PDA

View Full Version : How To Cheat Online Poker



bikers314
05-01-2007, 07:23 PM
Hi. Is there really a way to see the other playes cards while playing online texas Hold'em. I used bots, caculators, RNG software and nothing works. Is there a way to cheat online poker?

Ezekiel
05-01-2007, 07:30 PM
Hi. Is there really a way to see the other playes cards while playing online texas Hold'em. I used bots, caculators, RNG software and nothing works. Is there a way to cheat online poker?

If it was easy enough for any idiot to Google "poker cheating" and exploit the system, there would be no system.

It all depends on whether there are vulnerabilities in a poker server. Spend a couple of years learning about TCP/IP, assembly and any choice of mid-level language.

bikers314
05-01-2007, 07:35 PM
OK. So can you cheat online poker or not? and im not talking about collusion.

Moonbat
05-01-2007, 09:08 PM
Online poker is mostly server side, i.e. we can't cheat it by hex editing or stuff like that.

Maybe if you could somehow manipulate the packets being sent to the server, you could trick the server into thinking you have a royal flush or something, but I have no clue where to begin with doing that.

bikers314
05-02-2007, 12:03 AM
Maybe your an idiot, i think i could do that, your a genious. please somebody help me cheat online poker.

Troll
05-02-2007, 12:27 AM
Hi. Is there really a way to see the other playes cards while playing online texas Hold'em. I used bots, caculators, RNG software and nothing works. Is there a way to cheat online poker?

I doubt it very, very much.

Collusion with a group of friends is the best way to cheat online poker, or atleast increase the odds of winning.. but first you need to find out what anti-collusions devices there are in the software, if any...

But i s***est stop being greedy, or learn how to play poker like an expert.

Moonbat
05-02-2007, 12:42 AM
Maybe your an idiot, i think i could do that, your a genious. please somebody help me cheat online poker.

Throwing out insults won't really get you anywhere. Anyway, good luck with cheating online poker.

Ezekiel
05-02-2007, 12:46 PM
OK. So can you cheat online poker or not? and im not talking about collusion.

See this comment:

It all depends on whether there are vulnerabilities in a poker server.

My personal view? Some poker services may have vulnerabilities; others may not. Only skilled programmers and hackers will be able to find out though.



Maybe your an idiot, i think i could do that, your a genious.

I don't know why you're calling me an idiot, because I was using "any idiot" the same way I would use "any regular person". I wasn't talking about you.

Oh, and I'm not an idiot -- everything I said was true. Just because there's no generic program to hack any poker server doesn't mean it's not possible.


please somebody help me cheat online poker.

Help yourself. There are plenty of programming tutorials.

bikers314
05-02-2007, 07:28 PM
Im not greedy at all. Im just very motivated and ready to learn new things. I play poker very well and dont really need to cheat. I just know there are people cheating and I dont know how. Is there a way to stop people from cheating?

Moonbat
05-02-2007, 07:32 PM
Well it's kinda hard to tell if a person is cheating in the first place, or if he/she is just lucky, or a good player.

nozf3r4tu
05-02-2007, 08:32 PM
If i could have the answer to bikers question,i would be retired from working and cheating (a lot) $$$:cool:

Ezekiel
05-03-2007, 01:16 PM
I got curious about the subject of online poker hacking, and read somewhere that *0 years ago it may have been possible, but not now with encrypted connections and similar security measures. Security has definitely improved, but that statement seems naive to me.

I installed Windows XP into VMware to test the poker client of 888.com, and made a disposable account to try the free play section:

http://img47*.imageshack.us/img47*/4605/screenshotpb4.png

Then, I left the client idling in that table (without joining), and ran a packet sniffer outside the VM in Ubuntu. I only did it for a few seconds (because Wireshark lags my computer when it has to display thousands of packets), but here's what I got:


20025*;2;;5*60*;4;*024;*000;0;0;*000;$@
20025*;2;;5*667;4;$@
20025*;2;;5*60*;6;*024;*000;0;0;*000;$@
20025*;2;;5*667;6;$@
20025*;2;;5*626;-*#-*#*000#*0000#0##^*#7;67600;2*;47;~2*;47;5;**;**;~#^*#7;*0000;2*;47;~2*;47;5;**;**;~#^$@
20025*;2;;5*6*7;*;$@
20025*;2;;5*65*;$@
20025*;2;;5*604;*^RCB420b^*7750^0^0^0^0^;7^houdi*0*^2*4**7^0^0^4^0^;5^whilkie^4887**^0^0^0^0^;*0^Dan petty^*0500^0^0^4^0^;8^evilgus2^*28400^0^0^2^0^;2^surpr*se^45000^0^0^0^0^;4^WARHAMMR^2*0500^0^0^2^0^ ;6^Kattere^72000^0^0^8^0^;*^geord5*^**875^0^0^0^0^;*^krisz*6*^0^*^0^6^0^;$@
20025*;2;;5*605;4;2*2*65777;$@
20025*;2;;5*656;5;200;5000;$@
20025*;2;;5*608;*;$@
20025*;2;;5*62*;5*64**5*2;$@
20025*;2;;5*624;5;200;200;4885**;$@
20025*;2;;5*655;6;500;5000;$@
20025*;2;;5*625;6;500;500;7*500;$@
20025*;2;;5*660;*;500;5000;$@


Meaningless trash, right? Well, I've got a few comments on this.

The first thing we notice is that it is most certainly not encrypted. That proves the "Oh, everything is encrypted these days" statement wrong, when the client of the top Google result for 'online poker' does not use encryption.

You might be thinking "cool, this means we can see the hands of other players". That probably is not the case. This code is probably mere messages of what's happening from your view of the game, giving no previously hidden information away about other players. I'm not really sure; it would take disassembly of the executable in question and analysis of what each line of the above data means.

This doesn't mean the system is secure though. All the above server 'messages' between server and client could be changed (maybe the servers trust client data without checks), and the whole application didn't look professional, with many spelling mistakes. What I'm saying is, there are probably vulnerabilities. Proprietary systems like this are always fun for hackers to explore; the developers often don't imagine someone will be examining (and perhaps exploiting) the inner workings of their server and client.

That was just a small part of their whole poker system, and I could have ran the sniffer while actually playing, while creating an account, while logging in or while doing anything else with the program. I'm sure a lot of interesting data would be revealed. I could have also disassembled the program to find out what each part of each line means.

Troll
05-03-2007, 07:18 PM
:) Interesting

I just wish i had enough ********* knowledge to examine and analyise each packets to find out what it all means.

It looks like a lot of fun and a great challenge to explore though..

Moonbat
05-03-2007, 08:03 PM
Hmm... This whole poker thing seems interesting.:D

Now that we know that the packets are not encrypted (at least for that site), we can tell what the server is doing (well, kinda).

If you could run the sniffer while you were playing and see how the server responds, I was thinking you could edit the values sent, so the server would think that you had certain cards.

Of course, even though I have a 'packet creator' I am not good with the whole packet thing. Plus, it would be hard not to get caught (for example, tricking the server into thinking you had a King of Diamonds when another player has that card, the player would know something's not right).

Ezekiel
05-04-2007, 04:20 AM
Plus, it would be hard not to get caught

I'm not sure whether to go any further with this, because it is very illegal (even if I don't actually steal anything), and helping others to exploit it would still be illegal. Maybe I'll put some of the research into a tutorial on my site, but even that would make it easy for them to shut it down.

What do you all think my site's disclaimer/rules should be?

*. Only restrict highly illegal content that would get us shut down (such as ****** card details), allow tutorials that tell you how to break the law, and have a big "We're not responsible" disclaimer.

2. Do not allow any illegal content and only allow tutorials written that tell you how to protect yourself.

*. Got any ideas? Please post them.

Troll
05-04-2007, 02:41 PM
I think you should do all the research and find all the exploits before deciding whether to make this information public or not (and if so, how to make it public)..

Censoring your site isn't the best option, in my opinion.

Perhaps you can make all the users agree to a disclamer before accessing "illegal" things.. (i.e. "If you agree to this disclamer to here to continue.. if not f*** off!")

Ezekiel
05-04-2007, 05:52 PM
I think you should do all the research and find all the exploits before deciding whether to make this information public or not (and if so, how to make it public)..

Censoring your site isn't the best option, in my opinion.

Perhaps you can make all the users agree to a disclamer before accessing "illegal" things.. (i.e. "If you agree to this disclamer to here to continue.. if not f*** off!")

I've decided on these rules:

You can talk about anything on the forum, as long as you don't post anything illegal (****** card details, pirated software, usernames and passwords, etc.) -- it's legal to talk hypothetically about crimes. Hypothetical discussions can include things like exploit code and fake login pages -- creating them is different to using them.

Summarized, the rules are that you can't post anything illegal. You can talk about illegal acts, provide information or tools on illegal acts, even admit to doing illegal acts (although this would be stupid), but you can't post illegal content.

Here's my definition of illegal content for the disclaimer:

Illegal content -- this includes (but is not limited to) content containing ****** card information, **** details, website passwords and pirated software, movies, music or games. Content such as fake login pages and exploit code are acceptable in a hypothetical context.

This is quite hard to explain, because my definition of illegal is probably different to the law. My definition is, researching (or developing tools) for a crime is not illegal. Doing a crime, and posting the results, is.

The private members' discussion area doesn't have so many rules.


I think you should do all the research and find all the exploits before deciding whether to make this information public or not (and if so, how to make it public)..

I'm not sure if I'll research this poker thing; I've got a lot to do with my website at the moment.