Luigi Auriemma

aluigi@autistici.org

News

Advisories

Proof-of-concepts

08 Feb 2010 Patches: EA games fesl.ea.com certificate verification remover 0.1: this modification removes the verification of the SSL certificate sent by the *.fesl.ea.com server (port 18240 and possibly others) when an EA game logins on it
04 Feb 2010 Research: QuickBMS generic files extractor 0.3.14b: added the copy compression that could be useful in rare cases when handling data encrypted with block ciphers like AES and blowfish
04 Feb 2010 Research: QuickBMS generic files extractor 0.3.14a: now the ivec in Encryption can be also a variable (useful for decrypting the xbo files of VBS2)
01 Feb 2010 Research: QuickBMS generic files extractor 0.3.14: added tons of new compression algorithms and the 'u' option in the Math command for forcing the unsigned operations
25 Jan 2010 Research: QuickBMS generic files extractor 0.3.13: added only an additional work-around useful with some XMemDecompress streams, the possibility of specifying a wildcard for ScanDir not only through -F but also in the same script, bzip2_file for decompressing bzip files without knowing their output size, -a option for specifying variables visible inside the bms scripts, this allowed to use a new comtype_scan2.bms script for testing all the supported compressions without editing it
16 Jan 2010 Research: FSB files extractor 0.2.8: fixed only the right creation of the header for the XMA and Gamecube/Wii files (-a option)
16 Jan 2010 Research: XWB/ZWB files unpacker 0.3.3: fixed only the right creation of the header for the XMA files
15 Jan 2010 MyToolz: PackZip 0.2: finally I have replaced the old zlib library with the better algorithm used in 7zip which allows more compression
05 Jan 2010 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.5: added compatibility for the protocol of SA:MP 0.3a
05 Jan 2010 Research: Fast Optimized MD5 for short strings 0.1: optimized MD5 algorithm for input data of max 15 bytes that I reversed from alglib0.dll of the RainbowCrack Project
01 Jan 2010 Research: QuickBMS generic files extractor 0.3.12b: added only the CRI CPK compression
30 Dec 2009 Research: QuickBMS generic files extractor 0.3.12a: some enhancements for the rebuild mode (-w option), the rest is untouched
23 Dec 2009 Password_recovery: CuteFTP data retriever and password decoder 0.1.2: fixed some bugs in the parsing of sm.dat
21 Dec 2009 Research: QuickBMS generic files extractor 0.3.12: added the GetBits command, the possibility of calling functions without restoring the variables at the moment of the call, removed the problem of using the Log commands with filenames that have a number as first char
18 Dec 2009 Research: QuickBMS generic files extractor 0.3.11: added the CryptDecrypt and CryptUnprotect encryptions, some new compression algorithms (prs, puyo and falcom) and some enhancements
09 Dec 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9c: added the key of Rise of the Pirate God
07 Dec 2009 Research: Gslist 0.8.8a: updated some components like the download library and the drive scanner for gslistweb and a couple of compatibility changes (for example the not much supported %hhu printf type substituited with %u)
07 Dec 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4.1a: I have ONLY changed Z_DEFAULT_COMPRESSION to Z_BEST_SPEED in rebuild mode, this is done to prevent a bug of the game (NOT of my tool) that crashes on slow computers even with the original packages (thx JH Im)
02 Dec 2009 Research: QuickBMS generic files extractor 0.3.10: added the xxtea encryption, calldll with memory_file, asking of deleting the TEMPORARY_FILE if used, possibility to use stdin as input file (use -), the For instruction now can be initialized with any math operation (example: For i -= 10 To FILES), Put/PutDString/PutCT commands which allow to write inside a file/memory_file, compression algorithm used in STALKER and some minimal things (for example: Set VAR1 = VAR2)
27 Nov 2009 Research: QuickBMS generic files extractor 0.3.9a: added only the yuke_bpe compression algorithm
22 Nov 2009 Research: QuickBMS generic files extractor 0.3.9: added two new compressions, fixed a DEP compatibility in the CallDll command and added another path for searching the dll to import, added the possibility of using a variable or memory file in the Encryption command, the SCRIPT MESSAGE alert showed by the Print command is now placed on stderr
