How to catch Legendary Mew2 Articuno zapdos mew and 9999 CP

POKEMON GO INDONESIA - Intercepts the traffic between your Pokemon Go App and their servers, decodes the protocol and gives you a handy tool to enrich your own game experience by altering the data on the fly.

Take a look at the examples to get started. Feel happily invited to contribute more!

How to use it?

Get nodejs

Get protobuf >= 3

Linux: libprotobuf must be present (apt-get install libprotobuf-dev)

OSX: Use homebrew to install protobuf with brew install pkg-config and brew install --devel protobuf

Windows: hard to compile - follow advices

Clone the code to experiment with the examples! (otherwise use it as a npm package)

git clone https://github.com/rastapasta/pokemon-go-mitm-node.git && cd pokemon-go-mitm-node

npm install

Setup the CoffeeScript interpreter

npm install -g coffee-script

Run and quit one of the examples once to get a CA certificate generated

coffee example.logTraffic.coffee

Copy the generated .http-mitm-proxy/certs/ca.pem to your mobile

Add it to the "trusted certificates"

Setup your connection to use your machine as a proxy (default port is 8081)

Enjoy 

How to code it?

PokemonGoMITM = require './lib/pokemon-go-mitm'

server = new PokemonGoMITM port: 8081

Code:

# Every throw you hit is a super-duper-curved ball -> +XP 
server.addRequestHandler "CatchPokemon", (data) ->
    data.normalized_reticle_size = 1.950
    data.spin_modifier = 0.850
    if data.hit_pokemon
        data.normalized_hit_position = 1.0
    data
 
# Replace all PokeStops with kittys! 
server.addResponseHandler "FortDetails", (data) ->
    data.name = "Pokemon GO MitM PoC"
    data.description = "meow!"
    data.image_urls = ["http://thecatapi.com/api/images/get?format=src&type=png"]
    data
 
# Send crafted requests directly to the API as a new request - to release a pokemon as example 
server.addResponseHandler "GetInventory", (data) ->
    for item in data.inventory_delta.inventory_items
        if item.inventory_item_data and pokemon = item.inventory_item_data.pokemon_data
 
            server
                .craftRequest "ReleasePokemon", pokemon_id: pokemon.id
                .then (data) ->
                    if data.result is "SUCCESS"
                        console.log "[+] Pokemon #{pokemon.pokemon_id} got released!"
    false

What's the status?

Thanks to the awesom work done around POGOProtos, all requests and responses can be intercepted and altered on the fly by now!

AddFortModifier

AttackGym

CatchPokemon

CheckAwardedBadges

CheckCodenameAvailable

ClaimCodename

CollectDailyBonus

CollectDailyDefenderBonus

DiskEncounter

DownloadItemTemplates

DownloadRemoteConfigVersion

DownloadSettings

Echo

Encounter

EncounterTutorialComplete

EquipBadge

EvolvePokemon

FortDeployPokemon

FortDetails

FortRecallPokemon

FortSearch

GetAssetDigest

GetDownloadUrls

GetGymDetails

GetHatchedEggs

GetIncensePokemon

GetInventory

GetMapObjects

GetPlayer

GetPlayerProfile

GetSuggestedCodenames

IncenseEncounter

LevelUpRewards

NicknamePokemon

PlayerUpdate

RecycleInventoryItem

ReleasePokemon

SetAvatar

SetContactSettings

SetFavoritePokemon

SetPlayerTeam

StartGymBattle

UpgradePokemon

UseIncense

UseItemCapture

UseItemEggIncubator

UseItemGym

UseItemPotion

UseItemRevive

UseItemXpBoost

Enjoy! And heaps of thanks to everyone who contributed here and on slack!

Credits: https://www.npmjs.com/package/pokemon-go-mitm

Github: https://github.com/rastapasta/pokemon-go-mitm-node

Share this

Share on FacebookPlus on Google+