Welcome
Ladies and Gents:

These forums are now closed and registration disabled.

Please join us at our new forum on Proboards. Our hope is that these new forums are more stable, provide more and better features, and allow continuation of the project forums in a safer, more secure, long term environment.

me3explorer.proboards.com

--The ME3Explorer Team

Current Research: Network

Technical research related to the structure of Mass Effect game files.

Re: Current Research: Network

Postby Erik JS » 03 Aug 2014, 01:02

This is more or less copypaste from what I sent to WarrantyVoider via PM earlier. I suppose this may help other people figure stuff out.

I've been doing my own research regarding mp, using Cheat Engine.

http://www.mediafire.com/view/4jh80ez1qo1qcnt/LobbySetup.png

Whenever the player joins a game (create match or search match), ME3 reserves some space in memory for this "lobby setup." As you can see in the image, it stores usernames, IP's and each player gets some kind of ID (which is only used for lobbies).

There's another space of memory which I call "player pool." Each slot there has 0x180 bytes. First player is always you (loaded during main menu), then your friends. After that, the pool gets filled with whoever you encounter in lobbies/matches. You can get username, language (I believe it's set through EA's site rather than the Origin client), country and the profile ID from anyone there. By logging into N7HQ, you can actually see your own profile ID without much fuss. This image compares profile ID in player pool and the page source code of N7HQ:

http://www.mediafire.com/view/b8fj0v540jndlou/ProfileID.png

Some little remark: enBR is inverted because location is being passed around as a number. If we take a look at WarrantyVoider's and coolguyxp's posts on page 10 and convert their LOC's from hex to ASCII, we'll have this:
LOC: 656E4445 => enDE
LOC = 1701729619 (0x656E5553) => enUS

Here is a .ct file for Cheat Engine with relevant entries:

http://www.mediafire.com/view/hn2k777k5h24f6d/MassEffect3.CT

This is a program I created in order to have this stuff in a more "readable" form:

http://www.mediafire.com/download/xd6mfwzf421dk55/ME3PlayerReader.rar
ME3 Private Server Emulator: @ ME3Tweaks | @ SourceForge | @ GitHub | @ Dropbox
Image

Erik JS has been thanked by:
User avatar
Erik JS
User
 
Posts: 124
Joined: 31 Jul 2014, 14:44
Has thanked: 13 time
Have thanks: 77 time

Re: Current Research: Network

Postby WarrantyVoider » 03 Aug 2014, 01:28

thanks for contribution, but I finally got it working, but its still good to know!

http://me3explorer.freeforums.org/post11681.html#p11681

greetz WV
always backup your files!
mess with the best or die like the rest!
"I tried everything!" - "mkay, please list that..." ; please dont pm me for help, we have a help section
User avatar
WarrantyVoider
Emeritus
 
Posts: 2270
Joined: 22 Aug 2012, 11:33
Has thanked: 480 time
Have thanks: 626 time

Re: Current Research: Network

Postby WillettaLuette » 24 Oct 2014, 03:58

Post contents deleted for spam.
WillettaLuette
User
 
Posts: 1
Joined: 24 Oct 2014, 03:49
Has thanked: 0 time
Have thanks: 0 time

Re: Current Research: Network

Postby Eddymvp » 05 Mar 2015, 19:43

I'm working on a similar project for a different game and they use the same servers, I've been recording session win wireshark for login origin, login game, logout and the steps are very similar to this. I believe the communication between the game and the server is not encrypted as I can clearly read the data in wireshark.

When I click on one of the menu in the game, it sends data like this to the blaze server.
Code: Select all
&lgr aT=00000152
STR=
TLM3=00000152/-;00000000/OSDK/STRT/TLM3/data=Start,00000152/-;00000001/OSDK/VERS/TLM3/data=07_01_18_00,00000152/-;00000002/DSCK/VERS/TLM3/data=77_170_93_40,00000152/-;00000003/BLAZ/VERS/TLM3/data=77_170_93_40,00000152/-;00000004/OSDK/DATE/TLM3/data=Nov62014,00000152/-;00000005/OSDK/TIME/TLM3/data=171259,00000152/-;00000006/HDWR/LANG/TLM3/data=1,00000152/-;00000007/BOOT/SESS/STRT/bsig=DL_P02-1152919-kettle-clang-final&vers=PG&edtn=0,00000152/-;00000008/BOOT/SESS/HRDW/mntd=1&knct=0,00000152/-;00000009/MEMM/MGTD/STAT/stag=1&allc=0&hial=0,00000152/-;0000000A/MEMM/MGT2/STAT/stag=1&allc=0&hial=0,00000152/-;0000000B/MEMM/MRPS/STAT/stag=1&allc=0&hial=0,00000152/-;0000000C/MEMM/MRSV/STAT/stag=1&allc=0&hial=0,00000152/-;0000000D/MEMM/MRSS/STAT/stag=1&allc=0&hial=0,00000152/-;0000000E/MEMM/MGTD/STAT/stag=2&allc=0&hial=0,00000152/-;0000000F/MEMM/MGT2/STAT/stag=2&allc=0&hial=0,00000152/-;00000010/MEMM/MRPS/STAT/stag=2&allc=0&hial=0,00000152/-;00000011/MEMM/MRSV/STAT/stag=2&allc=0&hial=0,00000152/-;00000012/MEMM/MRSS/STAT/stag=2&allc=0&hial=0,00000152/-;00000013/GAME/TMNG/LDTM/mtch=None&home=Unknown&away=Unknown&head=0&vers=PG&gmod=AttractN&sStg=PreStartUp&eStg=StartUp&time=12979
Eddymvp
User
 
Posts: 15
Joined: 05 Mar 2015, 17:03
Has thanked: 0 time
Have thanks: 1 time

Re: Current Research: Network

Postby WarrantyVoider » 07 Mar 2015, 09:10

@anyone_who_researches_here: obviously we wont come far if you dont offer full network dumps, then again theres your personal information in it and you probably dont want to share with entire internet. we have a subsection for PSE (private server emulator) which is pw secured. you can ask me for the pw if want to put a dump there and others can help you examine it... just an idea here

@Willa: I guess anyone would like help in networking, I never met anyone who thought he knew it all... plus, I dont have your skype name

@eddy: find out the real url of the servers, learn what the "hosts" file does and build a simple proxy to see live ONLY the game traffic, then examine how these messages change (its cleartext nevertheless)

greetz WV
always backup your files!
mess with the best or die like the rest!
"I tried everything!" - "mkay, please list that..." ; please dont pm me for help, we have a help section
User avatar
WarrantyVoider
Emeritus
 
Posts: 2270
Joined: 22 Aug 2012, 11:33
Has thanked: 480 time
Have thanks: 626 time

Previous

Return to Technical Research

Who is online

Users browsing this forum: No registered users and 0 guests

suspicion-preferred