Posted September 28, 200618 yr Although Valve has updated the Steam client over the past few months to change functions in the account login process, it seems they forgot one very important part, passing the username and password as clear text in memory to the verification process, 'doh! To provide a working example of this, a couple of our members have utilized Valve's mistake and written a public release PoC. The proof of concept piece shows how a would be evil-doer could write a cheat for all Steam games (Anti-recoil/VAC2 Disabler, ect..) and lace the DLL module with code to intercept one's Steam account information during the login process and send it off to their own servers. Note that while this PoC release does work, the injection some times fails. To get better test results, simply compile the DLL yourself and use a program such as WinInject to load the module into the Steam.exe process before login. Credit goes out to one of our new members, Spiff (a.k.a. Spiffomatic64) for finding Valve's mistake. Steam Account Retriever (v2) Proof of Concept 09/28/2006 Authors: Spiff, s0beit, and other members of myg0t Greetz: Dilpo - beta testing Knowledge of C++ and minor ASM required. This file is released "as-is", with no warranty and should only be used to educate yourself and tested on your own authorized computer system. Using this on computers other than your own may leave you open to possible legal troubles in the future. If used in the wrong method, this proof of concept code can be used for illegal purposes, although that is not the author(s) intention. The Harassment Authority http://www.myg0t.com Click here to download SteamRet_Public-PoC.rar, source code only, no executables. Forum registration required to download. Edit: Archive password is "myg0t2006".SteamRet_Public-PoC.rar
September 28, 200618 yr Thanks for finally posting the password. It took 20 mins and a lot of computer power to crack that :(
September 28, 200618 yr i still dont understand why this was released publicly because now it will be patched soon
September 29, 200618 yr Author i still dont understand why this was released publicly because now it will be patched soon because there are like 50 other ways to accomplish it that havnt been posted
September 29, 200618 yr What should I compile this in? MS Visual C++ 6.0? Nice job to the programmers btw.
September 29, 200618 yr What should I compile this in? MS Visual C++ 6.0? Nice job to the programmers btw. yes
September 30, 200618 yr i still dont understand why this was released publicly because now it will be patched soon Rofl.. myg0t will patch that one as well
September 30, 200618 yr What should I compile this in? MS Visual C++ 6.0? Nice job to the programmers btw. Don't bother, if you don't know where to complile it in it's obvious that you do not know c++ very well. It requires heavy editing. i still dont understand why this was released publicly because now it will be patched soon The same thing is possible with a keylogger.
