WPE Pro Tutorial

---ULTIMATE WINSOCK PACKET EDITOR PRO TUTORIAL---
Written by DJRehab

I Introduction and Required Files
II Basic Overview of WPE Pro
III Understanding Packets
IV Sniffing Packets
V Sending Packets
VI Filtering Packets



PART I - Introduction and Required Files

Winsock Packet Editor Pro (referred to as WPE Pro) is a packet editing utility

used for many purposes related to network analyzation, security, and game hacking (which

is what will be covered in this tutorial). WPE Pro analyzes, or "captures" packets (data)

sent and recieved over a network, in this case the internet. Packets are divided into raw

bytes which are hex codes which give issue commands for the server to execute (SENT

packets), or issue commands for the client to execute (RECIEVED packets). Game hackers can

use WPE Pro to modify the packets sent/recieved by the client or to send a single or set

of packet(s) to a server. Modifying packets can completely change the outcome of the

action taken by the client/server to the advantage of the player.

To recieve a copy of WPE Pro go to http://wpepro.net/index.php?categoryid=9 and

while you are there, snag a copy of Perm Edit as well. Perm Edit can be used to grant

system access to WPE Pro allowing it to target files which are hidden processes (World of

Warcraft is a good example).


PART II - Basic Overview of WPE Pro

In this section, I will briefly describe the functions available in WPE Pro. Note

that more information on these functions will be explained later on in this tutorial.


Target Program - This will allow you to select the process to capture packets from

(Your game client's .exe file) If you cannot find your game client in the process list,

you need to grant WPE Pro system access with Perm Edit.


Trace Console - This consists of a Play Button, Pause Button, and Stop Button

which will start, pause, and stop packet analyzation (or sniffing). It also displays a

buffer gauge which shows how much of your network resources are being used by the game

client, and a Packet gauge showing how many packets have been captured by WPE Pro. (Click

on "Trace Console" next to "Target Program" to show/hide this feature). You can also use

the Detail tab to display a more detailed packet capture display telling how many packets

captured were Sent, SendTo, Recieved, RecievedFrom. To return to the default gauges click

the "Gauge" tab.


Actions Console (Filters)- This display by default your Packet Filters (which are

used to modify or change packets). In this console you can double click a filter to change

the settings of the filter. To start filtering (modifying) the packets just click the "On"

button at the top of this console and click "Off" to stop filtering. (Note that packet

filters cannot be edited while the packet filter feature is ON. You can also Save, Save

As, or Open with the Folder and Disk Icons. The "X" Icon will erase the selected filter,

and the Trash Can Icon will erase all filters in the list.


Actions Console (Send) - Clicking the "Send" tab in the Actions Console will

display the "Send List" which can be used to send a list or single packet to the server

any amount of times (1 time - Continuously Send). To add a packet to be sent to the server

click the Blank Page icon, and input the data to be sent to the server. Make sure the

"size" of the packet is the size of the original packet and identical to the original

packet you captured that you wish to send. You can also save/open packet lists in this

window for future use of the same hack you have created. The start/stop buttons will start

or stop a packet send. Make sure that you set the socket ID for the packet before sending

to the server or it will result in error (see "Sending Packets" below).


Packet Data Window - After you capture packets and hit the stop button, a window

will appear with the information captured. It will display the source of the packet, the

destination of the packet, the packet size, all the bytes in the packet, and whether it

was a Send, SendTo, Recv, RecvFrom packet. Here is where you will collect information for

building Send Lists or Packet Filters. Upon selecting a packet, all the data will be shown

in the bottom half of the window (which is useful for packets that will not fit in the top

half of the window as it only shows the first 42 or so bytes of the packet) To save the

list of packets captured, you can save a text file in the "File" dropdown menu with

File>Save As>Text File I always use Hide IPs as it is easier to compare this way.


