

I tried Spacewar and Alien Swarm and steamuserip worked as usual.

The strong point of this "feature-bug" in Steam was just that DOTA2 is the most played game on Steam and it's free so the chances of finding a player online and, consequently, his IP address are very high.
If DOTA2 can be no longer used... the "feature-bug" becomes no longer useful as before, and it's limited only to the affected games you own.


Top
   
PostPosted: Mon Mar 09, 2015 9:29 am 

Joined: Mon Mar 09, 2015 8:19 am
Posts: 1
Does this still work?
If it does; How do I use it?

The CMD window is opening and closing instantly. I tried running it in admin mode and different compitability modes.
Thanks anyways for releasing,
Zie

_________________
[url]zi3.se[/url]


Top
   
PostPosted: Tue Mar 10, 2015 9:18 am 
Site Admin
User avatar

Joined: Wed Jul 30, 2014 9:32 pm
Posts: 6459
It still works but probably not with DOTA2.

The tool is a command-line program:
http://aluigi.org/about.htm#howuse


Top
   
PostPosted: Sun Mar 15, 2015 1:02 pm 

Joined: Sun Mar 15, 2015 1:01 pm
Posts: 1
need steam resolver... fixed error pls


Top
   
PostPosted: Fri Apr 17, 2015 12:50 am 

Joined: Fri Apr 17, 2015 12:30 am
Posts: 1
Nice work on this subject. It is clear that not every game on steam is affected by this. I was wondering if anyone knows of a way to determine which games are affected. So far I have only been able to get it working on Spacewar and Alien Swarm.

I also have a question about the error:

"Error: Steam is not running"

Code:
C:\Users\xxxxx\Desktop\steamuserip>steamuserip.exe 282350 76561198068958033

steamuserip 0.1
by Luigi Auriemma
e-mail: me@aluigi.org
web:    aluigi.org


Error: Steam is not running


I get this sometimes even though steam is running. For instance, it does it for the NBA 2k15 and GTA 5 appids.

Thanks for your time


Top
   
PostPosted: Mon May 04, 2015 10:12 pm 

Joined: Mon May 04, 2015 10:10 pm
Posts: 2
This is no longer working for me.
It appears that I get a response or more commonly:

Setting breakpad minidump AppID = 271590
Steam_SetMinidumpSteamID: Caching Steam ID: [removed] [API loaded no]
Your ID [removed] - [removed] 1 1 1
Your Name [removed]

"Error: Steam is not running"

Can we please get this looked at by the dev?


Top
   
PostPosted: Wed May 06, 2015 5:06 pm 

Joined: Wed May 06, 2015 5:01 pm
Posts: 3
Hello aluigi,

amazing site you built here.

As we all know steamuserip sadly doesn't work anymore on Dota.

I am wondering if the alternative explained by you in post #2 (Nethook2) is still working?

I did compile Nethook2 and injected it into Steam - but i don't get any P2P-message-protocols dumped.

Maybe you know of any other way to gather the ip address?


Top
   
PostPosted: Wed May 06, 2015 5:22 pm 
Site Admin
User avatar

Joined: Wed Jul 30, 2014 9:32 pm
Posts: 6459
I'm happy to see so much interest about steamuserip, I thought nobody was aware of that method :)

Currently I can't work on this stuff and when I checked it I noticed nothing wrong or to improve in the tool, all the tests gave the same result so I have no suggestions or news about this topic.


Top
   
PostPosted: Wed May 06, 2015 5:36 pm 

Joined: Wed May 06, 2015 5:01 pm
Posts: 3
Thanks for the quick reply aluigi.

I noticed when using the combination of steamuserip and Nethook2 i get said "EMsgClientP2PConnectionInfo"-dumpfiles but they only contain my ip and a random 192.168.x.x address (local something).

So it seems Valve really did a good job on fixing this vulnerability :)


Top
   
PostPosted: Wed May 06, 2015 7:25 pm 

Joined: Mon May 04, 2015 10:10 pm
Posts: 2
I did not see the point about 'it only works on games you own' I was using a testing account that had zero games in it.

This was my problem, it would require me to have significant financial investment in order to scan other games on a secondary account.

Thanks for the app.


Top
   
PostPosted: Sat May 09, 2015 10:55 am 

Joined: Wed May 06, 2015 5:01 pm
Posts: 3
aluigi wrote:
I tried Spacewar and Alien Swarm and steamuserip worked as usual.


Seems they even fixed it for those games aswell!


Top
   
PostPosted: Tue Jul 07, 2015 5:42 am 

Joined: Tue Jul 07, 2015 5:41 am
Posts: 1
Hey, Im new to this and I was just wondering how I use this tool in the first place lol


Top
   
PostPosted: Tue Jul 07, 2015 6:19 am 
Site Admin
User avatar

Joined: Wed Jul 30, 2014 9:32 pm
Posts: 6459
:D
From command-line (Start->Run cmd.exe):
steamuserip <appID> <steamID/64/"">

There are many usage examples just in the above posts.


Top
   
PostPosted: Thu Oct 22, 2015 10:42 am 

Joined: Thu Oct 22, 2015 10:26 am
Posts: 2
aluigi wrote:
From my tests the Counter-Strike series (1, Source and GO) do not seem affected.

A game is vulnerable when it uses the Steam Networking API and it uses AcceptP2PPacketsFromUser with ANY incoming packet, so it's not directly related to the lobbies system.



For csgo, you must join the same lobby and you can spot the ip!


Top
   
PostPosted: Sun Jan 24, 2016 6:48 pm 

Joined: Sun Jan 24, 2016 6:42 pm
Posts: 3
first of all thanks for all the hard work

i tried your first method and i didnt seem to work, can you pls comment on this response i get

/
C:\Users\xxx\xxxx\xxxx\steamuserip>steamuserip 6020 ""

steamuserip 0.1
by Luigi Auriemma
e-mail: me@aluigi.org
web: aluigi.org

Setting breakpad minidump AppID = 6020
Steam_SetMinidumpSteamID: Caching Steam ID: xxxxxxxxxxxx [API loaded no]
Your ID xxxxxxxxxxxx - xxxxxxxxxxx
Your Name xxxxxxxxxxi

### GAME 6020 - Jedi Academy ###
- request list of lobbies:
0 lobbies

- done

steam is running and im inside the game =/


Top
   
PostPosted: Tue Jan 26, 2016 8:56 pm 
Site Admin
User avatar

Joined: Wed Jul 30, 2014 9:32 pm
Posts: 6459
Are you sure the Steam version of JA has been enhanced with the Steamworks SDK?
Maybe it's just distributed on Steam but has no multiplayer features based on it.


Top
   
PostPosted: Wed Jan 27, 2016 6:36 pm 

Joined: Sun Jan 24, 2016 6:42 pm
Posts: 3
you are possibly right, looks like the game multiplayer is separate from steam.

another question about q3noclient, it works only when i host a server from same machine im playing, i was able to disconnected myself, but when i tried with a friend on another server it doesnt work.

looks like there are no hacks,exploits or vulnerabilites in jedi academy anymore. i tried sniffing packets with commview but the UDP stream looks encrypted?
if there are any hacks i dont know about, id like to know about them and test it myself


Top
   
PostPosted: Wed Jan 27, 2016 9:50 pm 
Site Admin
User avatar

Joined: Wed Jul 30, 2014 9:32 pm
Posts: 6459
q3noclient uses a spoofed IP packet, probably you can't send spoofed packets (router, PC, ISP or something else).

Regarding the other vulnerabilities affecting JA, there are some as far as I know but too much time is passed to remember everything.
Maybe use site:aluigi.freeforums.org on Google to search various topics on my old forum that contained many references to bugs in JA and other Q3 games.


Top
   
PostPosted: Sun Jan 31, 2016 6:53 am 

Joined: Sun Jan 24, 2016 6:42 pm
Posts: 3
yes i searched your forums but apperantly all exploits are fixed i mostly by yourself =)

if you have time could you look into JA again for any possible exploit? the game is old, afaik the source code is released and it doesnt get any updates.

im particularly interested in JA moviebattles 2 mod. im really curious thanks


Top
   
Display posts from previous:  Sort by  
Post new topic  Reply to topic  [ 44 posts ]  Go to page Previous 1 2 3 Next

All times are UTC


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Powered by phpBB® Forum Software © phpBB Limited