• There is NO official Otland's Discord server and NO official Otland's server list. The Otland's Staff does not manage any Discord server or server list. Moderators or administrator of any Discord server or server lists have NO connection to the Otland's Staff. Do not get scammed!

CIPSOFT hack in 2006 (7.7v) anwsers.

SammyNSC

Old Skool or Bye -_-
Joined
Dec 1, 2009
Messages
1,024
Reaction score
33
Location
New York City
Finally got to talk to Toor aka Dennis about the CIP hacked files.

You can read it here(with pictures and organized text) and some backstory
Interview with Dennis aka Toor | sammynsc

-------- -------- -------- -------- -------- --------

here is the interview if you lazy to click the blog link and already know what this is going to be about;

1. How did you acquire the CIP files? Rumor has it that you, or someone you know socially engineered the hosting company many years ago. How many people were involved?

I did it by myself. Initial penetration by social engineering. Their old hosting company allowed an administrative contact change for their account. I pretended to be a CIPsoft employee “on call” needing a password change. They asked me for the IP number and the name of the owner for the account and they made the change. I used a password recovery and gained access to a vast amount of tickets, some of them containing plain text IPs and passwords to KVM devices. That led to the compromise. However I didn’t compromise player accounts.

2. Another important question that people are wondering is who has the files besides you. From what I’ve gathered its you, Simone, Remere, GrizZmo and Iryont?

I dont want to answer that question. It’s a matter of safety. Referenced people may be subjected to attacks to obtain the files.

3. Some of the hacked files were leaked at some point. All the NPC files and the world map are available to download. Did you or someone you know leak it?

A select few had the map, monsters and NPC (amoung them an otfans admin and sim0ne). I’m guessing they released it.

4. You decided to use the files with your open tibia server, to mimic the conditions of tibia as it was in 2006, how usable were the raw files at first? Was it hard formatting them to be compatible with otserv? Anyone help you with that?

Sim0ne helped me convert the map and make sense of monsters but eventually we figured out the protocol to run the real thing.

5. You used the files with your server, were you worried about legal troubles? Did CIP ever threaten you or contact you regarding using their stolen data?

Cipsoft has always known that I ran the server. I had occasional correspondence with them about it and by not taking action they condoned it. It made legal action unlikely if not impossible due to their previous inaction. So I wasn’t worried about it. In law, if you want to be able to enforce a right you have to defend that right. If your actions are to the contrary you lose the option to enforce it.

6. There was a rumor you singed a legal contract to not distribute the files?

Ulrich Schlott(Durin) was intending to send me paperwork that would keep me from releasing material in exchange for legal immunity but it never came to that.

7. You made lots of money from your server by using the CIP files, can you give an estimate of how much?

I used to gross 4-5K/ euros a month during RealOTS peak time. It totals to alot.

8. Any truth that Doonark(Ryan) was going to buy a copy of realots for 5k Euros?

True, but the deal bounced.

9. What do you say to all the people who claim to have cipsoft files and open up servers saying they are 100% 7.7. Do you think they just have the npcs and map files while all the other aspects are recreated?

They just have the NPCs and map files and have to guess everything else. Almost no one has all files. There is just one other person with the complete distribution ;)

10. Having seen the codes, and other aspects that go along in quests, do you think that cip edited anything after the breach since you had inside knowledge on stuff that was unknown or undiscovered at that time?

Undoubtedly things have changed. At the time there were many unfinished quests as well.

11. When you first saw the files, were you surprised by anything? Did you expect anything to be or not be there?

I was surprised that spells were hard coded into the game rather than configurable. Same for formula’s, runes, etc. It meant that Cipsoft had to recompile and deploy a new version of the game server every time they wanted to make a change. For me it made things very tedious to edit.

12. Anything you wish people know that you know due to you seeing the files?

Two things: 1) Gamel is a rebel and 2) The sword of Fury _is_ obtainable but it’s very rare and extremely tough. The code detailing the quest (except for how to make it disappear) is in no one’s possession.

13. Who is Gamel? ;O

You should ask the guard Chester Kahs about him ;)

12. Favorite moment while hosting realots?

Definitely the creation of Kipsaté, a fast running chicken that spawned a whole myth with players chasing it to figure out its secrets.

13. Why did Iryont stop hosting realots?

I guess due to the workload. It’s very time intensive to make modifications to the server, requiring a lot of dedication.

14. What do you do for a living, and how did you start tibia?

In daily live I’m a lead programmer. I started on Balera when it was launched. 2005 I think. Great server until PvP ended.

15. Since your bringing realots back again, did you know that Ryan West is ddosing every old school server, do you think you will have a problem with him?

I doubt it. It will be a multiproxy setup so no DDoS can ever touch the actual server and at most temporarily disrupt the players of a single proxy.

12. Anything you wish to add?

Shoutouts to: Alvaro aka “Magz”, legendary mage and long time friend. One of the very very few people who have ever held a magic longsword and gave it back. Rodrigudo aka “Trenshy Master” who always had my back and was a role model in many ways, and to Simao aka “Smith Icarus” who risked it all to protect the innocent and serve justice.
 
Last edited:
I to think I was just reading your blog earlier, now an update ^_^ nice, good work as usual!
 
Very interesting. I'm curious about the sword of fury and if there was any truth to what he said about it.
 
5. Since your bringing realots back again, did you know that Ryan West is ddosing every old school server, do you think you will have a problem with him?

I doubt it. It will be a multiproxy setup so no DDoS can ever touch the actual server and at most temporarily disrupt the players of a single proxy.

Good, something to kill Ryan's server(s) :)
 
Very interesting. I'm curious about the sword of fury and if there was any truth to what he said about it.

Same, but I feel like its a waste of time to even try. Like he even said, nobody has the knowledge to unlock the SoF even after the hack..
 
Hack CipSoft again, maybe the they'll even fall for the "I'm on call" excuse again, shit was classic XD
 
Great read, a lot of information I have been wondering for a LONG time.

Glad to see he's going to be a part of the new RealOTS, looking forward to it :)
 
Great read, a lot of information I have been wondering for a LONG time.

Glad to see he's going to be a part of the new RealOTS, looking forward to it :)

Indeed I wondered for a long time as well. I've looked thourhg many old thread that were about the hack and files and ppl had so many theories and opinions. I asked if any of them were true and according to Dennis they werent. So I didnt even bother including some of the stuff I asked him.
 
When i played on RealOTS first edition I remember player with name “Magz” i was hunted by him, some times after he disappear and Toor made monster called “Magz”. He was same as Warlock i didn't know it and i was suprised when he attacked me.
 
I gotta say, I think you're a rude fella without manners, Sammy, but you do write good interviews
 
wow... thats awesome too know. and fuck ryan.

- - - Updated - - -

tbh, i dont really care at the new chipsoft files. old school all the way :3
 
Reading this makes me wanna play RealOTS.

Not the recent ones, but the one with dagorlad and all the custom shit.

Also very curious about SoF o_O
 
Very fun to read. But i dont trust realots, is the server for the people or for the cash.

Your choice.
 
Very fun to read. But i dont trust realots, is the server for the people or for the cash.

Your choice.
?????????
there will be no donations for exp or skills or premium in the new RealOTS
get your facts straight pls
 
Man. Cool.

I don't really believe what he said about the SoF.
Also awesome to hear that he hacked them using social engineering. I remember when they switched hosters years and years ago too. Probably for this reason xD

Red
 
Back
Top