12 Nov 2009 Research: QuickBMS generic files extractor 0.3.8a: fixed a bug in the algorithms used in OpenSSL where the non-padded data was wrongly decrypted at the end, major DEP compatibility with the imported dumped functions (like tzar_lzss, unlz2k and so on), a possible minimal speed/memory improvement and added the compression used in Dungeon Keeper 2
10 Nov 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9b: added support for CSI4 retail (gamenum 30)
10 Nov 2009 MyToolz: BDE64 0.2.1a: added only the decoding of the two different chars (-_ instead of +/) used in the base64 of the HTTP URLs
10 Nov 2009 Password_recovery: PartyGaming password decrypter 0.1.1: added the scanning of the PartyGamingNet registry key used in PartyPoker.net
09 Nov 2009 Research: QuickBMS generic files extractor 0.3.8: added tons of new compression algorithms included the conversion of any base (like base2/binary, base8, base32 and so on), better disposition of the source code, implemented the scanning feature for all the compression algorithms
07 Nov 2009 Research: Cauldron FS files extractor 0.2a: micro fix for recognizing some rare and unofficial files
04 Nov 2009 Research: QuickBMS generic files extractor 0.3.7: added various compression algorithms (like deflate64 and ppmd) and some usual small enhancements/fixes
01 Nov 2009 Password_recovery: NewsLeecher files decrypter 0.1.1: small compatibility fix for the recent 4.x beta
01 Nov 2009 Research: ISI rFactor files decrypter/encrypter 0.1.6: added support for Superleague Formula
01 Nov 2009 Research: ISI rFactor //[[gM files decrypter/encrypter 0.2b: added the key number of Superleague Formula in the list at runtime
31 Oct 2009 Research: QuickBMS generic files extractor 0.3.6: fixed and optimized the scanning of the input folder, added the manual choice of an alternative filename if the one got from the archives can't be saved and added a couple of non-important compressions and encryptions
30 Oct 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9a: added the key of The Trial and Execution of Guybrush Threepwood
29 Oct 2009 Research: QuickBMS generic files extractor 0.3.5a: better support of files bigger than 2 gigabytes
28 Oct 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9: added CSI 5 Deadly Intent and solved a bug in the modified blowfish algorithm (don't worry I have already personally verified each file extracted from the recent games for excluding any problem/corruption)
27 Oct 2009 Research: QuickBMS generic files extractor 0.3.5: added the ICE encryption, uuencode, ascii86, yenc, compression used in the games of 49Games, mszh, the fullname data type, changed the behaviour of the not and negation operators in Math since now it's taken var2 as input (so now are used both the variables) and added the N (negative) and A (absolute) operators
20 Oct 2009 Research: QuickBMS generic files extractor 0.3.4b: added only the simple compression algorithm used in Dark Sector (use zip.bms to extract its files)
20 Oct 2009 Research: Traveller's Tales games DAT files extractor: QuickBMS script for extracting the files from the DAT archives of games like LEGO Batman/StarWars/Indiana Jones and Transformers
18 Oct 2009 Research: QuickBMS generic files extractor 0.3.4a: substituited the strdup function due to its different behaviour on *nix and enabled the usage of lz2k also on *nix
17 Oct 2009 Research: QuickBMS generic files extractor 0.3.4: added support for plugins and/or custom functions through the CallDLL command, added the unmeng and unlz2k compressions, added a fake 64bit type of variable (fake because QuickBMS works only with 32bit numbers)
12 Oct 2009 Research: QuickBMS generic files extractor 0.3.3: implemented all the encryption functions of OpenSSL through its great EVP interface, added some new compression algorithms, added some enhancements like the configuration of the lzss parameters and PutVarChr which auto-reallocate the variables
07 Oct 2009 Research: QuickBMS generic files extractor 0.3.2: added the compressions huffboh, ucl/nrv, dmc, uncompress/lzw, lzhuf, lzari, rle7, rle0, rle, added the encryptions twofish, cast5, seed, serpent, aes-cfb128, fixed lzssboh and idea, added a new switch in Encryption for selecting the encryption mode (default is decryption), added the possibility of specifying a dictionary for the lzo and zlib/inflate compressions, added the visualization of the elapsed seconds for the extraction
