Hi.
It is possible to decrypt Tibia (7-8) connection?
As I know, Tibia uses XTEA + RSA encryption.
I.E:
1) First part of login packet (protocol, OS, ..) - are not encrpyted
2) Second packet it's XTEA key (128 bits) - its encrypted also by RSA
3) Rest part after XTEA KEY i.e - login, password - are encrypted only by XTEA key.
4) Further communication is encrypted by XTEA.
Could you confirm that?
How to fetch XTEA key? (i.e. Find address of it in memory for instance, let us take OTCLIENT)
and how to decrypt message from wireshark?
It is possible to decrypt Tibia (7-8) connection?
As I know, Tibia uses XTEA + RSA encryption.
I.E:
1) First part of login packet (protocol, OS, ..) - are not encrpyted
2) Second packet it's XTEA key (128 bits) - its encrypted also by RSA
3) Rest part after XTEA KEY i.e - login, password - are encrypted only by XTEA key.
4) Further communication is encrypted by XTEA.
Could you confirm that?
How to fetch XTEA key? (i.e. Find address of it in memory for instance, let us take OTCLIENT)
and how to decrypt message from wireshark?
