Page 1 of 1
what does eatch of the files in save zips store?
Posted: Sat Aug 23, 2025 2:03 am
by ilikehackinggames
ik that the format of save files changes like every update (witch must leave behind a lot of convertson code) but id assume what eatch file in the save stores wouldnt change much. also do any of the files inside the save zip use compresson or anything like that? woundering for fuzzing once i start working on setting it up
Re: what does eatch of the files in save zips store?
Posted: Sat Aug 23, 2025 2:32 am
by eugenekay
It’s either JSON / plaintext, or it’s a binary DAT file full of serialized C data structures dumped from the running game’s memory - aka a giant Rats Nest.
. I have my doubts that any of this will result in Code Execution due to bounds checking - but it only takes one bug!
47014 is full of good information. The biggest issue seems to be that the ordering of fields changes arbitrarily.
8568 has some source code from Kovarex. Your best bet is going to be feeding the Windows build’s PDB file into a debugger; then look for the Savefile functions
Re: what does eatch of the files in save zips store?
Posted: Sun Aug 24, 2025 11:55 pm
by ilikehackinggames
eugenekay wrote: Sat Aug 23, 2025 2:32 am
It’s either JSON / plaintext, or it’s a binary DAT file full of serialized C data structures dumped from the running game’s memory - aka a giant Rats Nest.
. I have my doubts that any of this will result in Code Execution due to bounds checking - but it only takes one bug!
47014 is full of good information. The biggest issue seems to be that the ordering of fields changes arbitrarily.
8568 has some source code from Kovarex. Your best bet is going to be feeding the Windows build’s PDB file into a debugger; then look for the Savefile functions
more like 2 bugs due to needing a info leak too bypass aslr including getting it to the server somehow, and then anouter bug to acsualy take contual over the instructson ptr. (likely some kind of overflow or something)