PART III - Understanding Packets

First of all, before thinking "Hey, I get it now lets go hack me 80 Billion Gold,

Buy Uber Weapons, Hack my character to level 999 and sell my account on EBay" STOP. It's

not gonna happen like that and you are better off reading the rest of this tutorial before

even attempting something so childish...but if you must go waste an hour of your life and

than come back to this tutorial.

Before you hack the world mr. hot head, you must understand a packet and how the

client and server reacts to them. A packet consists of bytes which are hex-based codes

ranging from 00 to FF in hex. If you do not understand Hex I will give a little example

but will not linger on the subject (if you don't understand use Google) 00 - 09 are just

that...0 - 9...but 10 in hex is not really ten, but 16.....0A is 10 in hex. Below is a

little table to help understand Hex Codes:

00 - 0
01 - 1
02 - 2
03 - 3
04 - 4
05 - 5
06 - 6
07 - 7
08 - 8
09 - 9
0A - 10
0B - 11
0C - 12
0D - 13
0E - 14
0F - 15
10 - 16
11 - 17
12 - 18
13 - 19
14 - 20
15 - 21
16 - 22
17 - 23
18 - 24
19 - 25
1A - 26
1B - 27
1C - 28
1D - 29
1E - 30
1F - 31

and so forth all the way up to FF which is 255.

Every byte in the packet feeds the server information on what action to perform...here is

an example packet which is not real or belonging to any game at all, but just an

example...

20 00 3A 4C 00

The first byte (20) or two bytes (20 00) USUALLY tell the server which action to

perform....lets pretend the first two bytes 20 00 tell the server to move the character (I

know this because I sniffed packets of only moving the player around and taking no other

action and they all started with the same two bytes). the bytes following a command are

arguments or parameters for the command "Move Player" meaning the programmer made the game

to accept three arguments for the command "Move Player" (assuming this is a basic packet

structure...some programmers have better security than a plain packet like the one in the

example, but moving on...)

PART IV - Sniffing Packets

Using the example made up game from above I will teach you how to Sniff and do a

basic analysis on packets. After Targeting your client program (Click "Target program">

"You Game Client's .exe Here") Click the "Play Button" on the Console window. Go back to

the game client, and move up...no other direction, just up. Go back to WPE Pro and click

the "Stop Button" in the console window...if you dont know what Play/Stop buttons look

like you are retarded and hopeless to the game hacking community stop reading now, go to

walmart and buy a cheap DVD Player and read the manual, and than come back

After capturing packets of the player moving in no direction but up you may get the

following packets:

(NOTE ONLY LOOK AT THE "SENT" PACKET TYPES NOT THE "RECV"...YOU CAN DISABLE EVEN CAPTURING

THE RECV PACKETS IN THE DROP DOWN MENU "View > Option"...I ALWAYS UNCHECK RECV and

RECVFROM AS THESE ARE NOT USUALLY NEEDED IN PACKET EDITING)

20 00 3A 4C 00 (The original "Move Player" packet from above /\)

20 00 3A 4B 00
20 00 3A 4A 00
20 00 3A 49 00

See the pattern here....thats what packet sniffing is about, patterns and comparisons. we

now know that the the 2nd argument (4C in the original packet) is the Y position of the

character. We can perform many tests to figure out (decode) what the other arguments mean

now...so lets just move to the left while scanning starting with the original packet...

20 00 3A 4c 00

20 00 39 4C 03
20 00 38 4C 03
20 00 37 4C 03

Can you guess what the 1st argument is......if you guessed the X position of the player,

you are correct! but heres another one for ya....we got one more parameter (the last byte)

but what could it be....hmmmmm

first one to reply with the correct answer gets a cookie :-)

So now we got the "Move Player" command down....the first two bytes tell the server to

move player, the next byte is the X position followed by a byte containing the Y position,

and than the ********* of the player as the final byte.

I smell a warp hack in the making right now....hopefully you get the just of what packets

are/do now and how to scan for them...we will now continue on to the next section on

sending packets!

