(adsbygoogle = window.adsbygoogle || []).push({}); Dedicated to HSx9, QuantumForce, Nickjones, and sizzle so you dont have to deal with this!

Okay first off I am planning to expand this as time goes on with REAL information not any bullshit to trick anybody, now if you have something to add please let me know and I will gladly add it to this topic. If you have a question dont hesitate to ask I WILL help you, I probly wont tell you the direct answer on how to get what you want but I will educate you so you better understand and get closer. Lately if you have been in the dark and have not noticed MANY people now have become interested in the art of packet injection since they now believe its real and see multiple people doing it on the leaderbaords, but that is NOT its only purpose.

First off this is beyond the basics of how to bridge this is actually what to do after your set up, please NO flaming. If you have a question and if I think its worth while then I will help the entire community by adding it to this topic as a quote with your name than I will display the answer so everyone interested can benefit from your question!



First off let me explain that packet injection could be done with MUCH more than getting rank on the leaderboards such as it can be done with ammo, health what level you are and well even kill all, it is tricky but I will explain how to start finding basic "hacks" by using packets, again this is after you have set up.

First off let me explain somethings VERY important

--------------------------
"Opportunity of injection"
--------------------------

Okay I saw this and I have a few things to add, some packets espically ones dealing with scores 99% of the time have what I like to call "an opportunity of injection" meaning you HAVE to catch the packet and inject it WHEN THE SCORE DATA IS SENT TO THE SERVER! Meaning the best way to do this is play around in a cagematch find the score packet per se then you modify it and have it sent to inject using a hot key and right when you kill hit inject a few times. This has to be done FAST, but I am not completely sure if doing the SAME packet that you know is correct once it is modified by looping it a few times every half a second(or a little less) then keep doing things such as killing to gain your score and HOPEFULLY the looped packet will intercept the real deal and make it that trippy value. This is the same when you shoot your gun etc, if you want something like rapid fire or info ammo for say you will have to have it inject when your ammo goes down, or just find the packet data of what the ammo was originally.

--------------------------
Checksums
--------------------------
Girl you nasty nasty! This are the devil but first let me give an example. For those who have played games such as uncharted or SOCOM you will know you can taunt etc and that text comes up, well what if you find the text that comes up(pretty easy due to the fact of ascii viewing in wireshark) and you modify it send it a few times then taunt and wtf you freeze? Most likely a damn checksum! First what is a checksum? Well its a check of the bytes making sure they add up to the same value so your best bet would be to try to figure it out or try to make the value the same as the bytes so if it has 14 characters of text make sure they add up to the same value when you inject.


--------------------------
Finding Rapid fire
--------------------------
This is a big thing for many people to find though in all honesty it is one of the easiest to find and do, now pretty much all guns will send a different packet so you would have to find each one. Okay I will give the basics as its really not hard to figure out, best to do in a cage match when not getting messages as that can screw it up.

1. Have everything set up(bridged etc)
2. Pick a gun and shoot with it a few times and you should see wireshark capturing your data
3. After around 4 seconds shooting with the SAME gun(should be a rapid gun to begin with, faster to find) then STOP the capture and look through some of the most recent data that has the SAME values, this if for the reason that it is something that occurs several times in a short period of time(such as shooting your gun etc)
4. Once you think you've found your data open a packet builder(such as CPB) and then open the capture file and select the packets you think are the ones for that gun then select and inject in a loop
5. Have them send every like 00.01 seconds or so as if its rapid it will be fast
6. Trial and error and hopefully when you shoot that gun it will be super rapid

--------------------------
Booting a room(evil)
--------------------------
1. Sniff and obtain host, easiest way is a private match, lag if you can
2. Find the host packet with the BIGGEST amount of data(bytes) this for a game is that big
3. Pass the checksum and make it as large as possible
4. Make sure it goes to the server
5. Inject and say good bye to everybody.

Now I will explain why this works, instead when you lag and the crappy matchmaking system trying to connect to another host it wont be able to connect to anything, literally disconnecting everything from the room and forcing it so no one can join, depending on your connection you may still be in the room or not, I am not totally sure. On a side note on weaker connections of other players if you keep forcing a CERTAIN heavy duty packet they will have their PS3 frozen, packet booting isn't very hard to do just takes some luck thats all.

-------------------------
One shot kill(OSK)/Anti damage
--------------------------
This is highly reasonable to find, actually pretty easy but mostly will require two people if you want both ends of it. Basically if you find it after doing LOTS of playing around you will have bullets that will kill with any shot, but this can be tricky and Ill explain why. Also for this you will be required to changed bytes of data and of course there has to be a checksum on these so that will have to be figured out. The tricky things about this is that the packet DATA is the same for each gun, but it will change which can make you VERY confused, the checksum(located usually in the 16-31 bit range) will look similar though it WILL changed if my theory plays true as I haven't been able to fully test this as its tricky so cudos to whoever can figure it out.

The guns damage packet most likely is the same one sent each time but it will most likely be a bit different if you shoot from a farther range or have a certain attachment meaning somewhere the checksum might just change, just something to think about.

1.Once you are set up have you and a partner both equipped with wireshark in a locked room shoot each other with the same gun and see what you get, do it a few times without killing and without painkiller as that probly uses a true statement that will if="painkiller" than send data "00 ff ec" well that data will change so dont have it on.