07 Oct 2009 MyToolz: Lame Patcher 0.4.3a: only added the possibility of specifying also the name of the file to patch at command-line
02 Oct 2009 Research: Race WTCC files encrypter/decrypter 0.2.5: added support for Race On
30 Sep 2009 Patches: q3rcon patch 0.1.2a: added support for CoD4 1.7 for linux
29 Sep 2009 Research: QuickBMS generic files extractor 0.3.1: added a check to avoid to use file numbers not opened and added support for other compressions: rlew, lzjb, sfl (block/rle/nulls/bits) and lzma2
29 Sep 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.8: added support for Lair of the Leviathan
29 Sep 2009 Research: HLSWlist 0.1.1a: added only Wolfenstein to the list, remember that it's not necessary that the game is in the list because it's enough only to know its gamename (Wolf09 in this case)
28 Sep 2009 Research: QuickBMS generic files extractor 0.3: added documentation, added xor, rot and charset as parts of the Encryption command, now the input can be both an archive and a folder containing more archives
26 Sep 2009 Research: Ventrilo RCon tool 0.2.9a: only a microfix in the -R option and the usage of "proto >= 3" in the code
26 Sep 2009 MyToolz: webimgms 0.1.2b: Vista compatibility for the scanning of the folder
26 Sep 2009 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1.3b: Vista compatibility for the scanning of the folder
26 Sep 2009 Research: Falcom YS games XSO files extractor and rebuilder 0.1.1b: Vista compatibility for the scanning of the folder
26 Sep 2009 Research: THPS HED/WAD files extractor/builder 0.2a: Vista compatibility for the scanning of the folder
26 Sep 2009 Research: WorldShift XE files rebuilder 0.1b: Vista compatibility for the scanning of the folder
26 Sep 2009 Research: BOR PAK extractor/builder 0.1a: Vista compatibility for the scanning of the folder
26 Sep 2009 MyToolz: CmdDiz 0.1.2b: Vista compatibility for the scanning of the folder
23 Sep 2009 Password_recovery: Steam password decoder 0.2.4: added the decryption of the ConnectCache cookies used by Steam beta (totally useless) and added some command-line options for the decryption of custom fields like Key and AccountRecordData and their dumping in a file because these fields contain raw data
20 Sep 2009 Research: QuickBMS generic files extractor 0.2.4a: nothing changed, has been only removed xcompress.h
19 Sep 2009 Research: QuickBMS generic files extractor 0.2.4: solved a small bug when a compressed file has a size equal to zero, added support for XMemDecompress and some lzw variants, added the idea encryption. released also the script for extracting the files of Need for Speed: Shift
18 Sep 2009 MyToolz: DAA2ISO / GBI2ISO 0.1.7e: again nothing new, added automatic support to a strange signature so that it's not needed to press Y when requested to continue with the extraction (thx Josh Freeman)
17 Sep 2009 Advisories: Files uploading vulnerabilities in the Source engine: the file deletion bug has been NOT fixed by Valve, they simply filtered the filenames with a slash/backslash at the end so it's still possible to delete the files in the game's main folder
16 Sep 2009 MyToolz: DAA2ISO / GBI2ISO 0.1.7d: nothing new, if the input file has an invalid signature the tool asks if you want to continue its handling which "could" be useful in some very very rare cases where the signature is damaged and even the original programs can't read them
14 Sep 2009 Research: Peerchat IP decoder/encoder 0.3: added support for the encoding/decoding of the users channels/room on Peerchat
14 Sep 2009 Research: Peerchat IP encoding/decoding algorithm 0.2: added support for the encoding/decoding of the users channels/room on Peerchat
12 Sep 2009 MyToolz: DirComp 0.2.1: added compatibility with Vista
12 Sep 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4.1: solved a bug in the rebuilding function
12 Sep 2009 Research: ISI rFactor files decrypter/encrypter 0.1.5: added support for those GMT files used in TopRace 2009 with the CHTN1R1 signature
11 Sep 2009 Research: ISI rFactor //[[gM files decrypter/encrypter 0.2a: nothing new, I have only added the key number of Top Race Simulador 2009 (0x000dfc2a) in the list of -k option
10 Sep 2009 Research: AWCamREC 0.2.1d: updated the address of the new host to which connect
10 Sep 2009 Advisories: Access violation in Ventrilo client 3.0.5 with Speex codec
08 Sep 2009 Advisories: Voice memset overflow in Ventrilo client 3.0.5
05 Sep 2009 Research: ISI rFactor files decrypter/encrypter 0.1.4: added the signature of Top Race Simulador 2009
05 Sep 2009 Fake_players_bug: Live for Speed Fake Players DoS 0.2.3: added support for the internet authentication
03 Sep 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4: solved a big error in the extracting of the files, now both extraction and rebuilding are perfects
02 Sep 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor 0.3: better documentation of the format and added options for listing and filtering the files and an experimental one for rebuilding the archive if the version of the game no longer allows the loading of the files from its folder
01 Sep 2009 Research: Live for Speed setups dumper 0.1: decrypter of the setups received from the server which allows to save the setups of the other players
29 Aug 2009 Research: EA Games CRC and packets encryption 0.1: the simple encryption and CRC algorithm used in the packets of games like Middle-Earth II, Command & Conquer 3 and Red Alert 3
25 Aug 2009 MyToolz: Lanfile 0.1.3: added the -f option which must be manually enabled on both the endpoints and activates a particular mode where multiple files are sent faster (because there is no need to send the confirmation byte for each file) and added the rc4 encryption with -c
25 Aug 2009 Research: PunkBuster online GUID checker 0.1.9: added Wolfenstein (wolf) and removed the old games which no longer use or have never used PB
25 Aug 2009 Research: Call of Duty series mpdata decrypter/encrypter 0.1.1a: nothing new, I have simple substituited the alert showed when the hash doesn't match with an error and an invite to verify the correct length of the cdkey (16 chars for cod4 and 20 for codwaw)
23 Aug 2009 Advisories: Server restart in Live for Speed S2 Z13: not a real vulnerability, reported for thoroughness
23 Aug 2009 Fake_players_bug: Live for Speed Fake Players DoS 0.2.2: updated the protocol for supporting version Z
21 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.7a: corrected the key of Strong Bad episode 1
21 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.7: solved the wrong chunk size implemented from the archives of version 7, anyway only the texture archive (*_tx.ttarch) of the last 2 games of TellTale had this problem so all the other files weren't affected
21 Aug 2009 Advisories: Source engine build 3933: updated almost all the advisories and proof-of-concepts to match the build version 3933 which is the latest known release of the Source engine and which is used in games like Orangebox and Team Fortress 2. Only the sourcenotvnull vulnerability doesn't affect this build
20 Aug 2009 MyToolz: Lanfile 0.1.2a: added compatibility with Vista
20 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.6: added support for the new TellTales game, added the -x option which avoids to manually editing the bytes at offset 0x20 and 0x24, now the rebuilding works also on Vista
20 Aug 2009 Password_recovery: Trillian Astra password decoder 0.2: added support for Astra
20 Aug 2009 Advisories: Fragments memory corruption in the Source engine (build 3698)
19 Aug 2009 Advisories: Files uploading vulnerabilities in the Source engine (build 3698)
18 Aug 2009 Advisories: NULL pointer in the Source engine (build 3698) with SourceTV disabled: another vulnerability affecting Counter-Strike Source, Half-Life 2 and other games
17 Aug 2009 Advisories: Format string in the Source engine (build 3698)
16 Aug 2009 Password_recovery: Gizmo password decrypter 0.1: decrypter for the Gizmo5 password located in AppSettings.xml
14 Aug 2009 Advisories: Multiple NULL pointers in Sniper Elite 1.0
13 Aug 2009 MyToolz: Simple UDP proxy/pipe 0.4.1: now it can use the plugins written for Proxocket (mysendto and myrecvfrom)
13 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.5a: substituited the key of the game Fright of the Bumblebees with the correct one (previously was used the one of the demo)
12 Aug 2009 Advisories: Format string in Vietcong 2 1.10
12 Aug 2009 TestingToolz: FindBits 0.2.2: better visualization of the values with option -s where have been added also the string and binary output and some enhancements and one small fix
11 Aug 2009 Advisories: Multiple vulnerabilities in the GEM 2 engine
