Luigi Auriemma

aluigi.org (ARCHIVE-ONLY FORUM!)
It is currently 19 Jul 2012 16:32

All times are UTC [ DST ]





Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 26 posts ] 
Author Message
 Post subject: MULTI RCON
PostPosted: 07 Apr 2008 23:27 

Joined: 07 Apr 2008 13:36
Posts: 6
Ciao, Luigi

i need some help with multircon

i use the example from you to guess a sof2 mp test server rcon

multircon -i -b 20 azAZ09 74.196.216.238 20100

it came to the conclusion rcon as being doodoo status, this is not right and sounds incredibly stupid lol

Ciao, grazie Antonio


Top
 Profile  
 
 
 Post subject:
PostPosted: 07 Apr 2008 23:28 

Joined: 07 Apr 2008 13:36
Posts: 6
Wat am i doing wrong or cant it get it?


Top
 Profile  
 
 Post subject:
PostPosted: 08 Apr 2008 10:17 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
I don't see problems.
what exact error message you get?


Top
 Profile  
 
 Post subject:
PostPosted: 08 Apr 2008 14:06 

Joined: 07 Apr 2008 13:36
Posts: 6
I am not getting a error message it just does not guess it or really takes along time. It came up with the wrong password, a couple of times but it finally got the right 1. I have had a error message a couple times with it saying it doesn't not have a rcon?

Ciao


Top
 Profile  
 
 Post subject:
PostPosted: 08 Apr 2008 15:50 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
it's normal that it takes long time or some packets are lost or give errors for the usual reasons which are written also in the description of the tool:
- brute forcing takes time (ever) and it's results are not guarantee
- Quake 3 half second limit
- UDP packets

that's why the brute forcing options of the tool are not its primary purpose but only a thing I added for fun.


Top
 Profile  
 
 Post subject:
PostPosted: 08 Apr 2008 23:11 

Joined: 07 Apr 2008 13:36
Posts: 6
What can i use if a patch is used to prevent it? Is there such a patch?
And how can i get around it or are there any other tools to get me rcon?


Top
 Profile  
 
 Post subject:
PostPosted: 09 Apr 2008 09:25 

Joined: 07 Apr 2008 13:36
Posts: 6
Antonio_AUS wrote:
What can i use if a patch is used to prevent it? Is there such a patch?
And how can i get around it or are there any other tools to get me rcon? IS THERE A BETTER TOOL TO GET RCON?


Top
 Profile  
 
 Post subject:
PostPosted: 09 Apr 2008 11:59 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
I don't know about what patch you refer, anyway the only fix existent has the purpose of avoiding the blocking of rcon caused by the sending of rcon packets in less than half-second.

Exists a vulnerability which allows the downloading of files from the servers (so configuration files too) when sv_allowdownload is set to 1, the proof-of-concept for testing this bug is q3dirtrav available on my website


Top
 Profile  
 
 Post subject:
PostPosted: 09 Apr 2008 12:14 

Joined: 07 Apr 2008 13:36
Posts: 6
what is a just as good program to crack a sof2 rcon


Top
 Profile  
 
 Post subject:
PostPosted: 12 Apr 2008 08:33 

Joined: 09 Apr 2008 08:06
Posts: 66
Location: USA
Hey im having an issue with multircon as well. I would have made a new post but I said fuck it ill post here lol. But im using it for Counter-Strike and well ive tried plenty of times gotten like 2 thats it usually it gives me an error and it stops doesnt work. And this is what the error says "- Seems to exist a problem with the rcon challenge:
No challenge for your address." so thats about it and well heres what im using in my command line "multircon\multircon.exe -t 2 -d 150000 -w C:\multircon\pw.txt IP PORT"


thanks for any help apprectiate it :)


Top
 Profile  
 
 Post subject:
PostPosted: 12 Apr 2008 10:27 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
uhmmm, try to substituite "-t 2" with -i option and let me know if something changes.
What exact version of CS is it?
if you avoid to use the -d option, something changes?


