Jump to content

5th Gen GTS Research


Recommended Posts

I can't reach my public IP from my local network, that's a problem with the router loopback.

I tried using ARP spoofing and "man in the middle" attacks to sniff the traffic between the DS and the router and it worked, but it calls HTTPS servers too often and when it does so while it has a poisoned ARP cache (ie. the DS thinks my computer is the router), the HTTPS certificates become invalid and the connection hangs (Cain&Abel automatically replaces the certificates with custom ones and I can't prevent it).

However, I was able to sniff some requests, but it is useless now that almost everything has been reverse-engineered.

Link to comment
Share on other sites

  • Replies 123
  • Created
  • Last Reply

Top Posters In This Topic

Top Posters In This Topic

Posted Images

I can't reach my public IP from my local network, that's a problem with the router loopback.

I tried using ARP spoofing and "man in the middle" attacks to sniff the traffic between the DS and the router and it worked, but it calls HTTPS servers too often and when it does so while it has a poisoned ARP cache (ie. the DS thinks my computer is the router), the HTTPS certificates become invalid and the connection hangs (Cain&Abel automatically replaces the certificates with custom ones and I can't prevent it).

However, I was able to sniff some requests, but it is useless now that almost everything has been reverse-engineered.

If I am understanding you correctly, you need to be able to hit an external IP for this new GTS system. I would recommended if you can to either try upgrading your router with a DD-WRT firmware if at all possible (this would fix your loopback issue), or if you have a smartphone (iPhone, Android, *not sure about blackberry*) you can get a wifi tether application that will let you get your DS online no problem.

Link to comment
Share on other sites

every time i get this ">>>SALT = 'HZEdGCzcGGLvguqUEKQN'

>>>request: http://gamestats2.gs.nintendowifi.net/syachi2ds/web/[worldexchange or common]/[action]?pid=#######"

typed in and press enter i get this

" File "<stdin>", line 1

request: http://gamestats2.gs.nintendowifi.net/syachi2ds/web/[worldexchange or common]/[action]?pid=######

^

SyntaxError: invalid syntax"

right under it. Am i supposed to use something other than ENTER?

Edit: The small arrow should be under the braket right where the word "[action]" starts, the fourm doesn't show the spaces before it.

Link to comment
Share on other sites

So is an external IP still needed?

And if so, would a proxy help?

You do not need an external IP to make this work. I was able to successfully get into the fake GTS after adding 'socket.shutdown(SHUT_RDWR)' after every response is sent.

Now that I have that out of the way, I should be able to finish IR-GTS-BW within the next week or so. Looking at the descriptions of the DPPT and BW .pkm structure, it looks like everything is in the same place, with the exception of the last few bytes of a party Pokemon. Is the block shuffling/encryption algorithm still the same? Haven't been able to find anything about that.

Link to comment
Share on other sites

If it helps at all, http://pokecheck.kraftpaper.org/ has had functionality with 5th gen for a week at least. It lets you change DNS, connect, go into the GTS room, select a pokemon to transfer and then says this pokemon cannot be transferred while then logging all the pokemon data sent from the game. I apologize if this isn't news to you guys. Wish I'd post it sooner with the worries of requiring an external IP but haven't checked in in a while.

Link to comment
Share on other sites

You do not need an external IP to make this work. I was able to successfully get into the fake GTS after adding 'socket.shutdown(SHUT_RDWR)' after every response is sent.

Now that I have that out of the way, I should be able to finish IR-GTS-BW within the next week or so. Looking at the descriptions of the DPPT and BW .pkm structure, it looks like everything is in the same place, with the exception of the last few bytes of a party Pokemon. Is the block shuffling/encryption algorithm still the same? Haven't been able to find anything about that.

Do remember to check our wiki on this if you aren't already. I believe Ceol has been documenting the findings/discussion from the IRC channel at the following page:

http://projectpokemon.org/wiki/GTS_protocol

Link to comment
Share on other sites

Do remember to check our wiki on this if you aren't already. I believe Ceol has been documenting the findings/discussion from the IRC channel at the following page:

http://projectpokemon.org/wiki/GTS_protocol

That's where I've been getting most of my information, between that and this page. I've got all of the GTS-specific data in place, I just need to be able to properly encode/decode the actual Pokemon data.

Link to comment
Share on other sites

You do not need an external IP to make this work. I was able to successfully get into the fake GTS after adding 'socket.shutdown(SHUT_RDWR)' after every response is sent.

Oh thanks, it works fine now.

It turns out that I had "sock.Shutdown(SocketShutdown.Both)" in the code already, but it was commented out... x)

Link to comment
Share on other sites

Thanks to some help via IRC (was missing 16 padding bytes between the pkm and GTS data), I've successfully sent a Purrloin to my DS. Almost finished.

Awesome! All your hard work is appreciated, I've been watching this thread and wanted to say thanks.

Link to comment
Share on other sites

Great work, i honestly didnt think the gts would be cracked this fast...

Even better, I now have a preliminary release!

I've finally got (most) everything working. I have successfully sent and received a Pokemon from White.

Everything is nearly the same, with a few caveats:

-No support for GenIV .pkm files or GenIII .3gpkm files yet

-Japanese name parsing has not yet been implemented. Not sure yet what happens if you send a Japanese pokemon to your computer. I'll work on a placeholder tomorrow, so the filename isn't completely unreadable.

Note that this is essentially a 'beta' release, so you may run into some problems that I haven't noticed yet. If you do, please let me know via the email address in the README.txt file.

Get it here

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...