Status of War3 Warden implementation?

[thebigred]

How far along is the Warden implementation? 

Is there any code documentation for JavaOP i can use and specifications of Warden?  I ran HDX's Warden proxy and noticed it produces some binary data (RC4 keys?).  I'm guessing Blizzard is using a challenge - reply for authentication of some sort? 

Assuming I've never messed with connections, I'll have to use bnetdocs as well.  I've got a few weeks before I start work and gives me a chance to brush up on Java.  Any svn or cvs server with latest Javaop work?


EDIT:
Links I've been looking at :
http://forum.valhallalegends.com/index.php?topic=17910.0
http://www.skullsecurity.org/wiki/index.php/Warden_Packets

All data is sent encrypted using the key specified in the skullsecurity link (can I assume it's the first four bytes of the War3 key hash?  I'm guessing there is a function to get the cd key hash). 
BNET sends a 0, I send a 0
BNET sends a lot of packets that total the length from the original 0 packet received

What is the relationship between game.dll and warden?  I'm seeing all these game.dll offsets used in Warden implementations.

Feel free to give me more links to read up on.  I'm clearly missing a lot of info.

[Joe]

I haven't touched the code since I released the latest beta, and all the code should be in the JARs for you to get a start. If you'd like, I can zip up my workspace and give it to you too.

[Hdx]

Considering that to currently implement warden you have to actually run the module, which Java can not do.
So pretty much you're screwed. If you're doing it in Java.

Warden reads your game's memory, hence why its reading game.dll

[thebigred]

Considering that to currently implement warden you have to actually run the module, which Java can not do.
So pretty much you're screwed. If you're doing it in Java.

Warden reads your game's memory, hence why its reading game.dll

I'm unfamiliar with what happens when you load the game, but do we know how much changes in memory, so we can't just dump the memory contents and change what we need?

[Hdx]

Considering you have no idea what you're talking about, I can say this, shutup. [I'm being nice]
Reading the game data isn't a problem, like I said, you have to actually RUN the code that is sent to you by bnet right now in order to run warden. This is because people have not taken the time to reverse 0x05/0x04.
Until such a time, java users are fucked, because java has no way of running x86 code.

[thebigred]

oh I see what you meant.  That clears up a lot for me.  I was wondering why I was getting warnings from an IPS about executing shellcode.  And those .bin files that are saved from the bypass are the code that gets executed on our end right? 

Thanks for all the info! 

[Hdx]

oh I see what you meant.  That clears up a lot for me.  I was wondering why I was getting warnings from an IPS about executing shellcode.  And those .bin files that are saved from the bypass are the code that gets executed on our end right? 

Thanks for all the info! 

The compressed encrypted version yes.

[iago]

You should implement a x86 interpreter/sandbox in Java that can run it. :D

[Camel]

You can run native modules from Java (heck, half the Java API is native anyways), but you have to follow a particular convention so that the VM can import and run the code. It would be feasible to write an adapter to do that, but it'd still only work on Windows machines.

You should implement a x86 interpreter/sandbox in Java that can run it. :D

Oh, the irony!

[iago]

You should implement a x86 interpreter/sandbox in Java that can run it. :D

Oh, the irony!

Especially if it's complete enough to run a JVM :)

[thebigred]

When I want to edit the Java control panel, there is a proxy option.  However, when I select a proxy server, my java apps (JavaOP in this case) does not use the proxy.  Is there any built-in java functionality to connect via a proxy? 

I'm wondering how much functionality needs to be implemented to run JavaOP through Ringo's or Hdx's Warden bypass.

[Camel]

Java does not inherently provide proxy support, but adding SOCKS4 is a trivial task.

Here's the Socket class I use in my bot; it supports SOCKS4 and SOCKS4a (Hdx's proxy does not presently support the SOCK4a extension): SOCKS4ProxySocket.java.

[Hdx]

Camel, if you'd like to msg me on bnet I'll see if I can add 4a in real fast.