09 Aug 2009 Password_recovery: Orbit Downloader password decrypter 0.1: decrypts the passwords stored in sitelogin.dat
09 Aug 2009 Advisories: Denial of Service in PunkBuster: an update for the old advisory released many months ago since I have found another way to have a similar effect
09 Aug 2009 Advisories: Buffer-overflow in PunkBuster 1.728 for Soldier of Fortune II
07 Aug 2009 Advisories: Clients NULL pointer in TrackMania 2.11.19
07 Aug 2009 Advisories: Unbannable clients and bell bug in TrackMania Forever v2009-08-01 / 2.11.19
07 Aug 2009 Fake_players_bug: TrackMania Forever Fake Players DoS 0.1: only a basic reference code for the protocol
04 Aug 2009 Password_recovery: Total Commander password decrypter 0.1: decrypter for the password stored in wcx_ftp.ini and possibly others
04 Aug 2009 Advisories: Clients termination in TrackMania Forever 2.11.19
04 Aug 2009 TestingToolz: One file only web server 0.2: a small update for this basic tool for being able to test the new bug in TrackMania
30 Jul 2009 Research: FSB files extractor 0.2.7a: only two micro fixes about the recognizing of the FSB sign and the filling of 32 bytes in case of no coefficient in genh_header
30 Jul 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.5: added support for The Bogey Man
27 Jul 2009 Research: GS enctypeX servers list decoder/encoder 0.1.3: added the encryption function
27 Jul 2009 Advisories: Multiple vulnerabilities in TrackMania Forever v2009-05-25
24 Jul 2009 Advisories: Access violation in Star Wars Battlefront II 1.1
24 Jul 2009 Patches: Star Wars Battlefront II 1.1 seven guests fix 0.1
24 Jul 2009 Fake_players_bug: Star Wars Battlefront 1 and 2 Fake Players DoS 0.4: updated for fully supporting SWBF2
24 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.2.1: added the handling of the tcpdump files (the sniffed sessions generated by wireshark), added the authomatic decompression of the zipped authentication data when is not used the -f option (so in visualization mode only) and allowed the visualization of the data which is not-encrypted
22 Jul 2009 Advisories: Buffer-overflow in S.T.A.L.K.E.R. Clear Sky 1.5.10
22 Jul 2009 Advisories: Unhandled malloc exception in S.T.A.L.K.E.R. Clear Sky 1.5.10
22 Jul 2009 Advisories: Unhandled exception in S.T.A.L.K.E.R. Clear Sky 1.5.10
21 Jul 2009 Advisories: Temporary freezing in Crysis 1.21 and Crysis Wars/Warhead 1.5: B-series vulnerability (imho) reported only for thoroughness with the research of these days
21 Jul 2009 Advisories: Format string in Crysis 1.21 and Crysis Wars/Warhead 1.5
20 Jul 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.4: solved a bug in ttarch_meta_crypt where in some rare cases was decrypted an additional block of the file corrupting it, added some additional fields in the rebuilding of files of version 2, added the usage of ttarch_meta_crypt also in rebuild mode otherwise some files looked corrupted, in extraction now the offsets of the non-compressed archives are showed as absolute (so 00112233 instead of 0 for the first file)
20 Jul 2009 Advisories: Access violation in the HTTP/XML-RPC service of Crysis 1.21 and Crysis Wars/Warhead 1.5
19 Jul 2009 Research: TNTFOLDER files decrypter/encrypter 0.3: rewritten in most parts because the previous (jurassik) version was so bugged that it didn't work too, sorry for the inconvenience
18 Jul 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.3: added the -b option for rebuilding the ttarch archives
18 Jul 2009 Advisories: Negative memcpy in Armed Assault 1.14 and ArmA 2 1.02
18 Jul 2009 Advisories: Format string in Armed Assault 1.14 and ArmA 2 1.02
18 Jul 2009 Advisories: Memory bug in Armed Assault 1.14 and ArmA 2 1.02
16 Jul 2009 Advisories: Wrong type assert in World in Conflict 1.0.1.1
16 Jul 2009 MyToolz: Mydown 0.2.6: added the -M option which allows to download the same file from multiple mirrors and separated the mydown package from the mydownlib one
16 Jul 2009 TestingToolz: UDPSZ 0.2.2e: the -p option allows to send packets from an UDP port already in listening mode
15 Jul 2009 Advisories: Negative memset overflow in America's Army 3 3.0.5
15 Jul 2009 Research: Leverage ssc functions 0.1a: nothing new, I have only added the ascii_calculate_hash and ascii_calculate_key_hash for thoroughness
15 Jul 2009 Advisories: NULL pointer and access violation in America's Army 3 3.0.5
