冰楓論壇

 找回密碼
 立即註冊
搜索
查看: 1230|回覆: 2
打印 上一主題 下一主題

[情報] 所有用第三方應用修改過GPS坐標的的都已經被 N 社標記了

[複製鏈接]

577

主題

0

好友

582

積分

高級會員

Rank: 4

UID
143650
帖子
577
主題
577
精華
0
積分
582
楓幣
5895
威望
581
存款
0
贊助金額
0
推廣
0
GP
640
閱讀權限
50
性別
保密
在線時間
14 小時
註冊時間
2016-7-24
最後登入
2016-8-19
跳轉到指定樓層
1
發表於 2016-8-7 21:57:50 |只看該作者 |倒序瀏覽
05/08/2016 - 18:43 GMT+1 : Just another quick update, we have discovered that users utilizing MITM techniques may be getting flagged by Niantic servers. Please note read-only MITM is not affected by this flagging. We've confirmed this to the best of our joint abilities, if we discover anything else, we'll be sure to update, however, this should be not a cause for panic at this stage.


我們 (黑科技 API 團隊) 發現使用中間人技術將會被 N 社的服務器標記。

目前國內的什麼懶人版美版都是可讀中間人技術~
越獄和root插件的修改GPS坐標以及某模擬器的虛假GPS也屬於可讀中間人技術。
tsProtect插件也屬於中間人技術……
還有國外的 100% 命中技術以及 bot 等都一樣,不會倖免~

以下的 updates 我儘量節儉
The new struct, which we are calling Signature (previously Unknown6), authenticates every request made to the API. The structure of Signature turns out to be made up of a few more structures and values. We've managed to figure out what some of those are, leaving only a few remaining.

The integer unknown_10 is a hash generated by Pokmon Go. It is made by taking the user's current authentication ticket in protobuf format (app specific; different from their PTC or Google login token) and running it through a hashing function called xxHash32.
While our understanding of xxHash32 is not complete, from what we know, this hash function takes three values: the first being some data to hash, the second being a 32-bit integer to use as a "seed value" to start the function with, and the third being how many bytes from the data to use for hashing. In this case, the seed value has been determined to be 0x1B845328. This spits out a new 32-bit integer.

Now we take this integer and use it as the seed value to hash our current latitude, longitude, and altitude. The resulting 32-bit integer is unknown_10.

Similarly, the integer unknown_20 is another hash generated by the game. We take the current latitude, longitude, and altitude, as before, and hash it once again using xxHash32, with 0x1B845238 as the seed value. The resulting 32-bit integer is unknown_20.

We're not 100% sure about how to generate unknown_22, but it acts as a check to prevent users from simply copy-pasting API requests from the app. In other words, it prevents replay attacks. unknown_22 is time based and changes every few minutes.

Finally, unknown_24 (now known as request_hash) is an array of hashes, one for each function call being called via the API. (So, for example, getting the player info and inventory list in the same API call would result in two hashes.)
To generate request_hash, we start by hashing the authentication ticket with a seed value of 0x1B45328, but this time using the hashing function xxHash64. This becomes our new seed value for the remaining hashes.

Now, for each RPC function call included in the request, we take its protobuf data and hash using xxHash64 using the xxHash64 hash of the authentication ticket. The set of all these hashes is our request_hash.

大意是說
遊客【如果您要看隱藏內容 請選擇 繼續閱讀】本站解除隱藏說明教學

繼續閱讀文章 - 解除隱藏文章限制


[發帖際遇]: iTunes 遭「陷兵」強迫簽下「自願搜索同意書」,搜索到「偉大史物」,獲得獎勵 2 楓幣 幸運榜 / 衰神榜
收藏收藏0 推0 噓0


把本文推薦給朋友或其他網站上,每次被點擊增加您在本站積分: 1彩票
複製連結並發給好友,以賺取推廣點數
簡單兩步驟,註冊、分享網址,即可獲得獎勵! 一起推廣文章換商品、賺$$

24

主題

1

好友

53

積分

新手上路

Rank: 1

UID
87482
帖子
214
主題
24
精華
0
積分
53
楓幣
-551
威望
51
存款
0
贊助金額
0
推廣
0
GP
16
閱讀權限
10
性別
保密
在線時間
42 小時
註冊時間
2014-12-31
最後登入
2023-8-15

懶人勳章 太陽勳章 幼兒勳章 性別(男) 性別(女) 音樂勳章 神手勳章 2016年紀念勳章

2
發表於 2016-8-7 22:08:25 |只看該作者
121.504331121.504331
已有 1 人評分楓幣 威望 收起 理由
冰楓 -10 -1 無意義回文

總評分: 楓幣 -10  威望 -1   查看全部評分

點評回覆

使用道具 舉報

17

主題

6

好友

5

積分

新手上路

Rank: 1

UID
133284
帖子
1455
主題
17
精華
0
積分
5
楓幣
544
威望
3
存款
0
贊助金額
0
推廣
0
GP
14
閱讀權限
10
性別
保密
在線時間
36 小時
註冊時間
2016-3-29
最後登入
2024-3-22
3
發表於 2016-8-7 23:03:03 |只看該作者
大意就直接分享就好咩XD
[發帖際遇]: amuletheart1218 發文時在路邊撿到 1 楓幣,偷偷放進了口袋 幸運榜 / 衰神榜
點評回覆

使用道具 舉報

高級模式
B Color Image Link Quote Code Smilies

廣告刊登意見回饋關於我們管群招募本站規範DMCA隱私權政策

Copyright © 2011-2024 冰楓論壇, All rights reserved

免責聲明:本網站是以即時上載留言的方式運作,本站對所有留言的真實性、完整性及立場等,不負任何法律責任。

而一切留言之言論只代表留言者個人意見,並非本網站之立場,用戶不應信賴內容,並應自行判斷內容之真實性。

小黑屋|手機版|冰楓論壇

GMT+8, 2024-11-23 20:09

回頂部