冒险解谜游戏中文网 ChinaAVG

标题: paq解包脚本如何写 [打印本页]
作者: byp100    时间: 2009-11-9 02:44
标题: paq解包脚本如何写
分析了半天还是没分析出解压脚本
3 v2 W8 f/ x8 N' }7 H9 u  n# e1 l! ]( r# }苏洋的解包动画也看不到。。。。007能分析指导一下吗?, A7 q* V* ?' d4 e8 ?
get IDSTRING long2 v1 T6 C& [! p$ Q
IDSTRING "paq"
9 [$ e: ~( v! r& X, S9 oget UNK1 long  " B$ V6 v6 f' @  |% S- A7 o6 H
getdstring NAME 0x13
+ F; A; l+ M0 d9 O8 u$ _get ZSIZE long , N0 L  U8 ^/ ~) P, g- I/ T
get SIZE long   j- Z0 \& n0 N- f, `
get OFFSET long 9 p8 S9 A& e/ _, Q( c
clog NAME OFFSET ZSIZE SIZE 
0 r! b) j+ ^6 Y+ c( w& _9 G9 }% M, w
解压不出东西
作者: shane007    时间: 2009-11-9 08:29
收到,你先说说你分析出了点什么。
. G# A$ {8 G0 S9 S$ E是如何分析出的,根据是什么。1 t8 L4 B; m, ^8 W
9 Z' t$ ]. }  @: W
可以先手工试试看。offzip.
作者: sylar    时间: 2009-11-10 17:43
解到tga格式文件就出错了。。格式不一样的。。2 G  l% N  b" N& Z6 e) k
IDSTRING "paq\\x00"
: R: g9 `6 S* Z7 N: I/ vMath Files += 0xFFFFFF( e! N* T0 C0 a
for i = 0 < FILES
5 K! d9 h8 a" b5 K/ nsavepos TEMSET9 r! N7 ^3 t" @
findloc NAMESET STRING "\\x00"
1 J$ C! c8 i9 E/ kmath NAMESET -= TEMSET
1 b9 B# {) z" ?5 B; }4 qgoto TEMSET2 W- D8 r0 }' w& {) i  Z
getdstring NAME NAMESET. u: v" [& o$ }- L
get UNK1 short- d; C' F& E0 M+ k' M. g  v  Y
get UNK2 long
. X( H0 t: O5 v3 T: {! Xget ZSIZE long2 U* B, K% M/ V. R* L# A0 e( i5 b
get SIZE long
% l. R. e7 H$ C* A. G  Gsavepos OFFSET
6 ]8 z2 h- I( B8 Y4 Z) i# Pclog NAME OFFSET ZSIZE SIZE
( C' S  z2 t8 O! |% J% Q$ Ymath OFFSET += ZSIZE
( u, J& v- C' H) ~* dgoto OFFSET% K0 i  O! |9 m/ D% |
next i
作者: shane007    时间: 2009-11-10 17:50
http://aluigi.altervista.org/mytoolz/offzip.zip
+ w* p) ^# ~( N3 @- r' f' q1 V7 N
$ p' r/ ^% Q+ H+ BOffset file unzipper 0.3.3 (offzip) .image.
' T% a2 }8 u) v) d  L6 ga very useful tool to unpack the zip (zlib/gzip/deflate) data contained in any type of file included raw files, packets, zip archives, executables and anything else.
3 Q" ~" S, k, t, D$ H) y( w% yit's needed only to specify the offset where the zip data starts or using the useful -S search options able to find any possible zip block contained in the provided file.
3 |- ~# G# O; x+ bnaturally there are also other options for extracting all the zip blocks which have been found or dumping them as in their original compressed form.
2 h: v7 d, p, \it's also possible to choose a windowBits value for scanning both the zlib (RFC1950) and deflate (RFC1951) blocks (for example -z -15 for common zip files and so on).
作者: byp100    时间: 2009-11-10 23:33
引用第2楼sylar于2009-11-10 17:43发表的  :, s, ]. M( y: l8 n7 Y. i, a
解到tga格式文件就出错了。。格式不一样的。。
* A$ j, P! r; V3 t. C* J# @
不错,确实能解压一部分,我参考参考写法
: c8 X$ h* k$ `* V2 j* ?5 |7 _8 e7 b0 c3 W& a$ ]
也研究研究下007提供的offzip
作者: shane007    时间: 2009-11-11 11:38
offzip.exe -S crimson.paq 1.txt 0  >log.txt  
1 q# g8 r) e8 A* B- b
/ R4 P1 m- u/ c# k以上命令执行结果如下
0 _9 o' E5 N. v2 }- S  f
- ~) S7 o# b. ~Offset file unzipper 0.3.3  y6 _% D# C! k2 y7 L. h$ \" G
by Luigi Auriemma
* i3 J# {( ^5 j4 te-mail: [email protected]  w( o* a! ?: F9 v4 T
web:    aluigi.org0 Y0 z+ h. {  s+ {5 Q

% G% D' x1 Q+ G% \" g2 \4 Q/ c- open input file:    crimson.paq
5 `, P: Y* E7 k! O- zip data to check:  32 bytes
$ j3 p7 {9 j3 H5 ?" a  @- zip windowBits:     15
3 q$ w* e6 k5 u$ _6 X( n: _- seek offset:        0x00000000  (0)
$ ^5 ?2 A& Y/ }% m$ L4 A9 D) _/ I" [9 F3 P* T( o/ x% Z) T4 b* g+ J. ?
+------------+-------------+-------------------------+; h9 e2 J2 e3 j9 g
| hex_offset | blocks_dots | zip_size --> unzip_size |
1 q# t/ _3 B% f0 X+------------+-------------+-------------------------+, F" ?; T" M6 L! j
  0x0000001f . 1084 --> 1392+ K3 {, ^: n( d& I/ {* }
  0x00000478 . 717 --> 911/ Q& h9 V, Y/ _, \0 e- c
  0x0000076a . 1750 --> 2235
% W- _: O" d5 k6 U4 H6 S  t! c, c  0x00000e64 . 1419 --> 1803
& j8 y( ~6 H: C. @" B/ B* B6 C  0x00001414 . 1435 --> 1859
: p0 M4 O% [1 C2 x  0x000019d3 . 1175 --> 15877 Q' C& O) H- e
  0x00001e8a . 336 --> 595+ {/ q( v) l$ e/ @3 V" h' X* t
  0x00001ff9 . 628 --> 805
9 t6 r0 d" F3 |7 [: B2 p  0x0000228b . 874 --> 10965 c5 L; Y/ D3 |3 ~8 J! T
  0x00002618 . 518 --> 7279 c: G5 F$ i+ a( {
  0x00002840 . 510 --> 7171 L( q) t+ i1 p8 U3 a' r
  0x00002a5d . 795 --> 10386 _/ H/ N! C5 O/ p# k
  0x00002d99 . 730 --> 1068
) a, J, _# _* |0 D! X- [/ t# P  0x00003096 . 765 --> 1030' L; E. d7 `0 D
  0x000033b2 . 862 --> 1124: k' n; r- `) J/ k' `3 d
  0x0000372f . 1000 --> 1162
  O( s+ W, \' T' R  0x00003b37 . 1564 --> 1974
% A6 j  r& G+ r# |9 c: q0 }! H0 X  0x00004174 . 836 --> 1152- P$ o, Z0 Y5 l7 p* I
  0x000044d9 ....... 13016 --> 30039( U, C0 p1 b6 U/ H
  0x000077d1 ... 5949 --> 6860; m! l0 z; i# [) a+ j3 s
  0x00008f2f ...... 11007 --> 13484( T# u7 ?  U1 e+ Y  p
  0x0000ba4a . 1140 --> 13950 |+ o) c& @. A# K
  0x0000beda . 1204 --> 1490
8 B8 v) Q- p  W6 W9 ^) ^  0x0000c3aa . 1299 --> 1599
4 b9 o3 d8 V) K$ r  0x0000c8d9 . 1288 --> 15753 e0 W# z- p4 |: c
  0x0000cdfd . 1790 --> 23664 ]$ e2 |/ p& G; u/ a) J
  0x0000d51a . 445 --> 692& I3 ^: T: c# j' J+ s
  0x0000d6f5 . 448 --> 674/ G* A$ p/ i+ {. [4 ^! i; t6 X6 i3 k" K
  0x0000d8d8 ....... 13638 --> 152877 S2 H5 I/ s1 x2 S* v
  0x00010e42 .. 2438 --> 4831
: u! W7 F% W! t0 K( |  0x000117eb .. 2263 --> 3624
6 u! n# P( P! j( x- X5 s$ ~1 |  0x000120e7 .. 3339 --> 5509- O8 Y# h& E+ f( a5 F+ D
  0x00012e13 . 1927 --> 3442! a% e% l# B) R: F
  0x000135bc .... 6722 --> 11728
1 V$ K* U" B+ p  S7 [6 W  0x00015022 .... 6691 --> 115676 K- _0 g( I7 O, \
  0x00016a63 .............. 28392 --> 34046: O3 z, G+ m5 ^( r8 L
  0x0001d96c . 1105 --> 1390
! T1 Y3 M4 ~5 ]$ }# G  0x0001dddc ... 5061 --> 5906
$ b8 U2 Q/ C* A% D, F  0x0001f1c3 . 1230 --> 1492
7 p3 M) x: O/ m  0x0001f6b5 . 527 --> 742
" P0 p- w5 @1 k# S  0x0001f8e7 ... 5383 --> 10576
* |: r; a0 S( p5 D9 g" V0 x: F  0x00020e09 ...... 11923 --> 12569
9 t# G( \0 q! V; e* W  0x00023cb7 ......... 16573 --> 17231- R$ \, @$ w9 d1 F
  0x00027d8f ........... 20913 --> 21508
3 {0 }% W& C7 t' s: T$ Y  0x0002cf5b ... 4584 --> 52705 K( \; w; ?; x0 b9 K4 K
  0x0002e164 .......... 18692 --> 29425
4 `1 Q$ H# ?$ {3 e  0x00032a89 ........... 20813 --> 314025 B# ]. c& X1 Z) z& N1 b
  0x00037bf7 ........... 21530 --> 32091  f% N2 k- R9 e& k$ o% P
  0x0003d032 .......... 20218 --> 308563 n- y7 t% e% y0 K3 c1 O
  0x00041f4d ............. 24876 --> 35585
; X) f# |# B; @9 c! Q. C( G  0x0004809a ............. 25487 --> 36286
/ |! K7 V- W& D) U3 ~$ k9 A! Q; A  0x0004e44a ........ 14995 --> 26091! h/ C- x; f: h; i0 j% I  F3 O# G
  0x00051efe ........ 15273 --> 26325
6 S, B5 n. z1 |& p" h5 t! F  0x00055f87 . 1116 --> 1347
2 B$ D( ?. a0 A  0x00056bb0 .... 7441 --> 8336
) f# `7 M4 [5 Q6 \* p1 Z( Q  0x000588df . 1736 --> 19443 w) L2 @4 R* E" f' q
  0x00071d94 .......... 19391 --> 20105
7 [+ a. c& x! E  0x0007be7d ................. 33201 --> 51406
5 P5 k0 w  P+ T! }  0x0009ac56 ................................................ 97337 --> 121280( D1 {  L& K: @1 U- c" J* ]
  0x000b28ab . 895 --> 1152
+ G1 D6 g0 a/ p! o6 i% k- P4 s  0x000b2c48 .......... 19701 --> 244224 n2 \/ _; O& j+ }  N. ~7 Q
  0x000b795b ........ 14367 --> 17136$ K3 i( w! u6 T, A
  0x000bb197 ................. 34478 --> 46125
5 |! o2 K& T) ~5 z1 @  0x000c3867 . 1101 --> 1331
+ e/ z% m& A6 z. Z/ d2 G  0x000c3cd4 ............... 28739 --> 52702: T4 C9 s: Z2 G
  0x000cad33 .. 3841 --> 5660
0 i( |1 N0 s- J. L$ k* F+ L  0x000cbc55 .............................................................................................. 190797 --> 239555$ P! P+ U1 @+ y8 M; O: t, d
  0x000fa5c3 ............................................ 88794 --> 115842
8 ]. A7 O# T" U3 e  0x001100bb ........................ 47271 --> 63393. W6 v6 X# P: ^0 V. |0 v; L
  0x0011b97f ............................ 55292 --> 70019; Z4 ?0 d2 q6 t5 R) ~
: @& w' s( Y1 K+ a# D
: l! l. J8 X5 E) b  n( _5 X8 [! K
- 70 valid zip blocks found
作者: shane007    时间: 2009-11-11 17:43
用这个命令可以解包到目录1下,去掉前面4个字节就是jpg图片
+ N; T' s% e* r8 X5 U2 b2 I. p& }offzip.exe -a crimson.paq 1 0  
3 O2 N0 V& A$ u3 n$ f6 `
3 p0 P; l# T3 h, l/ k2 V2 q. L- j如果要dump的话,就是,这样的话分析格式就相当简单了
& x1 P. F' @' E. ]offzip.exe -A crimson.paq 1 0  
% z/ i/ w3 N, w( Y4 s: O8 M0 ?" [
+ a; q5 P2 _/ x0 p* h/ {  Z放上一张解包后的图片( ~0 X7 _$ Q" N8 I4 B: `: R( O
[attach]14737[/attach]
作者: byp100    时间: 2009-11-13 02:33
引用第6楼shane007于2009-11-11 17:43发表的  :
8 U& q3 c' j1 Z: A3 `( e用这个命令可以解包到目录1下,去掉前面4个字节就是jpg图片
, \& x* n4 l$ ~4 ]9 `) [( j/ @' joffzip.exe -a crimson.paq 1 0 
" H7 r; ]5 }9 T. C  M9 G( T/ W( R' K3 y& a6 v8 d
如果要dump的话,就是,这样的话分析格式就相当简单了$ q- ]7 G" ?! a& c
offzip.exe -A crimson.paq 1 0 
# g/ z) n1 l) R) A; [, J.......
/ o+ h8 `8 o( F8 R: B# I% X  o
谢谢指导,我发现好像是要2次解包,这些天在弄个独立游戏,没时间试试看。



欢迎光临 冒险解谜游戏中文网 ChinaAVG (https://chinaavg.com/) Powered by Discuz! X3.2