PART V - Sending Packets

Using the above example I made up in the "Sniffing Packets" section I will teach

you how to send packets. Now that we know the break down of the "Move Player" command we

will make a basic teleport hack using the "Send Packet" function of WPE Pro. First step is

to add the packet to the list.

There are two ways we can do this. The first step in both ways of sending packets

is to click the "Send" tab in the Actions Console (The bottom tabs on the left side of the

screen where it says Filters/Send).

The hard way is to manually add the packet by clicking the "Blank Page" Icon. We

know the size of the "Move Player" packet is 5 bytes so adjust this setting to 5 and you

will have 5 bytes to input data into. You can manually input "20 00 3A 4C 00" which is the

original example packet. Now modify byte 3 and 4 to hex values of the X position and Y

position you wish to warp to and name it "Teleport Player" (bytes 3 and 4 are the bytes

containing "39 4c" if your lame and can't count).

The easy way to add the packet is go the Packet Analysis Window and right click on

any of the "Move Player" packets and click "Add to Send List" and than double clicking on

the packet that was added to the send list and editing the X/Y position bytes.

Before sending a packet you must always get the Open Socket that the client is

using which is very easily done...just right click any of the Move Player packets in the

Packet Analysis Window and click "Set Send List with this socket id".

Now in your send list, click the check box and check the packet you have created

than click the Play button. In the pop-up window click the radio button labeled "(NUMBER

HERE) Time(s)" and make it 1 Time. The timer does not matter as it is just the pause in

milliseconds between sending the packet list again (which is not applicable here as we are

sending it one time). Make sure the radio button "Open Socket" is marked, and the open

socket is already put in the box because we used "Set Send List with this socket id".

Click the play button.

If the packet was sent successfully the Action Consol will display "Sent: 1

Error: 0" if it does not, than you're retarded and didnt follow directions. go back to the

client and OMG I'm standing on a wall!.....well...just modify the packet to a different

location, and send again until you're at the right position :-)

If you did not teleport, the client may be holding you X/Y position locally as

well which means you will have to log out, than log back in....than you will appear at the

location you warped to.....did I just hear a n00b shouting "w00t b1tchez"??? :-D

Part VI - Filtering Packets

Now you know how to send packets and you feel like king shizznit dont you? wel its

not all over yet...most of the popular game hacks used are actually through packet

filtering. In the Action Console click back over to the "Filters" tab and it will show a

filters list. now lets start sniffing packets and use a skill...we'll say "FireBall Lvl 1"

on the "Wild Pigmonkey"...now stop the sniffing and the Packet Analysis window will come

up with something like this:

1A 3B 34 56 08 22

Now sniff again using the skill "Earth Blast Lvl 1" on the same enemy we will get

this:

1A 3B 2B 70 08 22

BINGO!!! the 3rd and 4th byte is the skill used
(FireBall = 34 56 and Earth Blast = 3B 70)

Lets make a filter....Double Click on "Filter 1"

In the "Search" fields click on the box on the table under byte "003" and type "34 56"

(the bytes from a FireBall skill)
Now directly under that in the Modify Fields on byte 003 and 004 type for instance "96 2A"

Now uncheck "RECV and RECVFROM" in the "Search In:" section of the filter window.

Name it "FireBall Hack" and click Apply.

Check the box next to "FireBall Hack" and click the "On" button right above the top

filters name, and go back into the client....now cast FireBall.

Holy hell you just casted "Doom Ray Lvl 9" and cause about 20 million damage on the

beast...to bad the admin was watching you and banned you LOL....friek it just create

another account.

Part VII - Closure

Well that's basically it....but there will be more to come when I think of what

needs added to the tutorial. If anyone wishes me to add to this please PM me what you

think I should add as I am always open to suggestions and enjoyed writing this tutorial

for you guys. I hope this has helped someone out there and I wish you all a happy hacking!

Credits go to DJRehab

51 comments:

Anonymous said...

