Why can't I understand what is in the request from the client to the server?

Q

Quolib2018-01-13 22:42:57

Android

Quolib, 2018-01-13 22:42:57

In the previous question (the question of how to interact with the game database manually), I was advised in the sniffer to see where the client sends requests and which ones, when I click on the button in the game that gives me the necessary information. That's exactly what I did. Only in the requests it’s not clear, I don’t rummage around in this, but in theory there should be an appeal to the api, which I can copy and send myself to get the data, I was also told something about reversing encryption, as I understand it that I don't understand the data because it is encrypted? How to reverse them then and is it possible?

Ps In general, it is possible to connect to the game database, there are such applications, I really don’t know how, they directly said not to connect, I try through api, if the option described above is not possible, then what other options can there be?

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

A

Alex Marken, 2018-01-13
@Quolib

I remember answering your question about the database))
The information is encrypted. In theory, you can decrypt, but you need to find out the encryption method, and then pick up the key. This requires huge hardware power and a lot of time (depending on the length and dictionary of the key).
What other options? None unless the game provides a public API (it has a private one). The information is encrypted, there are numerous checks for access to the server, SQL injections are also excluded (most likely). If you start breaking the server further, the developers will understand from the logs what you want to do and close the holes.
I'm wondering what you want to end up with?