[Question] How do you found out the riot api endpoint?

[sooxt98]

No description provided.

[Morilli]

I've been looking at what the browser does for login, and I've also logged the riotclient's web requests using moonshadow's tools (https://github.com/moonshadow565/ssl_hook and https://github.com/moonshadow565/ssl_key_dump).
I think I've had quite a lot of sources from which I got urls, like for LoL they log their patchsieve url they request, which means you can basically just copy paste the url, and then the logging / hooking.
Of course nothing of it is documented, so I might be doing stuff incorrectly and it could stop working at any time if they change something.

[Kavan72]

@Morilli hey,
is this safe to inject dll in riotclient? right ?

[Morilli]

Should be, at least I am not aware of any terms disallowing that.

[Kavan72]

alright thank, and do you have any documentation how to inject like any specific injector or any manually method ?

[Morilli]

The way I know is to use xenos, wireshark and the ssl_key_dump dll i linked above (needs to be built 32-bit).

You then start xenos (32-bit), add the built dll to it and set the startup option to manual start, native injection and add the path to the riotclientservices.exe for it to wait for (sorry I'm not at home, so I don't know the exact names and can't give you screenshots).

You'll then need to start wireshark, in protocol settings add the keylog file (should be C:\Riot Games\ssl_keylog.txt by default) to the TLS settings and then let wireshark run and start a game like league, so that the riotclient starts up (xenos should be up and waiting for the riotclient the entire time too).

You should now be able to view all requests in decrypted form in wireshark if everything worked correctly.

[Kavan72]

nice, thank you and what about ingame apis ?

[Morilli]

Ingame I'm honestly not sure as I havent done anything with that yet. Although I assume it could work in a similar way by ssl injecting into the League of Legends.exe executable instead.

[KyeOnDiscord]

Also in C:\ProgramData\Riot Games\Metadata\valorant.live\valorant.live.ok for example contains the manifest for Valorant.

Which would be https://valorant.secure.dyn.riotcdn.net/channels/public/releases/92A6179A365E5543.manifest

[oceanendless]

@Morilli hi! I am very interested in this question as of 8/2023. Is there any more detailed tutorial or examples to hook into the valorant client to get the ssl key logs and use it in wireshark to see the traffic? New in this field and would like to know more on how to do it. Not sure what is a reliable place to get something like xenos

[KyeOnDiscord]

@Morilli hi! I am very interested in this question as of 8/2023. Is there any more detailed tutorial or examples to hook into the valorant client to get the ssl key logs and use it in wireshark to see the traffic? New in this field and would like to know more on how to do it. Not sure what is a reliable place to get something like xenos

You should try avoiding touching the Valorant client process as it can lead to a ban.

[oceanendless]

@KyeOnDiscord thank you for the suggestion, is it ok if i message you on discord for further questions?

[KyeOnDiscord]

@KyeOnDiscord thank you for the suggestion, is it ok if i message you on discord for further questions?

Sorry, my dms are closed