14 Jul 2009 TestingToolz: Generic custom HTTP file uploader 0.2: added form-name and button-name as required arguments, added the possibility of adding custom forms and values (thx katz) and fixed a bug
14 Jul 2009 Advisories: Packets loop in America's Army 3.0.5
14 Jul 2009 TestingToolz: UDPSZ 0.2.2d: solved a bug in the usage of a big file (-f) specifing a small packet size
14 Jul 2009 Research: Leverage ssc functions 0.1: the ssc_decrypt and ssc_encrypt functions used in the Leverage library adopted in games like America's Army 3 and ARCA Sim Racing
14 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.2: added options for dumping the decrypted data in a file and for encrypting the input file and fixed a bug in the handling of the offset values
14 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.1.1: added the ability of chooing a custom key useful for the encrypted information replies implemented from AA3 3.0.5
13 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.1: simple tool for decrypting any encrypted communication (saved as a file) with the authentication server of America's Army 3 auth.aa3.americasarmy.com
13 Jul 2009 Advisories: Resource consumption and crash in America's Army 3 3.0.5
13 Jul 2009 Patches: America's Army 3 3.0.4 ut3sticle fix 0.1
13 Jul 2009 Proof-of-concepts: Server termination in Unreal engine 3 0.1.1: added support for America's Army 3 which is vulnerable too
13 Jul 2009 Proof-of-concepts: ut3mendo 0.1.1: added support for America's Army 3 (test attack 3) which is vulnerable too
12 Jul 2009 Research: Test Drive Unlimited savegames/files decrypter/encrypter 0.1: quick tool for decrypting and re-encrypting the files in the playersave folder of the user and the btrq, db and any other encrypted file of this game
11 Jul 2009 Research: QuickBMS generic files extractor 0.2.3a: fixed only an error in the rarely used Padding command
09 Jul 2009 Research: WorldShift XE/XP files extractor 0.1.2d: substituited the memmove function with a manual one to avoid the possible senseless memmove bug (the job of memmove is just copying the data byte per byte but for some unknown reasons in rare occasions it could corrupt part of the data)
09 Jul 2009 Research: Ventrilo RCon tool 0.2.9: ventrilo3_handshake fix
09 Jul 2009 Research: Ventrilo proxy data decrypter 0.3.3: ventrilo3_handshake fix
09 Jul 2009 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.10: ventrilo3_handshake fix, used the code of ventrcon and added the handling of the -W option which was missing
09 Jul 2009 Research: ventrilo3_handshake 0.3: solved a bug in ventrilo3_algo_scramble (thx John Smith) which in some occasions wrongly encrypted/decrypted the in-game data and adjusted some other things
08 Jul 2009 Research: Telltale TTARCH files extractor 0.1.2: added support for the first chapter of Tales of Monkey Island and Muzzled, now the .lenc files are decrypted only when the -m option is enabled for logical reasons, added an option for forcing only the decryption and the encryption of the input file (debug)
07 Jul 2009 Research: How to get the list of game servers from getgsc.com 0.1.1: added more informations about the gamenames and more games like America's Army 3
06 Jul 2009 Research: QuickBMS generic files extractor 0.2.3: added support for the bzip2 compression, the line data type and various big speed improvements moreover in the byte-per-byte operations (like getvarchr and putvarchr)
06 Jul 2009 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.2: added initial experimental support for America's Army 3
06 Jul 2009 Patches: America's Army 3 3.0.4 NULL pointer fix 0.1
06 Jul 2009 Advisories: NULL pointer in America's Army 3 3.0.4: how is possible that I continue to find vulnerabilities even if I no longer search them? mah
04 Jul 2009 Research: HLSWlist 0.1.1: added the -f filter option
04 Jul 2009 Research: ISI rFactor files decrypter/encrypter 0.1.3a: a micro fix when using a full path in the output file (like c:\file.dat) which instead was created in the current folder (thx JusTiCe8)
04 Jul 2009 MyMusic: Tape Revenge (ver2): removed only an annoying instrument
03 Jul 2009 Password_recovery: Xfire password decrypter 0.1: decrypter for the EncryptedUser and EPW fields in XfireUser.ini
02 Jul 2009 Research: Race Driver series ZIG to BIG decrypter 0.1: a decrypter for the ZIG files used in the Race Driver games implemented as plugin for QuickBMS
01 Jul 2009 Research: HLSWlist 0.1a: added a couple of other games in the list (although, like in gslist, the list is not needed for retrieving the servers) and adjusted the building of the query packet for possible future enhancements
01 Jul 2009 Research: Ventrilo RCon tool 0.2.8: added option -F which creates the pipe file \\.\pipe\ventrcon (/tmp/ventrcon_pipe on linux) so that any program on the same machine can send commands to ventrcon simply writing them in that file, added the -C option for caching the ventrilo 3.x keys (mainly useful for debugging)
01 Jul 2009 Patches: Universal game players limiter 0.1.1: an experimental and very basic project I created as a test various months ago and which uses a simple way to recognize and limit the players from the same IP address, released also a modified version which allows to choose the maximum number of players (3 by default)
30 Jun 2009 Research: How to get the list of game servers from getgsc.com 0.1
30 Jun 2009 MyToolz: Simple TCP proxy/datapipe 0.4.6a: solved a lame bug in the -S (ssl mitm) option
30 Jun 2009 Patches: Call of Duty 4 and 5 stats DoS fix 0.1: quick and easy work-around to avoid this annoyance which could became a problem
30 Jun 2009 Patches: Battlefield 2/2142 1.4*/1.5* bfloop fix 0.2 (Windows): work-around for an undisclosed vulnerability
28 Jun 2009 MyToolz: Hex2byte 0.3b: another micro fix for the -x option
27 Jun 2009 Patches: SWAT 4 1.1 NULL pointers and Runtime Error fixes 0.1
24 Jun 2009 Research: PunkBuster online GUID checker 0.1.8: added support for America's Army 3 and Battlefield Heroes
23 Jun 2009 Password_recovery: Cake Poker / Lock Poker password decoder 0.1: decrypts the LastPassword string in the registry
23 Jun 2009 Password_recovery: Full Tilt Poker password decrypter 0.1: decrypts the Username and Password strings in the registry
23 Jun 2009 Research: HLSWlist 0.1: command-line servers browser based on the list of game servers provided by HLSW and with an usage similar to gslist
21 Jun 2009 Password_recovery: PartyGaming password decrypter 0.1: decrypts any encrypted string in the PartyGaming fields of the registry which includes PartyPoker, PartyGammon, PartyCasino and so on
21 Jun 2009 Research: PartyGaming files decrypter 0.1: decrypter for the encrypted files used in PartyPoker, PartyGammon, PartyCasino and so on like the various INI and BIN files (ARA.ini, GRA.ini, Sys.ini, NewTable.bin, poker.bin, Table.bin and so on)
21 Jun 2009 Password_recovery: PokerStars password decrypter 0.1: decrypts the PWD field in the user.ini file or any string passed as argument
21 Jun 2009 Research: PokerStars INI decoder and decompressor 0.1: a decoder for the INI files implemented as BMS script for my QuickBMS tool
21 Jun 2009 MyToolz: Hex2byte 0.3a: added a work-around for the -x option which allows it to work also with the hex dumps of wireshark
17 Jun 2009 Research: Ventrilo port 5000 packet decoder 0.1: decoder for the packets sent to/from port 5000, a typical example are those for update.ventrilo.com and proinfo.ventrilo.com
17 Jun 2009 Password_recovery: Ventrilo regkey decoder 0.1: simple decoder of the registration key of Ventrilo client which is stored in the regkey registry key
14 Jun 2009 MyToolz: DAA2ISO / GBI2ISO 0.1.7c: added support for the GBI files used in gBurner which are identical to DAA except for some microscopical lame changes, anyway the 99% of the GBI files online are just renamed DAA files so the previous version of daa2iso already worked with them perfectly
12 Jun 2009 Research: ISI rFactor //[[gM files decrypter/encrypter 0.2: the only change in this release is the possibility to re-encrypt the file because ARCA Sim Racing seems to need it, for the rest the new major version has been used because now the usage/syntax of the tool is like the one of rfactordec and wtcced
08 Jun 2009 Research: QuickBMS generic files extractor 0.2.2a: adapted the code for accepting the options when launched in GUI mode
07 Jun 2009 Research: QuickBMS generic files extractor 0.2.2: added the -L option for placing the list of files in a file, added the -D option for using decimal notation internally, optimized the For command, gained some milliseconds from myitoa, added the experimental commands for implementing recursive functions (Start, Call and EndFunction)
03 Jun 2009 Research: Milestone MIX files extractor 0.1.1: added support for MIX files of SBK 09
... old news