Openkore dont work in servers that use EAC ( EasyAntiCheat ) as anticheat

[idcbot12]

hello there!!

i'am already bypassing Ragexe.exe idRO with simple method(hexing code)

Search: D0 C9 4A Replace: D0 99 4A

now you can run ragexe.exe -1rag1 without EAC(EasyAntiCheat)

but i have some problem..

if you do this, you can login and select character,you can use Scanner or like Cheat Engine, You can Attach Kernel Mode or Accsess Process Ragexe.

the problem is stuck after entering map in client, program stoped working(ragexe stoped working).

anyone help me to complete this.. thanks

[sctnightcore]

you cannot login if EAC dont send packet to server .

[idcbot12]

thanks for reply sir..

but i can.. try my method sir ... i can login select character but when entering map client ragexe alaways crash

maybe you can help me

[alisonrag]

eac encrypt packets in map-server, so if you disable the EAC or remove the pointer, ragnarok will fail in send packets or find the function then will crash

[idcbot12]

I can do connect to server login or etc..

but after i do choose my character and going entering maps i got this problem:

Crashing or Stoped Working..

:Bump:

[idcbot12]

I try Connect with Xkore1 is ok no problem, but when client crashing i got notice "Timeout on map server" and Xkore Trying to Reconnect!

sorry for triple post i hope someone can do marge my post

[alisonrag]

In the video he is not editing the exe, he use a driver and a dll that disable eac detection, also use functions from eac dll. he create a local server that receive the packets, then use eac dll functions to send data to server

[idcbot12]

how you know step by step?

its you are??

could you help me how do thats??

what must i do..? really i have much question..

[idcbot12]

@alisonrag

you right .. i try disabled EAC (skip procedure load module EAC) and i can loginselec character dll

second test: i do disabled and manually load EAC After Netredirect.dll Connect, Result is i cant login filed connect to server

third: i do all and active EAC service open kore working for 1 sec(callculating route to cordinate bla bla) after entering map and bump timeout again or crash again

[momolou]

try disabled EAC (skip procedure load module EAC) and can loginselec character dll..

after that using wpe pro find recpacket

[idcbot12]

@lem-aibon

Already done with disable EAC for skipping load module EA anda i do login etc.. (except enetering maps ive got stopped working)

Useless find RecvPacket using WPE at openkore xkore stuck parses 0A7B, 0A7B is a EAC RecvPacket

alisonrag Logic is good but hard work for implementation lol

[idcbot12]

i hope can join discord for fast response discuss

[momolou]

try using wireshark https://github.com/alxbl/ro-wireshark

[idcbot12]

@lem-aibon

password file the second link??

[idcbot12]

and how to use lua file in first link??

[ya4ept]

@lem-aibon, what is this viral link?

[idcbot12]

tell how you do thats

On Wed, Feb 5, 2020 at 6:23 AM Moneyisgod notifications@github.com wrote:

I have made this same way (stuck not working, probably same offset) and then i have changed some registers and i logged in. Moved and etc but the problem is the sync

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/OpenKore/openkore/issues/2963?email_source=notifications&email_token=ANUITLTOX7HZNCB5JWKWGI3RBH2HNA5CNFSM4JGZKBJ2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEKZSBLQ#issuecomment-582164654, or unsubscribe https://github.com/notifications/unsubscribe-auth/ANUITLXKALC6UWRMSS67S3DRBH2HNANCNFSM4JGZKBJQ .

[WagnerMoreira]

So basically there is no way to use Openkore in servers that have EAC?

[Fadreus]

So basically there is no way to use Openkore in servers that have EAC?

There is a way and people are making cash of it. Especially those SEA servers from Extreme Electronics.

[mugemuge001]

how to bypass eac any methods?

[Nipodemos]

🙄 this thread is to discuss and try to find the bypass @mugemuge001 if this issue is here is because we didn't find out yet

[boom19]

any updates regarding EAC? as of this moment?

[alisonrag]

any updates regarding EAC? as of this moment?

nope

[erlanda92]

anyone any idea about HWID spoofer?

[Jayjute]

don't believe for any bypass for this, with the facebook page like EAC bypass or a youtube video username : Traxv, linking to a discord with disabled comments. with payment method like bitcoin. it's a scam, ive been scammed. after paying ive been blocked in facebook page. learn from my mistake and don't attempt to buy any shady service offering an EAC bypass.

EDIT: do not trust this crypto currency address: 3MTXuMPrHc9MJUuRmuq557pj65dsVxnWxp its a scam.

[rorschach0154]

Hello, Returning player here for iRO-Thor and iRO-Chaos (since i play both worlds LOL). is Openkore still operational for both servers? if yes can i ask for assistance on which pull request can i read about it? thank you!

[render12]

is there any update about it?

[android3020]

hey, im not sure if this will help. i started the game (Ragexe.exe) after the game was loaded (not logging in yet) i went to task manager and stopped EAC service, then i get back to the game.. i can login and play with no issues...

seems EAC's job is only to make protection during startup then add some on packets maybe.. i dunno XD pardon ima such a noob desperate want kore to work again

[Fadreus]

@android3020

You can help by not comment anything.

And the rest of you who want to ask and give useless stuff like "is it working?" "Teach me plox" "Hey I got this potato, hope it helps" "Hey, this fishy website is a scam. I know it smells fishy but I thought it is dried squid", please follow this procedure:

• Please write that in note pad
• Click Save
• Upload that file into recycle bin
• Click empty recycle bin.

[uplight]

I think header should change not "EAC Bypassing Ragnarok" but "make Openkore work with EAC"

[sealreturn12]

Hi now I can bypass EAC Openkore x3 still works? I never use it.

[render12]

Hi now I can bypass EAC Openkore x3 still works? I never use it.

really? how can you do it? can you teach us?

[PipeDeveloper]

How about if someone that buyed before from Ukore can share all files (dlls and a file that is binded to your machine) and try to crack those files? Openkore always has been recognized for been an open source software, powered by all this amazing people.

[Theomnikiller]

I happen to have a zip file that contains everything given from uKore purchaser but are you able to identify the file that would be the "binded to your machine"? They do request this information:

2. Please send clear Hwid info Mac address : CPU : part id : Vendor : Processor : Adaptor : UniqueId : User :

   I know nothing about coding and the such and I can't upload the zip because its too big. If we can pinpoint what files you want I can drop them here from what were given.

[ya4ept]

as soon as the bot appears in the public domain, EAC developers will close the security hole and the bot will stop working

[Hex7i]

I think header should change not "EAC Bypassing Ragnarok" but "make Openkore work with EAC"

yeah sir same nProtect

[Hex7i]

We will must make new fuction for NetRedirect.dll, for EAC and EAC Open secure vie ip:port 49.229.28.115:10011

[LastRoze]

Just use Diff Patcher to patch then edit the sclientinfo.xml to point to correct IP address that EAC sends, tada you just bypass it.

This is just a guess tho since you can't pretty much bypass using default OK config, what you need to do actually create your own client that matches pretty much the original exe of the game but now you have a clean version of it without EAC binary intact, aka Hexed.

[jokinvipo]

Hey Guys,

Im here to try to help finding a solution for this EAC. If we get a EAC bypass the openkore can work easy with xkore 1 or we need to update anything more in source code?

[Hex7i]

Just use Diff Patcher to patch then edit the sclientinfo.xml to point to correct IP address that EAC sends, tada you just bypass it.

This is just a guess tho since you can't pretty much bypass using default OK config, what you need to do actually create your own client that matches pretty much the original exe of the game but now you have a clean version of it without EAC binary intact, aka Hexed.

can't coz, tRo sending any packet via EAC everytime.

[Hex7i]

We will must make new fuction for NetRedirect.dll, for EAC and EAC Open secure vie ip:port 49.229.28.115:10011

New random port 10011 to 10017

[idcbot12]

@Shmerrick

What's a password? why you sharing file but its protected password and you dont share the password

[z3niths]

I thought that people already know how to break it long ago :p
For non-hacking dev, I giving a clue here.

Solution: XKore 1 + openkore cli without detected Clues:

• Compile netredirect.dll, not to directly send a packet from OPK to the server but forward via the client to reuse the encryption function of the client to communicate with the server-side. (You can directly send if you can reverse engineer the encryption algorithm & key out from the client and reuse it directly. This way you can do Xkore 0 ) -- at this step you might need to know the client send&receive bufferAddress which you can easily found it with a Ragnarok Packet Logger. So you can forward it thu client via the address. Once the client updated this address also changed, better to use its offset and modify your net redirect to work with it automatically in case you don't want to waste your time to recompile the dll every single update.

• EAC can be blocked by injecting a singed driver that could control the kernel-level (Windows ring 0) and use that process to manage the EAC thread/process after the exe was run.

• EAC heartbeat check can also be handle by packet capturing between EAC server & client and analyze it. or just patch it with the leaked version. The EAC integrity check can also be break which means you can mod the EAC as you wish from it's compiled binary. (it has a writeup online too)

PS: I didn't touch it for already 3-4 months, my information probably outdated now. But I used to run it smoothly without paying to any hacker

[Shmerrick]

@jokinvipo I don't have the password, that's why I said that it needs to be brute forced or someone needs to give out the password. You have paid for this bot. Please share the password.

[PipeDeveloper]

@z3niths Have in mind that most of the 95% of the people here just plays and they dont have programming skills to do what you said.

First point is clear, use xcore1 in simple words

Second point on this case would be great if you can teach how to block EAC from your kernel using that driver, because its obvious you need to modify something at windows folder, the question is exactly what.

If you already compiled a moded EAC binary, can you share it?

[McTrevor069]

I am still taking a course degree.

Hey, I am happy to be here now! I noticed that some of our fellas are in Transcendence. I will help upon doing the openkore back with the EAC! hehehe it's end of 2020 we can still do it!

[alisonrag]

dang. By the way, can we say that Openkore is dead in the way we were used to know it?

unfortunately EAC team is pretty active, i think they monitor this repo, if someone can figure out how the packet encryption works and release it here, its just a question of time to they patch this

[sctnightcore]

Love Never Dies open source as well.

sctnightcore 04/03/2021

[oleonardobrasil]

Existem alguns caras vendendo o desvio de EAC no YouTube

This user practices financial scam. I was a victim of it.

[alisonrag]

Existem alguns caras vendendo o desvio de EAC no YouTube

This user practices financial scam. I was a victim of it.

i feel for your lost, hope u can get your money back someday

-- Off deleted all links, this can lead to scammers

[oleonardobrasil]

i feel for your lost, hope u can get your money back someday

-- Off deleted all links, this can lead to scammers

Unfortunately I made an Amazon Gift Card. Scammers ask for payments by crypto and Gift Cards.