2. Once you think you and your partner found it using the same gun try playing with the checksum data then try shooting from farther distances... why? because the damage SHOULD change while still reamining in the same type of packet, meaning if you find what changes when you have more range between you then you can most likely finding the changing byte(s) and figure out how they increment. So for higher damage shoot closer with a certain gun and for lower shoot farther

3. See what data changes and see how the hex changes and what its offset is when its (HIGH) and (LOW) so then you just then use that offset and if it were say an off set of 04 and the default value is 02 then 06=higher ff=lower etc

4. Inject and test the data on your partner, make sure it doesn't boot them, sending fake crappy data instead of what is insisted by the checksum will be received by your partner and they will get an error etc, or some other weird effect.



--------------------------
Questions
--------------------------
ANY members questions that I think are good and people should learn from I will place here in a quote with the BEST answer I can possibly give to help everyone out in their packet injection needs.




A:Okay great questions so I will do my best to answer them as thats quite a bit.

1. yes when you kill someone in say TDM there is a packet that is sent from your PS3's IP based off the games memory(RAM) that is sent to their sever telling you to receive +100 to your score and +1 or whatever to your kills along with challenges, as you can probly tell with challenges there is TONS of data floating around on this game so yeah I can understand how its hard to find, dont give up keep on trying!

2. Well if you wanted to change your kills/score directly ingame you would have to think about the following setup like above. When you kill someone you send a packet to the server that contains the data for how many points you receive how many kills etc, THIS is the packet you want to find, should appear right after you kill etc. Their might also be a secondary one so you might want to look into that, so theres a packet telling the server what to send to your PS3(which in a sense is another modifiable packet)

3. You send it within its opportunity of time, so it would be around when you receive it such as score it, I know it may hurt your head but just think!

4. Best of luck to you! And the IP's will be your PS3 for whatever YOU send to their server and THEIR server for whatever YOU receive, either from other players etc but it should only be two IP's for the packets.



1. Trial and error, look for a common packet that keeps popping up when you kill, jump etc.
2. To find them you need a program called wireshark and to send it you need a packet builder such as Colasoft Packet builder(Google both)




1.Packet injection/sniffing is where you find the data being sent from your PS3's connection to the game server vice versa and finding the data that does something such as shooting then modifying it so you shoot rapidly etc. Google would be a good spot to start if your still confused and never heard of this before. You can also read this thread, my other ones and future ones to learn more!

2. To packet sniff(the finding and logging of packets -data sent from their server to your PS3 etc) you will need wireshark(completely free) to capture the packets and save them as a capture file, and you will need a packet builder/injecter to send the modded packets to get the desired effect, I would recommended Colasoft Packet Builder(also completely free) to new users as its pretty user friendly!



1. They are both programs you download for free and install onto your computer, Wireshark will basically intercept your connection once your bridged and it will "sniff" all the data and display it on your computer to see what is going on such as when you shoot you will see that data etc. Colasoft packet builder is another program that allows you to take those captured packets, modify the data to your liking then send them to the games server whenever you want, for how long and from where it. If you Google both of those programs on their official websites there should be some type of tutorial on the basics of using those programs.

2. The packets are sent from your PS3(if there being sent to the game server they use some sort of packet sending function on the memory's stack with the data and then the server takes the packet and sends it to where its needed to be, this is done by assembly(ultra fast as it is ULTRA fast... power pc btw, but that would be WAYYYY to confusing to explain!) and vice versa from their server to your PS3's connection then they affect the ram etc. I would Google "packet protocol" if you need more of an explanation if that didn't really help but if you do that and are still confused(thats usually pretty technical stuff online) then come back and ask me your questions!



Again thats more beginner but since Ive answered it a million times I will use Typhoon's response as it explains it well. Basically you need your PS3 to be connected via Ethernet then bridge two high speed connections(one on computer the other is the PS3's) and you will be able to inject. In addition to that here is an idea what an packet is...





Like Ive said 100 times so Ill make it 101 you use a packet builder such as Colasoft packet builder to MODIFY AND INJECT pakcets, I would suggest checking out my other thread "How to get host/lock etc for MW2" In this section if you still need help with the basics of packet injection, it will explain them.



Well packets usually use their own version of encryption and really some networks will only handle certain types. Usually a packet uses a checksum to make sure the value adds up so this is really what you want to look at now what type honesty I work on figuring out how it works so I couldn't give you a direct name to help you find out more, until then its just playing around and figuring it out but if you like I could try and obtain a formal name! I looked around and these three and the more commonly used types of ciphers(encryption) that are used with the UDP protocol, now I am not sure which one it is as I formally dont really know them but Ill figure it out and then we would be much closer to heavier stuff.






More to come as I HAVE to continue this and I PLAN TO DO SO, most likely tomorrow as its turky day but look out for USEFUL updates! In the meantime ask questions and I will answer them.

look for updates, ask questions, learn!

This sounds too hard for me

This is great! an actual tutorial with Q&A!!
This is gonna be one hard thing to teach. but im glad that someone is actually taking his time to help people. Socom days are the best!

actually maybe read a few things, first off I never said there was only ONE way set in stone to do this, actually I do know what I am talking about I am surprised you never thought of using php to get to job done, take raw sockets, hold the data and inject it over the net.

Not sure I quite understand the relevance or meaning. So are you saying that it is actually not possible to use wireless as a bridge and inject that way?