Kavan72
commented
3 years ago @Morilli hey, is this safe to inject dll in riotclient? right ?
Open sooxt98 opened 4 years ago
Kavan72
commented
3 years ago @Morilli hey, is this safe to inject dll in riotclient? right ?
Morilli
commented
3 years ago Should be, at least I am not aware of any terms disallowing that.
Kavan72
commented
3 years ago alright thank, and do you have any documentation how to inject like any specific injector or any manually method ?
Morilli
commented
3 years ago The way I know is to use xenos, wireshark and the ssl_key_dump dll i linked above (needs to be built 32-bit).
You then start xenos (32-bit), add the built dll to it and set the startup option to manual start, native injection and add the path to the riotclientservices.exe for it to wait for (sorry I'm not at home, so I don't know the exact names and can't give you screenshots).
You'll then need to start wireshark, in protocol settings add the keylog file (should be C:\Riot Games\ssl_keylog.txt by default) to the TLS settings and then let wireshark run and start a game like league, so that the riotclient starts up (xenos should be up and waiting for the riotclient the entire time too).
You should now be able to view all requests in decrypted form in wireshark if everything worked correctly.
Kavan72
commented
3 years ago nice, thank you and what about ingame apis ?
Morilli
commented
3 years ago Ingame I'm honestly not sure as I havent done anything with that yet. Although I assume it could work in a similar way by ssl injecting into the League of Legends.exe executable instead.
KyeOnDiscord
commented
3 years ago Also in C:\ProgramData\Riot Games\Metadata\valorant.live\valorant.live.ok for example contains the manifest for Valorant.
Which would be https://valorant.secure.dyn.riotcdn.net/channels/public/releases/92A6179A365E5543.manifest
oceanendless
commented
1 year ago @Morilli hi! I am very interested in this question as of 8/2023. Is there any more detailed tutorial or examples to hook into the valorant client to get the ssl key logs and use it in wireshark to see the traffic? New in this field and would like to know more on how to do it. Not sure what is a reliable place to get something like xenos
KyeOnDiscord
commented
1 year ago @Morilli hi! I am very interested in this question as of 8/2023. Is there any more detailed tutorial or examples to hook into the valorant client to get the ssl key logs and use it in wireshark to see the traffic? New in this field and would like to know more on how to do it. Not sure what is a reliable place to get something like xenos
You should try avoiding touching the Valorant client process as it can lead to a ban.
oceanendless
commented
1 year ago @KyeOnDiscord thank you for the suggestion, is it ok if i message you on discord for further questions?
KyeOnDiscord
commented
1 year ago @KyeOnDiscord thank you for the suggestion, is it ok if i message you on discord for further questions?
Sorry, my dms are closed
I've been looking at what the browser does for login, and I've also logged the riotclient's web requests using moonshadow's tools (https://github.com/moonshadow565/ssl_hook and https://github.com/moonshadow565/ssl_key_dump). I think I've had quite a lot of sources from which I got urls, like for LoL they log their patchsieve url they request, which means you can basically just copy paste the url, and then the logging / hooking. Of course nothing of it is documented, so I might be doing stuff incorrectly and it could stop working at any time if they change something.