That shit rocks hard core!!! :)

Thanks alot bro!

Anonymous said...

anyone else noticed that WPE is full of trojan spies? =/

jhay said...

Can i make a duplication method with this wpe packet editing? Just wanna try ! what byte do items exist? Kinda Dizzy reading :p

besjan said...

hey did any one do doomray from the numbers given (34 56 n 96 2a )or did he/she just put them numbers as an example? some one please comment back.

Anonymous said...

lol that was just a joke :p it just doesnt works :) but it's good for a biochemist that needs to plant 1000 mushroom spore :) ... or a sniper mvping with ds

Anonymous said...

can you do an godmode hack???

Ernie Harlina said...

here the place bot with config, hexed dual client, ro tools
http://planet.time.net.my/KLCC/ragnarokbot

Anonymous said...

can someone explain to me more about the program i dont really understand

Anonymous said...

can someone tell me about what we do after we capture the files i dont really understand the filter part the changing code and sending new ones

Emelie said...

Hi, could you or anyone who did succsed with this add me emelie_holmberg415@hotmail.com
Thanks//emmie

Lucky said...

HI iam from India. My game guard will detect the Wpe need help
any 1 knows solution mail to suryateja008@yahoo.co.in

DJRehab said...

Hey I wrote this tutorial and thank you very much for giving me credit and not stealing my work :-)

All the examples are NOT from Ragnarok in the tutorial and are put there for mere example purposes...if anyone needs help they can add me on AIM - "Emcee Rehab" or email me at beatlabproductionz[AT]yahoo[DOT]com

The tutorial was written in such fashion as just using the program from ANY game that is multiplayer not just RO but I posted it orignally on MPCForums in RO section

and WPE is not packed with trojans or spies....virus scanners will say WPESpy.dll is a virus because it does spy on internet activity, but thats what the program was designed to do...

and as to game guard...ur retarded trying to hack an official server...join a private one for hacking dumbass

h4x said...

first that all thx for ur tutorial...
well my question is what can i do to avoid certain checks that i think my server has...
why i think this? cause i had a ninja and i can only change some skills for others ninja skills and only if my ninja have learn them...

first time i sniffed when i was doing skills i get:

0000 72 00 34 31 65 (skill lvl)00 01 00 66 (this is the skill)00 16 02 30 62 35 32 r.41e...f...0b52
0010 37 34 31 30 00 5C 9B 8E 06 7410.\...

thats for the skill crisom fire formation lvl 1, my ninja has it lvl 6, when i put it lvl 2 for example i get:
0000 72 00 32 66 36 (lvl 2)00 02 00 37(same skill) 00 16 02 34 64 64 32 r.2f6...7...4dd2
0010 37 34 31 34 00 5C 9B 8E 06

but if i put it in lvl 9 in client i do the skill lvl 6 cause is the max lvl my ninja has learnt the skill...
i can change the skill for other but only if my char has learnt...
then modify the packets not seems very useful at least because a dont know how to fix this problem...

any help?

DJRehab said...

It checks to see if your player knows the skill on the server-side before allowing you to do so....this has been fixed a long-ass time ago, try to find a diff exploit....I havent even played RO in so long so I wouldnt be able to help with it right now (I am downloading Rebirth RO right now tho so maybe I'll make some more tuts if ya'll are interested?)

h4x said...

thx for ur answer...
i found some info but all of them indicates that the only useful thing we can make with wpe is cultivation without delay...

perhaps is premature for me to be sure of that but for now i think thats right...

at least i'm interested if u find some more useful thing to do with wpe, well ty for reading...

PD: im not english speaker so my english isnt the best xD

h4x said...

i have to thx DJRehab couse he introduce me wpe and wake up my curiosity about it...

i like to share with u some very interesting links...

http://www.elitepvpers.de/forum/ragnarok-online/
http://www.ingamers.de/ro-exploits-tools/rpe-sammel-2586.html
http://www.mpcforum.com/showthread.php?t=216470


there is a lot of info about skills smpamming and utilities for sniffing =P...

emocore said...

oh damn this tutorial is so easy to adapt. thanks for put a lot of effort in.
i would like to suggest if u can also include pictures,screen shot that would make if 'readable'. and also attemp on several type of games, such as FLASH , HEAVY Games, browser games, or such with different method of hacking, rather complex a bit than just now, so these ppl can get a picture out of it. Ive learn a lot by this, and still learning out of it. Its pretty hard at first,but thanks for deep briefing that helps at the end.

ps. anyway to others :advice: by sending fake / spoof packets to the server in a way to reach certain 'power ups' are proven illegal and u can go to jail with that.

$0.02

Anonymous said...

i wanted to say thanx im new to hacking and this stuff but I was going to use this for online games whats the wost that can happen.

Thorinius said...

I dont play on an official server (RebirthRO) but when i target the game it closes down... any help? or do i need a different server?

Anonymous said...

can i manipulate success rate in forging using wpe or its still server side? thanks

Anonymous said...

Sir! do you have a Item Duplicator or Zeny Duplicator?? i want to try this in VanRO. A Private Server coz, im so poor there!! please sir if you have please send me in my e-mail or contact me in my Yahoo Messenger
lordofavernus231@yahoo.com

Sir!! please im begging of You!!!
Good Bless You Sir!
and More Power!!

Chefboyrdee said...

hey guys, I Have read through the tutorial, and found the HEX version for move. Everytime i send a packet i get Disconected anyone know how come.

I ahve used this before with DS like 1 year ago it worked then.

Anonymous said...

Hey bro can you have a video tutorial...I'm a noob to this...

Anonymous said...

"
1A 3B 2B 70 08 22

BINGO!!! the 3rd and 4th byte is the skill used
(FireBall = 34 56 and Earth Blast = 3B 70)
"

Huh, Earth blast isn't = 3B 70 ! :o It's egal to 2B 70 no?

Humm... And "Now directly under that in the Modify Fields on byte 003 and 004 type for instance "96 2A"" Why "96 2A"? I don't understand this stage. Can you explain me? Thanks!

Kaisar said...

I`m starting in the hack world (It's only for experiments... yeh, it is no? yeah no?). By the way, thanks a lot bro. That's the way man!

Anonymous said...

Hi can any one tell me whats the packet for successful deal? thanks and how yo disable gameguard...


email me at: exckel@gmail.com

Anonymous said...

what happens with the received files? The monster drops are the received files? or what are those?

Anonymous said...

anyone have ivalice ro hack?

Demon Saske said...

guyz can you teach me how to use wipe on vanRO..
i try to experiment on asura when u asura someone everywhere u click u can asura on ur target...plz help me on this..xD

Anonymous said...

bro...plz teach me..i dont understand that on the filter..
u said put number 96 2A on the modify field and i dont understand why 96 2A?how to hack other skill if that 96 2A just for fire ball only..plz emel me at eremes91@yahoo.com
plz..need your help..plzz

Anonymous said...

help please! i play on RebirthRO, but the only program that shows up is RebirthRO.bin, and I can't find the exe file for the game... rebirthro.bin shows up in PermEdit and i grant it permissions but it still wont show up in wpe.

thanks for the help!

Anonymous said...

please anyone give me filter WPE you can send me to email " thepureknight@gmail.com " thx ^^

chidori cheater said...

ok for all who don't know
to bypass gamegaurd(gg)
you need to find a fake gg to replace the real one
then assign it to the reall gg's spot then that will letwpe to go thru and cheat the game that was protected

ps: be carefull or u might run into truble with another hacker and get a virus =(

radz death said...

Bro Thanks for introducing WPE/RPE to me..I heard a lot of this..WPE/RPE like that and that but when i download ed it i didnt understand.but thanks to you bro.i can spam skill like devotion(skill of palladin)and also for the Extrimity Fist*not sure of the spelling ^_^*(skill of Champion) thanks a lot bro.And also, add me in YM.i know some hexed codes(like multiple window on ragnarok or see WOE damage) this is my add..radz_knight01@yahoo.com..thanks.

Anonymous said...

Djrehab is such a lame retard!
he doesnt even know the correct skills in RO and he doest even had a lame idea bout packet sniffing, hes jus a ashole he a lameass!!!

Malborojones said...

Good tut, made 2 years ago :) best one I've found. Never played RO though, I'll give it a try one day, I'm going to try hack Maple Story, Never played it, but I'm going to test hacks on it to get used to it. Thanks... Malb

Anonymous said...

I was totally following you towards the beginning, but shit started to fall apart after I read the following:
"To start filtering (modifying) the packets just click the "On" button at the top of this console and click "Off" to stop filtering. (Note that packet filters cannot be edited while the packet filter feature is ON."
This is totally confusing. To start modifying, I am supposed to do something that does not allow me to modify? I don't get that. To start modifying something, shouldn't I probably click on something that does allow me to begin modification?
Maybe what you meant was, in order to find the packets to modify... rather than to start filtering...?

At any rate, I thank you for trying, but this tutorial is far too unclear for this college graduate to decipher.

Anonymous said...

you guys area all retards, you have no idea what hacking with WPE is, if they find out which is so easy for them to do you will get jailed right away

Anonymous said...

YEA IT"S TRUE WHAT HE SAID

Anonymous said...

hacking a game is not against the law, is against the rules. >.<
therefore you can't get "jailed"

icon said...

anyone can help me about this error. Windows cannot access the specified, path, or file, You may not have the appropriate permissions to access the item.

icon said...

anyone can help me about this error. Windows cannot access the specified, path, or file, You may not have the appropriate permissions to access the item.

Mattranze said...

yeah.. i got the same error too >.< maybe its anti-virus program on your computer .. Uninstall it >.<

JaniL™ said...

@icon
@Mattranze

try right click on WPE.exe and then "RUN AS ADMINISTRATOR" if you are in VISTA

for WINDOWS XP try logging in as ADMINISTRATOR

Joe said...

Could someone help me with making a filter to allow my Cart Termination spam to hit any player in pvp? When I sniff the packets out and try to run it it only spams CT on the player I first used it on, and no one else, how do I fix this?

r a w r ! said...

i use both WPE Pro and PermEdit but it still cant detect my RO .exe file.can u help me pls

Khalid said...

Hi
1st, thanks !

2nd, I've a problem : when i open WPE the gabe said there is an eror and it close ! , so what can i do ?

if any one can help me in that plz add me :
kon-1991@hotmail.com

ice_pick said...

can someone send me instruction and bot application for VANRO private server HR. Please i've been playing for too long and i think i'm the only one who doesn't have bots. every one is getting rich but me. here is my email..ice_pick13@yahoo.com

Junkies said...

HI, I'm new here at this forum. Can anyone help me find hex codes to see the HP of the Emperium during WOE and the damage of the SinX breaking the Emperium during WOE. Thx in advance

Marshall said...

Hi DJRehab,

I thank you for giving such information. I would just like to learn on how will I place the packets for Asura Strike correctly, because after I recorded my Asura Strike skill on Ragnarok, then I sent it using WPE, it's doing fine, but my problem is it is only attacking one Monster/Player. My question is how will it trigger the skill for random Monster/Player automatically? How will I set the packets for it?

Thanks,

Marshall said...

Hi DJRehab,

I saw your post in Google regarding WPE packets sniffing, and I thank you for giving such information. I would just like to learn on how will I place the packets for Asura Strike correctly, because after I recorded my Asura Strike skill on Ragnarok, then I sent it using WPE, it's doing fine, but my problem is it is only attacking one Monster/Player. My question is how will it trigger the skill for random Monster/Player automatically? How will I set the packets for it?

Thanks in advance!