Top
 Profile  
 
 Post subject:
PostPosted: 12 Apr 2008 22:03 

Joined: 09 Apr 2008 08:06
Posts: 66
Location: USA
well if i avoid the -d option then ill be banned after like 4 login tries lol thats why i use that one. and I tried the -i option and well it scanned and it didnt do anything it would say this "Error: no reply received, probably the server is offline" but i know the server is online its pretty weird. And well I said ive gotten 2 servers its because i tested it on my friends server to see if it would work and it did.


Top
 Profile  
 
 Post subject:
PostPosted: 13 Apr 2008 11:53 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
ok, I have understood what could be the problem, something about a timeout probably.
but I don't know if and when I will fix it (the brute forcing part of that tool is not a priority)


Top
 Profile  
 
 Post subject:
PostPosted: 19 Apr 2008 04:43 

Joined: 09 Apr 2008 08:06
Posts: 66
Location: USA
ok cant wait for u to fix it if u do :D lol i love how u put links so ppl will understand basically lol


Top
 Profile  
 
 Post subject:
PostPosted: 19 Apr 2008 10:12 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
ok you don't need to wait more, I have added an instruction which automatically reget the rcon challenge when expires (when it shows that error message).
I don't know if this works in practice since I have not tested it anyway try and let me know


Top
 Profile  
 
 Post subject:
PostPosted: 26 May 2008 01:27 

Joined: 26 May 2008 01:24
Posts: 5
I know this is sorta off topic but could someone please answer this to me my question is. What is the string to make it where i could brute force a server an make it where the admin could not login on the Rcon? I know this is possible but i don't know the exact command string. Please help an respond. Thnx


Top
 Profile  
 
 Post subject:
PostPosted: 26 May 2008 10:59 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
A classical brute-forcing example is the following:

multircon -i -b 8 azAZ09 SERVER PORT

and this is a rcon disabler example:

multircon -x -i -b 10 09AZaz -d 100 SERVER PORT

A couple of other examples are available in the section of the project:

http://aluigi.org/papers.htm#q3


Top
 Profile  
 
 Post subject:
PostPosted: 26 May 2008 12:44 

Joined: 26 May 2008 01:24
Posts: 5
Grazie. Aluigi!


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 04 Jan 2009 21:26 

Joined: 04 Jan 2009 21:24
Posts: 1
Well I cannot seem to get it to work. It says socket timeout, whats goin on here?


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 04 Jan 2009 23:52 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
socket timeout means that the server has not replied to the information query packet or to the rcon one.
check if both the IP and port of your server is right and specify -t followed by the type of server (0, quake 3 engine, is the one used by default if -t is not used):
0 = Quake 3 engine 1 = Medal of Honor 2 = Half-Life
3 = Doom 3 engine 4 = Quake 2 engine 5 = Project IGI 2


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 20 Feb 2009 16:30 

Joined: 14 Aug 2008 14:29
Posts: 4
For the version 48 Counter-strike check server info packet:
FF FF FF FF 54 53 6F 75 72 63 65 20 45 6E 67 69 6E 65 20 51 75 65 72 79 00

the ASCII is..
....TSource Engine Query.


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 20 Feb 2009 17:18 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
source engine uses a tcp based rcon protocol which will be not implemented in multircon so I think that version 48 of css uses just it, right?


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 21 Feb 2009 06:55 

Joined: 14 Aug 2008 14:29
Posts: 4
What i know is that version 48 is just changed the info part and the data while playing.
I don think it changes to tcp based ( Open the HLDS and i don think there is changes. )
I wanna try the modify but i have not enough library of the src..

sry of the bad eng =P


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 21 Feb 2009 12:10 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
if the rcon protocol is the same you can just force the half-life rcon type with -t 2 so the query no longer matters


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 16 Apr 2010 04:23 

Joined: 16 Apr 2010 04:21
Posts: 1
hey, how can i get this to work for cod4, or is there a hack out there for call of duty 4??

Cheers
SNIPES


Top
 Profile  
 
 Post subject: Re: MULTI RCON
PostPosted: 16 Apr 2010 20:27 

Joined: 13 Aug 2007 21:44
Posts: 4068
Location: http://aluigi.org
it works without problem by default with cod4:
multircon 1.2.3.4 28960


Top
 Profile  
 
Display posts from previous:  Sort by  
Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 26 posts ] 

All times are UTC [ DST ]


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for: