Thread: Runeagent

Results 1 to 3 of 3
  1. #1 Runeagent 
    Registered Member
    Join Date
    Feb 2020
    Posts
    6
    Thanks given
    0
    Thanks received
    0
    Rep Power
    0
    Anyone have the latest release? I haven't found anything along the lines of it.
    Something similar would be nice too, that's updated and actually is active
    Reply With Quote  
     

  2. #2  
    Registered Member
    Tamatea's Avatar
    Join Date
    Aug 2010
    Posts
    1,317
    Thanks given
    401
    Thanks received
    357
    Rep Power
    2457
    Quote Originally Posted by Deedsrs View Post
    Anyone have the latest release? I haven't found anything along the lines of it.
    Something similar would be nice too, that's updated and actually is active
    Wrong place, also i doubt many developers would help you get a tool that is used mainly for exploiting RSPS.
    Spoiler for sig too large:


    Attached image
    Attached image
    Reply With Quote  
     

  3. #3  
    A RSPS Aristocrat

    BooZee's Avatar
    Join Date
    Jul 2014
    Posts
    144
    Thanks given
    222
    Thanks received
    88
    Rep Power
    300
    Unless there was something privately developed, I do not believe there has been an update to it in years.

    Anyways, last time I did this was ages ago, so I'll do my best...
    Attached image

    Github repo: https://github.com/silabsoft/RuneAgent. You can build it yourself.

    If you're too stupid to do that, here is a build that i wiped the config for: https://mega.nz/file/ssZCTC6Z#HMKGob...wmuxU2GqrQcgJc
    Replace the client.jar, ByteStream, and GameClient.

    Then you can do the fun part of deobbing the client.


    Youtube tutorial ^ (can't vouch for it; didn't watch it.).

    Here is a brief tutorial I personally archived from the bug abuse forum RSPUnit from about 6 years ago (Credits to Yalo).
    quote='Yalo' pid='20960' dateline='1406925807']
    [align=center]Delving into RuneAgent[/align]


    RuneAgent, in all simplicity, is a Javaagent used to find exploits in Runescape private servers. Not going in too deep, it's basic function is to take note of the packets sent whilst functioning a specific client, and to send them right back, kind of like a reflection bot but with less specific parameters. Using the output, you can make skill bots with loops, spawn objects on servers who have no checks, and find countless exploits with teleports, minigames, negative integer spoofing, and force-logs whilst sending the wrong packets at the wrong time.

    Setting up RuneAgent isn't a big deal. All we have to do first is create the right configuration script so that RuneAgent can identify which client we are trying to sync with. Without a script that correctly defines (sp2) or (p1) in relation to the client's code, RuneAgent will not be able to tell us the output a server is giving us.

    We download RuneAgent 1.3 with RuneTek5 support (377-6xx i think) here:

    [align=center]Getting a hold of Isaaccipher (pisaac1) to make a Config[/align]
    __________________________________________________ ___________
    These are the methods defined by isaaciphers in a de-obfuscated client.

    p1 - WriteWordBigEndian
    p2 - WriteWord
    p1isaac - CreateFrame
    p4 - WriteDWord
    ip4 - Method403
    p8 - writeQWord
    pjstr - WriteString
    np1 - Method424
    sp1 - Method425
    ip2 - Method431
    sp2 - Method432
    isp2 - Method433
    sp4 - No need to define this in our script.

    All runescape packets start with an opcode that is in encrypted with an isaaccipher key (pisaac1) then can include a variety of methods. These methods can be renamed, using obfuscation in clients. Since clients are usually obfuscated and rename methods, we have to make edits to our config.js. The CreateFrame method is linked to p1isaac due to runescape's isaaccipher. However, CreateFrame can be renamed. To define the alias of CreateFrame, we would need to make a line in config.js telling RuneAgent that p1isaac ciphers "___" Example:




    In any other case, "G" is just the CreateFrame renamed.

    - Typical Config.js

    - Renamed Client Config.js

    As I said, not going in-depth, but you can see the differences in each configuration. A typical client's p1isaac isaaccipher is named "CreateFrame". In a renamed client, it can be named anything in correlation with the obfuscated client, maybe "z" or "X", you just have to find out what that name is. I recommend reading the class with cavaj.exe and comparing deobbed and obbed client classes. If you want more info on Runescape Protocol go here:


    [align=center]Heirarchy and Run.Bat Creation[/align]

    Here is the folder Heirarchy with the latest RuneAgent that supports RuneTek 5:

    C:\RuneAgent\dist



    -RuneAgent.jar
    -Run.Bat
    Code:
    java -Xbootclasspath/a:"RuneAgent.jar";"lib/bcel-5.2.jar";"lib/rsyntax.jar";"client.jar" -javaagent:"RuneAgent.jar"=config.js -jar client.jar
    pause
    Just use this code for your run.bat.
    -Config.js - (Error fix in spoiler)
    [spoiler] Use this code in the first line of your JavaScript Config:
    load('nashorn:mozilla_compat.js'); //Java 8
    [/spoiler]
    -Client.jar (Always rename the client your using to Client)
    -lib
    [spoiler]
    RuneAgent uses bcel-5.2 and rsyntax libraries
    [/spoiler]





    [align=center]Basic Bug Abuse With RuneAgent[/align]

    RuneAgent is now ready to be used. Click the tab Outstream, log actions, and penetration test the server. You can make loops using:
    Code:
    obj = { run: function () { 
       for(var i = 0; i < 5000; i++){[/b] < 4999 Times
        stream.p1isaac(132)
        stream.isp2(3091) //x
        stream.p2(2491) //rune essence
        stream.sp2(3242) //y
        java.lang.Thread.sleep(30000);
        stream.p1isaac(132)
        stream.isp2(3091) //x
        stream.p2(2478) //air altar
        stream.sp2(3242) //y
        java.lang.Thread.sleep(2000);
        println(i);	
       }
      } 
     }
    var r = new java.lang.Runnable(obj);
    var t = new java.lang.Thread(r);
    t.start(); //Restart
    This loop will run less than 5000 times, so 4999 times repetition of runecrafting.

    On Ikov:



    We can see the output, which can be parsed to see exploitation results.


    Whilst using RuneAgent I would recommend trying everything, even though it may seem like the server has patched the exploit. Go for it. There has been lots of exploits found on a countless amount of servers, and RuneAgent is also nice in the creation of packet bots.

    -Best Regards, Yalo. Have fun!
    P.S. I don't know Java, so if anyone wants tomake an indepth tutorial of searching for renamed methods, feel free.
    Other shit:
    https://rsps.fandom.com/wiki/317_Protocol
    https://www.rune-server.ee/runescape...javaagent.html (might give you ideas of things to abuse... not all these will be patched on every server. And trust me, they have only touched the surface if you get creative with it.)
    Use Bytecode viewer to decompile.

    Have fun; it's not worth your time unless you are having fun.

    Quote Originally Posted by Tamatea View Post
    Wrong place, also i doubt many developers would help you get a tool that is used mainly for exploiting RSPS.
    Def on the wrong forum; idk what section he should have posted this under. I just wanted to prove you wrong, so I spent 10 mins finding old shit of mine.
    Users with a big brain: Totty (RuneHD), Graham (Apollo), Tomm0017 (RSMod), ghost (DragonFire), Leanbow ("a lot" - 21 savage), 3lou 55 ("grind hard, I done grind hard" - 21 savage), Corey (idr), patrity (Kronos), Jet Kai (Spawnscape/Security Threads)
    Reply With Quote  
     


Thread Information
Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)


User Tag List

Similar Threads

  1. Replies: 18
    Last Post: 12-01-2014, 01:23 PM
  2. RuneAge | The Ultimate Adventure | 24/7
    By Kail in forum Advertise
    Replies: 28
    Last Post: 11-30-2012, 05:34 AM
  3. RuneAge | The Ultimate Adventure
    By Kail in forum Advertise
    Replies: 24
    Last Post: 11-15-2012, 09:08 PM
  4. RuneAge
    By tylarc in forum Advertise
    Replies: 2
    Last Post: 05-02-2011, 12:43 PM
  5. ----Runeage---- The Future Of RS
    By Mech' in forum Projects
    Replies: 13
    Last Post: 10-29-2010, 07:31 PM
Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •